| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-10-23 | tweak previous: properly mark up function pointer typedef | Ingo Schwarze | |
| plus .Dv NULL, SEE ALSO, HISTORY | |||
| 2021-10-23 | Prepare to make many of the structs in x509.h opaque. | Theo Buehler | |
| ok beck jsing | |||
| 2021-10-23 | Change ssl_verify_cert_chain() for compatibility with opaque | Theo Buehler | |
| X509_STORE_CTX and use accessors instead of reaching directly into the struct. ok jsing | |||
| 2021-10-23 | Use X509_STORE_CTX_get0_chain() instead of grabbing the chain directly | Theo Buehler | |
| out of the X509_STORE_CTX. ok jsing | |||
| 2021-10-23 | Rename tls13_buffer to tls_buffer. | Joel Sing | |
| This code will soon be used in the DTLSv1.2 and TLSv1.2 stack. Also introduce tls_internal.h and move/rename the read/write/flush callbacks. ok beck@ tb@ | |||
| 2021-10-23 | Prepare to provide X509_re_X509*_tbs() | Theo Buehler | |
| ok beck jsing | |||
| 2021-10-23 | Prepare to provide X509_get_extension_flags() | Theo Buehler | |
| ok beck jsing | |||
| 2021-10-23 | Add SSL_CTX_set_keylog_callback and SSL_CTX_get_keylog_callback | Bob Beck | |
| Some things in ports care about calling these functions. Since we will not provide private key logging functionality they are documented as being for compatibility and that they don't do anything. ok tb@ | |||
| 2021-10-23 | Prepare to provide X509_SIG_get{0,m}. | Theo Buehler | |
| ok beck jsing | |||
| 2021-10-23 | Add back the fips mode test functions, new stuff requires this. | Bob Beck | |
| Symbols.list changes to follow with tb's upcoming bump ok jsing@ | |||
| 2021-10-23 | Untangle ssl3_get_message() return values. | Joel Sing | |
| This function currently has a long return type that may be <= 0 on error/retry (which is then cast to an int in order to return it up the stack), or it returns the length of the handshake message (on success). This obviously means that 0 can be returned for both success and failure, which is the reason why a separate 'ok' argument has to exist. Untangle this mess by changing the return value to an int that indicates success (1) or error/retry (<= 0). The length never needs to actually be returned as it is already stored in s->internal->init_num (which is where the return value is read from anyway). ok tb@ | |||
| 2021-10-23 | Change tlsext_tick_lifetime_hint to uint32_t. | Joel Sing | |
| Now that SSL_SESSION is opaque, change tlsext_tick_lifetime_hint from long to uint32_t (matching RFC4507), rather than continuing to work around an inappropriate type choice. ok tb@ | |||
| 2021-10-22 | Prepare to provide X509_get_{extended_,}key_usage() | Theo Buehler | |
| ok beck jsing | |||
| 2021-10-22 | Switch from u_int and u_char to u32 and u8 to avoid portability issues. | Theo Buehler | |
| Prompted by a diff by Jonas Termansen. ok jsing | |||
| 2021-10-22 | Prepare to provide X509_REQ_pubkey_get0() | Theo Buehler | |
| ok jsing | |||
| 2021-10-22 | new manual page EVP_PKEY_add1_attr(3) documenting nine functions | Ingo Schwarze | |
| for associating X.501 Attributes with private keys | |||
| 2021-10-22 | new manual page X509at_add1_attr(3) | Ingo Schwarze | |
| describing five functions to change arrays of X.501 Attribute objects | |||
| 2021-10-22 | fix a gratuitiously different argument name | Ingo Schwarze | |
| 2021-10-22 | After deleting hifn(4) the only provider for the LZS compression | Alexander Bluhm | |
| algorithm is gone. Reomve all LZS references from the tree. The v42bis in isakmpd also looks unsupported. OK mvs@ patrick@ sthen@ | |||
| 2021-10-22 | new manual page X509at_get_attr(3) | Ingo Schwarze | |
| documenting five X.501 Attribute read accessors | |||
| 2021-10-22 | Put back sys/types.h and sys/socket.h. The latter was unintentionally | Theo Buehler | |
| removed and the former is still needed, as pointed out by kettenis | |||
| 2021-10-22 | Fix some ghastly whitespace. From Martin Vahlensieck | Theo Buehler | |
| 2021-10-22 | Use unsigned char instead of u_char in base64.c. This is a mild | Theo Buehler | |
| portability annoyance since not all systems have u_char. Remove the now unused includes sys/types.h and stdio.h. u_char diff from Jonas Termansen ok deraadt | |||
| 2021-10-21 | Simplify the description of RETURN VALUES. | Ingo Schwarze | |
| After tb@'s commit x509/x509_lu.c rev. 1.33, it is no longer necessary to talk about X509_LU_* constants as return values from these functions. Feedback and OK from tb@. | |||
| 2021-10-21 | Simplify a return value check for X509_STORE_get_by_subject() now | Theo Buehler | |
| that we know that it only returns 0 or 1. Eliminate the last uses of X509_LU_{FAIL,RETRY}. ok jsing | |||
| 2021-10-21 | Set enc.modified if the X509_REQ is going to be modified. | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | new manual page X509_ATTRIBUTE_set1_object(3) | Ingo Schwarze | |
| documenting five X.501 Attribute write accessors | |||
| 2021-10-21 | Sync parts of X509_STORE_get_by_subject() with OpenSSL | Theo Buehler | |
| Initialize stmp.type and stmp.data.ptr so that a user-defined lookup method need not take responsibility of initializing those. Get rid of current_method, which was never really used. Stop potentially returning a negative value since most callers assume Boolean return values already. In addition, garbage collect the pointless j variable. ok jsing | |||
| 2021-10-21 | Prepare to make X509 opaque. | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | libtls: Don't reach into X509_STORE_CTX. | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | Switch from X509_VERIFY_PARAM_set_flags() to X509_STORE_set_flags(). | Theo Buehler | |
| This reduces the number of reacharounds into libcrypto internals. ok jsing | |||
| 2021-10-21 | Add XKU_ANYEKU #define and use it to cache the anyExtendedKeyUsage | Theo Buehler | |
| extension. This is part of OpenSSL commit df4c395c which didn't make it into our tree for some reason. ok jsing | |||
| 2021-10-21 | Prepare to provide X509_get_X509_PUBKEY() as a function. | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | Bump to LibreSSL 3.5.0 | Theo Buehler | |
| 2021-10-21 | Eliminate a dead assignment and a weird cast. Adjust a comment to | Theo Buehler | |
| reality while there. ok jsing | |||
| 2021-10-21 | Print uid with %u instead of %i. | Theo Buehler | |
| Prompted by a diff by Jonas Termansen, discussed with deraadt, millert ok jsing | |||
| 2021-10-21 | Use *printf %d instead of %i | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | Avoid potential NULL dereferences in dtls1_free() | Theo Buehler | |
| ok jsing | |||
| 2021-10-21 | Sync ober_oid_cmp with ax_oid_cmp from libagentx. | Martijn van Duren | |
| This flips the returned signedness and adds the weight of 2 for parent-child relationship in both direction. This makes ober_oid_cmp consistent with the rest of the *_cmp based functions. OK tb@ | |||
| 2021-10-20 | document ASN1_STRING_set_by_NID(3) | Ingo Schwarze | |
| and the three functions related to the global mask | |||
| 2021-10-20 | new manual page ASN1_mbstring_copy(3) | Ingo Schwarze | |
| also documenting ASN1_mbstring_ncopy(3) | |||
| 2021-10-20 | new manual page X509_ATTRIBUTE_get0_object(3) | Ingo Schwarze | |
| documenting the four X.501 Attribute read accessors | |||
| 2021-10-20 | document X509_ATTRIBUTE_create(3) and X509_ATTRIBUTE_dup(3) | Ingo Schwarze | |
| 2021-10-19 | document X509_get_pubkey_parameters(3) in a new manual page | Ingo Schwarze | |
| 2021-10-19 | more precision, fewer words | Ingo Schwarze | |
| 2021-10-19 | document i2d_PrivateKey_bio(3) and i2d_PrivateKey_fp(3) | Ingo Schwarze | |
| 2021-10-19 | install X509_PKEY_new(3) | Ingo Schwarze | |
| 2021-10-19 | document X509_PKEY_new(3) and X509_PKEY_free(3) | Ingo Schwarze | |
| 2021-10-18 | document X509_VERIFY_PARAM_inherit(3) and X509_VERIFY_PARAM_set1(3) | Ingo Schwarze | |
| 2021-10-18 | split seven functions out of the page X509_VERIFY_PARAM_set_flags(3), which | Ingo Schwarze | |
| is becoming excessively long, into a new page X509_VERIFY_PARAM_new(3); no content change | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |