summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2014-06-13typoMiod Vallat
2014-06-13For now... assume success of getentropy() just like we assumed successTheo de Raadt
2014-06-13Correctly calculate the key block length when using export ciphers.Joel Sing
2014-06-13Overhaul the keyblock handling in ssl3_change_cipher_state(). UseJoel Sing
2014-06-13Correctly calculate the key block length when used with export ciphers.Joel Sing
2014-06-13Remove deprecated RFC2292 ancillary data convenience functions.Christopher Zimmermann
2014-06-13use getgentropy() call. If it fails, things are pretty bad --Theo de Raadt
2014-06-13use getentropy; from matthewTheo de Raadt
2014-06-13Use meaningful variable names, rather than i, j, k and cl.Joel Sing
2014-06-13Do not bother trying to work out of we can reuse a cipher context - justJoel Sing
2014-06-13Separate the comression handling from the cipher/message digest handling inJoel Sing
2014-06-13Swap compress/expand around so they are in the correct order - these endedJoel Sing
2014-06-13The export_key/export_iv variables are only used in the is_export case.Joel Sing
2014-06-13Rename a bunch of variables in ssl3_change_cipher_state() for readability.Joel Sing
2014-06-13Add ChaCha20-Poly1305 based ciphersuites.Joel Sing
2014-06-13Switch the AES-GCM cipher suites to SSL_CIPHER_ALGORITHM2_AEAD.Joel Sing
2014-06-13Combine the MAC handling for both !EVP_CIPH_FLAG_AEAD_CIPHER andJoel Sing
2014-06-13Use SSL3_SEQUENCE_SIZE and if we're going to preincrement we may as wellJoel Sing
2014-06-13Add support for handling SSL_CIPHER_ALGORITHM2_AEAD ciphers, which areJoel Sing
2014-06-13Add an SSL_AEAD_CTX to enable the use of EVP_AEAD with an SSL cipher.Joel Sing
2014-06-13delete a lie; replace with a truthTheo de Raadt
2014-06-13Add new getentropy() system call. Code and pressure from matthew.Theo de Raadt
2014-06-13Remove support for the `opaque PRF input' extension, which draft has expiredMiod Vallat
2014-06-13crank majorTheo de Raadt
2014-06-13Add timingsafe_memcmp().Matthew Dempsky
2014-06-13Add support for MAP_INHERIT_ZERO.Matthew Dempsky
2014-06-12replace atoi() calls with strtol(). Follow the idiomatic pattern in ourTheo de Raadt
2014-06-12tags as requested by miod and teduTheo de Raadt
2014-06-12Disable the "switch to insertion sort" optimization to avoid quadraticTodd C. Miller
2012-10-13import OpenSSL-1.0.1cDamien Miller
2010-10-01import OpenSSL-1.0.0aDamien Miller
2008-09-06import of OpenSSL 0.9.8hDamien Miller
2006-06-27import of openssl-0.9.7jDamien Miller
2014-06-11Really remove the obsolete manpages left by earlier commitChristopher Zimmermann
2014-06-11Remove manpages about deprecated RFC2292 ancillary data convenience functions.Christopher Zimmermann
2014-06-11Stop setting the EVP_MD_CTX_FLAG_NON_FIPS_ALLOW - it has been ignored sinceJoel Sing
2014-06-11Tsk. Tsk. Someone forgot to compile test the other half.Joel Sing
2014-06-11Disable TLS support...Joel Sing
2014-06-11Provide support for non-funopen systems.Theo de Raadt
2014-06-11More KNF.Joel Sing
2014-06-11Fix memory leak: free s if calloc fails.Loganaden Velvindron
2014-06-11c-file-style hints, begone; ok beckTheo de Raadt
2008-09-06import of OpenSSL 0.9.8hDamien Miller
2014-06-10Check return value of EVP_MD_CTX_copy_ex() in ssl3_handshake_mac()Loganaden Velvindron
2014-06-10Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receivesTheo de Raadt
2014-06-10KNF.Joel Sing
2014-06-10KNF.Joel Sing
2014-06-10Remove pointless casts and use c instead of &c[0], since it is the sameJoel Sing
2014-06-10In tls1_cert_verify_mac(), check the return value of EVP_MD_CTX_copy_ex()Joel Sing
2014-06-10Use C99 initialisers for EVP_MD structs, for clarity, grepability and toJoel Sing