| Age | Commit message (Expand) | Author |
|---|
| 2014-09-22 | Refactor and simplify the ECC extension handling. The existing code | Joel Sing |
| 2014-09-22 | Also check the result from final_finish_mac() against finish_mac_length in | Joel Sing |
| 2014-09-22 | It is possible (although unlikely in practice) for peer_finish_md_len to | Joel Sing |
| 2014-09-21 | Move the TLS padding extension under an SSL_OP_TLSEXT_PADDING option, which | Joel Sing |
| 2014-09-19 | Add CHACHA20 as a cipher symmetric encryption alias. | Joel Sing |
| 2014-09-19 | remove obfuscating parens. man operator is your friend. | Ted Unangst |
| 2014-09-07 | Remove SSL_kDHr, SSL_kDHd and SSL_aDH. No supported ciphersuites use them, | Joel Sing |
| 2014-08-24 | Replace the remaining uses of ssl3_put_cipher_by_char() with s2n and a | Joel Sing |
| 2014-08-23 | Remove non-standard GOST cipher suites (which are not compiled in | Joel Sing |
| 2014-08-23 | Replace the remaining ssl3_get_cipher_by_char() calls with n2s() and | Joel Sing |
| 2014-08-11 | Check the return value of sk_SSL_CIPHER_new_null(), since it allocates | Joel Sing |
| 2014-08-11 | Unchecked memory allocation and potential leak upon error in | Miod Vallat |
| 2014-08-11 | Remove now-unused SSL2_STATE as well as ssl2-specific state machine values. | Miod Vallat |
| 2014-08-11 | Currently, ssl3_put_char_by_bytes(NULL, NULL) is just a long handed way | Joel Sing |
| 2014-08-11 | Provide a ssl3_get_cipher_by_id() function that allows ciphers to be looked | Joel Sing |
| 2014-08-10 | Tweak cipher list comments and add missing cipher value comments. | Joel Sing |
| 2014-08-10 | Remove disabled (weakened export and non-ephemeral DH) cipher suites from | Joel Sing |
| 2014-08-10 | Since we no longer need to support SSLv2-style cipher lists, start | Joel Sing |
| 2014-08-08 | Fix CVE-2014-3507, avoid allocating and then leaking a fresh fragment | Philip Guenther |
| 2014-08-07 | Correct test reversed during merge of fix for CVE-2014-3509 | Philip Guenther |
| 2014-08-07 | Fix CVE-2014-3506, DTLS handshake message size checks. From | Philip Guenther |
| 2014-08-07 | Oops, revert changes commited by mistake. The previous commit was supposed | Miod Vallat |
| 2014-08-07 | When you expect a function to return a particular value, don't put a comment | Miod Vallat |
| 2014-08-07 | Fix CVE-2014-3511; TLS downgrade, verbatim diff | Theo de Raadt |
| 2014-08-07 | merge CVE-2014-3510; Fix DTLS anonymous EC(DH) denial of service | Theo de Raadt |
| 2014-08-06 | merge fix for CVE-2014-3509 -- basically a missing s->hit check; ok guenther | Theo de Raadt |
| 2014-08-06 | Prevent a possible use after free by mimicing the s3_srvr.c fixes contributed by | Miod Vallat |
| 2014-07-28 | The RSA, DH, and ECDH temporary key callbacks expect the number of keybits | Philip Guenther |
| 2014-07-17 | avoid sys/param.h; Jonas Termansen | Theo de Raadt |
| 2014-07-17 | Missing bounds check in ssl3_get_certificate_request(), was not spotted in | Miod Vallat |
| 2014-07-14 | Fix memory leak upon error in ssl_parse_clienthello_use_srtp_ext(). | Miod Vallat |
| 2014-07-14 | whitespace | Theo de Raadt |
| 2014-07-13 | Stop leaking internal library pointers in error messages. | Joel Sing |
| 2014-07-13 | Explicitly initialise slen - this was not previously done due to a missing | Joel Sing |
| 2014-07-13 | Convert error handling to SSLerr and ERR_asprintf_error_data. | Joel Sing |
| 2014-07-13 | Convert d2i_SSL_SESSION to ASN1 primitives, instead of the horrific | Joel Sing |
| 2014-07-13 | Remove license introduced with the PSK code, which has since been removed. | Joel Sing |
| 2014-07-13 | Another compression remnant. | Joel Sing |
| 2014-07-13 | Expand the tlsext_sigalg macros. The end result is about the same number | Joel Sing |
| 2014-07-13 | Rewrite i2d_SSL_SESSION to use the ASN1 primitives, rather than using the | Joel Sing |
| 2014-07-13 | The bell tolls for BUF_strdup - Start the migration to using | Bob Beck |
| 2014-07-13 | KNF and some code cleaning. | Joel Sing |
| 2014-07-13 | Another large dose of KNF. | Joel Sing |
| 2014-07-12 | Apply a large dose of KNF. | Joel Sing |
| 2014-07-12 | The correct name for EDH is DHE, likewise EECDH should be ECDHE. | Joel Sing |
| 2014-07-12 | remove double brackets. fixes build with clang. | Jonathan Gray |
| 2014-07-12 | Provide ssl_version_string() function, which uses one of those modern C | Joel Sing |
| 2014-07-12 | Remove extra parenthesis. | Joel Sing |
| 2014-07-12 | need_cert is now always true, so remove the variable and associated | Joel Sing |
| 2014-07-12 | if (x) FOO_free(x) -> FOO_free(x). | Miod Vallat |
