Age | Commit message (Expand) | Author |
2016-07-16 | Limit the support of the "backward compatible" ssl2 handshake to only be | Bob Beck |
2016-07-14 | kern.usermount is currently a no-op; | Jason McIntyre |
2016-07-13 | Split the existing TLS cipher suite groups into four: | Joel Sing |
2016-07-10 | zero the read buffer after copying data to user so it doesn't linger. | Ted Unangst |
2016-07-10 | use offsetof to create an offset instead of illegal unaligned pointers | Ted Unangst |
2016-07-10 | Document that SIGTTOU is sent if the process is in the background. | Todd C. Miller |
2016-07-07 | Revert previous - it introduces problems with a common privsep use case. | Joel Sing |
2016-07-07 | call BN_init on temporaries to avoid use-before-set warnings | Brent Cook |
2016-07-06 | J/j is a three valued option, document and fix code to actuall support that | Otto Moerbeek |
2016-07-06 | Check that the given ciphers string is syntactically valid and results in | Joel Sing |
2016-07-06 | Always load CA, key and certificate files at the time the configuration | Joel Sing |
2016-07-06 | Use fstatat() to avoid path surgery. | Philip Guenther |
2016-07-06 | Correctly handle an EOF that occurs prior to the TLS handshake completing. | Joel Sing |
2016-07-05 | remove unneeded duplicate call - spotted by jsing@ | Bob Beck |
2016-07-05 | On systems where we do not have BN_ULLONG defined (most 64-bit systems), | Brent Cook |
2016-07-05 | Missed a reference to dl_prebind.h | Philip Guenther |
2016-07-05 | Add several fixes from OpenSSL to make OCSP work with intermediate | Bob Beck |
2016-07-04 | DEBUGLIBS has been broken since the gcc4 switch, so delete it. CFLAGS | Philip Guenther |
2016-07-03 | introduces new promise "chown" to allow changing owner/group with *chown(2) f... | Sebastien Marie |
2016-06-30 | nptys sysctls were removed | Ted Unangst |
2016-06-30 | Tighten behavior of _rs_allocate failure for portable arc4random implementati... | Brent Cook |
2016-06-30 | Tighten behavior of _rs_allocate on Windows. | Brent Cook |
2016-06-30 | bump to 2.4.2 | Brent Cook |
2016-06-30 | adapt S option: add C, rm F (not relevant with 0 cache and disables | Otto Moerbeek |
2016-06-30 | Remove flags for disabling constant-time operations. | Brent Cook |
2016-06-28 | For the EINVAL case there can be more than a single option. | Todd C. Miller |
2016-06-28 | fts_open() requires that the list passed as argument to contain at least | Todd C. Miller |
2016-06-28 | Add sysctl for arp timers: net.inet.ip.arptimeout (expire timer for resolved | Chris Cappuccio |
2016-06-28 | Do not return an error in fts_open(3) if one of the paths in argv | Todd C. Miller |
2016-06-28 | fix a couple of errors in the page; | Jason McIntyre |
2016-06-28 | Back out previous; otto saw a potential race that could lead to a | Theo Buehler |
2016-06-27 | make proper use of fstatat, as suggested by guenther@ | Marc Espie |
2016-06-27 | defer munmap to after unlocking malloc. this can (unfortunately) be an | Ted Unangst |
2016-06-27 | make the fallback code more accurate (in particular, it should return names | Marc Espie |
2016-06-26 | increase the minimum for auto rounds to 6. that was the previous low bound | Ted Unangst |
2016-06-25 | Fix from kinichiro.inoguchi@gmail.com to ensure that OCSP uses | Bob Beck |
2016-06-25 | Fix the ocsp code to actually check for errors when comparing time values | Bob Beck |
2016-06-21 | Disable DSA_FLAG_NO_EXP_CONSTTIME, always enable constant-time behavior. | Brent Cook |
2016-06-18 | sort previous; | Jason McIntyre |
2016-06-18 | Remove duplicated line. | Reyk Floeter |
2016-06-18 | Add net.inet.{tcp,udp}.rootonly sysctl, to mark which ports | Vincent Gross |
2016-06-18 | Update column width decision | Philip Guenther |
2016-06-18 | Document KTRFAC_{PLEDGE,EXEC{ARGS,ENV}} | Philip Guenther |
2016-06-16 | PSEUDO_NOERROR() is used for syscalls that return now, so need to put | Philip Guenther |
2016-06-13 | On localhost a user program may create a socket splicing loop. | Alexander Bluhm |
2016-06-07 | remove historic note about multiple processes. mostly irrelevant today. | Ted Unangst |
2016-06-07 | Document the net.inet.tcp.synuselimit sysctl; OK bluhm@ jmc@ | Tim van der Molen |
2016-06-06 | Set BN_FLG_CONSTTIME on the correct variable. beck committed wrong fix. | Ted Unangst |
2016-06-06 | Add ERRORS section, from FreeBSD. OK tedu@ | Todd C. Miller |
2016-06-06 | Return EOVERFLOW, not ENOMEM for overflow conditions to match POSIX. | Todd C. Miller |