| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Sync function prototypes and declarations to satisfy clang 15. | anton | 2023-02-02 | 1 | -3/+3 |
| | | | | | ok jsing@ | ||||
| * | Make internal header file names consistent | tb | 2022-11-26 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook | ||||
| * | Use the security level knob in the test script. | tb | 2022-07-07 | 1 | -2/+14 |
| | | | | | from beck | ||||
| * | Make the ssltest security level aware. | tb | 2022-07-07 | 1 | -1/+9 |
| | | | | | From beck | ||||
| * | Switch ssltest to using the newly generated certs that use SHA-256 instead | tb | 2022-07-07 | 2 | -8/+6 |
| | | | | | | | of SHA-1. This helps the switch to security-level aware ssltest. From jsing | ||||
| * | Prepare ssltest for opaque DH | tb | 2021-11-21 | 1 | -18/+39 |
| | | |||||
| * | Fix ssltest to work with opaque EVP_PKEY. | tb | 2021-11-18 | 1 | -22/+33 |
| | | |||||
| * | Make this test compile again after the damage done in libcrypto | tb | 2021-10-31 | 1 | -19/+20 |
| | | |||||
| * | Pull in ssl_locl.h so that we can keep reaching into libssl internals. | jsing | 2021-10-15 | 2 | -1/+4 |
| | | |||||
| * | ssltest.c does not need param.h | tb | 2021-10-13 | 1 | -1/+0 |
| | | | | | From Jonas Termansen | ||||
| * | Garbage collect do_test_cipherlist(). | jsing | 2021-07-03 | 1 | -45/+0 |
| | | | | | | This code no longer compiles and the equivalent test coverage has been added to regress/lib/libssl/ciphers (and is actually run). | ||||
| * | Disable some code that reaches into libssl internals. | jsing | 2021-06-30 | 1 | -0/+7 |
| | | | | | This should be moved to a dedicated regress test. | ||||
| * | Force TLSv1.2 when testing SSLv3/TLSv1.2 cipher suites. | jsing | 2020-07-14 | 1 | -1/+1 |
| | | | | | Otherwise we end up switching to TLSv1.3 and using a TLSv1.3 cipher suite. | ||||
| * | Add a -tls1_2 option so we can force TLSv1.2 for testing. | jsing | 2020-07-14 | 1 | -5/+9 |
| | | |||||
| * | Remove temporary RSA keys/callbacks code. | jsing | 2020-07-07 | 1 | -43/+0 |
| | | | | | This was removed from libssl a very long time ago... | ||||
| * | Test TLSv1.3 ciphersuites now that TLS_method() supports TLSv1.3. | jsing | 2020-07-07 | 1 | -0/+12 |
| | | |||||
| * | Revise test to handle the fact that TLSv1.3 cipher suites are now being | jsing | 2020-04-09 | 1 | -2/+4 |
| | | | | | included in the output from `openssl ciphers`. | ||||
| * | Test both SSLv3 (aka pre-TLSv1.2) and TLSv1.2 cipher suites with TLS. | jsing | 2020-04-09 | 1 | -1/+1 |
| | | |||||
| * | exitting -> exiting | tb | 2019-04-07 | 1 | -1/+1 |
| | | | | | From Michael Scovetta, PR #108 | ||||
| * | Add automatic threading initialization for libcrypto. | bcook | 2018-11-11 | 1 | -56/+0 |
| | | | | | | | | | | | | | | | This implements automatic thread support initialization in libcrypto. This does not remove any functions from the ABI, but does turn them into no-ops. Stub implementations of pthread_mutex_(init|lock|unlock) are provided for ramdisks. This does not implement the new OpenSSL 1.1 thread API internally, keeping the original CRYTPO_lock / CRYPTO_add_lock functions for library locking. For -portable, crypto_lock.c can be reimplemented with OS-specific primitives as needed. ok beck@, tb@, looks sane guenther@ | ||||
| * | Remove NPN test coverage. | jsing | 2017-08-12 | 2 | -129/+1 |
| | | |||||
| * | Treat "ERROR in STARTUP" as an actual error, rather than failing without | jsing | 2017-03-04 | 1 | -2/+2 |
| | | | | | | | | exiting non-zero (which has been masking a DTLS related issue). Also make the message consistent with other errors. Spotted by inogochi@ | ||||
| * | Remove commented out code and fix indentation of surrounding statements. | jsing | 2017-03-04 | 1 | -12/+5 |
| | | |||||
| * | Remove handling for SSLv2. | jsing | 2017-03-04 | 1 | -14/+3 |
| | | |||||
| * | Use prime256v1 for tests unless otherwise specified. | jsing | 2017-01-24 | 1 | -4/+0 |
| | | |||||
| * | check if openssl(1) actually works before proceeding | bcook | 2015-09-27 | 1 | -0/+2 |
| | | | | | | It was possible for this test to pass even if the openssl command itself was missing. | ||||
| * | remove e_os2.h includes | bcook | 2015-09-13 | 1 | -1/+0 |
| | | | | | ok jsing@ | ||||
| * | Remove SSLv3 support from LibreSSL regression tests. | doug | 2015-08-27 | 2 | -52/+5 |
| | | |||||
| * | Reject DH keys sent by a server if they are considered too small; inspired | miod | 2015-03-08 | 1 | -38/+4 |
| | | | | | | by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@ | ||||
| * | unifdef OPENSSL_NO_NEXTPROTONEG | jsing | 2014-12-14 | 1 | -12/+0 |
| | | |||||
| * | Increase cipher suite test coverage by including all cipher suites that | jsing | 2014-12-12 | 1 | -5/+5 |
| | | | | | use RSA authentication, rather than only those that use RSA key exchange. | ||||
| * | Add regress for ALPN. | jsing | 2014-12-10 | 2 | -1/+180 |
| | | | | | Based on OpenSSL. | ||||
| * | The -ssl2 flag does nothing - remove the flag and any tests that were | jsing | 2014-12-06 | 2 | -34/+4 |
| | | | | | using it. | ||||
| * | Allow overriding the path to the testssl and openssl binaries. | bcook | 2014-12-03 | 1 | -9/+9 |
| | | | | | | | | This is needed by the portable tree to point directly to the newly-built binaries when running unit tests. discussed with jsing@ and others | ||||
| * | Remove _XOPEN_SOURCE_EXTENDED since we're not too concerned about | jsing | 2014-10-13 | 1 | -9/+2 |
| | | | | | gethostname being declared properly on Compaq platforms that use DEC C... | ||||
| * | BIO_free() and SSL_CTX_free() have explicit NULL checks, so there is no | jsing | 2014-10-13 | 1 | -29/+16 |
| | | | | | need to have additional checks here. | ||||
| * | Add NPN regress tests from OpenSSL. However, unlike OpenSSL, actually exit | jsing | 2014-10-13 | 2 | -3/+146 |
| | | | | | with a failure if the NPN verification fails. | ||||
| * | More KNF. | jsing | 2014-07-12 | 1 | -95/+108 |
| | | |||||
| * | Remove #ifndefs for OPENSSL_NO_DH, OPENSSL_NO_ECDH and | jsing | 2014-07-12 | 1 | -41/+0 |
| | | | | | | OPENSSL_NO_X509_VERIFY. We're not going to build with these and the same removal has already been done for libssl. | ||||
| * | Remove PSK from the ssl regress. | jsing | 2014-07-11 | 2 | -134/+1 |
| | | |||||
| * | Uncompress ssltest. | jsing | 2014-07-10 | 1 | -50/+0 |
| | | |||||
| * | Include -DLIBRESSL_INTERNAL in regress makefiles. | jsing | 2014-07-08 | 1 | -2/+2 |
| | | | | | ok miod@ | ||||
| * | Add DTLS support to ssltest and wire up some regress tests. | jsing | 2014-06-21 | 2 | -8/+41 |
| | | | | | ok miod@ | ||||
| * | Remove support for the `opaque PRF input' extension, which draft has expired | miod | 2014-06-13 | 1 | -32/+0 |
| | | | | | | | | | 7 years ago and never made it into an RFC. That code wasn't compiled in anyway unless one would define the actual on-the-wire extension id bytes; crank libssl major. With help and enlightenment from Brendan MacDonell. | ||||
| * | Build with WARNINGS=Yes and Werror. | miod | 2014-06-01 | 2 | -12/+4 |
| | | |||||
| * | Move ssltest.c to a regress test. | jsing | 2014-05-24 | 3 | -0/+2386 |
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |