| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Document BIO_set_md_ctx(3) and BIO_C_SET_MD_CTX. | schwarze | 2023-04-28 | 1 | -10/+84 |
| | | | | | | Correct the return types of some macros. Improve the RETURN VALUES section. | ||||
| * | Enable the new policy checking code in x509_policy.c | tb | 2023-04-28 | 1 | -4/+2 |
| | | | | | ok beck jsing | ||||
| * | Silence gcc-4 warnings about sk_sort() | tb | 2023-04-28 | 1 | -5/+6 |
| | | | | | | Tell it we deliberately ignore the return value, (we really don't care what the old comparison function was). | ||||
| * | Remove misinformation, reason had nothing to do with efficiency | job | 2023-04-28 | 2 | -17/+4 |
| | | | | | | | "Failure to re-encode on modification is a bug not a feature." OK jsing@ | ||||
| * | Remove now no longer needed <assert.h>; sort headers | tb | 2023-04-28 | 1 | -4/+2 |
| | | | | | ok jsing | ||||
| * | Deassert has_explicit_policy() | tb | 2023-04-28 | 1 | -3/+4 |
| | | | | | | | | The only caller is X509_policy_check() which goes straight to error. with beck ok jsing | ||||
| * | Deassert delete_if() callbacks | tb | 2023-04-28 | 1 | -5/+7 |
| | | | | | | | | | Add sk_is_sorted() checks to the callers of sk_X509_POLICY_NODE_delete_if() and add a comment that this is necessary. with beck ok jsing | ||||
| * | Deassert x509_policy_level_find() | tb | 2023-04-28 | 1 | -18/+27 |
| | | | | | | | | | Move the check that level->nodes is sorted to the call site and make sure that the logic is preserved and erroring does the right thing. with beck ok jsing | ||||
| * | Deassert X509_policy_check() | tb | 2023-04-28 | 1 | -2/+3 |
| | | | | | | | | | Instead of asserting that i == num_certs - 2, simply make that an error check. with beck ok jsing | ||||
| * | Deassert x509_policy_level_add_nodes() | tb | 2023-04-28 | 1 | -10/+1 |
| | | | | | | | | | | This assert is in debugging code that ensures that there are no duplicate nodes on this level. This is an expensive and unnecessary check. Duplicates already cause failures as ensured by regress. with beck ok jsing | ||||
| * | Deassert x509_policy_new() | tb | 2023-04-28 | 1 | -3/+4 |
| | | | | | | | | Turn the check into an error which will make all callers error. with beck ok jsing | ||||
| * | Reorder the text such that every function is discussed only once | schwarze | 2023-04-28 | 1 | -46/+41 |
| | | | | | | | | | | | | instead of discussing some of them at two different places. Also follow a more logical order: initialization first, then reading and writing, then retrieving the digest and reinitialization. Leave context handling and chain duplication at the end because both are rarely needed. While here, also tweak the wording of the shuffled text and add some precision in a few places. | ||||
| * | Cleanup pass over x509_check_policy.c | tb | 2023-04-28 | 1 | -73/+72 |
| | | | | | | | This hoists variable declarations to the top and compiles with -Wshadow. ok beck | ||||
| * | Convert size_t's used in conjuction with sk_X509_num back to int. | beck | 2023-04-27 | 1 | -12/+12 |
| | | | | | | | | | | | | The lets the regress in x509/policy pass instead of infinite looping. The changes are necessry because our sk_num() returns an int with 0 for empty and -1 for NULL, wheras BoringSSL's returns a size_t with 0 for both an empty stack and a NULL stack. pair work with tb@ ok tb@ jsing@ | ||||
| * | Also list the command constants not associated with any macros, | schwarze | 2023-04-27 | 1 | -3/+29 |
| | | | | | and point to their documentation. | ||||
| * | ssl_tlsext.c: Add an accessor for the tls extension type. | tb | 2023-04-27 | 1 | -1/+7 |
| | | | | | | | Needed for the tlsexttest.c ok jsing | ||||
| * | Somehow I managed not to bump LIBRESSL_VERSION_NUMBER | tb | 2023-04-27 | 1 | -2/+2 |
| | | | | | reported by aja | ||||
| * | EC_KEY_{get,insert}_key_method_data() are no longer available | tb | 2023-04-27 | 1 | -41/+2 |
| | | |||||
| * | One more reciprocal thing hid in here (yay for consistent naming) | tb | 2023-04-27 | 1 | -2/+1 |
| | | |||||
| * | Remove stale references to BN reciprocal stuff | tb | 2023-04-27 | 2 | -8/+5 |
| | | |||||
| * | Remove documentation of reciprocal BN which is now internal only | tb | 2023-04-27 | 2 | -276/+1 |
| | | |||||
| * | Remove documentation of GF2m point stuff | tb | 2023-04-27 | 1 | -47/+7 |
| | | |||||
| * | EC_GROUP_new() Strip out complications due to binary curves. | tb | 2023-04-27 | 1 | -79/+11 |
| | | |||||
| * | Remove stale reference to BN_GF2m_add() | tb | 2023-04-27 | 1 | -2/+1 |
| | | |||||
| * | Remove BN_GF2m_add.3 | tb | 2023-04-27 | 2 | -516/+1 |
| | | |||||
| * | Remove mention of EC_GFp_nist_method and add back a .Pp that was | tb | 2023-04-27 | 1 | -6/+2 |
| | | | | | accidentally dropped | ||||
| * | Remove braces around single lines statements using knfmt -s | tb | 2023-04-27 | 1 | -84/+49 |
| | | | | | Pointed out by anton | ||||
| * | Rework simple allocation and free functions in x509_policy.c | tb | 2023-04-27 | 1 | -32/+36 |
| | | | | | | | | Use calloc() instead of malloc/memset and make free functions look the same as elsewhere in the tree. ok beck jsing | ||||
| * | Remove dangling references to BN_get0_nist_prime_521(3) | tb | 2023-04-27 | 2 | -9/+6 |
| | | |||||
| * | Move EC_POINT_{get,set}_Jprojective_coordinates to ec_local.h | tb | 2023-04-27 | 2 | -10/+12 |
| | | |||||
| * | Nuke doxygen noise | tb | 2023-04-27 | 1 | -421/+37 |
| | | |||||
| * | Remove documentation of no longer supported EC methods | tb | 2023-04-27 | 1 | -46/+5 |
| | | |||||
| * | Remove NIST prime documentation | tb | 2023-04-27 | 2 | -202/+0 |
| | | |||||
| * | Stop installing NIST prime documentation | tb | 2023-04-27 | 1 | -3/+1 |
| | | |||||
| * | Remove a useless doxygen comment | tb | 2023-04-27 | 1 | -5/+1 |
| | | |||||
| * | Make x509_policy.c compile with gcc 4. | tb | 2023-04-26 | 1 | -17/+26 |
| | | | | | ok beck | ||||
| * | Allow compiling with -DHAS_DAG to enable the policy check with a DAG. | tb | 2023-04-26 | 1 | -1/+4 |
| | | | | | ok beck | ||||
| * | Turn C++ comments into C comments and minor KNF fixups | tb | 2023-04-26 | 1 | -170/+264 |
| | | |||||
| * | KNF according to knfmt(1) | tb | 2023-04-26 | 1 | -515/+600 |
| | | |||||
| * | Zap trailing whitespace | tb | 2023-04-26 | 1 | -3/+1 |
| | | |||||
| * | Add RCS tag | tb | 2023-04-26 | 1 | -0/+1 |
| | | |||||
| * | Take X509_POLICY_NODE_print() behind the barn | tb | 2023-04-26 | 4 | -100/+3 |
| | | | | | | | | | This used to be public API but is now only used for debug code that has certainly never been used since it was released to the public. It drags that debug nonsense with it. ok beck | ||||
| * | Add the new policy code to the build. | beck | 2023-04-26 | 1 | -1/+2 |
| | | | | | ok tb@ jsing@ | ||||
| * | Make the new policy code in x509_policy.c to be selectable at compile time. | beck | 2023-04-26 | 12 | -15/+106 |
| | | | | | | | | The old policy codes remains the default, with the new policy code selectable by defining LIBRESSL_HAS_POLICY_DAG. ok tb@ jsing@ | ||||
| * | Add a shim to mimic the BoringSSL sk_delete_if function. | beck | 2023-04-26 | 1 | -0/+23 |
| | | | | | | | | We add this locally as a function to avoid delving into the unholy macro madness of STACK_OF(3). ok tb@ jsing@ | ||||
| * | Adapt the sk_find calls from BoringSSL's api to ours. | beck | 2023-04-26 | 1 | -6/+5 |
| | | | | | ok tb@ jsing@ | ||||
| * | Add the STACK_OF declarations we require. | beck | 2023-04-26 | 1 | -2/+46 |
| | | | | | ok tb@ jsing@ | ||||
| * | Change OPENSSL_malloc|free|memset and friends to the normal versions. | beck | 2023-04-26 | 1 | -6/+6 |
| | | | | | ok tb@ jsing@ | ||||
| * | Fix error code goop | beck | 2023-04-26 | 1 | -5/+8 |
| | | | | | ok tb@ jsing@ | ||||
| * | Use the correct headers to compile with libressl | beck | 2023-04-26 | 1 | -5/+4 |
| | | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |