| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Remember to zero the ciphers configuration. | jsing | 2015-02-09 | 1 | -2/+4 |
| | | |||||
| * | Rewrite the openssl(1) ciphers command. | jsing | 2015-02-09 | 1 | -158/+128 |
| | | | | | | | | | | This has the same functionality as the previous version, however uses the new option handling code, uses SSL_CIPHER_get_value() since we no longer care about SSlv2 cipher suites and uses standard I/O functions instead of BIO functions. ok beck@ doug@ | ||||
| * | Delete commented out code from openssl(1) apps. | doug | 2015-02-08 | 8 | -95/+11 |
| | | | | | | | | | | | From OpenSSL commits: 6f91b017bbb7140f816721141ac156d1b828a6b3 75d0ebef2aef7a2c77b27575b8da898e22f3ccd5 a2b18e657ea1a932d125154f4e13ab2258796d90 ok miod@, jsing@ | ||||
| * | Modify BSIZE to BUFLEN to avoid redefinition on HP-UX. | bcook | 2015-02-07 | 2 | -15/+15 |
| | | | | | | | | | | | HP-UX defines BSIZE in its <sys/param.h>, and there is a route where its getting included as a side-effect. I tracked back to at least from HP-UX 9.0 ca. 1993, up to the latest, so the user namespace is polluted. from kinichiro <kinichiro.inoguchi@gmail.com> ok miod@, jsing@ | ||||
| * | Convert openssl(1) sess_id to the new option handling. | doug | 2015-01-24 | 1 | -88/+113 |
| | | | | | input + ok jsing@ | ||||
| * | Convert openssl(1)'s rsa.c to the new option handling code. | doug | 2015-01-24 | 1 | -184/+251 |
| | | | | | input + ok jsing@ | ||||
| * | Document the openssl s_client -proxy feature. | bluhm | 2015-01-13 | 1 | -2/+14 |
| | | | | | OK jmc@ | ||||
| * | Add the possibility to use the openssl s_client tool with an http | bluhm | 2015-01-13 | 1 | -4/+24 |
| | | | | | | | proxy. Implement the -proxy feature in the same hackish way as -starttls. OK jsing@ | ||||
| * | Implement more thorough error checks: | lteo | 2015-01-13 | 1 | -12/+38 |
| | | | | | | | | | | | | | - Check the return value of every relevant function call. - If BIO_new() returns NULL instead of a valid BIO, do not attempt to blindly use the NULL value as a BIO throughout the rest of the code. - Ensure that bio_out is freed by BIO_free_all() at the end of all error paths. ok doug@ | ||||
| * | Convert spkac.c to the new option handling code. | doug | 2015-01-08 | 1 | -100/+137 |
| | | | | | input + ok jsing@ | ||||
| * | Convert pkcs8.c to the new option handling code. | doug | 2015-01-08 | 1 | -157/+220 |
| | | | | | | Minor KNF in a few places too. input + ok jsing@ | ||||
| * | Convert asn1pars.c to the new option handling. | doug | 2015-01-08 | 1 | -137/+206 |
| | | | | | | | | Also, removed a few useless if null checks. input from bcook@ input + ok jsing@ | ||||
| * | Convert openssl(1) passwd to new option handling. | jsing | 2015-01-05 | 1 | -119/+151 |
| | | | | | ok doug@ | ||||
| * | Zap a reference to .rnd, which is likely the last RANDFILE remnant on | lteo | 2015-01-05 | 1 | -3/+2 |
| | | | | | | | this man page. ok jsing@ | ||||
| * | Check the return values of several reallocarray() calls. While here, | lteo | 2015-01-03 | 3 | -3/+17 |
| | | | | | | | also check the return value of an adjacent malloc() call. ok jsing@ | ||||
| * | Remove ifdef statements for TIMES and USE_TOD; they don't do anything, | lteo | 2015-01-02 | 1 | -5/+1 |
| | | | | | | | | apart from introducing a bug where the -elapsed option is not listed in the usage output when it should be. feedback/ok bcook@ jsing@ | ||||
| * | Provide option types for binary AND, binary OR and silently discarding an | jsing | 2015-01-01 | 2 | -2/+13 |
| | | | | | option. | ||||
| * | Convert the openssl(1) enc command to the new option parsing and usage. | jsing | 2015-01-01 | 1 | -250/+382 |
| | | | | | With input from doug@ | ||||
| * | Fix subtle typo. | jsing | 2014-12-28 | 1 | -2/+2 |
| | | |||||
| * | Allow a default option to be specified by having a NULL name, but a valid | jsing | 2014-12-28 | 1 | -4/+4 |
| | | | | | option type. In this case process the option as per normal. | ||||
| * | Provide an option type that allows for a callback function to consume an | jsing | 2014-12-28 | 2 | -3/+12 |
| | | | | | | arbitrary number of arguments. This will allow for more complex option handling as required by some of the openssl(1) applications. | ||||
| * | Teach option parsing that a single hyphen denotes the end of named options | jsing | 2014-12-28 | 1 | -2/+14 |
| | | | | | (as currently only implemented by some of the openssl(1) applications). | ||||
| * | Provide a mechanism for option parsing to return the number of arguments | jsing | 2014-12-28 | 7 | -14/+22 |
| | | | | | | that it has consumed. This allows for the handling of multiple unnamed arguments, including lists of filenames. | ||||
| * | Only accept a single unnamed argument - the existing behaviour is to | jsing | 2014-12-28 | 1 | -1/+12 |
| | | | | | | | | silently accept multiple unnamed arguments, ignoring all except the last. This behaviour was already inconsistent between openssl(1) applications; apply the principal of least surprise. This will also simplify the addition of upcoming functionality. | ||||
| * | Slightly simplify options parsing logic. | jsing | 2014-12-28 | 1 | -65/+58 |
| | | |||||
| * | Provide two different function pointers for option function callbacks. This | jsing | 2014-12-28 | 4 | -13/+14 |
| | | | | | | allows for simpler code in the common cases and will allow for further extension to support the complex cases. | ||||
| * | Clean up CIPHERS and related sections: | lteo | 2014-12-24 | 1 | -154/+10 |
| | | | | | | | | | | | | | | | - Sync cipher strings with the ones that are actually implemented. - Remove CIPHERS SUITE NAMES (the actual cipher suites can be obtained via "openssl ciphers -v"), CIPHERS NOTES, and CIPHERS HISTORY sections. - Stop mentioning export cipher suites since they have already been removed. feedback from deraadt@ and jmc@ ok jmc@ | ||||
| * | CA.sh and CA.pl are gone | lteo | 2014-12-19 | 1 | -6/+1 |
| | | |||||
| * | Sync message digest algorithms with the ones actually implemented in | lteo | 2014-12-19 | 1 | -9/+29 |
| | | | | | | | "openssl dgst". feedback/ok jmc@ | ||||
| * | Remove redundant NULL checks before free - BN_free(), BIO_free_all() and | jsing | 2014-12-14 | 1 | -17/+12 |
| | | | | | EC_GROUP_free() all have implicit NULL checks. | ||||
| * | unifdef OPENSSL_NO_NEXTPROTONEG | jsing | 2014-12-14 | 4 | -41/+4 |
| | | |||||
| * | Add ALPN support to openssl(1). | jsing | 2014-12-10 | 2 | -11/+95 |
| | | | | | Based on OpenSSL. | ||||
| * | Remove unused variable. | jsing | 2014-12-07 | 1 | -5/+1 |
| | | | | | From Benjamin Baier <programmer at netzbasis.de> | ||||
| * | Handle GF(2^m) EC curves for C code generation. | jsing | 2014-12-07 | 1 | -5/+7 |
| | | | | | From Minux Ma. | ||||
| * | Move Windows OS-specific functions to make porting easier. | bcook | 2014-12-03 | 4 | -31/+165 |
| | | | | | | | | | | | | | Several functions that need to be redefined for a Windows port are right in the middle of other code that is relatively portable. This patch isolates the functions that need Windows-specific implementations so they can be built conditionally in the portable tree. Add calls to BIO_sock_init() as-needed to openssl(1) so that socket IO works on Windows. Sorry, these are no-op on other platforms. ok jsing@ deraadt@ | ||||
| * | convert select() to poll(). This is one of the most complicated | deraadt | 2014-12-02 | 2 | -40/+63 |
| | | | | | | | conversions in the tree, because the original code is very rotten and fragile. Please test and report any failures. Assistance from millert, bcook, and jsing. | ||||
| * | Conversion of braindead select() path to braindead poll() path. | deraadt | 2014-12-02 | 1 | -17/+17 |
| | | | | | Also looked at by bcook | ||||
| * | Mention the -no_tls1_[12] options | guenther | 2014-11-23 | 1 | -6/+10 |
| | | |||||
| * | Nuke more obvious #include duplications. | krw | 2014-11-18 | 1 | -2/+1 |
| | | | | | ok deraadt@ millert@ tedu@ | ||||
| * | More OPENSSL_NO_TLSEXT clean up. | jsing | 2014-11-07 | 3 | -11/+11 |
| | | |||||
| * | Document the -servername option for openssl(1) s_client. | jsing | 2014-11-07 | 1 | -2/+7 |
| | | | | | Based on a diff from Rusty (rustyl at outband dot net) and OpenSSL. | ||||
| * | TLS is pretty boring without TLS extensions... unifdef OPENSSL_NO_TLSEXT, | jsing | 2014-11-06 | 2 | -76/+2 |
| | | | | | which was already done for libssl some time back. | ||||
| * | ssl_sock_init() does nothing, so remove it... | jsing | 2014-11-06 | 1 | -17/+1 |
| | | |||||
| * | simple select() to poll() conversion; reviewed by millert and doug | deraadt | 2014-11-04 | 1 | -9/+9 |
| | | |||||
| * | Remove ephemeral RSA key handling. | jsing | 2014-10-31 | 1 | -43/+4 |
| | | |||||
| * | Use automatic DH ephemeral parameters instead of fixed 512 bit. | jsing | 2014-10-31 | 1 | -38/+23 |
| | | | | | Based on OpenSSL. | ||||
| * | my mistake. we already did increase buffers to 16k; increasing to 64k | tedu | 2014-10-30 | 1 | -2/+2 |
| | | | | | would be the next stage of embiggening. restore 16k. | ||||
| * | rework the poll loop to poll in both directions so it doesn't get stuck | tedu | 2014-10-30 | 1 | -47/+211 |
| | | | | | | if one pipe stalls out. from a diff by Arne Becker. (buffer size left alone for now) | ||||
| * | POLLIN is not guaranteed to be set in revents for EOF so check for | millert | 2014-10-26 | 1 | -3/+3 |
| | | | | | POLLHUP too. OK deraadt@ | ||||
| * | Remove unnecessary include: netinet/in_systm.h is not needed by these | lteo | 2014-10-24 | 1 | -2/+1 |
| | | | | | | | programs. ok deraadt@ millert@ | ||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |