Up to [local] / src / lib / libressl
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.19, Fri Oct 31 13:46:17 2014 UTC (9 years, 7 months ago) by jsing
Branch: MAIN
CVS Tags: HEAD
Changes since 1.18: +1 -1 lines
FILE REMOVED
Rename libressl to libtls to avoid confusion and to make it easier to distinguish between LibreSSL (the project) and libressl (the library). Discussed with many.
Revision 1.18 / (download) - annotate - [select for diffs], Wed Oct 15 21:02:39 2014 UTC (9 years, 7 months ago) by tedu
Branch: MAIN
Changes since 1.17: +2 -4 lines
Diff to previous 1.17 (colored)
Fuck it. No SSLv3; not now, not ever. The API of the future will only support the protocols of the future. (Perhaps a bit late in burning this bridge entirely, but there's no time like the present, esp. with other players now leaning against back compat.)
Revision 1.17 / (download) - annotate - [select for diffs], Wed Oct 15 14:11:47 2014 UTC (9 years, 7 months ago) by jsing
Branch: MAIN
Changes since 1.16: +6 -1 lines
Diff to previous 1.16 (colored)
Clear protocol options before optionally setting them.
Revision 1.16 / (download) - annotate - [select for diffs], Mon Sep 29 15:31:38 2014 UTC (9 years, 8 months ago) by jsing
Branch: MAIN
Changes since 1.15: +12 -1 lines
Diff to previous 1.15 (colored)
Move cipher configuration handling to the shared SSL configuration function so that applies to both the ressl client and server.
Revision 1.15 / (download) - annotate - [select for diffs], Mon Sep 29 15:11:29 2014 UTC (9 years, 8 months ago) by jsing
Branch: MAIN
Changes since 1.14: +18 -1 lines
Diff to previous 1.14 (colored)
Add an option that allows the enabled SSL protocols to be explicitly configured. Discussed with several. ok bcook@
Revision 1.14 / (download) - annotate - [select for diffs], Sun Sep 28 14:45:48 2014 UTC (9 years, 8 months ago) by reyk
Branch: MAIN
Changes since 1.13: +5 -16 lines
Diff to previous 1.13 (colored)
Add a new API function SSL_CTX_use_certificate_chain() that allows to read the PEM-encoded certificate chain from memory instead of a file. This idea is derived from an older implementation in relayd that was needed to use the function with a privep'ed process in a chroot. Now it is time to get it into LibreSSL to make the API more privsep- friendly and to make it available for other programs and the ressl library. ok jsing@ miod@
Revision 1.13 / (download) - annotate - [select for diffs], Sun Sep 28 06:24:00 2014 UTC (9 years, 8 months ago) by tedu
Branch: MAIN
Changes since 1.12: +7 -4 lines
Diff to previous 1.12 (colored)
revamp the config interface to own memory. easier to use correctly without caller worrying about leaks or lifetimes. after feedback from jsing
Revision 1.12 / (download) - annotate - [select for diffs], Fri Aug 15 16:55:32 2014 UTC (9 years, 9 months ago) by tedu
Branch: MAIN
Changes since 1.11: +3 -3 lines
Diff to previous 1.11 (colored)
use void * instead of char *. ok jsing
Revision 1.11 / (download) - annotate - [select for diffs], Wed Aug 6 01:54:01 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6
Changes since 1.10: +72 -10 lines
Diff to previous 1.10 (colored)
Add support for loading the public/private key from memory, rather than directly from file.
Revision 1.10 / (download) - annotate - [select for diffs], Tue Aug 5 12:46:16 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
Changes since 1.9: +1 -0 lines
Diff to previous 1.9 (colored)
Add $OpenBSD$ tags.
Revision 1.9 / (download) - annotate - [select for diffs], Mon Aug 4 16:18:42 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
Changes since 1.8: +3 -0 lines
Diff to previous 1.8 (colored)
A ressl server needs different configuration from a ressl client - provide a specific server configuration function and call this from ressl_configure.
Revision 1.8 / (download) - annotate - [select for diffs], Mon Aug 4 15:58:29 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
Changes since 1.7: +20 -0 lines
Diff to previous 1.7 (colored)
Provide a utility function for loading a private/public keypair.
Revision 1.7 / (download) - annotate - [select for diffs], Mon Aug 4 15:55:26 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
Changes since 1.6: +28 -16 lines
Diff to previous 1.6 (colored)
Improve ressl_{read,write} handling of non-blocking reads/writes.
Revision 1.6 / (download) - annotate - [select for diffs], Mon Aug 4 15:48:01 2014 UTC (9 years, 10 months ago) by jsing
Branch: MAIN
Changes since 1.5: +2 -5 lines
Diff to previous 1.5 (colored)
Free the SSL context first and let the reference counting do its thing.
Revision 1.5 / (download) - annotate - [select for diffs], Sun Jul 13 23:19:02 2014 UTC (9 years, 11 months ago) by jsing
Branch: MAIN
Changes since 1.4: +5 -5 lines
Diff to previous 1.4 (colored)
Tabs, not spaces.
Revision 1.4 / (download) - annotate - [select for diffs], Sun Jul 13 23:06:18 2014 UTC (9 years, 11 months ago) by jsing
Branch: MAIN
Changes since 1.3: +12 -4 lines
Diff to previous 1.3 (colored)
Split the context allocation out from the configuration. This will allow us to properly report errors that occur during configuration processing. Discussed with tedu@
Revision 1.3 / (download) - annotate - [select for diffs], Sun Jul 13 22:42:01 2014 UTC (9 years, 11 months ago) by jsing
Branch: MAIN
Changes since 1.2: +0 -160 lines
Diff to previous 1.2 (colored)
Move the client code into a separate file.
Revision 1.2 / (download) - annotate - [select for diffs], Sun Jul 13 22:13:52 2014 UTC (9 years, 11 months ago) by jsing
Branch: MAIN
Changes since 1.1: +1 -2 lines
Diff to previous 1.1 (colored)
Use a single ressl.h header file. Discussed with beck@ and tedu@.
Revision 1.1 / (download) - annotate - [select for diffs], Sat Jul 12 01:20:24 2014 UTC (9 years, 11 months ago) by jsing
Branch: MAIN
Initial version of libressl - a library that provides a clean, simple, consistent and secure-by-default API for SSL clients (and soon servers). This is a long way from complete and the interface will likely change substantially - committing now so that further work can happen in the tree. Initiated by tedu@ and inspired by discussions with tedu@, beck@ and other developers.