| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2018-08-19 | Don't leak a strdup()'ed string on error in do_accept(). | Theo Buehler | |
| CID #154702. input & ok inoguchi, ok mestre on first version | |||
| 2018-08-18 | Plug SSL object leaks in doConnection(). | cheloha | |
| Move SSL_new/SSL_free up into benchmark() to restrict the responsibility for the SSL object to a single scope. Make doConnection() return an int, openssl-style. Some miscellaneous cleanup, too. Discussed with tb, jsing, and jca. Basic idea from jsing, lots of patch input from tb. ok deraadt on an earlier version ok tb jsing | |||
| 2018-08-16 | Revert previous, which was wrong as noted by schwarze. Also revert a hunk | Theo Buehler | |
| from r1.45 and thereby avoid a use-after-free spotted by schwarze. ok schwarze | |||
| 2018-08-16 | Remove unused variable. | rob | |
| From Nan at chinadtrace dot org. Thanks! | |||
| 2018-08-14 | Don't fail by default in the -new case; ok tb jca | cheloha | |
| 2018-08-11 | Refactor the nearly identical benchmark loops into a single loop. | cheloha | |
| Move all of the benchmark code -- loop initialization, the loops, and the report printing -- into a new function, benchmark(). Eliminates lots of duplicate code. Regressions to 1.20 caught by tb@ and inoguchi@. Tweaked by tb@. ok tb@, jsing@ | |||
| 2018-07-13 | openssl app timers: TM_START -> TM_RESET, TM_STOP -> TM_GET | cheloha | |
| Much more apt than the current operation names. Names suggested by jca@ ages ago. ok jca, jsing | |||
| 2018-04-25 | The cookie in the cookie verify callback needs to be const. | Theo Buehler | |
| ok jsing (as part of a larger diff) | |||
| 2018-04-10 | Delete the description of the argument of the "ciphers" command | Ingo Schwarze | |
| because it was (1) woefully incomplete, (2) partially outdated and wrong, (3) in parts imprecisely worded and hard to understand, (4) excessively technical for a section 1 manual, (5) of excessive size for this particular page, (6) and didn't belong here in the first place because it essentially tried to document a C API - SSL_CTX_set_cipher_list(3), which is now documented, so point to it. | |||
| 2018-03-31 | Improve description of openssl(1) ciphers. | Ingo Schwarze | |
| * Remove -tls1 option which has no effect. * For -V, sort the fields in the order they are printed, and do not talk about key size restrictions, nothing like that is printed. | |||
| 2018-03-30 | Updates to the description of "openssl ca" from OpenSSL. | Ingo Schwarze | |
| Some options were missing, some were in the wrong section (CRL-related or not), and there were some minor errors, typos, and omissions. | |||
| 2018-03-30 | checked the content against the current version of OpenSSL openssl.pod; | Ingo Schwarze | |
| resulting fixes: markup of "command" below SYNOPSIS and links to the config file formats below SEE ALSO | |||
| 2018-03-22 | organizationUnitName -> organizationalUnitName; | Jason McIntyre | |
| from matt schwartz | |||
| 2018-02-28 | ca start/enddates require all 4 yyyy from 2050 on; first two | Jason McIntyre | |
| are otherwise optional diff from holger mikolon, tweaked a bit by me | |||
| 2018-02-18 | document s_client -groups; | Jason McIntyre | |
| 2018-02-11 | typo in output string; from edgar pettijohn | Jason McIntyre | |
| 2018-02-08 | Convert option handling for openssl(1) genpkey. | Joel Sing | |
| ok beck@ inoguchi@ | |||
| 2018-02-07 | Restore a check before BN_free() that needs to exist and write it such that | Joel Sing | |
| the intent is more obvious. | |||
| 2018-02-07 | Nuke some more free NULL guards. | Joel Sing | |
| 2018-02-07 | Indent labels with a single space so that diff prototypes are more useful. | Joel Sing | |
| 2018-02-07 | Remove guards around *_free() calls since these functions handle NULL. | Joel Sing | |
| 2018-02-07 | Remove guards around *_free() calls since these functions handle NULL. | Joel Sing | |
| 2018-02-06 | Remove manual shutdown and close of the socket since in this case | Theo Buehler | |
| SSL_free will do this a second time. ok jsing | |||
| 2018-01-28 | Initialize variables to avoid compiler warnings | Kinichiro Inoguchi | |
| ok jsing@ | |||
| 2018-01-15 | Add s_server and s_client -tlsextdebug messages | Kinichiro Inoguchi | |
| ok sthen@ jsing@ | |||
| 2018-01-07 | Remove unused extern variable in openssl(1) s_time | Kinichiro Inoguchi | |
| This extern variable appears not to be used. And it is overridden by local variable in doConnection(). This causes MSVC warning C4459 "declaration of 'verify_error' hides global declaration". OK millert@ | |||
| 2017-12-05 | Seperate real and user timer interfaces | Jeremie Courreges-Anglas | |
| Use more descriptive names, and make it clearer that real and user timers work on different static storage. The end goal is to be able to reuse those timer functions, instead of inlining other timer implementations subject to clock jumps. Discussed with Scott Cheloha | |||
| 2017-11-29 | Mixing -url with any of -host, -port, or -path should be a usage error | Philip Guenther | |
| instead of trying to work and then triggering a double-free(). problem noted by trondd (trondd (at) kagu-tsuchi.com) ok beck@ | |||
| 2017-11-24 | Use clock_gettime and getrusage to compute real and user time. | Jeremie Courreges-Anglas | |
| Better handling of clock jumps, from Scott Cheloa. | |||
| 2017-11-02 | openssl s_time -connect host:port needs dns promise for pledge(2) otherwise it | Ricardo Mestre | |
| will SIGABRT Bug found by Scott Cheloha <scottcheloha at gmail.com> OK deraadt@ | |||
| 2017-10-07 | Fix cast-pasto's in comments | Philip Guenther | |
| 2017-08-28 | Remove SSLv23 padding mode. | Joel Sing | |
| 2017-08-13 | Switch to -Werror with clang for libressl. | Doug Hogan | |
| Discussed with beck@ and jsing@ ok beck@ | |||
| 2017-08-12 | Remove NPN support - the -nextprotoneg options now become no-ops. | Joel Sing | |
| ok bcook@ beck@ doug@ | |||
| 2017-07-09 | remove redundant variable declarations in Makefiles, since those are | Marc Espie | |
| the default. okay millert@ | |||
| 2017-05-16 | typo: ket -> key. | Theo Buehler | |
| from "fenderq" on freenode via tj | |||
| 2017-05-08 | simplify startdate/enddate validation | Bob Beck | |
| ok jsing@ | |||
| 2017-05-07 | Limit -Werror to gcc4 as was done in libcrypto/libssl/libtls to avoid | Jonathan Gray | |
| failed builds with different compilers. ok jsing@ | |||
| 2017-05-04 | Fix the ca command so that certs it generates have RFC5280 conformant time. | Bob Beck | |
| Problem noticed by Harald Dunkel <harald.dunkel@aixigo.de> | |||
| 2017-04-18 | use freezero() instead of 4-line conditional explicit_bzero + free | Theo de Raadt | |
| 2017-01-24 | Add a -groups option to openssl s_client, which allows supported EC curves | Joel Sing | |
| to be specified as a colon separated list. ok beck@ | |||
| 2017-01-21 | whitespace | Theo de Raadt | |
| 2017-01-20 | rearrange pledge promises into the canonical order; easier to eyeball | Theo de Raadt | |
| 2017-01-20 | fix pledge for openssl ocsp - we will need tty to ask for a cert pw | Bob Beck | |
| 2017-01-19 | fix openssl ocsp to not report sucess when the ocsp responder rejects us | Bob Beck | |
| ok deraadt@ krw@ | |||
| 2017-01-03 | consistently spell ASN.1; | Jason McIntyre | |
| 2016-12-30 | Display details of the server ephemeral key, based on OpenSSL. | Joel Sing | |
| ok doug@ | |||
| 2016-12-30 | Expand ASN1_ITEM_rptr macros here as well... used with NETSCAPE_X509 of all | Joel Sing | |
| things... | |||
| 2016-12-30 | Stop using M_PKCS12_* compatibility macros here as well. | Joel Sing | |
| 2016-10-06 | typo | Christian Weisgerber | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |