| Age | Commit message (Expand) | Author |
|---|
| 2017-03-16 | Fix overly-conservative overflow checks on mulitplications and add checks | Darren Tucker |
| 2017-03-15 | use recallocarray to resize buffer - ensures that detritus from previous | Theo de Raadt |
| 2017-03-15 | Collapse underflow and overflow checks into a single block. | Darren Tucker |
| 2017-03-15 | Catch integer underflow in scan_scaled reported by Nicolas Iooss. | Darren Tucker |
| 2017-03-14 | Use a macro for the initial length of the buffer instead of 127; OK deraadt@ | Todd C. Miller |
| 2017-03-14 | don't need to handle the malloc case special, since realloc works | Theo de Raadt |
| 2017-03-13 | - no KERN_RND: from schwarze | Jason McIntyre |
| 2017-03-13 | for each sysctl name, attach the variable name as seen by sysctl(8); | Jason McIntyre |
| 2017-03-11 | fix signed integer overflow in scan_scaled. Found by Nicolas Iooss | Damien Miller |
| 2017-03-11 | shuffle back: wxabort is described in sysctl(3); | Jason McIntyre |
| 2017-03-11 | repair Xr, and point to sysctl(8) instead because sysctl(3) fails to | Theo de Raadt |
| 2017-03-10 | Remove the handshake digests and related code, replacing remaining uses | Joel Sing |
| 2017-03-10 | Switch CBB to use recallocarray() - this ensures that we do not leak | Joel Sing |
| 2017-03-10 | First pass at cleaning up the tls1_P_hash() function - remove a pointless | Joel Sing |
| 2017-03-10 | Make tls1_PRF() non-static so it can be regress tested. | Joel Sing |
| 2017-03-08 | Correct arm64 sigprocmask parameter passing in setjmp/longjmp calls. | Dale Rahn |
| 2017-03-07 | If tcsetpgrp() is called by a background process and there is a | Todd C. Miller |
| 2017-03-07 | Correctly handle TLS PRF with MD5+SHA1 - the secret has to be partitioned | Joel Sing |
| 2017-03-07 | Some tweaks from jmc@ and describe better what recallocarray does; | Otto Moerbeek |
| 2017-03-06 | recallocarray bump | Otto Moerbeek |
| 2017-03-06 | Introducing recallocarray(3), a blend of calloc(3) and reallocarray(3) | Otto Moerbeek |
| 2017-03-06 | size is unsigned so using ==0 not <=0 when checking for buffer exhaustion | Todd C. Miller |
| 2017-03-06 | Pull in a change from the bind 8 resolver that fixes a potential | Todd C. Miller |
| 2017-03-06 | Clean up and simplify the tls1_PRF() implementation now that we have a | Joel Sing |
| 2017-03-05 | Correctly convert an SSLv2 challenge into an SSLv3/TLS client random by | Joel Sing |
| 2017-03-05 | Provide a rolling handshake hash that commences as soon as the cipher | Joel Sing |
| 2017-03-05 | Convert various handshake message generation functions to CBB. | Joel Sing |
| 2017-03-04 | Drop the second argument of dtls1_set_message_header() and make it a void | Joel Sing |
| 2017-03-04 | Call ssl3_handshake_write() instead of ssl3_do_write() - this was missed | Joel Sing |
| 2017-03-03 | Ensure MD and key initialized before processing HMAC | Kinichiro Inoguchi |
| 2017-03-02 | document EPERM error when connect(2)ing. | Sebastian Benoit |
| 2017-03-02 | fix error in Dt; from robert klein | Jason McIntyre |
| 2017-03-01 | Convert ssl3_{get,send}_server_key_exchange() to EVP_md5_sha1(). | Joel Sing |
| 2017-03-01 | Include EVP_md5_sha1() via OpenSSL_add_all_digests(). | Joel Sing |
| 2017-02-28 | Bump minors due to symbol addition. | Joel Sing |
| 2017-02-28 | Document EVP_md5_sha1(). | Joel Sing |
| 2017-02-28 | Add an EVP interface that provides concatenated MD5+SHA1 hashes, which are | Joel Sing |
| 2017-02-28 | Fix typo in issuingDistributionPoint description. | Joel Sing |
| 2017-02-28 | Stop pretending that MD5 and SHA1 might not exist - rather than locating | Joel Sing |
| 2017-02-27 | use Dv, for consistency; from bruno flueckiger | Jason McIntyre |
| 2017-02-27 | Add support for RES_USE_DNSSEC | Jeremie Courreges-Anglas |
| 2017-02-27 | Recognize and allow bits AD and CD in DNS replies. | Jeremie Courreges-Anglas |
| 2017-02-27 | Put a common flags field in the query struct, rather than in some | Jeremie Courreges-Anglas |
| 2017-02-27 | RELRO means the __{got,plt}_{start,end} symbols are superfluous | Philip Guenther |
| 2017-02-26 | Our certbegin/certend is always PIC, so remove the non-PIC MD_SECT_CALL_FUNC() | Mark Kettenis |
| 2017-02-26 | Use a long branch (using movw/movt) to implement MD_SECT_CALL_FUNC. | Mark Kettenis |
| 2017-02-25 | Provide libc++abi as shared library as well. Discussed and requested | Patrick Wildt |
| 2017-02-24 | Add the following root CAs, from SECOM Trust Systems / Security Communication | Stuart Henderson |
| 2017-02-23 | The assembly for sigpending(2) wasn't correctly implemented either. I | Patrick Wildt |
| 2017-02-23 | SHA-1 collisions have now been found so update some man pages. As noted by | Daniel Dickman |
