summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2017-05-09Enable TLS support but default to the emulatated TLS model. Enable theMark Kettenis
2017-05-09Prevent memory leak on sbuf by freeing it unconditionally and ensureRicardo Mestre
2017-05-08Fix exponential CPU use with repeated '*' operators by changing '*'Todd C. Miller
2017-05-08Update STANDARDS section, these are now in XSI BASE.Todd C. Miller
2017-05-08BUF_MEM_grow_clean() returns an int, not a size_t. Humourously, on successJoel Sing
2017-05-07killpg() is covered by XSI so add a STANDARDS section to that effectTodd C. Miller
2017-05-07Drop cipher suites with DSS authentication - there is no good reason toJoel Sing
2017-05-07Don't allow a negative process group ID, it would turn into aTodd C. Miller
2017-05-07Instead of starting a 'zero-sized' CBB at the size of the first additionJoel Sing
2017-05-07Move state from ssl->internal to the handshake structure.Bob Beck
2017-05-07Ensure that a client context has been connected before attempting toJoel Sing
2017-05-07Return an error if tls_handshake() is called on a TLS context that hasJoel Sing
2017-05-06Move info about group handling via a negative pid into the listTodd C. Miller
2017-05-06Bring in an SSL_HANDSHAKE structure and commence the great shovellingBob Beck
2017-05-06Use freezero() for the tls_load_file() failure case, since we'reJoel Sing
2017-05-06BIO_free_all() and EVP_PKEY_free() can be called with NULL.Joel Sing
2017-05-06Be explicit about when it is safe to call tls_config_free().Joel Sing
2017-05-06Document tls_unload_file().Joel Sing
2017-05-06Perform reference counting for tls_config. This allows tls_config_free() toJoel Sing
2017-05-06Provide a tls_unload_file() function, that frees the memory returned fromJoel Sing
2017-05-06Bring in HKDF, from BoringSSL, with regress tests modified to beBob Beck
2017-05-06Provide SSL{,_CTX}_set_{min,max}_proto_version() functions.Joel Sing
2017-05-06space needed between macro arg and punctuation;Jason McIntyre
2017-05-06Bump minors for symbol addition in libcryptoBob Beck
2017-05-06Add ASN1_TIME_set_to to exported symbolsBob Beck
2017-05-06Add ASN1_TIME_set_tm to set an asn1 from a struct tm *Bob Beck
2017-05-06Add missing $OpenBSD$ tags.Joel Sing
2017-05-05Document what happens when sending a signal to the calling process.Todd C. Miller
2017-05-05Mention that the signal mask does not affect what signals areTodd C. Miller
2017-05-04Merge headers defining identifiers from sysctl.8 into sysctl.3. Shorten andTheo Buehler
2017-05-04Move tls_config_skip_private_key_check() out from under HIDDEN_DECLS.Claudio Jeker
2017-05-03spacing (in EXAMPLES code)Reyk Floeter
2017-05-03make the description strings match the codeTheo de Raadt
2017-05-02the XXXfree functions being called accept NULL, so don't check first.Theo de Raadt
2017-05-02use freezero() instead of memset/explicit_bzero + free. SubstantiallyTheo de Raadt
2017-05-01Document that wait3/waitpid can receive SIGCHILD when wpid doesTodd C. Miller
2017-04-30No original OpenSSL code remains in this file. RelicenseBob Beck
2017-04-30Add futex(2) shim, bump minor.Martin Pieuchot
2017-04-30Make BIO_get_host_ip just yet another getaddrinfo wrapperBob Beck
2017-04-30Rework BIO_accept to be more like modern code.Bob Beck
2017-04-30Only enable -Werror on libcrypto/libssl/libtls if we are building withJoel Sing
2017-04-30Switch back to freezero() and explicitly initialise data_len to zero. TheJoel Sing
2017-04-30Microsoft Windows hates BIO_get_accept_socket in portable. Fix it toBob Beck
2017-04-30Add a tls_keypair_clear_key() function that uses freezero() to make keyJoel Sing
2017-04-29Fix a bug caused by the return value being set early to signal successfulJoel Sing
2017-04-29Revert previous - we still want to do this, but I forgot about the installerBob Beck
2017-04-29We now require you to have a working libpthreadBob Beck
2017-04-29Make it safe to call SSL_library_init more than once.Bob Beck
2017-04-29Stop calling OPENSSL_init() internally, since it is a no-op. Also placeJoel Sing
2017-04-29Switch Linux getrandom() usage to non-blocking mode, continuing toBob Beck