| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Update for OPENSSL_cpu_caps() now being machine independent. | jsing | 2024-08-31 | 1 | -6/+2 |
| | | |||||
| * | Fix golden numbers after beck broke it months ago | tb | 2024-07-20 | 2 | -23/+20 |
| | | | | | (why is it always me who gets to clean up this shit?) | ||||
| * | Instead of unhooking libssl/client regress tests, flag them as expected | anton | 2024-04-22 | 1 | -1/+4 |
| | | | | | | | to fail. ok tb@ | ||||
| * | Remove GOST and STREEBOG support from libssl. | beck | 2024-02-03 | 1 | -116/+110 |
| | | | | | | | | | | | | | | | | | | | This version of GOST is old and not anywhere close to compliant with modern GOST standards. It is also very intrusive in libssl and makes a mess everywhere. Efforts to entice a suitably minded anyone to care about it have been unsuccessful. At this point it is probably best to remove this, and if someone ever showed up who truly needed a working version, it should be a clean implementation from scratch, and have it use something closer to the typical API in libcrypto so it would integrate less painfully here. This removes it from libssl in preparation for it's removal from libcrypto with a future major bump ok tb@ | ||||
| * | Fix last bit of the clienttest, needs ssl_pkt.c r1.66 | tb | 2023-07-11 | 1 | -2/+2 |
| | | |||||
| * | Fix most of the clienttest. With this only test cases 9 and 13 fail. | tb | 2023-07-11 | 1 | -23/+39 |
| | | |||||
| * | Fix the client test and the tlsext test to work with randomized | tb | 2023-04-23 | 2 | -3/+10 |
| | | | | | | TLS extensions (this involves unrandomizing the extension order for the tests that rely on golden numbers. | ||||
| * | zap trailing spaces | tb | 2022-07-19 | 1 | -2/+2 |
| | | |||||
| * | Regenerate golden numbers due to RC4-MD5 now being disabled by default. | tb | 2022-07-19 | 1 | -61/+58 |
| | | |||||
| * | More %i vs %d cleanup | tb | 2022-06-10 | 1 | -3/+3 |
| | | |||||
| * | Use BIO_up_ref() instead of adjusting refcounts manually | tb | 2021-11-20 | 1 | -9/+3 |
| | | |||||
| * | Revert accidental commit | tb | 2021-08-30 | 2 | -4/+4 |
| | | |||||
| * | link verify regress tests to build | tb | 2021-08-30 | 2 | -4/+4 |
| | | |||||
| * | Add test coverage for TLSv1.3 client hellos. | jsing | 2021-06-27 | 1 | -13/+166 |
| | | | | | | | This is a little bit clunky due to the number of things that vary (largely thanks to middlebox compatibility mode, along with the versions and key share extensions), however it works and can be improved at a later date. | ||||
| * | Add test coverage for DTLSv1.2 client hellos. | jsing | 2021-06-27 | 1 | -7/+102 |
| | | |||||
| * | Teach hexdump() how to identify differing bytes. | jsing | 2021-06-27 | 1 | -9/+13 |
| | | | | | | This allows differences between the received data and the test data to be more readily identified. | ||||
| * | More appropriately set cipher_list_len when AES acceleration is available. | jsing | 2021-06-27 | 1 | -5/+6 |
| | | |||||
| * | Tweak some data types and sprinkle some const. | jsing | 2021-06-27 | 1 | -15/+15 |
| | | |||||
| * | Update DTLS client hello due to ECC changes. | jsing | 2021-02-08 | 1 | -5/+8 |
| | | |||||
| * | Avoid NULL deref on BIO_new{_mem_buf,}() failure. | tb | 2021-01-22 | 1 | -3/+5 |
| | | |||||
| * | $OpenBSD$ | tb | 2020-11-19 | 1 | -0/+1 |
| | | |||||
| * | I accidentally zeored out a few bytes of the TLSv1.0 session ID. | tb | 2020-08-11 | 1 | -1/+1 |
| | | | | | Restore them to their previous values. | ||||
| * | Update golden values to match P-521 being enabled by default in the client. | jsing | 2020-08-09 | 1 | -20/+21 |
| | | | | | Diff from tb@ | ||||
| * | Minor code improvements. | jsing | 2020-04-06 | 1 | -3/+3 |
| | | |||||
| * | Add tests that cover TLSv1.2 and disable those that trigger TLSv1.3. | jsing | 2020-04-06 | 1 | -3/+32 |
| | | | | | This allows the test to pass again. | ||||
| * | Zero the client random field in the TLSv1.2 golden value. | jsing | 2020-04-06 | 1 | -5/+5 |
| | | |||||
| * | Improve comparision with test data. | jsing | 2020-04-06 | 1 | -7/+9 |
| | | | | | | | First check the client random against the zeroed value, then zero the client random in the client hello, before comparing with the golden value. This makes failures more obvious and the test code more readable. | ||||
| * | Dump the test data when the lengths differ in order to aid debugging. | jsing | 2020-04-06 | 1 | -0/+3 |
| | | |||||
| * | Use errx() if we fail to build the client hello. | jsing | 2020-04-06 | 1 | -1/+1 |
| | | |||||
| * | Nuke trailing whitespace that is annoying before changing things in here | beck | 2019-11-26 | 1 | -6/+6 |
| | | |||||
| * | Remove SHA224 based sigalgs from use in TLS 1.2 as SHA224 is deprecated. | beck | 2019-01-24 | 1 | -13/+11 |
| | | | | | | Remove GOST based sigalgs from TLS 1.2 since they don't work with TLS 1.2. ok jsing@ | ||||
| * | Modify sigalgs extension processing to accomodate TLS 1.3. | beck | 2019-01-23 | 1 | -15/+16 |
| | | | | | | | | | | | - Make a separate sigalgs list for TLS 1.3 including only modern algorithm choices which we use when the handshake will not negotiate TLS 1.2. - Modify the legacy sigalgs for TLS 1.2 to include the RSA PSS algorithms as mandated by RFC8446 when the handshake will permit negotiation of TLS 1.2 from a 1.3 handshake. ok jsing@ tb@ | ||||
| * | revert previous, accidentally contained another diff in addition | beck | 2019-01-23 | 1 | -16/+15 |
| | | | | | to the one I intended to commit | ||||
| * | Modify sigalgs extension processing for TLS 1.3. | beck | 2019-01-23 | 1 | -15/+16 |
| | | | | | | | | | | - Make a separate sigalgs list for TLS 1.3 including only modern algorithm choices which we use when the handshake will not negotiate TLS 1.2 - Modify the legacy sigalgs for TLS 1.2 to include the RSA PSS algorithms as mandated by RFC8446 when the handshake will permit negotiation of TLS 1.2 ok jsing@ tb@ | ||||
| * | Update regress for DES cipher suite removal. | jsing | 2018-06-02 | 1 | -46/+40 |
| | | |||||
| * | Zero the client random so that it is easier to spot unintended differences. | jsing | 2018-06-02 | 1 | -0/+1 |
| | | |||||
| * | Update due to removal of original chacha20-poly1305 cipher suites. | jsing | 2017-08-28 | 1 | -42/+39 |
| | | |||||
| * | Update the TLSv1.2 Client Hello messages, due to the removal of DSA | jsing | 2017-08-12 | 1 | -20/+18 |
| | | | | | sigalgs. | ||||
| * | Revise cipher suites in regress to match DSS cipher suite removal. | jsing | 2017-05-07 | 1 | -96/+82 |
| | | |||||
| * | Update client tests for changes in default EC formats/curves. | jsing | 2017-01-24 | 1 | -52/+31 |
| | | |||||
| * | Update regress for ECDHE with X25519. | jsing | 2016-12-21 | 1 | -41/+41 |
| | | |||||
| * | Update regress for IDEA cipher suite removal. | jsing | 2016-11-06 | 1 | -83/+83 |
| | | |||||
| * | Update client hello messages to follow the removal of fixed ECDH. | jsing | 2016-10-19 | 1 | -89/+65 |
| | | |||||
| * | Update regress test to reflect changes in the cipher list. | jsing | 2016-04-28 | 1 | -61/+62 |
| | | |||||
| * | Revise regression test so that it works correctly with AES taking priority | jsing | 2015-09-13 | 1 | -34/+191 |
| | | | | | if hardware acceleration is available. | ||||
| * | Add an initial TLS client regress, which currently covers ClientHello | jsing | 2015-09-01 | 2 | -0/+367 |
| message generation. | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |