use case.
sthen@ noticed a problem with missing records on shutdown.
OK sthen@

ok deraadt@

ok deraadt@

ok deraadt@

regress tests but causes tls ciphersuite using sha386 to fail; found the
hard way by henning@.
I can't see anything wrong in the generated assembly code yet, but building
a libcrypto with no assembler code but sha512_block_data_order() is enough
to trigger Henning's issue, so the bug lies there.
No ABI change; ok deraadt@

ok reyk@

Printing strerror() in that case will say result too large, even if rounds is
actually too small. invalid is less specific, but less incorrect.
ok millert

Discussed with/requested by deraadt@ at the conclusion of s2k15.

tls_config_insecure_noverifyname(), so that it is more accurate and keeps
inline with the distinction between DNS hostname and server name.
Requested by tedu@ during s2k15.

ok dlg

No actual change, but makes it easier to reuse the code elsewhere.
Suggested by Andre Smagin

builds will have a bogus /usr/include/openssl/openssl as found by naddy. ok jca@

- comments relevant to other brands of UNIX
- the no-op KSH_VERSION case-block, we only have pdksh
- the case-block for setting aliases based on UNIX brand
together with a comment that falsely encourages to modify this
file instead of putting stuff in $HOME/.kshrc
OK krw@ halex@

than the daemon class' default of 128.  Reminded by/ok ajacoutot@

to initialize the unprivileged user, so the usual rc.d mechanism to set the
class isn't used. Problem reported by otto, ok otto@ ajacoutout@

that order, tls, crypto, ssl.

ok reyk

ok jca sthen

Reported by Stefan Wollny.

Fixes segfault on configuration load time, as reported by Donovan Watteau.

allows to get constraint addresses even if network/DNS is not
available at startup (or system boot).
thumbs up & OK henning@

to avoid swamping it;

ntp_dns some years ago).
OK henning@

OK deraadt@

be enabled, mostly since people use SANs instead.
ok beck@ guenther@

be enabled.
Removes one symbol from libcrypto, however there is no ABI change.
ok beck@ miod@ tedu@

no need to request it ever again.  The only exception is the
escalation of failed constraint checks that might lead into
re-requesting the constraint time from all servers.  Adjust the states
accordingly.
OK henning@

OK henning@ deraadt@

This code is not compiled in and OPENSSL_NO_STORE is already defined in
opensslfeatures.h. No symbol removal for libcrypto.
ok beck@

the functionality.
Requested by henning@
OK beck@ deraadt@

time from HTTPS servers, by parsing the Date: header, and use the
median constraint time as a boundary to verify NTP responses.  This
adds some level of authentication and protection against MITM attacks
while preserving the accuracy of the NTP protocol; without relying on
authentication options for NTP that are basically unavailable at
present.  This is an initial implementation and the semantics will be
improved once it is in the tree.
Discussed with deraadt@ and henning@
OK henning@

ok phessler@ deraadt@

ok deraadt@

OK tedu@ kettenis@

OK henning@

Requested by deraadt@

ok tedu@

this split across files, especially when two of them have less code than
license text.
ok bcook@ beck@ doug@ miod@

also fixing one typo in fts(3) while here

From Michael (lesniewskister AT gmail), thanks!

remove .Tn, and a few minor macro adjustments.
Patch from Kaspars at Bankovskis dot net.