Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Replace use of strcpy(3) and other pointer goo in | 2007-10-10 | 2 | -30/+24 | |
| | | | | | | SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@ | ||||
* | Fix off-by-one buffer overflow in SSL_get_shared_ciphers(). | 2007-09-27 | 2 | -22/+22 | |
| | | | | | | From OpenSSL_0_9_8-stable branch. ok djm@ | ||||
* | Proper use of fseek/fseeko macros. | 2007-09-10 | 1 | -1/+1 | |
| | | | | OK joris@, otto@ | ||||
* | http://openssl.org/news/patch-CVE-2007-3108.txt; ok pval, deraadt | 2007-08-21 | 1 | -13/+65 | |
| | |||||
* | Correctly NUL terminate the message buffer that is used with the | 2007-08-06 | 1 | -4/+24 | |
| | | | | | -starttls option. Without this openssl s_client -starttls crashed with malloc.conf -> J. OK deraadt@, hshoexer@ | ||||
* | More comment typos from Diego Casati. Including winners like funtion, allmost, | 2007-05-26 | 1 | -1/+1 | |
| | | | | oustside, seqencer, toghether, nessissary, etc. | ||||
* | Add proper checks against fgets failure. From Charles Longeau. | 2007-04-06 | 1 | -1/+2 | |
| | | | | OK moritz@, millert@, and jaredy@. | ||||
* | Add the cRLSign bit by default, so that certs generated using this file | 2007-03-28 | 1 | -1/+1 | |
| | | | | | | will be able to sign CRLs. OK reyk, hshoexer, millert | ||||
* | remove some bogus *p tests from charles longeau | 2007-03-20 | 3 | -5/+5 | |
| | | | | ok deraadt millert | ||||
* | remove two expired certificates, diff from <Christian_Rusch@genua.de> | 2007-02-17 | 1 | -97/+0 | |
| | | | | ok jakob@ | ||||
* | Fix format string misuse in kssl_err_set(), which is not | 2007-01-03 | 1 | -1/+1 | |
| | | | | | | called with user-supplied strings at the moment. ok markus@ | ||||
* | add openssl PEM_* manpages; ok deraadt, hshoexer, djm | 2006-11-09 | 1 | -6/+73 | |
| | |||||
* | architecture sh (landisk) is little endian. | 2006-10-14 | 1 | -2/+2 | |
| | |||||
* | Initial config for sh, copied from arm. | 2006-10-11 | 1 | -0/+180 | |
| | | | | ok miod@ drahn@ | ||||
* | openssl security fixes, diff from markus@, ok & "commit it" djm@ | 2006-10-04 | 13 | -3/+85 | |
| | | | | http://www.openssl.org/news/secadv_20060928.txt for more | ||||
* | Use S_IS* macros insted of masking with S_IF* flags. The latter may | 2006-09-25 | 1 | -2/+2 | |
| | | | | | have multiple bits set, which lead to surprising results. Spotted by Paul Stoeber. ok djm@ | ||||
* | fix RSA signature padding vulnerability in OpenSSL libcrypto CVE-2006-4339; | 2006-09-09 | 1 | -0/+17 | |
| | | | | ok beck@ miod@ | ||||
* | crank shlib_version | 2006-06-27 | 4 | -6/+7 | |
| | |||||
* | resolve conflicts | 2006-06-27 | 188 | -2983/+5055 | |
| | |||||
* | import of openssl-0.9.7j | 2006-06-27 | 133 | -370/+27598 | |
| | |||||
* | add class 1 and class 3 root certificates from CAcert.org. ok beck@ | 2006-06-12 | 1 | -0/+268 | |
| | |||||
* | potential fd leak (we will fix this before we move to cloning) | 2006-06-08 | 1 | -1/+3 | |
| | |||||
* | remove expired certificates. ok beck@ | 2006-06-07 | 1 | -541/+0 | |
| | |||||
* | update a couple of existing CAs that has been changed. ok beck@ | 2006-06-07 | 1 | -105/+87 | |
| | |||||
* | reformat using 'openssl x509 -text -fingerprint -sha1' and sort by | 2006-06-07 | 1 | -2551/+2356 | |
| | | | | 'openssl x509 -hash'. ok beck@ | ||||
* | back out last patch due to updated committed prematurely | 2006-06-07 | 1 | -2356/+2551 | |
| | |||||
* | reformat using 'openssl x509 -text -fingerprint -sha1' and sort by | 2006-06-07 | 1 | -2551/+2356 | |
| | | | | 'openssl x509 -hash'. ok beck@ | ||||
* | Add a -hex option to 'rand' to output hexadecimal output. | 2006-05-14 | 1 | -1/+20 | |
| | | | | ok djm@ miod@, man page help from jmc@. | ||||
* | remove an 'is' from the comment to make the sentence correct. | 2006-05-12 | 1 | -2/+2 | |
| | | | | ok jmc@, mbalmer@ | ||||
* | backport checks for degenerate Diffie-Hellman public exponents from | 2006-05-04 | 5 | -1/+37 | |
| | | | | | OpenSSL-0.9.8a, where they were added without a corresponding patch to 0.9.7 or an advisory! ok theo@ markus@ | ||||
* | make BN_is_prime() realise that 2 is, in fact, a prime number. | 2006-03-14 | 1 | -1/+3 | |
| | | | | from OpenSSL CVS; ok otto@ deraadt@ | ||||
* | use WANTLINT= (on all architectures) | 2005-11-24 | 2 | -2/+4 | |
| | |||||
* | fix MLINKS; | 2005-10-22 | 1 | -2/+2 | |
| | | | | | from andreas schweitzer (pr #4566); ok dtucker@ | ||||
* | fix potential SSL 2.0 rollback (http://www.openssl.org//news/secadv_20051011.txt) | 2005-10-11 | 2 | -6/+2 | |
| | | | | from http://www.openssl.org/news/patch-CAN-2005-2969.txt | ||||
* | rename OpenSSL blowfish.3 manpage to BF_set_key.3, so it doesn't clobber | 2005-10-03 | 1 | -13/+13 | |
| | | | | libc manpage of the same name; reported and ok jmc@ | ||||
* | kernal->kernel; | 2005-08-01 | 2 | -2/+2 | |
| | | | | | from netbsd pr #30872 (anonymous post); ok deraadt@ krw@ | ||||
* | avoid spurious ld evil string func warning, spotted by david@; | 2005-05-25 | 1 | -3/+3 | |
| | | | | feedback & ok avsm@ | ||||
* | no need to byteswap for AES_ASM, from tom@ | 2005-05-23 | 1 | -1/+9 | |
| | |||||
* | import i386 AES asm code from openssl.org; ok and help with testing djm@ | 2005-05-10 | 3 | -3/+1557 | |
| | |||||
* | kill strcpy; ok hshoexer@, prodded by david@ | 2005-05-10 | 2 | -2/+2 | |
| | |||||
* | typo; from grunk AT pestilenz.org via markus@ | 2005-04-29 | 1 | -2/+1 | |
| | |||||
* | remove this junk that snuck in the import; spotted by markus@ | 2005-04-29 | 1 | -0/+0 | |
| | |||||
* | crank | 2005-04-29 | 3 | -3/+3 | |
| | |||||
* | adjust for new files in 0.9.7g | 2005-04-29 | 1 | -6/+22 | |
| | |||||
* | increase EVP_MAX_MD_SIZE to something sane (big enough for SHA512) | 2005-04-29 | 1 | -1/+1 | |
| | |||||
* | resolve conflicts | 2005-04-29 | 332 | -1928/+5751 | |
| | |||||
* | import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@ | 2005-04-29 | 200 | -111/+45939 | |
| | |||||
* | typo | 2005-04-25 | 1 | -2/+2 | |
| | |||||
* | fix lies about snprintf | 2005-04-23 | 1 | -2/+3 | |
| | |||||
* | re-enable DSO_DLFCN on shared lib architectures; ok deraadt | 2005-04-01 | 1 | -2/+7 | |
| |