| Age | Commit message (Expand) | Author |
|---|
| 2014-08-11 | Unchecked memory allocation and potential leak upon error in | Miod Vallat |
| 2014-08-11 | Remove now-unused SSL2_STATE as well as ssl2-specific state machine values. | Miod Vallat |
| 2014-08-11 | Currently, ssl3_put_char_by_bytes(NULL, NULL) is just a long handed way | Joel Sing |
| 2014-08-11 | Provide a ssl3_get_cipher_by_id() function that allows ciphers to be looked | Joel Sing |
| 2014-08-10 | Tweak cipher list comments and add missing cipher value comments. | Joel Sing |
| 2014-08-10 | Remove disabled (weakened export and non-ephemeral DH) cipher suites from | Joel Sing |
| 2014-08-10 | Since we no longer need to support SSLv2-style cipher lists, start | Joel Sing |
| 2014-08-08 | Fix CVE-2014-3507, avoid allocating and then leaking a fresh fragment | Philip Guenther |
| 2014-08-07 | Correct test reversed during merge of fix for CVE-2014-3509 | Philip Guenther |
| 2014-08-07 | Fix CVE-2014-3506, DTLS handshake message size checks. From | Philip Guenther |
| 2014-08-07 | Oops, revert changes commited by mistake. The previous commit was supposed | Miod Vallat |
| 2014-08-07 | When you expect a function to return a particular value, don't put a comment | Miod Vallat |
| 2014-08-07 | Fix CVE-2014-3511; TLS downgrade, verbatim diff | Theo de Raadt |
| 2014-08-07 | merge CVE-2014-3510; Fix DTLS anonymous EC(DH) denial of service | Theo de Raadt |
| 2014-08-06 | merge fix for CVE-2014-3509 -- basically a missing s->hit check; ok guenther | Theo de Raadt |
| 2014-08-06 | Prevent a possible use after free by mimicing the s3_srvr.c fixes contributed by | Miod Vallat |
| 2014-07-28 | The RSA, DH, and ECDH temporary key callbacks expect the number of keybits | Philip Guenther |
| 2014-07-17 | avoid sys/param.h; Jonas Termansen | Theo de Raadt |
| 2014-07-17 | Missing bounds check in ssl3_get_certificate_request(), was not spotted in | Miod Vallat |
| 2014-07-14 | Fix memory leak upon error in ssl_parse_clienthello_use_srtp_ext(). | Miod Vallat |
| 2014-07-14 | whitespace | Theo de Raadt |
| 2014-07-13 | Stop leaking internal library pointers in error messages. | Joel Sing |
| 2014-07-13 | Explicitly initialise slen - this was not previously done due to a missing | Joel Sing |
| 2014-07-13 | Convert error handling to SSLerr and ERR_asprintf_error_data. | Joel Sing |
| 2014-07-13 | Convert d2i_SSL_SESSION to ASN1 primitives, instead of the horrific | Joel Sing |
| 2014-07-13 | Remove license introduced with the PSK code, which has since been removed. | Joel Sing |
| 2014-07-13 | Another compression remnant. | Joel Sing |
| 2014-07-13 | Expand the tlsext_sigalg macros. The end result is about the same number | Joel Sing |
| 2014-07-13 | Rewrite i2d_SSL_SESSION to use the ASN1 primitives, rather than using the | Joel Sing |
| 2014-07-13 | The bell tolls for BUF_strdup - Start the migration to using | Bob Beck |
| 2014-07-13 | KNF and some code cleaning. | Joel Sing |
| 2014-07-13 | Another large dose of KNF. | Joel Sing |
| 2014-07-12 | Apply a large dose of KNF. | Joel Sing |
| 2014-07-12 | The correct name for EDH is DHE, likewise EECDH should be ECDHE. | Joel Sing |
| 2014-07-12 | remove double brackets. fixes build with clang. | Jonathan Gray |
| 2014-07-12 | Provide ssl_version_string() function, which uses one of those modern C | Joel Sing |
| 2014-07-12 | Remove extra parenthesis. | Joel Sing |
| 2014-07-12 | need_cert is now always true, so remove the variable and associated | Joel Sing |
| 2014-07-12 | if (x) FOO_free(x) -> FOO_free(x). | Miod Vallat |
| 2014-07-12 | Remove remnants from PSK, KRB5 and SRP. | Joel Sing |
| 2014-07-12 | Place comments in a block above the if statement, rather than attempting | Joel Sing |
| 2014-07-12 | Make disabling last cipher work. | Philip Guenther |
| 2014-07-12 | enough churn, a crank is advised by guenther.. | Theo de Raadt |
| 2014-07-11 | As reported by David Ramos, most consumer of ssl_get_message() perform late | Miod Vallat |
| 2014-07-11 | If the application uses tls_session_secret_cb for session resumption, set | Miod Vallat |
| 2014-07-11 | In ssl3_get_cert_verify(), allow for larger messages to accomodate keys | Miod Vallat |
| 2014-07-11 | Accept CCS again after `finished' has been sent by the client; at this point | Miod Vallat |
| 2014-07-11 | In dtls1_clear_queues(), free buffered_add_data.q correctly, it's made of | Miod Vallat |
| 2014-07-11 | In ssl3_get_client_key_exchange() parsing a GOST session key, invoke the | Miod Vallat |
| 2014-07-11 | Missing initialization for error line in error paths; from Coverity via | Miod Vallat |
