src - OpenBSD base system

Age	Commit message (Collapse)	Author
2018-04-07	Revise regress to match tls_keypair_clear() removal.	Joel Sing

2018-03-19	Remove the now unnecessary tls_init() call.	Joel Sing

2018-03-15	Fix a format string issue that Go 1.10 complains about.	Joel Sing

2018-02-14	Update keypair regress to match revised keypair hash handling.	Joel Sing
	Apparently I failed to commit this when I committed the libtls change...
2018-02-08	Update regress to match change to tls_keypair_pubkey_hash().	Joel Sing

2018-02-08	Add a regress test that covers libtls keypairs.	Joel Sing

2018-02-08	Tweak compiler flags to include -DLIBRESSL_INTERNAL and make more warnings	Joel Sing
	fatal.
2017-12-09	Add a regress test for tls_config_parse_protocols().	Joel Sing

2017-05-07	Add a (currently failing) call to tls_handshake() on a client context that	Joel Sing
	has not yet been connected. We expect this to fail, but it should fail gracefully.
2017-05-07	Also test calling tls_handshake() on a server connection context that has	Joel Sing
	already completed a TLS handshake.
2017-05-07	Add a test that calls tls_handshake() on a connection that has already	Joel Sing
	completed a TLS handshake. This should return a failure, but currently succeeds (hence the regress currently fails).
2017-05-07	An an initial sequencing/ordering test for libtls.	Joel Sing

2017-05-06	Split TLS client/server handshake and close code into separate functions	Joel Sing
	so that it can be reused.
2017-05-06	Move TLS test code into a function that is called from main, making it	Joel Sing
	easier for new tests to be added.
2017-05-06	Free tls_configs earlier now that we have refcounting.	Joel Sing

2017-04-30	Add missing tls_init() and tls_free() calls.	Joel Sing

2017-04-10	Rework and significantly extend TLS name verification tests to match	Joel Sing
	changes in libtls.
2017-04-09	Improve unknown protocol version handling.	Joel Sing

2017-04-07	In ssl.h TLS 1.0 is called TLSv1. Adapt name in test to make it pass.	Alexander Bluhm
	OK jsing@
2017-03-07	Add a test that covers a libtls client talking to a Go TLS server with	Joel Sing
	varying minimum and maximum protocol versions. This gives us protocol version test coverage against an independent TLS stack.
2017-03-07	Allow ciphers to be set on the TLS config.	Joel Sing

2017-03-07	Provide support for libtls protocols and allow for protocols to be set on	Joel Sing
	a TLS config. The ConnVersion function now also returns a protocol version instead of a string.
2017-03-07	Add handling for errors on the TLS config and properly check/handle	Joel Sing
	failures when setting the CA file.
2017-03-07	libtls errors are much more descriptive these days - return them directly	Joel Sing
	and avoid adding redundant/duplicate information.
2017-03-07	We no longer need to keep pointers following tls_config_set_*() calls.	Joel Sing

2017-01-17	Correctly tls_config_set_ca_file() return value (no effective change).	Joel Sing
	Spotted by inoguchi@
2017-01-12	Add regress tests for libtls, which currently cover handshakes and closes	Joel Sing
	using callbacks, file descriptors and sockets.
2017-01-09	Provide TLS_INT for consistency with libssl/libcrypto.	Joel Sing

2016-11-04	Some tests require internal symbols; have them link with the static	Philip Guenther
	libssl or libtls so they can continue to see them after the shared library namespace is cleaned up ok jsing@
2016-09-02	Print SKIPPED if a regress test cannot be executed for some reason.	Alexander Bluhm
	This allows to identify such tests by looking at their output.
2015-10-13	Single byte read/write tests.	Joel Sing

2015-10-13	Add test coverage for peer certificate info and connection info.	Joel Sing

2015-10-13	Make regress work again post hackathon tls_handshake/tls_read/tls_write	Joel Sing
	changes.
2015-09-11	regress test that we do not allow a wildcard match for ".openbsd.org"	Bob Beck
	against a wildcard of "*.openbsd.org"
2015-09-11	fix verify to allow for servername->name	Bob Beck
	ok jsing@
2015-04-15	Now that tls_close() is more robust, consider a failure to be fatal.	Joel Sing

2015-02-22	Update for recent verify related naming changes.	Joel Sing

2014-12-07	Allow specific libtls hostname validation errors to propagate.	Brent Cook
	Remove direct calls to printf from the tls_check_hostname() path. This allows NUL byte error messages to bubble up to the caller, to be logged in a program-appropriate way. It also removes non-portable calls to getprogname(). ok jsing@
2014-11-01	Initial regress for libtls hostname verification.	Joel Sing

2014-10-31	Update regress for the libressl to libtls rename.	Joel Sing