openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	Document that -x can take an ipv6 address enclosed in square brackets.	jca	2017-02-09	1	-2/+5
\|
*	When getaddrinfo fails, print the requested host and port.	jca	2017-02-09	1	-2/+3
\| \| \| \|	Should make debugging easier, especially when using -x literal_ipv6_address
*	Avoid a busy loop in netcat's tls_close(). Reuse the tls_handshake()	bluhm	2017-02-08	1	-18/+8
\| \| \| \| \|	wrapper that calls poll(2) and handles the -w timeout. OK beck@
*	Avoid double close(2) in netcat. After every call to readwrite()	bluhm	2017-02-08	1	-13/+5
\| \| \| \| \|	there is already a close(2), so do not do it in readwrite(). OK beck@
*	Due to non-blocking sockets, tls_handshake() could wait in a busy	bluhm	2017-02-08	1	-21/+42
\| \| \| \| \| \|	loop. Use an additional poll(2) during the handshake and also respect the -w timeout option there. From Shuo Chen; OK beck@
*	Support IPv6 proxy addresses	jca	2017-02-05	1	-10/+24
\| \| \| \|	ok beck@
*	oscp -> ocsp;	jmc	2017-01-26	1	-3/+3
\| \| \| \|	from holger mikolon, plus one more in nc;
*	Add a -groups option to openssl s_client, which allows supported EC curves	jsing	2017-01-24	1	-7/+17
\| \| \| \| \| \|	to be specified as a colon separated list. ok beck@
*	whitespace	deraadt	2017-01-21	2	-5/+5
\|
*	rearrange pledge promises into the canonical order; easier to eyeball	deraadt	2017-01-20	39	-77/+77
\|
*	fix pledge for openssl ocsp - we will need tty to ask for a cert pw	beck	2017-01-20	1	-2/+2
\|
*	fix openssl ocsp to not report sucess when the ocsp responder rejects us	beck	2017-01-19	1	-3/+3
\| \| \| \|	ok deraadt@ krw@
*	consistently spell ASN.1;	jmc	2017-01-03	1	-12/+12
\|
*	Display details of the server ephemeral key, based on OpenSSL.	jsing	2016-12-30	3	-3/+44
\| \| \| \|	ok doug@
*	Expand ASN1_ITEM_rptr macros here as well... used with NETSCAPE_X509 of all	jsing	2016-12-30	2	-4/+4
\| \| \| \|	things...
*	Stop using M_PKCS12_* compatibility macros here as well.	jsing	2016-12-30	1	-3/+3
\|
*	Check return value of tls_config_set_protocols(3) and tls_config_set_ciphers(3)	mestre	2016-11-30	1	-3/+6
\| \| \| \| \| \|	and bail out in case of failure Feedback and OK jsing@
*	tweak previous;	jmc	2016-11-06	1	-3/+3
\|
*	rename tlslegacy to tlsall, and better describe what it does.	beck	2016-11-06	2	-8/+8
\| \| \| \|	ok jsing@
*	zap trailing whitespace, and add -o to usage() and help (-h);	jmc	2016-11-05	2	-6/+9
\|
*	Add support for server side OCSP stapling to libtls.	beck	2016-11-05	2	-4/+19
\| \| \| \|	Add support for server side OCSP stapling to netcat.
*	new sentence, new line, and zap trailing whitespace;	jmc	2016-11-04	1	-3/+4
\|
*	Add ocsp_require_stapling config option for tls - allows a connection	beck	2016-11-04	2	-6/+12
\| \| \| \| \| \|	to indicate that it requires the peer to provide a stapled OCSP response with the handshake. Provide a "-T muststaple" for nc that uses it. ok jsing@, guenther@
*	make OCSP_URL only show up when an OCSP url is actually present in the cert	beck	2016-11-03	1	-2/+3
\|
*	Make OCSP Stapling: only appear if there is stapling info present.	beck	2016-11-03	1	-5/+3
\|
*	Add OCSP client side support to libtls.	beck	2016-11-02	1	-1/+37
\| \| \| \| \| \| \| \| \| \| \| \| \|	- Provide access to certificate OCSP URL - Provide ability to check a raw OCSP reply against an established TLS ctx - Check and validate OCSP stapling info in the TLS handshake if a stapled OCSP response is provided.` Add example code to show OCSP URL and stapled info into netcat. ok jsing@
*	typo	naddy	2016-10-06	1	-3/+3
\|
*	trim STANDARDS; ok jsing	jmc	2016-09-22	1	-13/+1
\|
*	some minor cleanup;	jmc	2016-09-22	1	-47/+17
\|
*	shorten x509;	jmc	2016-09-22	1	-755/+414
\|
*	shorten version;	jmc	2016-09-20	1	-17/+4
\|
*	shorten the verify error list;	jmc	2016-09-20	1	-42/+41
\|
*	put the spkac section in the right place;	jmc	2016-09-19	1	-60/+60
\|
*	shorten verify;	jmc	2016-09-19	1	-154/+96
\|
*	remove comment about CMS; ok jsing	deraadt	2016-09-17	1	-3/+2
\|
*	add some Xr for acme-client(1);	jmc	2016-09-15	1	-1/+2
\|
*	some spkac shortening; ok beck	jmc	2016-09-15	1	-68/+13
\|
*	shorten ts;	jmc	2016-09-15	1	-283/+63
\|
*	shorten speed;	jmc	2016-09-12	1	-48/+14
\| \| \| \|	help/ok guenther bcook
*	shorten smime;	jmc	2016-09-08	1	-344/+83
\|
*	remove a cms leftover	deraadt	2016-09-05	1	-2/+1
\|
*	shorten sess_id;	jmc	2016-09-04	1	-84/+44
\|
*	Nuke one more cms tendril	beck	2016-09-04	1	-4/+1
\| \| \| \|	ok jsing@
*	bye bye cms. send it to the attic	beck	2016-09-04	2	-1144/+2
\| \| \| \|	ok jsing@
*	Options that take a time argument....take an argument	guenther	2016-09-04	1	-2/+3
\| \| \| \|	diff from Kinichiro Inoguchi (kinichiro.inoguchi (at) gmail.com)
*	squash some possibly-used-uninitialized warnings	bcook	2016-09-03	1	-3/+3
\|
*	shorten s_time; help/ok bcook	jmc	2016-09-03	1	-91/+22
\|
*	shorten s_server;	jmc	2016-09-02	1	-134/+72
\|
*	shorten s_client;	jmc	2016-09-01	1	-142/+50
\|
*	We don't need any VMS access tricks.	deraadt	2016-08-31	1	-27/+4
\| \| \| \|	ok beck tedu