#
cfbd033b |
| 26-Mar-2024 |
tb <tb@openbsd.org> |
Remove superfluous parentheses in X509_REQ setters
No change in generated assembly
|
#
ca68b301 |
| 26-Mar-2024 |
tb <tb@openbsd.org> |
Reject setting invalid versions for certs, CRLs and CSRs
The toolkit aspect bites again. Lots of invalid CRLs and CSRs are produced because people neither read the RFCs nor does the toolkit check an
Reject setting invalid versions for certs, CRLs and CSRs
The toolkit aspect bites again. Lots of invalid CRLs and CSRs are produced because people neither read the RFCs nor does the toolkit check anything it is fed. Reviewers apparently also aren't capable of remembering that they have three copy-pasted versions of the same API and that adding a version check to one of the might suggest adding one for the other two.
This requires ruby-openssl 20240326p0 to pass
ok beck job jsing
show more ...
|
#
e226f85a |
| 25-Mar-2024 |
jsing <jsing@openbsd.org> |
Revert r1.13 since it currently breaks openssl-ruby regress tests.
ok tb@
|
#
15799da5 |
| 25-Mar-2024 |
job <job@openbsd.org> |
Error on setting an invalid CSR version
Reported by David Benjamin (BoringSSL)
OK tb@
|
#
cedac418 |
| 16-Feb-2023 |
tb <tb@openbsd.org> |
libressl *_namespace.h: adjust *_ALIAS() to require a semicolon
LCRYPTO_ALIAS() and LSSL_ALIAS() contained a trailing semicolon. This does not conform to style(9), breaks editors and ctags and (most
libressl *_namespace.h: adjust *_ALIAS() to require a semicolon
LCRYPTO_ALIAS() and LSSL_ALIAS() contained a trailing semicolon. This does not conform to style(9), breaks editors and ctags and (most importantly) my workflow. Fix this by neutering them with asm("") so that -Wpedantic doesn't complain. There's precedent in libc's namespace.h
fix suggested by & ok jsing
show more ...
|
#
c9675a23 |
| 26-Nov-2022 |
tb <tb@openbsd.org> |
Make internal header file names consistent
Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_l
Make internal header file names consistent
Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special.
Adjust all .c files in libcrypto, libssl and regress.
The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually.
discussed with jsing, no objection bcook
show more ...
|
#
06d31337 |
| 14-Nov-2022 |
beck <beck@openbsd.org> |
Hide public symbols in libcrypto/x509 .c files
ok tb@
|
#
838f0b6d |
| 01-Nov-2021 |
tb <tb@openbsd.org> |
Move the now internal X.509-related structs into x509_lcl.h. Garbage collect the now unused LIBRESSL_CRYPTO_INTERNAL and LIBRESSL_OPAQUE_X509. Include "x509_lcl.h" where needed and fix a couple of un
Move the now internal X.509-related structs into x509_lcl.h. Garbage collect the now unused LIBRESSL_CRYPTO_INTERNAL and LIBRESSL_OPAQUE_X509. Include "x509_lcl.h" where needed and fix a couple of unnecessary reacharounds.
ok jsing
show more ...
|
#
c29209ee |
| 21-Oct-2021 |
tb <tb@openbsd.org> |
Set enc.modified if the X509_REQ is going to be modified.
ok jsing
|
#
ccd620fb |
| 24-Aug-2018 |
tb <tb@openbsd.org> |
Turn a number of #defines into proper functions with prototypes matching those that OpenSSL has had for ages.
ok jsing
|
#
b6ab114e |
| 11-Jul-2014 |
jsing <jsing@openbsd.org> |
Only import cryptlib.h in the four source files that actually need it. Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need t
Only import cryptlib.h in the four source files that actually need it. Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes.
ok beck@ miod@
show more ...
|
#
c3d6a26a |
| 12-Jun-2014 |
deraadt <deraadt@openbsd.org> |
tags as requested by miod and tedu
|
#
64865fa4 |
| 20-Apr-2014 |
jsing <jsing@openbsd.org> |
KNF.
|
#
7609e5c6 |
| 18-Apr-2014 |
tedu <tedu@openbsd.org> |
blunt force knf
|
#
913ec974 |
| 29-Sep-1999 |
beck <beck@openbsd.org> |
OpenSSL 0.9.4 merge
|
#
5b37fcf3 |
| 05-Oct-1998 |
ryker <ryker@openbsd.org> |
Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build functionality for shared libs.
Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in th
Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build functionality for shared libs.
Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library.
Needs documentation and help from ports for easy upgrade to full functionality where legally possible.
show more ...
|