summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Collapse)Author
2008-05-07remove duplicates; remove des_random_key; remove unused; sort MLINKS; ok jmc@Markus Friedl
2008-02-26fix memory leak (in one case of unaligned buffers); from Markus KvetterTheo de Raadt
ok markus
2007-10-10Replace use of strcpy(3) and other pointer goo inMoritz Jodeit
SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@
2007-09-27Fix off-by-one buffer overflow in SSL_get_shared_ciphers().Moritz Jodeit
From OpenSSL_0_9_8-stable branch. ok djm@
2007-09-10Proper use of fseek/fseeko macros.Tobias Stoeckmann
OK joris@, otto@
2007-08-21http://openssl.org/news/patch-CVE-2007-3108.txt; ok pval, deraadtMarkus Friedl
2007-08-06Correctly NUL terminate the message buffer that is used with theClaudio Jeker
-starttls option. Without this openssl s_client -starttls crashed with malloc.conf -> J. OK deraadt@, hshoexer@
2007-05-26More comment typos from Diego Casati. Including winners like funtion, allmost,Kenneth R Westerback
oustside, seqencer, toghether, nessissary, etc.
2007-04-06Add proper checks against fgets failure. From Charles Longeau.Ray Lai
OK moritz@, millert@, and jaredy@.
2007-03-28Add the cRLSign bit by default, so that certs generated using this fileChad Loder
will be able to sign CRLs. OK reyk, hshoexer, millert
2007-03-20remove some bogus *p tests from charles longeauTed Unangst
ok deraadt millert
2007-02-17remove two expired certificates, diff from <Christian_Rusch@genua.de>Alexander von Gernler
ok jakob@
2007-01-03Fix format string misuse in kssl_err_set(), which is notMoritz Jodeit
called with user-supplied strings at the moment. ok markus@
2006-11-09add openssl PEM_* manpages; ok deraadt, hshoexer, djmMarkus Friedl
2006-10-14architecture sh (landisk) is little endian.Dale Rahn
2006-10-11Initial config for sh, copied from arm.Jonathan Gray
ok miod@ drahn@
2006-10-04openssl security fixes, diff from markus@, ok & "commit it" djm@Peter Valchev
http://www.openssl.org/news/secadv_20060928.txt for more
2006-09-25Use S_IS* macros insted of masking with S_IF* flags. The latter mayOtto Moerbeek
have multiple bits set, which lead to surprising results. Spotted by Paul Stoeber. ok djm@
2006-09-09fix RSA signature padding vulnerability in OpenSSL libcrypto CVE-2006-4339;Damien Miller
ok beck@ miod@
2006-06-27crank shlib_versionDamien Miller
2006-06-27resolve conflictsDamien Miller
2006-06-27import of openssl-0.9.7jDamien Miller
2006-06-12add class 1 and class 3 root certificates from CAcert.org. ok beck@Jakob Schlyter
2006-06-08potential fd leak (we will fix this before we move to cloning)Theo de Raadt
2006-06-07remove expired certificates. ok beck@Jakob Schlyter
2006-06-07update a couple of existing CAs that has been changed. ok beck@Jakob Schlyter
2006-06-07reformat using 'openssl x509 -text -fingerprint -sha1' and sort byJakob Schlyter
'openssl x509 -hash'. ok beck@
2006-06-07back out last patch due to updated committed prematurelyJakob Schlyter
2006-06-07reformat using 'openssl x509 -text -fingerprint -sha1' and sort byJakob Schlyter
'openssl x509 -hash'. ok beck@
2006-05-14Add a -hex option to 'rand' to output hexadecimal output.Matthieu Herrb
ok djm@ miod@, man page help from jmc@.
2006-05-12remove an 'is' from the comment to make the sentence correct.Felix Kronlage
ok jmc@, mbalmer@
2006-05-04backport checks for degenerate Diffie-Hellman public exponents fromDamien Miller
OpenSSL-0.9.8a, where they were added without a corresponding patch to 0.9.7 or an advisory! ok theo@ markus@
2006-03-14make BN_is_prime() realise that 2 is, in fact, a prime number.Damien Miller
from OpenSSL CVS; ok otto@ deraadt@
2005-11-24use WANTLINT= (on all architectures)Theo de Raadt
2005-10-22fix MLINKS;Jason McIntyre
from andreas schweitzer (pr #4566); ok dtucker@
2005-10-11fix potential SSL 2.0 rollback ↵Markus Friedl
(http://www.openssl.org//news/secadv_20051011.txt) from http://www.openssl.org/news/patch-CAN-2005-2969.txt
2005-10-03rename OpenSSL blowfish.3 manpage to BF_set_key.3, so it doesn't clobberDamien Miller
libc manpage of the same name; reported and ok jmc@
2005-08-01kernal->kernel;Jason McIntyre
from netbsd pr #30872 (anonymous post); ok deraadt@ krw@
2005-05-25avoid spurious ld evil string func warning, spotted by david@;Damien Miller
feedback & ok avsm@
2005-05-23no need to byteswap for AES_ASM, from tom@Markus Friedl
2005-05-10import i386 AES asm code from openssl.org; ok and help with testing djm@Markus Friedl
2005-05-10import of OpenSSL 0.9.8hMarkus Friedl
2005-05-10kill strcpy; ok hshoexer@, prodded by david@Damien Miller
2005-04-29typo; from grunk AT pestilenz.org via markus@Damien Miller
2005-04-29remove this junk that snuck in the import; spotted by markus@Damien Miller
2005-04-29crankDamien Miller
2005-04-29adjust for new files in 0.9.7gDamien Miller
2005-04-29increase EVP_MAX_MD_SIZE to something sane (big enough for SHA512)Damien Miller
2005-04-29resolve conflictsDamien Miller
2005-04-29import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@Damien Miller