openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	openssl(1) doesn't need 6 .h files: fold progs.h into apps.h	tb	2025-01-02	1	-2/+1
\| \| \| \|	discussed with jsing
*	sprinkle some void between () in function definitions	tb	2023-07-23	1	-2/+2
\|
*	openssl(1) asn1parse: avoid crash with ASN.1 BOOLEANS	tb	2023-03-10	1	-3/+4
\| \| \| \| \| \| \| \| \| \| \| \| \|	When pointing openssl asn1parse -strparse at DER octets 01 01, it crashes: $ printf '<\x01\x01>' \| openssl asn1parse -inform der -strparse 1 Refuse to parse BOOLEAN types instead, which avoids a crash in hensonian /* hmm... this is a little evil, but it works */ code. Found while poking at CMS timestamps to understand one of job's diffs. with/ok jsing
*	Basic cleanup in asn1pars.c	tb	2023-03-07	1	-26/+16
\| \| \| \|	Drop extra parentheses, unwrap some lines, compare pointers against NULL.
*	Rename struct ${app}_config to plain cfg	tb	2023-03-06	1	-47/+47
\| \| \| \| \| \| \| \| \|	All the structs are static and we need to reach into them many times. Having a shorter name is more concise and results in less visual clutter. It also avoids many overlong lines and we will be able to get rid of some unfortunate line wrapping down the road. Discussed with jsing
*	Remove the legacy interactive mode from openssl(1).	joshua	2022-11-11	1	-6/+4
\| \| \| \| \| \| \| \|	This removes the legacy interactive mode from openssl(1) since it is rarely used, complicates the code, and has also been removed from OpenSSL in version 3.x.x. ok tb@ jsing@
*	zap some stray whitespace	tb	2022-01-12	1	-2/+2
\|
*	Mark the initialized struct options arrays as both static and const.	guenther	2019-07-14	1	-2/+2
\| \| \| \| \| \|	This moves them from .data to .data.rel.ro ok deraadt@ inoguchi@
*	Indent labels with a single space so that diff prototypes are more useful.	jsing	2018-02-07	1	-4/+4
\|
*	Remove guards around *_free() calls since these functions handle NULL.	jsing	2018-02-07	1	-3/+2
\|
*	rearrange pledge promises into the canonical order; easier to eyeball	deraadt	2017-01-20	1	-2/+2
\|
*	Exit if a pledge call fails in non-interactive mode.	doug	2015-10-17	1	-2/+4
\| \| \| \|	ok semarie@
*	Initial support for pledges in openssl(1) commands.	doug	2015-10-10	1	-1/+6
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	openssl(1) has two mechanisms for operating: either a single execution of one command (looking at argv[0] or argv[1]) or as an interactive session than may execute any number of commands. We already have a top level pledge that should cover all commands and that's what interactive mode must continue using. However, we can tighten up the pledges when only executing one command. This is an initial stab at support and may contain regressions. Most commands only need "stdio rpath wpath cpath". The pledges could be further restricted by evaluating the situation after parsing options. deraadt@ and beck@ are roughly fine with this approach.
*	bring prototypes into scope, requires movement of a large global object	deraadt	2015-08-19	1	-1/+2
\| \| \| \| \|	out of .h file ok jsing
*	Convert asn1pars.c to the new option handling.	doug	2015-01-08	1	-137/+206
\| \| \| \| \| \| \|	Also, removed a few useless if null checks. input from bcook@ input + ok jsing@
*	openssl_setup() calls SSL_load_error_strings(), which happens to call	jsing	2014-08-28	1	-2/+1
\| \| \| \| \|	ERR_load_crypto_strings() - as such, we do not need to call the same function from most of the applications.
*	Move openssl(1) from /usr/sbin/openssl to /usr/bin/openssl, since it is not	jsing	2014-08-26	1	-0/+406
	a system/superuser binary. At the same time, move the source code from its current lib/libssl/src/apps location to a more appropriate home under usr.bin/openssl. ok deraadt@ miod@