summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Collapse)Author
2024-05-23Make signature of SSL_COMP_add_compression_method(3) match realityTheo Buehler
2024-05-23x509_v3.c: indent labelsTheo Buehler
2024-05-23x509_v3.c: remove an unnecessary elseTheo Buehler
2024-05-23x509_v3.c: consistently call STACK_OF(X509_EXTENSIONS) arguments skTheo Buehler
(where it doesn't conflict with a local variable)
2024-05-23x509_v3.c: zap another pointless local variableTheo Buehler
2024-05-23x509_v3.c: add a few empty linesTheo Buehler
2024-05-23X509v3_get_ext_by_NID: make obj const, test & assignTheo Buehler
2024-05-23x509_v3.c: remove a pointless local variableTheo Buehler
2024-05-23x509_v3.c: mechanically replace ex with ext and new_ex with new_extTheo Buehler
2024-05-22Fix in-place decryption for EVP_chacha20_poly1305()Theo Buehler
Take the MAC before clobbering the input value on decryption. Fixes hangs during the QUIC handshake with HAProxy using TLS_CHACHA20_POLY1305_SHA256. Found, issue pinpointed, and initial fix tested by Lucas Gabriel Vuotto: Let me take this opportunity to thank the HAProxy team for going out of their way to keep supporting LibreSSL. It's much appreciated. See https://github.com/haproxy/haproxy/issues/2569 tweak/ok jsing
2024-05-22crib better wording from schwarze's EVP_PKEY_get_attr_by_NID(3)Theo Buehler
2024-05-22Fix incorrect X509v3_get_ext_by_NID(3) return valuesTheo Buehler
This error comes from upstream, where it is still wrong.
2024-05-21remove prototypes with no matching functionJonathan Gray
2024-05-21remove prototypes with no matching function; ok ratchov@Jonathan Gray
2024-05-20cmac: zero_iv should be constTheo Buehler
2024-05-19unwrap a lineTheo Buehler
2024-05-19Add space after commasTheo Buehler
2024-05-19KNF for dh_err and dsa_errTheo Buehler
2024-05-19remove prototypes with no matching functionJonathan Gray
feedback and ok tb@
2024-05-18Add pathconfat(2): pathconf(2) but with at-fd and flags arguments,Philip Guenther
the latter supporting the ability to get timestamp resolution of symlinks. ok deraadt@ millert@
2024-05-17asn1_str2tag(): no need for tntmp to be staticTheo Buehler
2024-05-17The long primitive function table can be constTheo Buehler
2024-05-17The bignum primitive function table (bignum_pf) can be constTheo Buehler
2024-05-16x509_v3.c: remove superfluous parenthesesTheo Buehler
No change in the generated assembly
2024-05-16SSL_CTX_set_keylog_callback: copy-paste error _set_ -> _get_Theo Buehler
2024-05-15Improve X509V3_get0_uids() documentationTheo Buehler
Use less horrcble variable names and make it explicit that both output arguments are allowed to be NULL.
2024-05-15X509_check_akid: zap stray spaceTheo Buehler
2024-05-14x509_ext.c: remove unnecessary includesTheo Buehler
2024-05-14x509_ext.c: remove lots of extraneous parenthesesTheo Buehler
No change in the generated assembly
2024-05-14Fix last sentence of CAVEATS which I got the wrong way aroundTheo Buehler
2024-05-12Be more specific about X509V3_ADD_APPEND and X509V3_ADD_DELETETheo Buehler
2024-05-12Tweak wordingTheo Buehler
2024-05-12Remove a 'built-in' that was left in by accidentTheo Buehler
2024-05-12Install X509V3_EXT_get_nid.3Theo Buehler
2024-05-12Add minimal manpage documenting the misnamed X509V3_EXT_get_nid()Theo Buehler
This avoids a dangling reference in i2s_ASN1_ENUMERATED_TABLE. To complete this manual, someone will need to document X509V3_EXT_METHOD, but that's for a much more rainy day than today.
2024-05-12Avoid .Xr to no longer public X509_LOOKUP_by_subject(3)Theo Buehler
looks good to jmc
2024-05-11Move X509V3_add_standard_extensions out of the wayTheo Buehler
This function is only used by OpenLDAP and it's been a noop since forever. It has no business to be squeezed in between a number of other, quite unrelated functions. It's distracting.
2024-05-11Make two NULL checks more explicitTheo Buehler
2024-05-11Unwrap a lineTheo Buehler
2024-05-11Sync DSA_METHOD documentation with realityTheo Buehler
It is dubious whether this opaque struct's internals should be documented in the first place. This also has been incomplete since forever. For now zap the stuff that no longer exists and make an attempt at matching KNF a bit more closely.
2024-05-11Remove unused DSA methodsTheo Buehler
There are no accessors to set them, so this has been involved in a bunch of dead logic ever since we made DSA opaque a few years ago. ok jsing
2024-05-11Remove unused PEM_USER and PEM_CTXTheo Buehler
I could not find any use of this in all of OpenSSL's git history since SSLeay 0.8.1b. ok jsing
2024-05-10Correct display the details of COMMAND using the ps command from the kernelASOU Masato
crash dump. OK millert@
2024-05-10Add missing EC_KEY_free()Theo Buehler
While eckey_from_explicit_params() frees *out_eckey, eckey_from_object() and eckey_from_params() do not. These functions are currently all callled with a NULL *out_eckey, but the latter two would leak if that should ever change. ok jsing
2024-05-10Remove fixed nonce length information from algorithm2Theo Buehler
This information has been part of tls12_key_block_generate() for a while now. It remained in this table because at that point SSL_CIPHER was still public. Nothing can access algorithm2 anymore from the outside, so this is dead weight. ok jsing
2024-05-10Inline dsa_builtin_keygen() in DSA_generate_key()Theo Buehler
ok djm
2024-05-09Make the openssl_dsa_meth static constTheo Buehler
2024-05-09Move openssl_dsa_meth below the methods it usesTheo Buehler
no functional change
2024-05-09Make the DH_METHOD static constTheo Buehler
2024-05-09Move public API and DH_METHOD to the bottom of the fileTheo Buehler
no functional change
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-26 14:39:53 +0000