summaryrefslogtreecommitdiff
path: root/src (unfollow)
Commit message (Expand)AuthorFilesLines
2021-08-30Replace DTLS r_epoch with the read epoch from the TLSv1.2 record layer.jsing5-27/+26
2021-08-30Move to an AEAD nonce allocated in the TLSv1.2 record layer.jsing1-45/+36
2021-08-30sync with OpenSSL 1.1.1, which is still under a free license;schwarze1-15/+107
2021-08-30Remove tests that are now covered by regress/lib/libssl/verifytb1-65/+2
2021-08-30hook verify regress test to buildtb1-1/+2
2021-08-30Revert accidental committb7-35/+18
2021-08-30link verify regress tests to buildtb7-18/+35
2021-08-30Reimplement part of the openssl/x509 regress tests in Ctb3-0/+521
2021-08-30Ignore warning alert returns from servername callback in TLSv1.3tb1-3/+7
2021-08-30Clean up end of do_body in openssl(1) cainoguchi1-6/+8
2021-08-30Remove NULL check before free in openssl(1) cainoguchi1-41/+25
2021-08-30Admit that we return error 20 in the failure case here. Changingbeck1-5/+5
2021-08-30Revert previous change that changed our default return for unable tobeck1-11/+5
2021-08-30Fix Jan's regress in openssl/x509 to do what it says it does,beck2-13/+15
2021-08-29Do not call X509_alias_get0(3) with NULL as the second argument.schwarze1-5/+7
2021-08-29Don't call the verify callback twice on success.beck1-2/+1
2021-08-29Pass the -quiet option to openssl s_server to make it ignore EOF.tb1-6/+6
2021-08-29Add back the echo Q thing.tb1-5/+5
2021-08-29Start naccept .desc with a capitaltb1-2/+2
2021-08-29Use s_server -naccept 1 and remove echo "Q" | openssl s_client hack.tb1-12/+11
2021-08-29Implement -naccept in the s_server.tb4-11/+29
2021-08-28Get rid of historical code to extract the roots in the legacy case.beck3-78/+33
2021-08-28Clean up and simplify ssl3_dispatch_alert() and ssl3_send_alert().jsing1-30/+32
2021-08-28Only remove the directories if there's an obj/ or obj@tb1-2/+4
2021-08-28Add a pass using the modern vfy with by_dir roots, code by me, script tobeck3-15/+106
2021-08-28Zap blanks before tabs.tb1-4/+4
2021-08-28Add RCS markertb1-0/+1
2021-08-28Add case 2c to the go side. Don't tell jsing I touched go.beck1-0/+1
2021-08-28Remove the "dump_chain" flag and code. This was a workaround for a problem wherebeck2-16/+4
2021-08-28Check X509_get_notAfter return value in openssl(1) ca.cinoguchi1-3/+5
2021-08-28Use strndup instead of malloc, memcpy and NULL termination in openssl(1) ca.cinoguchi1-11/+4
2021-08-28Remove ASN1_TIME_new and use NULL for X509_gmtime_adj, free tmptm in err pathinoguchi1-15/+7
2021-08-28Unwrap lines in openssl(1) ca.cinoguchi1-5/+3
2021-08-28Avoid leak with X509_REVOKED variable in openssl(1) ca.cinoguchi1-1/+3
2021-08-28Checking the return value in openssl(1) ca.cinoguchi1-41/+127
2021-08-27Add regress test testing having the root cert in the intermediate bundlebeck5-1/+96
2021-08-27Remove unused #include <assert.h>.tb1-2/+1
2021-08-24Fix various read buffer overflow when printing ASN.1 strings (which aretb4-14/+20
2021-08-19Pull roots out of the trust store in the legacy xsc when building chainsbeck3-8/+26
2021-08-18Import regress tests for SM2. Not yet linked to the build.tb4-0/+640
2021-08-18Import initial code for the SM2 ciphertb7-0/+1870
2021-08-18Add a check_trust call to the legacy chain validation on chain add, rememberingbeck1-2/+10
2021-08-18Refactor the legacy chain validation from the chain adding code into itsbeck1-52/+70
2021-08-16typo in commenttb1-2/+2
2021-08-11add new (unsupported) eddsa in certificate verify teststb1-1/+3
2021-08-06link X509_STORE_get_by_subject(3) and X509_ocspid_print(3) to the build,schwarze1-1/+3
2021-08-06new manual page X509_ocspid_print(3)schwarze3-6/+66
2021-08-06add a roff(7) comment marking the API function X509_get_default_private_dir()schwarze1-2/+5
2021-08-04SSL_CTX_remove_session() checks for a NULL session, avoid doing it twice.jsing1-2/+2
2021-08-03Document X509_get_default_cert_dir_env(3)schwarze1-8/+35
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-27 08:53:30 +0000