Age | Commit message (Collapse) | Author | |
---|---|---|---|
2003-04-05 | Trivial sprintf() -> snprintf() changes. ok deraadt@ | Hakan Olsson | |
2003-04-04 | more strcpy & sprintf murder; ho ok | Theo de Raadt | |
2003-04-03 | Correct off-by-one error in previous commit. millert@ ok. | Hakan Olsson | |
2003-04-03 | str{cat,cpy}/sprintf cleanup. markus@, deraadt@ ok | Hakan Olsson | |
2003-04-03 | Remove crypt macro, it conflicts with unistd.h | Hans Insulander | |
ok markus@ | |||
2003-03-19 | Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS, see | Markus Friedl | |
http://marc.theaimsgroup.com/?l=bugtraq&m=104811162730834&w=2 | |||
2003-03-17 | update to official patch from openssl.org; ok deraadt@, millert@ | Markus Friedl | |
2003-03-16 | Less strcpy/strcat/sprintf. tdeval@ ok. | Hakan Olsson | |
2003-03-15 | Enforce blinding on RSA operations involving private keys. | Hakan Olsson | |
From http://www.openssl.org/~geoff, modified to be enabled at all times. | |||
2003-02-28 | DSAparams_print_pf() -> DSAparams_print_fp() | Cedric Berger | |
ok deraadt@ | |||
2003-02-21 | check for size < 0 when allocating memory, from openssl (-r1.34) | Markus Friedl | |
2003-02-19 | security fix from openssl 0.9.7a: | Markus Friedl | |
In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by performing a MAC computation even if incorrrect block cipher padding has been found. This is a countermeasure against active attacks where the attacker has to distinguish between bad padding and a MAC verification error. (CAN-2003-0078) | |||
2003-01-04 | spelling | Theo de Raadt | |
2002-12-03 | Crank all library major numbers. Needed due to the fact that we | Todd C. Miller | |
now build libraries with propolice enabled. Without this, existing binaries (such as ports/packages) that link with any system library other than libc will fail with an undefined symbol of "___guard" (__guard on ELF). Pointed out by markus@ and discussed with deraadt@ | |||
2002-09-25 | remove rc5 | Markus Friedl | |
2002-09-23 | pull in fix from openssl-0.9.7-stable-SNAP-20020921: | Markus Friedl | |
*) Don't impose a 16-byte length minimum on session IDs in ssl/s3_clnt.c (the SSL 3.0 and TLS 1.0 specifications allow any length up to 32 bytes). [Bodo Moeller] | |||
2002-09-17 | use arc4random instead of /dev/arandom, | Markus Friedl | |
allows RAND_poll after chroot, ok deraadt, fgsch | |||
2002-09-17 | undo local change, HMAC_Init() already does HMAC_CTX_init if(key && md) | Markus Friedl | |
2002-09-16 | sync with 0.9.7-beta3 | Markus Friedl | |
2002-09-16 | remove generated file (from -beta3) | Markus Friedl | |
2002-09-14 | merge with openssl-0.9.7-stable-SNAP-20020911, | Markus Friedl | |
new minor for libcrypto (_X509_REQ_print_ex) tested by miod@, pb@ | |||
2002-09-12 | import openssl-0.9.7-stable-SNAP-20020911 (without idea) | Markus Friedl | |
2002-09-10 | evp.h should not pull in all other header files, especially | Markus Friedl | |
since it's supposed to hid the specific ciphers. this change also avoids problems when evp is used together with kerberos (and <des.h>). ok deraadt@ | |||
2002-09-10 | merge openssl-0.9.7-beta3, tested on vax by miod@ | Markus Friedl | |
2002-09-05 | import openssl-0.9.7-beta3 | Markus Friedl | |
2002-09-05 | merge with 0.9.7-beta1 | Markus Friedl | |
2002-09-05 | import openssl-0.9.7-beta1 | Markus Friedl | |
2002-09-05 | import openssl-0.9.7-beta1 | Markus Friedl | |
2002-09-04 | more cruft | Markus Friedl | |
2002-09-04 | more cruft. | Markus Friedl | |
2002-09-04 | sync formatting with 0.9.7 | Markus Friedl | |
2002-09-04 | execute bourne shell scripts with 'sh' and not with $SHELL | Markus Friedl | |
2002-09-03 | sync tests with 0.9.7-beta1 | Markus Friedl | |
2002-09-03 | remove whitespace changes (keep diffs to 0.9.7-beta1 minimal) | Markus Friedl | |
2002-09-03 | sync these files with openssl-0.9.7-beta1, too | Markus Friedl | |
2002-09-03 | unused files, not part of OpenSSL 0.9.7 | Markus Friedl | |
2002-08-30 | protect <openssl/krb5_asn.h> with OPENSSL_NO_KRB5 | Markus Friedl | |
2002-08-30 | do not modify input files, allows ro source builds; tested by fries@ | Markus Friedl | |
2002-08-05 | Better fixes from openssl cvs; from markus@ | Miod Vallat | |
2002-08-02 | typo; from openssl cvs | Markus Friedl | |
2002-07-30 | sync with http://www.openssl.org/news/patch_20020730_0_9_7.txt | Markus Friedl | |
(adds fix for unused kerberos and engine code, and some more assertions, as well as a 64bit integer string fix for conf_mod.c) | |||
2002-07-30 | apply patches from OpenSSL Security Advisory [30 July 2002], | Markus Friedl | |
http://marc.theaimsgroup.com/?l=openssl-dev&m=102802395104110&w=2 | |||
2002-07-19 | remove #define crypt DES_crypt; ok deraadt@ | Markus Friedl | |
2002-07-16 | correct memset arguments; from Moritz Jodeit <moritz@jodeit.org> via PR/2822. | Federico G. Schwindt | |
2002-07-07 | enviroment -> environment | Jan-Uwe Finck | |
2002-06-20 | remove support for RC4 via /dev/crypto, suggested by Niels; ok provos@ | Markus Friedl | |
2002-06-19 | do not syslog from libraries! | Theo de Raadt | |
2002-06-19 | KNF, -Wall, and other cleanups. still does not failover 100% correctly | Theo de Raadt | |
for operations when /dev/crypto is missing, for instance in chroot | |||
2002-06-19 | stupid stupid bug ja ja ja ja | Theo de Raadt | |
2002-06-18 | unbreak sshd with privsep: open /dev/crypto, keep fd, and call | Markus Friedl | |
CRIOGET per EVP_Init(); ok niklas@, miod@ |