summaryrefslogtreecommitdiff
path: root/src (follow)
Commit message (Collapse)AuthorAgeFilesLines
* some cleanup;jmc2016-11-061-31/+28
|
* sort SEE ALSO;jmc2016-11-061-2/+2
|
* Remove unused SSLv3 from ssl3_cbc_record_digest_supported().jsing2016-11-063-77/+33
| | | | | | From Markus Uhlin <markus.uhlin at bredband dot net> ok beck@ bcooK@
* don't dereference a if NULLbcook2016-11-061-2/+2
|
* document EVP_PKEY_get_default_digest_nid(3) in one page, not in twoschwarze2016-11-062-8/+4
|
* some minor cleanup;jmc2016-11-065-43/+42
|
* Set the callback on the correct ssl_ctx for the SNI case, instead ofbeck2016-11-061-2/+2
| | | | | the master only. ok jsing@
* spacing between macro args and punctuation;jmc2016-11-062-4/+4
|
* document ENGINE_add_conf_module(3) in one page, not in twoschwarze2016-11-061-3/+2
|
* document BIO_set_fd() and BIO_get_fd() in one manual page, not in two;schwarze2016-11-062-60/+32
| | | | general direction discussed yesterday with bcook@
* delete prototypes available in other pages and add a missing .Xr linkschwarze2016-11-061-102/+2
|
* delete prototypes available in other pages and add two missing .Xr linksschwarze2016-11-064-756/+216
|
* first pass; ok schwarzejmc2016-11-06185-249/+620
|
* delete prototypes available in other pages and add three missing .Xr linksschwarze2016-11-061-179/+7
|
* delete prototypes available in other pages and add two missing .Xr linksschwarze2016-11-061-158/+3
|
* Split ssl3_get_client_key_exchange() into separate per algorithm functions.jsing2016-11-061-320/+388
| | | | ok beck@
* Remove pointless check - without fixed ECDH, there is only one way to reachjsing2016-11-061-8/+1
| | | | | | this code path. ok beck@ bcook@
* tweak previous;jmc2016-11-061-3/+3
|
* simplify error handling in c2i_ASN1_OBJECTbcook2016-11-061-10/+12
| | | | ok beck@, miod@
* Split out the DHE and ECDHE code paths fromjsing2016-11-061-203/+221
| | | | | | ssl3_send_server_key_exchange(). ok beck@ bcook@
* rename tlslegacy to tlsall, and better describe what it does.beck2016-11-062-8/+8
| | | | ok jsing@
* Adjust cipher suite strengths - move MD5 to LOW, RC4 to LOW and 3DES tojsing2016-11-061-13/+13
| | | | | | MEDIUM. ok beck@ bcook@
* Update regress for IDEA cipher suite removal.jsing2016-11-061-83/+83
|
* Remove the single IDEA cipher suite. There is no good reason to supportjsing2016-11-063-29/+3
| | | | | | this. ok beck@ bcook@
* unifdef -m -UOPENSSL_NO_CHACHA -UOPENSSL_NO_POLY1305jsing2016-11-062-6/+2
| | | | ok beck@
* Add regress test script for openssl command.inoguchi2016-11-063-2/+966
| | | | ok beck@
* Avoid compiling in an unused function.jsing2016-11-061-0/+2
| | | | Spotted by guenther@
* adjust guards to elide unused Bi arraybcook2016-11-061-2/+0
| | | | ok jsing@
* Rework X509_verify_cert to support alt chains on certificate verification,beck2016-11-061-117/+265
| | | | | via boringssl. ok jsing@ miod@
* The upcoming x509 alt chains diff tightens the trust requirementsbeck2016-11-061-1/+17
| | | | | | | for certificates. This (from OpenSSL) ensures that the current "default" behaviour remains the same. We should revisit this later ok jsing@
* Commit a reminder that the default is not the default. This needs tobeck2016-11-061-1/+2
| | | | | be revisited. ok jsing@
* remove unused variablebcook2016-11-061-6/+3
|
* use the correct function for freebcook2016-11-061-2/+2
| | | | ok beck@
* add an .Xr that was missingschwarze2016-11-061-1/+2
|
* document BN_set_negative() and BN_is_negative();schwarze2016-11-056-516/+69
| | | | feedback and OK bcook@, OK jsing@
* Part one of the alt chains changes, bring in newer modifications tobeck2016-11-053-73/+411
| | | | | VERIFY_PARAMS - based on boringssl. ok jsing@ miod@
* Add objects for X25519, X448, Ed25519 and Ed448.jsing2016-11-052-0/+15
| | | | ok miod@
* One of the error paths would attempt to access not-yet-initialized locals.miod2016-11-051-2/+2
| | | | | | Simply return since there is nothing more to do. Spotted by coverity. ok jsing@ beck@
* Do a partial CBB conversion of ssl3_send_server_key_exchange(), which willjsing2016-11-051-52/+67
| | | | | | make it easier to do further clean up. ok beck@ miod@
* fix misplaced quote by tls_peer_ocsp_this_updatebcook2016-11-051-2/+2
|
* zap trailing whitespace, and add -o to usage() and help (-h);jmc2016-11-052-6/+9
|
* tweak previous;jmc2016-11-051-6/+6
|
* move manual pages from doc/ to man/ for consistency with otherschwarze2016-11-0585-169/+169
| | | | | libraries, in particular considering that there are unrelated files in doc/; requested by jsing@ and beck@
* Check BIO_new*() for failure.miod2016-11-052-4/+9
| | | | ok beck@ jsing@
* More X509_STORE_CTX_set_*() return value checks.miod2016-11-053-12/+16
| | | | ok beck@ jsing@
* bump minors for symbol addition for ocsp and x25519 symbol additionsbeck2016-11-053-3/+3
|
* Add support for server side OCSP stapling to libtls.beck2016-11-059-16/+98
| | | | Add support for server side OCSP stapling to netcat.
* Add regress for X25519, converted from BoringSSL.jsing2016-11-053-1/+150
|
* after getting rid of the pod files, clean up the Makefiles; ok bcook@schwarze2016-11-054-41/+23
|
* Add support for X25519.jsing2016-11-055-1/+5136
| | | | | | This brings in code from BoringSSL, which is mostly taken from SUPERCOP. ok beck@ bcook@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-25 00:23:21 +0000