Age | Commit message (Collapse) | Author | |
---|---|---|---|
2004-01-23 | evp api and manual page for acss | Hans-Joerg Hoexer | |
ok deraadt@ markus@ | |||
2004-01-23 | Add acss to libcrypto. | Hans-Joerg Hoexer | |
ok deraadt@ markus@ | |||
2003-11-18 | use bn_asm_vax.S (from netbsd); test + ok by miod | Markus Friedl | |
use asm code for i386, except for the CBC code, because it is not clean PIC code. add <machime/asm.h> support to x86unix.pl tested by: nick (on 30386), henning, djm, tedu, jmc and more; no shlib minor crank necessary, only internal symbols changed. | |||
2003-11-13 | remove obsolete files | Markus Friedl | |
2003-11-11 | merge 0.9.7c; minor bugsfixes; | Markus Friedl | |
API addition: ERR_release_err_state_table [make includes before you build libssl/libcrypto] | |||
2003-11-11 | import 0.9.7c | Markus Friedl | |
2003-11-11 | import 0.9.7c | Markus Friedl | |
2003-10-25 | don't destroy old pointer if realloc fails; from Daniel Lucq; ok deraadt@ | Markus Friedl | |
2003-10-01 | Correct some off-by-ones. They currently don't matter, but this | Chad Loder | |
is for future safety and consistency. OK krw@, markus@ | |||
2003-09-30 | more fixes from 0.9.7c, ok deraadt, cloder | Markus Friedl | |
2003-09-30 | security fix from http://www.openssl.org/news/secadv_20030930.txt | Markus Friedl | |
see also http://cvs.openssl.org/chngview?cn=11471 | |||
2003-09-29 | Revert BN_cmp() change. Its arguments are const. Spotted by miod@. | Otto Moerbeek | |
ok deraadt@ | |||
2003-09-25 | Return immediately if argument to BN_sub_word is zero. | Otto Moerbeek | |
ok markus@ deraadt@ | |||
2003-09-25 | Use BN_is_zero(), not x->top == 0 to test if a BN is zero. | Otto Moerbeek | |
ok markus@ deraadt@ | |||
2003-09-25 | Add extra calls to bn_fix_top() in BN_cmp(), since some functions may | Otto Moerbeek | |
leave an invalid BN. ok markus@ deraadt@ | |||
2003-08-25 | You shall NOT BREAK THE TREE | Theo de Raadt | |
2003-08-25 | Setup /dev/crypto early (SSL_library_init) to make sure it's actually done | Jason Wright | |
for all applications; ok markus and deraadt | |||
2003-08-21 | Do not produce a corrupt BIGNUM when adding 0 to 0 using BN_add_word(). | Otto Moerbeek | |
ok markus@ | |||
2003-08-07 | support AES with 192 and 256 bit keys, too. | Markus Friedl | |
tested with kern.cryptodevallowsoft=1; ok deraadt@ | |||
2003-08-06 | Remove some double semicolons (hmm, do two semis equal a maxi?). | Todd C. Miller | |
I've skipped the GNU stuff for now. From Patrick Latifi. | |||
2003-06-13 | obsolete | Markus Friedl | |
2003-06-03 | nuke term 3, since we're all in ~deraadt/terms and I clued in now. | Bob Beck | |
2003-05-12 | merge 0.9.7b with local changes; crank majors for libssl/libcrypto | Markus Friedl | |
2003-05-11 | import 0.9.7b (without idea and rc5) | Markus Friedl | |
2003-04-08 | remove printf("bar\n"); | Markus Friedl | |
2003-04-06 | sprintf->snprintf. deraadt@ suggestions and ok | Hakan Olsson | |
2003-04-05 | Trivial sprintf() -> snprintf() changes. ok deraadt@ | Hakan Olsson | |
2003-04-04 | more strcpy & sprintf murder; ho ok | Theo de Raadt | |
2003-04-03 | Correct off-by-one error in previous commit. millert@ ok. | Hakan Olsson | |
2003-04-03 | str{cat,cpy}/sprintf cleanup. markus@, deraadt@ ok | Hakan Olsson | |
2003-04-03 | Remove crypt macro, it conflicts with unistd.h | Hans Insulander | |
ok markus@ | |||
2003-03-19 | Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS, see | Markus Friedl | |
http://marc.theaimsgroup.com/?l=bugtraq&m=104811162730834&w=2 | |||
2003-03-17 | update to official patch from openssl.org; ok deraadt@, millert@ | Markus Friedl | |
2003-03-16 | Less strcpy/strcat/sprintf. tdeval@ ok. | Hakan Olsson | |
2003-03-15 | Enforce blinding on RSA operations involving private keys. | Hakan Olsson | |
From http://www.openssl.org/~geoff, modified to be enabled at all times. | |||
2003-02-28 | DSAparams_print_pf() -> DSAparams_print_fp() | Cedric Berger | |
ok deraadt@ | |||
2003-02-21 | check for size < 0 when allocating memory, from openssl (-r1.34) | Markus Friedl | |
2003-02-19 | security fix from openssl 0.9.7a: | Markus Friedl | |
In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by performing a MAC computation even if incorrrect block cipher padding has been found. This is a countermeasure against active attacks where the attacker has to distinguish between bad padding and a MAC verification error. (CAN-2003-0078) | |||
2003-01-04 | spelling | Theo de Raadt | |
2002-12-03 | Crank all library major numbers. Needed due to the fact that we | Todd C. Miller | |
now build libraries with propolice enabled. Without this, existing binaries (such as ports/packages) that link with any system library other than libc will fail with an undefined symbol of "___guard" (__guard on ELF). Pointed out by markus@ and discussed with deraadt@ | |||
2002-09-25 | remove rc5 | Markus Friedl | |
2002-09-23 | pull in fix from openssl-0.9.7-stable-SNAP-20020921: | Markus Friedl | |
*) Don't impose a 16-byte length minimum on session IDs in ssl/s3_clnt.c (the SSL 3.0 and TLS 1.0 specifications allow any length up to 32 bytes). [Bodo Moeller] | |||
2002-09-17 | use arc4random instead of /dev/arandom, | Markus Friedl | |
allows RAND_poll after chroot, ok deraadt, fgsch | |||
2002-09-17 | undo local change, HMAC_Init() already does HMAC_CTX_init if(key && md) | Markus Friedl | |
2002-09-16 | sync with 0.9.7-beta3 | Markus Friedl | |
2002-09-16 | remove generated file (from -beta3) | Markus Friedl | |
2002-09-14 | merge with openssl-0.9.7-stable-SNAP-20020911, | Markus Friedl | |
new minor for libcrypto (_X509_REQ_print_ex) tested by miod@, pb@ | |||
2002-09-12 | import openssl-0.9.7-stable-SNAP-20020911 (without idea) | Markus Friedl | |
2002-09-10 | evp.h should not pull in all other header files, especially | Markus Friedl | |
since it's supposed to hid the specific ciphers. this change also avoids problems when evp is used together with kerberos (and <des.h>). ok deraadt@ | |||
2002-09-10 | merge openssl-0.9.7-beta3, tested on vax by miod@ | Markus Friedl | |