| Age | Commit message (Expand) | Author |
|---|
| 2014-08-11 | Remove now-unused SSL2_STATE as well as ssl2-specific state machine values. | Miod Vallat |
| 2014-08-11 | Currently, ssl3_put_char_by_bytes(NULL, NULL) is just a long handed way | Joel Sing |
| 2014-08-11 | Provide a ssl3_get_cipher_by_id() function that allows ciphers to be looked | Joel Sing |
| 2014-08-10 | Tweak cipher list comments and add missing cipher value comments. | Joel Sing |
| 2014-08-10 | Remove disabled (weakened export and non-ephemeral DH) cipher suites from | Joel Sing |
| 2014-08-10 | Since we no longer need to support SSLv2-style cipher lists, start | Joel Sing |
| 2014-08-10 | debug level test for clock_gettime() calls should match | Jonathan Gray |
| 2014-08-10 | AF_IMPLINK and AF_BLUETOOTH are gone | Philip Guenther |
| 2014-08-10 | Only need <stdint.h> and not all of <inttypes.h> here | Philip Guenther |
| 2014-08-09 | Only need <stdint.h> and not <inttypes.h> here | Philip Guenther |
| 2014-08-08 | Fix CVE-2014-3507, avoid allocating and then leaking a fresh fragment | Philip Guenther |
| 2014-08-08 | Fix CVE-2014-3508, pretty printing and OID validation: | Philip Guenther |
| 2014-08-07 | Correct test reversed during merge of fix for CVE-2014-3509 | Philip Guenther |
| 2014-08-07 | Fix CVE-2014-3506, DTLS handshake message size checks. From | Philip Guenther |
| 2014-08-07 | Oops, revert changes commited by mistake. The previous commit was supposed | Miod Vallat |
| 2014-08-07 | When you expect a function to return a particular value, don't put a comment | Miod Vallat |
| 2014-08-07 | Fix CVE-2014-3511; TLS downgrade, verbatim diff | Theo de Raadt |
| 2014-08-07 | merge CVE-2014-3510; Fix DTLS anonymous EC(DH) denial of service | Theo de Raadt |
| 2014-08-06 | merge fix for CVE-2014-3509 -- basically a missing s->hit check; ok guenther | Theo de Raadt |
| 2014-08-06 | Prevent a possible use after free by mimicing the s3_srvr.c fixes contributed by | Miod Vallat |
| 2014-08-06 | Allow B64_EOF to follow a base64 padding character. This restores previous | Joel Sing |
| 2014-08-06 | Correct error checks in EVP_read_pw_string_min(): UI_add_input_string() | Philip Guenther |
| 2014-08-06 | Add support for loading the public/private key from memory, rather than | Joel Sing |
| 2014-08-05 | Add $OpenBSD$ tags. | Joel Sing |
| 2014-08-04 | Implement ressl_accept_socket, which allocates a new server connection | Joel Sing |
| 2014-08-04 | Return -1 on error (not 1). | Joel Sing |
| 2014-08-04 | A ressl server needs different configuration from a ressl client - provide | Joel Sing |
| 2014-08-04 | Provide a function that returns a server connection context. | Joel Sing |
| 2014-08-04 | Provide a utility function for loading a private/public keypair. | Joel Sing |
| 2014-08-04 | Improve ressl_{read,write} handling of non-blocking reads/writes. | Joel Sing |
| 2014-08-04 | Free the SSL context first and let the reference counting do its thing. | Joel Sing |
| 2014-08-04 | In chacha_init(), allow for a NULL iv. Reported by znz on github. | Miod Vallat |
| 2014-08-03 | X509_NAME_get_text_by_NID() returns -1 on error so the type | Jonathan Gray |
| 2014-07-29 | Fix a usage string; the proper spelling of 'alot' is 'a lot'. | Bret Lambert |
| 2014-07-28 | Remove SRP code. It contains a bug (this should not surprise anyone), but | Ted Unangst |
| 2014-07-28 | The RSA, DH, and ECDH temporary key callbacks expect the number of keybits | Philip Guenther |
| 2014-07-25 | Add missing year to copyright. | Joel Sing |
| 2014-07-25 | BIO_free() returns immediately when the sole input is NULL. | doug |
| 2014-07-23 | Make queries using the search list for hostname lookups fail with | Eric Faurot |
| 2014-07-23 | level_add_node(): if a memory allocation failure causes us to attempt to clean | Miod Vallat |
| 2014-07-23 | Make sure PEM_def_callback() correctly handles negative buffer sizes; all uses | Miod Vallat |
| 2014-07-23 | Check the return value of the UI functions (including UI_new() which return | Miod Vallat |
| 2014-07-22 | Now that DES_random_key() can be trusted, use it to generate DES keys in the | Miod Vallat |
| 2014-07-22 | In DES_random_key(), force the generated key to the odd parity before checking | Miod Vallat |
| 2014-07-22 | Handle failure of NETSCAPE_SPKI_b64_encode() and don't leak memory | Philip Guenther |
| 2014-07-22 | Kill a bunch more BUF_strdup's - these are converted to have a check for | Bob Beck |
| 2014-07-22 | better match proposed syscall api | bcook |
| 2014-07-21 | protect sysctl path with SYS__sysctl instead; from enh@google, ok bcook | Theo de Raadt |
| 2014-07-21 | Add pthread_sigmask() and raise() to the list of async signal safe | Matthew Dempsky |
| 2014-07-21 | Use explicit_bzero() instead of memset() on buffers going out of scope. | Philip Guenther |
