openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2003-03-19	Errata #025 (markus):	miod	1	-14/+12
	Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS
2003-03-19	Errata #024 (markus):	miod	2	-5/+31
	Enforce blinding on RSA operations involving private keys.
2003-02-23	MFC (markus@):	miod	2	-0/+12
	check for size < 0 when allocating memory, from openssl (-r1.34)
2003-02-22	Errata 021:	miod	3	-11/+48
	security fix from openssl 0.9.7a: In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by performing a MAC computation even if incorrrect block cipher padding has been found. This is a countermeasure against active attacks where the attacker has to distinguish between bad padding and a MAC verification error. (CAN-2003-0078) adapted from a patch from Ryan W. Maple, via markus@
2002-11-14	Apply http://www.isc.org/products/BIND/patches/bind4910.diff	millert	1	-22/+37
	Fixes bugs listed in http://www.isc.org/products/BIND/bind-security.html
2002-09-26	Disable the engine stuff	jason	1	-1/+2

2002-09-06	Pull in patch from current:	jason	3	-47/+77
	Fix (itojun): allocate 64K recieve buffer for DNS responses.
2002-08-05	Pull in patch from current:	jason	1	-4/+5
	Better fixes from openssl cvs; from markus@
2002-07-31	Pull in patch from current:	jason	1	-2/+2
	Fix (deraadt): permit calloc(0, N) and calloc(N, 0) -- malloc(0) does the right thing
2002-07-30	Pull in patch from current:	jason	16	-7/+99
	Fix (markus), errata 013: apply patches from OpenSSL Security Advisory [30 July 2002], http://marc.theaimsgroup.com/?l=openssl-dev&m=102802395104110&w=2
2002-07-30	Pull in patch from current:	jason	1	-1/+7
	Fix (deraadt): return failure if integer overflow happens. sigh; too people had to help get this right.
2002-06-26	avoid remote buffer overrun on hostbuf[]. From: Joost Pol <joost@pine.nl>	millert	2	-43/+33
	correct bad practice in the code - it uses two changing variables to manage buffer (buf and buflen). we eliminate buflen and use fixed point (ep) as the ending pointer. From: itojun this fix is critical.
2002-03-12	This commit was manufactured by cvs2git to create branch 'OPENBSD_3_1'.	cvs2svn	554	-134971/+0

2002-03-12	Tack on MagniComp (BSD) license since this originally came from rdist.	millert	1	-2/+30

2002-03-10	check that we got the port before trying to listen	ericj	1	-2/+2
	pr 2436; Alexander Yurchenko <grange@rt.mipt.ru>
2002-03-07	Xr getifaddrs(3) and networking(4) in SEE ALSO section.	millert	1	-1/+4

2002-03-07	Replace SIOCGIFCONF-using NRL versions with KAME versions that use	millert	3	-333/+201
	getifaddrs(3). Fixes problems on LP64 platforms.
2002-02-28	add support for SOCKS4 with option -X socks_version, default is 5; ok ericj@	markus	3	-47/+86

2002-02-25	skip sockaddr correctly if sa_len < sockaddr. from niklas	itojun	1	-0/+3

2002-02-23	Vax O1 workaround no longer needed.	hugh	1	-2/+1

2002-02-23	deraadt@ objects to the caveat remark, so remove it.	miod	1	-11/+1

2002-02-23	Slightly improve wording and punctuation.	miod	1	-4/+4

2002-02-23	Add a caveat section pointing out that people affecting the return value	miod	1	-5/+13
	of getopt() to char variables instead of int lose on arches where char is unsigned by default. Clean the example by not pasting parts of <unistd.h> into it, and by not using atoi(3).
2002-02-23	no more need to explicitly specify regress: _SUBDIRUSE targets anymore.	art	3	-9/+3
	XXX - what about the install targets?
2002-02-19	remove more old cruft	ericj	12	-729/+0

2002-02-19	man page fixes	ericj	1	-8/+5
	from Kevin Steves <stevesk@pobox.com>
2002-02-19	-Wall cleanup.	ericj	2	-4/+8
	from Kevin Steves <stevesk@pobox.com>
2002-02-19	remove old cruft	ericj	12	-831/+0

2002-02-19	We live in an ANSI C world. Remove lots of gratuitous #ifdef __STDC__ cruft.	millert	9	-173/+15

2002-02-18	Rename private err() function to dberr() to avoid collision with	millert	1	-42/+49
	libc's err().
2002-02-18	clean	art	1	-2/+3

2002-02-18	tags cleanup.	art	2	-2/+2

2002-02-18	add longjmp	art	1	-2/+2

2002-02-18	Clean up.	art	2	-2/+5

2002-02-18	clean	art	2	-7/+3

2002-02-18	Return a failure if the test fails don't just fall out from main().	art	1	-2/+5

2002-02-17	Manual cleanup of remaining userland __P use (excluding packages maintained ↵	millert	11	-54/+48
	outside the tree)
2002-02-17	oops, add -U to usage	ericj	1	-2/+2

2002-02-17	add support for connecting too and listening on AF_UNIX sockets.	ericj	2	-13/+111
	connect support from dave@arbor.net.. rest by me
2002-02-17	fix pr#2091. patch applied.	ericj	1	-2/+2
	patch from Brian J. Kifiak <bk@rt.fm> should be looked at closer..
2002-02-16	Part one of userland __P removal. Done with a simple regexp with some minor ↵	millert	33	-145/+145
	hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.
2002-02-16	+ inf	pvalchev	1	-2/+2

2002-02-16	Simple test for isinf(3) and HUGE_VAL; ok art	pvalchev	2	-0/+22

2002-02-16	popen	art	1	-2/+2

2002-02-16	Tests for popen(3). From NetBSD.	art	2	-0/+109

2002-02-12	Remove references to nonexistent man pages. Ok theo, millert.	kjell	1	-2/+1

2002-02-10	but... on vax... des_enc.c requires -O1	deraadt	1	-1/+2

2002-01-24	fix the history refs	mickey	1	-2/+2

2002-01-23	THREAD_UNLOCK() on error before returning; millert@ ok.	fgsch	1	-1/+3

2002-01-21	Special case a_strnid.c on vax.	hugh	1	-1/+5