Up to [local] / src / usr.sbin / ocspcheck
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.17 / (download) - annotate - [select for diffs], Wed Apr 19 12:58:16 2023 UTC (13 months, 2 weeks ago) by jsg
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4,
HEAD
Changes since 1.16: +1 -2 lines
Diff to previous 1.16 (colored)
remove duplicate includes
Revision 1.16 / (download) - annotate - [select for diffs], Thu Dec 15 08:07:03 2022 UTC (17 months, 3 weeks ago) by florian
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored)
The argument to ctype functions must be EOF or representable as an unsigned char. Casting to int is particularly useless because that's what the compiler already does. We need to prevent sign extension, not write down that we want sign extension. OK deraadt, kn, miod, op
Revision 1.15 / (download) - annotate - [select for diffs], Tue Sep 14 16:37:20 2021 UTC (2 years, 8 months ago) by tb
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1,
OPENBSD_7_0_BASE,
OPENBSD_7_0
Changes since 1.14: +2 -2 lines
Diff to previous 1.14 (colored)
Add missing void to definition of http_init(). ok deraadt florian
Revision 1.14 / (download) - annotate - [select for diffs], Wed Jul 14 13:33:57 2021 UTC (2 years, 10 months ago) by kn
Branch: MAIN
Changes since 1.13: +1 -6 lines
Diff to previous 1.13 (colored)
Remove unneeded calls to tls_init(3) As per the manual and lib/libtls/tls.c revision 1.79 from 2018 "Automatically handle library initialisation for libtls." initialisation is handled automatically by other tls_*(3) functions. Remove explicit tls_init() calls from base to not give the impression of it being needed. Feedback tb OK Tests mestre
Revision 1.13 / (download) - annotate - [select for diffs], Sat Jan 11 17:37:19 2020 UTC (4 years, 4 months ago) by sthen
Branch: MAIN
CVS Tags: OPENBSD_6_9_BASE,
OPENBSD_6_9,
OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.12: +2 -1 lines
Diff to previous 1.12 (colored)
Set "Content-Type: application/ocsp-request" in ocspcheck(1)'s POSTs, it is required by the RFC and some CAs require it (e.g. sectigo). From daharmasterkor at gmail com, ok jca@
Revision 1.12 / (download) - annotate - [select for diffs], Fri Jun 28 13:32:49 2019 UTC (4 years, 11 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.11: +5 -5 lines
Diff to previous 1.11 (colored)
When system calls indicate an error they return -1, not some arbitrary value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
Revision 1.11 / (download) - annotate - [select for diffs], Thu Nov 29 14:25:07 2018 UTC (5 years, 6 months ago) by tedu
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)
update for libtls default cert changes. bonus: this exposed a few missing const qualifiers.
Revision 1.10 / (download) - annotate - [select for diffs], Tue Nov 6 20:41:11 2018 UTC (5 years, 7 months ago) by jsing
Branch: MAIN
Changes since 1.9: +2 -4 lines
Diff to previous 1.9 (colored)
Use TLS_CA_CERT_FILE instead of a separate define. ok beck@ bluhm@ tb@
Revision 1.9 / (download) - annotate - [select for diffs], Sun Mar 26 18:41:02 2017 UTC (7 years, 2 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4,
OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2,
OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.8: +5 -3 lines
Diff to previous 1.8 (colored)
recallocarray() for data buffer from the net. ok beck
Revision 1.8 / (download) - annotate - [select for diffs], Fri Feb 3 08:08:15 2017 UTC (7 years, 4 months ago) by guenther
Branch: MAIN
Changes since 1.7: +4 -3 lines
Diff to previous 1.7 (colored)
Don't use <sys/param.h> from userland without cause. Sort <sys/*> before other includes per style(9) while we're here. ok florian@ bcook@ jsing@ beck@
Revision 1.7 / (download) - annotate - [select for diffs], Wed Feb 1 18:54:37 2017 UTC (7 years, 4 months ago) by beck
Branch: MAIN
Changes since 1.6: +3 -2 lines
Diff to previous 1.6 (colored)
netinet/in.h should be included, and freebsd and some others don't have EAI_NODATA, so make this easier for people from bernard spill
Revision 1.6 / (download) - annotate - [select for diffs], Wed Jan 25 13:31:01 2017 UTC (7 years, 4 months ago) by benno
Branch: MAIN
Changes since 1.5: +54 -56 lines
Diff to previous 1.5 (colored)
bring changes from acme-client over here. ok beck@
Revision 1.5 / (download) - annotate - [select for diffs], Tue Jan 24 10:57:48 2017 UTC (7 years, 4 months ago) by deraadt
Branch: MAIN
Changes since 1.4: +3 -3 lines
Diff to previous 1.4 (colored)
string terminator is called a NUL
Revision 1.4 / (download) - annotate - [select for diffs], Tue Jan 24 10:33:16 2017 UTC (7 years, 4 months ago) by deraadt
Branch: MAIN
Changes since 1.3: +57 -57 lines
Diff to previous 1.3 (colored)
Yes the "if (const == val" idiom provides some safety, but it grates on us too much. ok beck jsing
Revision 1.3 / (download) - annotate - [select for diffs], Tue Jan 24 10:02:11 2017 UTC (7 years, 4 months ago) by beck
Branch: MAIN
Changes since 1.2: +57 -57 lines
Diff to previous 1.2 (colored)
revert accidental commit of theo diff
Revision 1.2 / (download) - annotate - [select for diffs], Tue Jan 24 09:59:45 2017 UTC (7 years, 4 months ago) by beck
Branch: MAIN
Changes since 1.1: +58 -58 lines
Diff to previous 1.1 (colored)
Just don't bother with OpenSSL error strings, they are mostly irrelevant and look gross here anyway.. we don't need them
Revision 1.1 / (download) - annotate - [select for diffs], Tue Jan 24 08:50:57 2017 UTC (7 years, 4 months ago) by beck
Branch: MAIN
New ocspcheck utility to validate a certificate against its ocsp responder and save the reply for stapling ok deraadt@ jsing@