Age | Commit message (Collapse) | Author | |
---|---|---|---|
2008-09-19 | fix some cause of bad TEXTREL on i386 and amd64 | Otto Moerbeek | |
- global function calls in .init sections (diff makes them via PLT) - calls to global functions in aes-586.S (made static or local) - global variable accesses in rc4-x86_64.S (now made via GOT) from djm@large; ok miod@ | |||
2008-09-10 | use one call to arc4random_buf() instead of lots of arc4random() | Damien Miller | |
2008-09-08 | turn off CAST assembler code (i.e. use C implementation) as it has bad | Damien Miller | |
relocations that lead to libcrypto.so being marked TEXTREL; linker-fu from drahn@ "go ahead" deraadt@ | |||
2008-09-07 | sparc now requires this bloated library to be -fPIC | Theo de Raadt | |
2008-09-07 | Fix merge botch. | Mark Kettenis | |
ok miod@ | |||
2008-09-06 | remove duplicate definition of OPENSSL_DSA_MAX_MODULUS_BITS spotted | Damien Miller | |
by dtucker@ | |||
2008-09-06 | remerge local tweaks, update per-arch configuration headers, update | Damien Miller | |
Makefiles, crank shlib_version | |||
2008-09-06 | resolve conflicts | Damien Miller | |
2008-09-06 | import of OpenSSL 0.9.8h | Damien Miller | |
2008-07-28 | Install man pages for the BIO_* libcrypto functions, but not bio.3 | Jonathan Gray | |
as the page doesn't directly describe any functions. ok deraadt@ | |||
2008-07-25 | i have to crank this for a ridiculous reason, to save me about 4 hours of work | Theo de Raadt | |
2008-05-07 | remove duplicates; remove des_random_key; remove unused; sort MLINKS; ok jmc@ | Markus Friedl | |
2008-02-26 | fix memory leak (in one case of unaligned buffers); from Markus Kvetter | Theo de Raadt | |
ok markus | |||
2007-10-10 | Replace use of strcpy(3) and other pointer goo in | Moritz Jodeit | |
SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@ | |||
2007-09-27 | Fix off-by-one buffer overflow in SSL_get_shared_ciphers(). | Moritz Jodeit | |
From OpenSSL_0_9_8-stable branch. ok djm@ | |||
2007-09-10 | Proper use of fseek/fseeko macros. | Tobias Stoeckmann | |
OK joris@, otto@ | |||
2007-08-21 | http://openssl.org/news/patch-CVE-2007-3108.txt; ok pval, deraadt | Markus Friedl | |
2007-08-06 | Correctly NUL terminate the message buffer that is used with the | Claudio Jeker | |
-starttls option. Without this openssl s_client -starttls crashed with malloc.conf -> J. OK deraadt@, hshoexer@ | |||
2007-05-26 | More comment typos from Diego Casati. Including winners like funtion, allmost, | Kenneth R Westerback | |
oustside, seqencer, toghether, nessissary, etc. | |||
2007-04-06 | Add proper checks against fgets failure. From Charles Longeau. | Ray Lai | |
OK moritz@, millert@, and jaredy@. | |||
2007-03-28 | Add the cRLSign bit by default, so that certs generated using this file | Chad Loder | |
will be able to sign CRLs. OK reyk, hshoexer, millert | |||
2007-03-20 | remove some bogus *p tests from charles longeau | Ted Unangst | |
ok deraadt millert | |||
2007-02-17 | remove two expired certificates, diff from <Christian_Rusch@genua.de> | Alexander von Gernler | |
ok jakob@ | |||
2007-01-03 | Fix format string misuse in kssl_err_set(), which is not | Moritz Jodeit | |
called with user-supplied strings at the moment. ok markus@ | |||
2006-11-09 | add openssl PEM_* manpages; ok deraadt, hshoexer, djm | Markus Friedl | |
2006-10-14 | architecture sh (landisk) is little endian. | Dale Rahn | |
2006-10-11 | Initial config for sh, copied from arm. | Jonathan Gray | |
ok miod@ drahn@ | |||
2006-10-04 | openssl security fixes, diff from markus@, ok & "commit it" djm@ | Peter Valchev | |
http://www.openssl.org/news/secadv_20060928.txt for more | |||
2006-09-25 | Use S_IS* macros insted of masking with S_IF* flags. The latter may | Otto Moerbeek | |
have multiple bits set, which lead to surprising results. Spotted by Paul Stoeber. ok djm@ | |||
2006-09-09 | fix RSA signature padding vulnerability in OpenSSL libcrypto CVE-2006-4339; | Damien Miller | |
ok beck@ miod@ | |||
2006-06-27 | crank shlib_version | Damien Miller | |
2006-06-27 | resolve conflicts | Damien Miller | |
2006-06-27 | import of openssl-0.9.7j | Damien Miller | |
2006-06-12 | add class 1 and class 3 root certificates from CAcert.org. ok beck@ | Jakob Schlyter | |
2006-06-08 | potential fd leak (we will fix this before we move to cloning) | Theo de Raadt | |
2006-06-07 | remove expired certificates. ok beck@ | Jakob Schlyter | |
2006-06-07 | update a couple of existing CAs that has been changed. ok beck@ | Jakob Schlyter | |
2006-06-07 | reformat using 'openssl x509 -text -fingerprint -sha1' and sort by | Jakob Schlyter | |
'openssl x509 -hash'. ok beck@ | |||
2006-06-07 | back out last patch due to updated committed prematurely | Jakob Schlyter | |
2006-06-07 | reformat using 'openssl x509 -text -fingerprint -sha1' and sort by | Jakob Schlyter | |
'openssl x509 -hash'. ok beck@ | |||
2006-05-14 | Add a -hex option to 'rand' to output hexadecimal output. | Matthieu Herrb | |
ok djm@ miod@, man page help from jmc@. | |||
2006-05-12 | remove an 'is' from the comment to make the sentence correct. | Felix Kronlage | |
ok jmc@, mbalmer@ | |||
2006-05-04 | backport checks for degenerate Diffie-Hellman public exponents from | Damien Miller | |
OpenSSL-0.9.8a, where they were added without a corresponding patch to 0.9.7 or an advisory! ok theo@ markus@ | |||
2006-03-14 | make BN_is_prime() realise that 2 is, in fact, a prime number. | Damien Miller | |
from OpenSSL CVS; ok otto@ deraadt@ | |||
2005-11-24 | use WANTLINT= (on all architectures) | Theo de Raadt | |
2005-10-22 | fix MLINKS; | Jason McIntyre | |
from andreas schweitzer (pr #4566); ok dtucker@ | |||
2005-10-11 | fix potential SSL 2.0 rollback ↵ | Markus Friedl | |
(http://www.openssl.org//news/secadv_20051011.txt) from http://www.openssl.org/news/patch-CAN-2005-2969.txt | |||
2005-10-03 | rename OpenSSL blowfish.3 manpage to BF_set_key.3, so it doesn't clobber | Damien Miller | |
libc manpage of the same name; reported and ok jmc@ | |||
2005-08-01 | kernal->kernel; | Jason McIntyre | |
from netbsd pr #30872 (anonymous post); ok deraadt@ krw@ | |||
2005-05-25 | avoid spurious ld evil string func warning, spotted by david@; | Damien Miller | |
feedback & ok avsm@ |