summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2016-08-31Crank minor due to API additionBob Beck
2016-08-31Avoid undefined-behavior right-shifting by a word-size # of bits.Brent Cook
2016-08-31Bring in functions used by stunnel and exim from BoringSSL - this bringsBob Beck
2016-08-31Fix some very unnecessary convoultion.Bob Beck
2016-08-27Be more strict when parsing TLS extensions.Joel Sing
2016-08-05Do not *printf %s NULLTheo de Raadt
2016-07-31bump for LibreSSL 2.5.xBrent Cook
2016-07-18don't mix code and decls, ok tedu@Brent Cook
2016-07-17use memset to initialize the unionBrent Cook
2016-07-17remove unused OPENSSL_NO_OBJECT caseBrent Cook
2016-07-17Initialize buffers before use, noted by Kinichiro Inoguchi.Brent Cook
2016-07-16Clean up OCSP_check_validity() a bit more.Bob Beck
2016-07-16Limit the support of the "backward compatible" ssl2 handshake to only beBob Beck
2016-07-10zero the read buffer after copying data to user so it doesn't linger.Ted Unangst
2016-07-07call BN_init on temporaries to avoid use-before-set warningsBrent Cook
2016-07-05remove unneeded duplicate call - spotted by jsing@Bob Beck
2016-07-05On systems where we do not have BN_ULLONG defined (most 64-bit systems),Brent Cook
2016-07-05Add several fixes from OpenSSL to make OCSP work with intermediateBob Beck
2016-06-30bump to 2.4.2Brent Cook
2016-06-30Remove flags for disabling constant-time operations.Brent Cook
2016-06-25Fix from kinichiro.inoguchi@gmail.com to ensure that OCSP usesBob Beck
2016-06-25Fix the ocsp code to actually check for errors when comparing time valuesBob Beck
2016-06-21Disable DSA_FLAG_NO_EXP_CONSTTIME, always enable constant-time behavior.Brent Cook
2016-06-06Set BN_FLG_CONSTTIME on the correct variable. beck committed wrong fix.Ted Unangst
2016-06-06Correct a problem that prevents the DSA signing algorithm from runningBob Beck
2016-06-06LibreSSL 2.4.1Brent Cook
2016-05-30deprecate internal use of EVP_[Cipher|Encrypt|Decrypt]_Final.Bob Beck
2016-05-20Fix a short-read bug in the previous version of asn1_d2i_read_bioBrent Cook
2016-05-04fix for integer overflow in encode and encrypt update functions.Ted Unangst
2016-05-04fix a padding oracle in aesni cbc mac check. there must be enough dataTed Unangst
2016-05-04internal only negative types should not be handled here.Ted Unangst
2016-05-04be careful about consuming excessive memory by reading in chunks.Ted Unangst
2016-05-04revert the big change from yesterday to prepare for smaller commits.Ted Unangst
2016-05-03prefer limits.h over sys/limits.hBrent Cook
2016-05-03patch from openssl for multiple issues:Ted Unangst
2016-04-28Crank majors for lib{crypto,ssl,tls} due to symbol removals, symbolJoel Sing
2016-04-28don't go into an unbreakable infinite loop during operations suchTed Unangst
2016-04-28Implement the IETF ChaCha20-Poly1305 cipher suites.Joel Sing
2016-04-28Rename EVP_aead_chacha20_poly1305() to EVP_aead_chacha20_poly1305_old()Joel Sing
2016-04-13Use the correct iv and counter when decrypting the ciphertext forJoel Sing
2016-03-30for some time now mandoc has not required MLINKS to functionJason McIntyre
2016-03-27Merge a memleak fix from BoringSSL 6b6e0b2:Michael McConville
2016-03-21Return zero from two functions on allocation failure instead of alwaysmmcc
2016-03-20" the the " -> " the ", or in a couple of cases replace the superfluousKenneth R Westerback
2016-03-17explicit_bzero for asn1 objects on free. Too often these contain sensitive in...Bob Beck
2016-03-15'accomodate' -> 'accommodate' in comments.Kenneth R Westerback
2016-03-13Fix examples for EVP_PKEY_CTX_set_rsa_padding.Brent Cook
2016-03-12Add error handling to the remaining calls to bn_wexpand().Brent Cook
2016-03-12Remove sentences in RETURN VALUES sections saying that functions withmmcc
2016-03-12Bump for LibreSSL 2.4.0Brent Cook