|
Name |
|
Date |
Size |
#Lines |
LOC |
| .. | | 03-May-2022 | - |
| compat/ | H | 29-Nov-2021 | - | 4,512 | 3,057 |
| include/ | H | 29-Nov-2021 | - | 1,812 | 1,373 |
| m4/ | H | 29-Nov-2021 | - | 9,745 | 8,817 |
| man/ | H | 29-Nov-2021 | - | 2,874 | 2,790 |
| scripts/ | H | 29-Nov-2021 | - | 32 | 15 |
| LIBTLS_VERSION | H A D | 25-Nov-2021 | 7 | 2 | 1 |
| Makefile.am | H A D | 29-Nov-2021 | 3.7 KiB | 162 | 131 |
| Makefile.am.common | H A D | 28-Sep-2021 | 162 | 4 | 3 |
| Makefile.in | H A D | 29-Nov-2021 | 98.6 KiB | 1,638 | 1,481 |
| README.7 | H A D | 29-Nov-2021 | 2.9 KiB | 156 | 155 |
| VERSION | H A D | 29-Nov-2021 | 7 | 3 | 1 |
| aclocal.m4 | H A D | 29-Nov-2021 | 42.3 KiB | 1,179 | 1,070 |
| compile | H A D | 06-Sep-2021 | 7.2 KiB | 349 | 259 |
| config.guess | H A D | 06-Sep-2021 | 48.2 KiB | 1,749 | 1,522 |
| config.sub | H A D | 06-Sep-2021 | 34.2 KiB | 1,874 | 1,687 |
| configure | H A D | 29-Nov-2021 | 482.3 KiB | 16,823 | 14,116 |
| configure.ac | H A D | 29-Nov-2021 | 1.8 KiB | 67 | 52 |
| depcomp | H A D | 06-Sep-2021 | 23 KiB | 792 | 502 |
| install-sh | H A D | 06-Sep-2021 | 15 KiB | 542 | 352 |
| libtls.pc.in | H A D | 29-Nov-2021 | 334 | 14 | 11 |
| ltmain.sh | H A D | 29-Nov-2021 | 316.6 KiB | 11,150 | 7,980 |
| missing | H A D | 06-Sep-2021 | 6.7 KiB | 216 | 143 |
| tls.c | H A D | 29-Nov-2021 | 19.9 KiB | 1,008 | 788 |
| tls.sym | H A D | 25-Nov-2021 | 2 KiB | 92 | 91 |
| tls_bio_cb.c | H A D | 29-Nov-2021 | 3.5 KiB | 154 | 113 |
| tls_client.c | H A D | 29-Nov-2021 | 10.7 KiB | 489 | 360 |
| tls_config.c | H A D | 29-Nov-2021 | 20.3 KiB | 920 | 740 |
| tls_conninfo.c | H A D | 29-Nov-2021 | 8.2 KiB | 391 | 305 |
| tls_internal.h | H A D | 29-Nov-2021 | 8.2 KiB | 297 | 217 |
| tls_keypair.c | H A D | 02-Oct-2021 | 4.1 KiB | 170 | 126 |
| tls_ocsp.c | H A D | 29-Nov-2021 | 11.1 KiB | 465 | 357 |
| tls_peer.c | H A D | 14-Nov-2017 | 2.3 KiB | 100 | 68 |
| tls_server.c | H A D | 29-Nov-2021 | 10.6 KiB | 454 | 332 |
| tls_util.c | H A D | 29-Nov-2021 | 4.5 KiB | 227 | 157 |
| tls_verify.c | H A D | 29-Nov-2021 | 6.6 KiB | 281 | 180 |
README.7
1.Dd August 3, 2020
2.Dt README 7
3.Os "Causal Agency"
4.\" To view this file, run: man ./README.7
5.
6.Sh NAME
7.Nm LibreTLS
8.Nd libtls for OpenSSL
9.
10.Sh DESCRIPTION
11.Nm
12is a port of
13.Sy libtls
14from LibreSSL
15to OpenSSL.
16.Lk https://man.openbsd.org/tls_init.3 libtls
17is
18.Do
19a new TLS library, designed to make it easier to write foolproof applications
20.Dc .
21.
22.Pp
23.Sy libtls
24provides an excellent new API,
25but LibreSSL can be difficult to install
26on systems which already use OpenSSL.
27.Nm
28aims to make the
29.Sy libtls
30API more easily and widely available.
31.
32.Ss Releases
33.Nm
34is based on
35.Lk https://www.libressl.org/releases.html LibreSSL-portable
36sources.
37.Nm
38releases track LibreSSL releases,
39starting with version 3.2.0.
40If patches must be released
41between LibreSSL releases,
42the letter
43.Sq p
44followed by an increasing digit
45starting from 1
46will be added to the version number.
47.
48.Pp
49.Nm
50release tarballs are available from
51.Lk https://causal.agency/libretls/ .
52.
53.Ss Compatibility
54The
55.Sy libtls
56provided by
57.Nm
58is ABI-compatible with the
59.Sy libtls
60provided by the corresponding LibreSSL release.
61.
62.Pp
63The behaviour of
64.Nm
65and LibreSSL
66differs in how the root certificates
67are loaded by default.
68LibreSSL uses a hardcoded path to a CA bundle file,
69while
70.Nm
71uses the default CA locations of OpenSSL,
72which may include a CA directory.
73To restore the behaviour of LibreSSL,
74call
75.Xr tls_config_set_ca_file 3
76with the path returned by
77.Xr tls_default_ca_cert_file 3 .
78All other behaviour should be identical.
79.
80.Pp
81.Nm
82targets the OpenSSL 1.1.1 series.
83Due to a bug in OpenSSL,
84only versions 1.1.1b and newer
85are known to work.
86.
87.Ss Platform Support
88.Nm
89should work on the same platforms as
90.Lk https://www.libressl.org/releases.html LibreSSL-portable ,
91though it has not been thoroughly tested
92on platforms other than
93Linux,
94.Fx
95and macOS.
96.
97.Ss License
98.Sy libtls
99consists of all new code
100developed as part of
101.Ox
102under
103.Lk https://www.openbsd.org/policy.html "OpenBSD's preferred license"
104of ISC.
105Some
106.Pa compat
107sources are under the 3-clause BSD license
108or the MIT license.
109.
110.Pp
111.Nm
112is not encumbered by the dual-licensing of OpenSSL
113under both the OpenSSL license
114and the original SSLeay license,
115which are incompatible with
116the GNU General Public License.
117When OpenSSL 3.0 is released
118under the Apache 2.0 license,
119software under the GPLv3
120will be able to link against
121.Nm
122and OpenSSL
123without additional permissions.
124.
125.Sh INSTALLING
126To install from a release tarball,
127run the following:
128.Bd -literal -offset indent
129\&./configure
130make all
131make install
132.Ed
133.
134.Pp
135To install from a git checkout,
136.Sy autoconf ,
137.Sy automake
138and
139.Sy libtool
140are required.
141Run the following before continuing
142with the steps above:
143.Bd -literal -offset indent
144autoreconf -fi
145.Ed
146.
147.Sh AUTHORS
148.Nm
149is maintained by
150.An June Bug Aq Mt june@causal.agency .
151.Pp
152LibreSSL is developed by
153.Lk https://www.openbsd.org "The OpenBSD project" .
154.
155.\" To view this file, run: man ./README.7
156