| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | check if openssl(1) actually works before proceeding | bcook | 2015-09-27 | 1 | -0/+2 |
| | | | | | | It was possible for this test to pass even if the openssl command itself was missing. | ||||
| * | bump to 2.3.1 | bcook | 2015-09-27 | 2 | -6/+6 |
| | | |||||
| * | Use ASN1_item_dup() instead of ASN1_dup(). | jsing | 2015-09-26 | 4 | -14/+10 |
| | | | | | ok bcook@ | ||||
| * | lint is dead: delete useless LINTLIBRARY comments | guenther | 2015-09-26 | 2 | -4/+2 |
| | | | | | ok millert@ | ||||
| * | We don't need no stinking "EXAMPLE OF THE DSA" or README (the credits are | jsing | 2015-09-26 | 4 | -252/+0 |
| | | | | | | | already in the code). ok beck@ miod@ | ||||
| * | Add DER encoding/decoding coverage for ASN.1 GENERALIZEDTIME and UTCTIME. | jsing | 2015-09-25 | 1 | -39/+158 |
| | | |||||
| * | Add initial regress tests for ASN.1 times. | jsing | 2015-09-25 | 3 | -1/+372 |
| | | |||||
| * | avoid trailing .Ns, reduce .Xo and .Sm, drop redundant .Bk | schwarze | 2015-09-25 | 1 | -12/+4 |
| | | |||||
| * | typos in documentation; better wording, suggested by jmc@libressl-v2.3.0 | sobrado | 2015-09-22 | 51 | -88/+88 |
| | | | | | ok jmc@ | ||||
| * | add a missing NULL check | bcook | 2015-09-21 | 1 | -1/+5 |
| | | | | | noted by Bill Parker (dogbert2) on github | ||||
| * | add a couple of missing NULL checks | bcook | 2015-09-21 | 1 | -3/+3 |
| | | | | | noted by Bill Parker (dogbert2) on github | ||||
| * | remove vestigial bits of sha-0 and md2 from openssl(1) | bcook | 2015-09-21 | 5 | -23/+17 |
| | | | | | | | | | Noted by kinichiro on github. We probably need a better way to indicate the list of message digests that are allowed, as the current ones are nowhere near exhaustive (sigh - guenther@) OK guenther@ jmc@ | ||||
| * | Pack the algorithm numbers, to avoid printing a useless (null) 0 0 0 0 | miod | 2015-09-20 | 1 | -34/+34 |
| | | | | | line in the summary. | ||||
| * | Don't wrap initialized variables: binutils appears to be mishandling them | guenther | 2015-09-19 | 1 | -1/+3 |
| | | | | | | | on arm and m88k problems with optind observed by jsg@ | ||||
| * | avoid void * pointer arithmetic | bcook | 2015-09-18 | 2 | -4/+4 |
| | | | | | ok miod@ | ||||
| * | Revert bn_print.c:r1.25 ("handle negative-zero in BN_bn2dec() too") for | sthen | 2015-09-18 | 2 | -62/+44 |
| | | | | | now, it has a NULL deref. Segfault reported by Mikolaj Kucharski, ok bcook | ||||
| * | Remove more EVP_sha() SHA-0 references. | bcook | 2015-09-17 | 3 | -6/+5 |
| | | |||||
| * | Re-add missing comma from SHA-0 removal which breaks mlinks generation. | sthen | 2015-09-17 | 2 | -2/+2 |
| | | | | | Worked out by bcook@ | ||||
| * | include stdint.h for uint64_t | bcook | 2015-09-17 | 2 | -2/+4 |
| | | | | | noted by Bernard Spil | ||||
| * | Zap RANDFILE. | lteo | 2015-09-16 | 2 | -5/+3 |
| | | |||||
| * | tweak previous; | jmc | 2015-09-14 | 1 | -2/+2 |
| | | |||||
| * | Provide tls_config_insecure_noverifytime() in order to be able to disable | jsing | 2015-09-14 | 6 | -6/+29 |
| | | | | | | | certificate validity checking. ok beck@ | ||||
| * | Add support for disabling certificate and CRL validity checking. | jsing | 2015-09-14 | 4 | -22/+30 |
| | | | | | | | Loosely based on changes in OpenSSL. ok beck@ | ||||
| * | delete bogus trailing .Ns from SYNOPSIS .Ft macros | schwarze | 2015-09-14 | 2 | -12/+12 |
| | | |||||
| * | fix formatting by adding the required quotes to .Fa in the SYNOPSIS | schwarze | 2015-09-14 | 4 | -22/+22 |
| | | |||||
| * | Remove useless quoting from .Fo and .Fn function names, to prevent | schwarze | 2015-09-14 | 3 | -10/+10 |
| | | | | | | | development of a cargo cult in case people look at existing files for examples. This achieves a consistent .Fo and .Fn quoting style across the whole tree. | ||||
| * | some conn_version and conn_cipher bits; | jmc | 2015-09-14 | 2 | -9/+10 |
| | | |||||
| * | Only two of the *rand48.c files need <math.h>, so just #include it in them | guenther | 2015-09-14 | 3 | -4/+5 |
| | | |||||
| * | use .Va for global variables, and .Vt where the type is included | schwarze | 2015-09-14 | 1 | -4/+3 |
| | | |||||
| * | Expose EOF without close-notify via tls_close(). | jsing | 2015-09-14 | 2 | -6/+14 |
| | | | | | | | | | | | | Make tls_read(3)/tls_write(3) follow read(2)/write(2) like semantics and return 0 on EOF with and without close-notify. However, if we saw an EOF from the underlying file descriptors without getting a close-notify, save this and make it visible when tls_close(3) is called. This keeps the semantics we want, but makes it possible to detect truncation at higher layers, if necessary. ok beck@ guenther@ | ||||
| * | Return an error if tls_handshake() or tls_close() is called on a context | jsing | 2015-09-14 | 1 | -2/+13 |
| | | | | | | | for which they are not valid operations. ok beck@ | ||||
| * | add missing function return types | schwarze | 2015-09-14 | 1 | -2/+3 |
| | | |||||
| * | Wrap <ifaddrs.h>, <netinet/in.h>, and <netinet/if_ether.h> so internal | guenther | 2015-09-14 | 3 | -3/+7 |
| | | | | | calls go direct and all the symbols are weak | ||||
| * | Wrap <net/if.h> and <net/if_dl.h> so internal calls go direct and all the | guenther | 2015-09-14 | 2 | -2/+4 |
| | | | | | symbols are weak | ||||
| * | Remove cast of int* to int* | guenther | 2015-09-14 | 1 | -2/+2 |
| | | |||||
| * | Finish wrapping <netdb.h> so that calls go direct and the symbols are all weak | guenther | 2015-09-14 | 9 | -9/+24 |
| | | |||||
| * | Test the exported strsignal() API, not the (now hidden) internal API | guenther | 2015-09-14 | 1 | -8/+2 |
| | | | | | noted by daniel@ | ||||
| * | Temporarily revive MD4 for MS CHAP support. | doug | 2015-09-14 | 35 | -59/+1505 |
| | | |||||
| * | Crank major version due to removal of SHA-0 and MD4 from libcrypto. | doug | 2015-09-13 | 5 | -10/+10 |
| | | |||||
| * | Remove MD4 support from LibreSSL. | doug | 2015-09-13 | 35 | -1504/+58 |
| | | | | | | | | | MD4 should have been removed a long time ago. Also, RFC 6150 moved it to historic in 2011. Rides the major crank from removing SHA-0. Discussed with many including beck@, millert@, djm@, sthen@ ok jsing@, input + ok bcook@ | ||||
| * | Wrap <arpa/inet.h> and <arpa/nameser.h> so that calls go direct and the | guenther | 2015-09-13 | 5 | -5/+11 |
| | | | | | symbols without underbar prefix are all weak | ||||
| * | Another style(9) grenade. | jsing | 2015-09-13 | 1 | -550/+825 |
| | | |||||
| * | Remove SHA-0 support. | doug | 2015-09-13 | 25 | -825/+36 |
| | | | | | | | | SHA-0 was withdrawn shortly after publication 20 years ago and replaced with SHA-1. This will require a major crank. ok bcook@, jsing@ | ||||
| * | For now, permit overriding of the malloc family, to make emacs happy | guenther | 2015-09-13 | 1 | -6/+6 |
| | | |||||
| * | Revise regression test so that it works correctly with AES taking priority | jsing | 2015-09-13 | 1 | -34/+191 |
| | | | | | if hardware acceleration is available. | ||||
| * | nc(1) seems worth an Xr in SEE ALSO now; | jmc | 2015-09-13 | 1 | -1/+2 |
| | | |||||
| * | Since a major bump of libcrypto is coming, remove OPENSSL_ia32cap and | miod | 2015-09-13 | 4 | -34/+4 |
| | | | | | | OPENSSL_ia32cap_loc; nothing in ports uses them besides embedded copies of OpenSSL. This opens the `all hell gets loose' window. | ||||
| * | Handle negative-zero in BN_bn2dec() too, just like in BN_print(). | deraadt | 2015-09-13 | 2 | -44/+62 |
| | | | | | ok miod | ||||
| * | Reorder functions for readability/consistency. | jsing | 2015-09-13 | 2 | -470/+456 |
| | | |||||
| * | BN does support negative-zero -- BN_print() sets the standard here. | deraadt | 2015-09-13 | 2 | -6/+6 |
| | | | | | | | | BN_bn2hex() had a 1-byte overflow when creating "-0\0". Reported to me a while back by unknown person -- did not have enough experience to push this through then. advice from jsing, ok miod | ||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |