summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2019-03-31Clean up and simplify the client verify code:Joel Sing
2019-03-31Wrap long lines and apply some style(9).Joel Sing
2019-03-31Use named field initialisers.Joel Sing
2019-03-30Add retguard macros to setjmp/longjmp on amd64. Knocks out some usefulmortimer
2019-03-29Use correct capitalization of EC_GROUP_get_curve_GF{2m,p}(3).Theo Buehler
2019-03-29Copy categories outside "mask" from "oldloc" to the new locale object.Ingo Schwarze
2019-03-28Wait until server disconnects before closing the socket. Otherwise,Alexandre Ratchov
2019-03-27Cast nonce bytes to avoid undefined behaviour when left shifting.Joel Sing
2019-03-27remove duplicate set key file call. from alf.Ted Unangst
2019-03-27bump to 2.9.1Brent Cook
2019-03-26adjtime(2): set EINVAL if delta overflows 64 bits of microseconds.cheloha
2019-03-26Use limits.h instead of sys/limits.h for portability.Joel Sing
2019-03-25fix copy pasto: flag -> atflags; ok deraadt@ jca@ millert@anton
2019-03-25Strip out all of the pkey to sigalg and sigalg to pkey linkages.Joel Sing
2019-03-25tls1_process_sigalgs() is no longer needed.Joel Sing
2019-03-25Defer sigalgs selection until the certificate is known.Joel Sing
2019-03-25Rework ssl_ctx_use_certificate_chain_bio() to use the CERT_PKEY chain.Joel Sing
2019-03-25Remove ssl_get_server_send_cert() which is now unused.Joel Sing
2019-03-25Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains.Joel Sing
2019-03-25Add a chain member to CERT_PKEY and provide functions for manipulating it.Joel Sing
2019-03-24BUGS goes last;Jason McIntyre
2019-03-24Document the fact that readlink(2) can bypass restrictions as neededBob Beck
2019-03-24In the incredibly unbelievable circumstance where _rs_init() fails toTheo de Raadt
2019-03-24If ssl_cipher_apply_rule() is given a specific cipher suite, match on it.Joel Sing
2019-03-24Don't allow asn1_parse2 to recurse arbitrarily deep. Constrain to a maxBob Beck
2019-03-24Cast nonce bytes to avoid undefined behaviour when left shifting.Joel Sing
2019-03-24do not call assert(), which has a tendency to leave traces of stuff inTheo de Raadt
2019-03-23Add range checks to varios ASN1_INTEGER functions to ensure theBob Beck
2019-03-23Remove useless secure_path(3) calls.Todd C. Miller
2019-03-23Separate symbol name and type with a comma for consistency andVisa Hankala
2019-03-22that "device" is an abstraction to the underlying OS PRNG.Marc Espie
2016-09-03Import libc++ 3.9.0Patrick Wildt
2019-03-21Reference permissions in the canonical plural.rob
2019-03-21import EVP_camellia_128_cbc(3) from OpenSSL 1.1.1,Ingo Schwarze
2019-03-21space before punct;Jason McIntyre
2019-03-21Split EVP_rc4(3) out of EVP_EncryptInit(3) to reduce clutter.Ingo Schwarze
2019-03-21Split EVP_des_cbc(3) out of EVP_EncryptInit(3) to reduce clutter:Ingo Schwarze
2019-03-21add a handful of missing functionsIngo Schwarze
2019-03-21Bring back EVP_chacha20 list item that was accidentally removedTheo Buehler
2019-03-20fix examples (libtls uses its own error reporting mechanism)Marc Espie
2019-03-20escape backslashes;Ingo Schwarze
2019-03-19Document the flag EVP_CIPHER_CTX_FLAG_WRAP_ALLOW needed for the EVPIngo Schwarze
2019-03-19Avoid an internal 2 byte overread in ssl_sigalgs().Joel Sing
2019-03-19Revert TLS1_get{,_client}_version simplification because DTLS.Joel Sing
2019-03-19update libelf from elftoolchain r3714 to r3717Jonathan Gray
2019-03-19update libelf from elftoolchain r3669 to r3714Jonathan Gray
2019-03-18* note that the handshake must be completed firstIngo Schwarze
2019-03-18Insert a missing input line break after a .Vt macro;Ingo Schwarze
2019-03-18Split EVP_aes_128_cbc(3) out of EVP_EncryptInit(3):Ingo Schwarze
2019-03-18In ssl.h rev. 1.165, tb@ provided version agnostic DTLS methods.Ingo Schwarze