openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Allow B64_EOF to follow a base64 padding character. This restores previous	jsing	2014-08-06	1	-2/+3
\| \| \| \| \| \| \| \|	behaviour that allows a PEM block to be fed through the base64 decoder. Reported by Dmitry Eremin-Solenikov on tech@ ok deraadt@ tedu@
*	Only import cryptlib.h in the four source files that actually need it.	jsing	2014-07-11	1	-2/+1
\| \| \| \| \| \| \| \|	Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
*	Stop including standard headers via cryptlib.h - pull in the headers that	jsing	2014-07-10	1	-1/+3
\| \| \| \| \| \|	are needed in the source files that actually require them. ok beck@ miod@
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	More KNF.	jsing	2014-05-15	1	-2/+2
\|
*	Add checks for invalid base64 encoded data, specifically relating to the	jsing	2014-05-03	1	-0/+12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	handling of padding. This fixes a crash that can be triggered by feeding base64 data followed by 64 or more padding characters, which results in a negative output length. This issue was reported by David Ramos, although the same bug has been sitting in the OpenSSL RT since 2011: https://rt.openssl.org/Ticket/Display.html?id=2608 Worse still, BIO_read seems to be completely unable to detect that the base64 input was invalid/corrupt - in particular, enabling BIO_FLAGS_BASE64_NO_NL results in a stream of zero value bytes rather than no input (possibly a good replacement for /dev/null...), which could result in nasty consequences. Prior to this fix some zero value bytes were also injected without this flag being enabled. The recently added base64 regress triggers and documents these issues (and also ensures that this change retains functional behaviour).
*	It is definitly not the correct spelling.	jsing	2014-05-03	1	-2/+2
\|
*	KNF.	jsing	2014-05-03	1	-261/+263
\|
*	Send the rotIBM stream cipher (ebcdic) to Valhalla to party for eternity	beck	2014-04-15	1	-11/+0
\| \| \| \| \|	with the bearded ones... some API's that nobody should be using will dissapear with this commit.
*	openssl-1.0.0e: resolve conflicts	djm	2011-11-03	1	-2/+1
\|
*	resolve conflicts, fix local changes	djm	2010-10-01	1	-2/+2
\|
*	resolve conflicts	djm	2008-09-06	1	-5/+5
\|
*	resolve conflicts	djm	2006-06-27	1	-1/+1
\|
*	merge 0.9.7b with local changes; crank majors for libssl/libcrypto	markus	2003-05-12	1	-0/+2
\|
*	OpenSSL 0.9.7 stable 2002 05 08 merge	beck	2002-05-15	1	-0/+7
\|
*	openssl-engine-0.9.6 merge	beck	2000-12-15	1	-0/+10
\|
*	OpenSSL 0.9.5 merge	beck	2000-03-19	1	-2/+2
\| \| \| \| \| \|	warning this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2 if you are using the ssl26 packages for ssh and other things to work you will need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-34/+23
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+438
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.