summaryrefslogtreecommitdiffstats
path: root/lib/libssl (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Replace use of strcpy(3) and other pointer goo inmoritz2007-10-102-30/+24
| | | | | | SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@
* Fix off-by-one buffer overflow in SSL_get_shared_ciphers().moritz2007-09-272-22/+22
| | | | | | From OpenSSL_0_9_8-stable branch. ok djm@
* Proper use of fseek/fseeko macros.tobias2007-09-101-1/+1
| | | | OK joris@, otto@
* http://openssl.org/news/patch-CVE-2007-3108.txt; ok pval, deraadtmarkus2007-08-211-13/+65
|
* Correctly NUL terminate the message buffer that is used with theclaudio2007-08-061-4/+24
| | | | | -starttls option. Without this openssl s_client -starttls crashed with malloc.conf -> J. OK deraadt@, hshoexer@
* More comment typos from Diego Casati. Including winners like funtion, allmost,krw2007-05-261-1/+1
| | | | oustside, seqencer, toghether, nessissary, etc.
* Add proper checks against fgets failure. From Charles Longeau.ray2007-04-061-1/+2
| | | | OK moritz@, millert@, and jaredy@.
* Add the cRLSign bit by default, so that certs generated using this filecloder2007-03-281-1/+1
| | | | | | will be able to sign CRLs. OK reyk, hshoexer, millert
* remove some bogus *p tests from charles longeautedu2007-03-203-5/+5
| | | | ok deraadt millert
* remove two expired certificates, diff from <Christian_Rusch@genua.de>grunk2007-02-171-97/+0
| | | | ok jakob@
* Fix format string misuse in kssl_err_set(), which is notmoritz2007-01-031-1/+1
| | | | | | called with user-supplied strings at the moment. ok markus@
* add openssl PEM_* manpages; ok deraadt, hshoexer, djmmarkus2006-11-091-6/+73
|
* architecture sh (landisk) is little endian.drahn2006-10-141-2/+2
|
* Initial config for sh, copied from arm.jsg2006-10-111-0/+180
| | | | ok miod@ drahn@
* openssl security fixes, diff from markus@, ok & "commit it" djm@pvalchev2006-10-0413-3/+85
| | | | http://www.openssl.org/news/secadv_20060928.txt for more
* Use S_IS* macros insted of masking with S_IF* flags. The latter mayotto2006-09-251-2/+2
| | | | | have multiple bits set, which lead to surprising results. Spotted by Paul Stoeber. ok djm@
* fix RSA signature padding vulnerability in OpenSSL libcrypto CVE-2006-4339;djm2006-09-091-0/+17
| | | | ok beck@ miod@
* crank shlib_versiondjm2006-06-274-6/+7
|
* resolve conflictsdjm2006-06-27188-2983/+5055
|
* import of openssl-0.9.7jdjm2006-06-27133-370/+27598
|
* add class 1 and class 3 root certificates from CAcert.org. ok beck@jakob2006-06-121-0/+268
|
* potential fd leak (we will fix this before we move to cloning)deraadt2006-06-081-1/+3
|
* remove expired certificates. ok beck@jakob2006-06-071-541/+0
|
* update a couple of existing CAs that has been changed. ok beck@jakob2006-06-071-105/+87
|
* reformat using 'openssl x509 -text -fingerprint -sha1' and sort byjakob2006-06-071-2551/+2356
| | | | 'openssl x509 -hash'. ok beck@
* back out last patch due to updated committed prematurelyjakob2006-06-071-2356/+2551
|
* reformat using 'openssl x509 -text -fingerprint -sha1' and sort byjakob2006-06-071-2551/+2356
| | | | 'openssl x509 -hash'. ok beck@
* Add a -hex option to 'rand' to output hexadecimal output.matthieu2006-05-141-1/+20
| | | | ok djm@ miod@, man page help from jmc@.
* remove an 'is' from the comment to make the sentence correct.fkr2006-05-121-2/+2
| | | | ok jmc@, mbalmer@
* backport checks for degenerate Diffie-Hellman public exponents fromdjm2006-05-045-1/+37
| | | | | OpenSSL-0.9.8a, where they were added without a corresponding patch to 0.9.7 or an advisory! ok theo@ markus@
* make BN_is_prime() realise that 2 is, in fact, a prime number.djm2006-03-141-1/+3
| | | | from OpenSSL CVS; ok otto@ deraadt@
* use WANTLINT= (on all architectures)deraadt2005-11-242-2/+4
|
* fix MLINKS;jmc2005-10-221-2/+2
| | | | | from andreas schweitzer (pr #4566); ok dtucker@
* fix potential SSL 2.0 rollback (http://www.openssl.org//news/secadv_20051011.txt)markus2005-10-112-6/+2
| | | | from http://www.openssl.org/news/patch-CAN-2005-2969.txt
* rename OpenSSL blowfish.3 manpage to BF_set_key.3, so it doesn't clobberdjm2005-10-031-13/+13
| | | | libc manpage of the same name; reported and ok jmc@
* kernal->kernel;jmc2005-08-012-2/+2
| | | | | from netbsd pr #30872 (anonymous post); ok deraadt@ krw@
* avoid spurious ld evil string func warning, spotted by david@;djm2005-05-251-3/+3
| | | | feedback & ok avsm@
* no need to byteswap for AES_ASM, from tom@markus2005-05-231-1/+9
|
* import i386 AES asm code from openssl.org; ok and help with testing djm@markus2005-05-103-3/+1557
|
* kill strcpy; ok hshoexer@, prodded by david@djm2005-05-102-2/+2
|
* typo; from grunk AT pestilenz.org via markus@djm2005-04-291-2/+1
|
* remove this junk that snuck in the import; spotted by markus@djm2005-04-291-0/+0
|
* crankdjm2005-04-293-3/+3
|
* adjust for new files in 0.9.7gdjm2005-04-291-6/+22
|
* increase EVP_MAX_MD_SIZE to something sane (big enough for SHA512)djm2005-04-291-1/+1
|
* resolve conflictsdjm2005-04-29332-1928/+5751
|
* import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@djm2005-04-29200-111/+45939
|
* typomiod2005-04-251-2/+2
|
* fix lies about snprintfderaadt2005-04-231-2/+3
|
* re-enable DSO_DLFCN on shared lib architectures; ok deraadtmarkus2005-04-011-2/+7
|