| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | tags as requested by miod and tedu | deraadt | 2014-06-12 | 1 | -1/+1 | |
| | | ||||||
| * | http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2016265dfbab162e ↵ | deraadt | 2014-06-07 | 1 | -2/+1 | |
| | | | | | | | | | | | | | | | | | | | | c30718b5e7480add42598158 Don't know the full story, but it looks like a "can't do random perfectly, so do it god awful" problem was found in 2013, and replaced with "only do it badly if a flag is set". New flags (SSL_MODE_SEND_SERVERHELLO_TIME and SSL_MODE_SEND_SERVERHELLO_TIME) were added [Ben Laurie?] to support the old scheme of "use time_t for first 4 bytes of the random buffer". Nothing uses these flags [ecosystem scan by sthen] Fully discourage use of these flags in the future by removing support & definition of them. The buflen < 4 check is also interesting, because no entropy would be returned. No callers passed such small buffers. ok miod sthen | |||||
| * | The DH_free, EC_KEY_free, EVP_PKEY_free and RSA_free functions all have | jsing | 2014-06-07 | 1 | -6/+4 | |
| | | | | | | implicit NULL checks, so there is no point ensuring that the pointer is non-NULL before calling them. | |||||
| * | More KNF. | jsing | 2014-05-31 | 1 | -103/+122 | |
| | | ||||||
| * | TLS would not be entirely functional without extensions, so unifdef | jsing | 2014-05-31 | 1 | -19/+0 | |
| | | | | | | | OPENSSL_NO_TLSEXT. ok tedu@ | |||||
| * | remove some #if 0 code. we don't need any more reminders that we're using | tedu | 2014-05-30 | 1 | -7/+0 | |
| | | | | | a not quite appropriate data structure. ok jsing | |||||
| * | unidef DH, ECDH, and ECDSA. there's no purpose to a libssl without them. | tedu | 2014-05-29 | 1 | -12/+0 | |
| | | | | | ok deraadt jsing | |||||
| * | There is no point in checking if a pointer is non-NULL before calling free, | jsing | 2014-05-28 | 1 | -9/+6 | |
| | | | | | | | | | since free already does this for us. Also remove some pointless NULL assignments, where the result from malloc(3) is immediately assigned to the same variable. ok miod@ | |||||
| * | DeIMPLEMENT libssl. Expand the IMPLEMENT_* macros since it is far more | jsing | 2014-05-24 | 1 | -3/+38 | |
| | | | | | | | | | readable and one less layer of abstraction. Use C99 initialisers for clarity, grepability and to protect from future field reordering/removal. ok miod@ (tedu@ also thought it was a wonderful idea, beck@ also agreed, but ran away squealing since it reminded him of the VOP layer...) | |||||
| * | Remove SRP and Kerberos support from libssl. These are complex protocols | tedu | 2014-05-05 | 1 | -134/+0 | |
| | | | | | | all on their own and we can't effectively maintain them without using them, which we don't. If the need arises, the code can be resurrected. | |||||
| * | Unifdef -UPKCS1_CHECK and remove SSL_OP_PKCS1_CHECK_[12], this is leftover | miod | 2014-04-23 | 1 | -6/+0 | |
| | | | | | | | | | ``debug'' code from a 15+ years old bugfix and the SSL_OP_PKCS1_CHECK_* constants have had a value of zero since ages. No production code should use them. ok beck@ | |||||
| * | more malloc/realloc/calloc cleanups; ok beck kettenis | deraadt | 2014-04-21 | 1 | -3/+1 | |
| | | ||||||
| * | More KNF and style consistency tweaks | guenther | 2014-04-19 | 1 | -4/+3 | |
| | | ||||||
| * | no longer need to fool emacs indentation and other if (0) oddities. | tedu | 2014-04-17 | 1 | -4/+1 | |
| | | ||||||
| * | always build in RSA and DSA. ok deraadt miod | tedu | 2014-04-17 | 1 | -12/+0 | |
| | | ||||||
| * | Change library to use intrinsic memory allocation functions instead of | beck | 2014-04-17 | 1 | -5/+5 | |
| | | | | | | | | | OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free | |||||
| * | make OPENSSL_NO_HEARTBLEED the default and only option. ok deraadt miod | tedu | 2014-04-14 | 1 | -12/+0 | |
| | | ||||||
| * | So the OpenSSL codebase does "get the time, add it as a random seed" | deraadt | 2014-04-14 | 1 | -2/+0 | |
| | | | | | | | | in a bunch of places inside the TLS engine, to try to keep entropy high. I wonder if their moto is "If you can't solve a problem, at least try to do it badly". ok miod | |||||
| * | First pass at applying KNF to the OpenSSL code, which almost makes it | jsing | 2014-04-14 | 1 | -811/+734 | |
| | | | | | | readable. This pass is whitespace only and can readily be verified using tr and md5. | |||||
| * | Do not include "e_os.h" anymore. Simply pull in the necessary headers. | mpi | 2014-04-13 | 1 | -1/+1 | |
| | | | | | ok miod@, deraadt@ | |||||
| * | Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery. | miod | 2014-04-13 | 1 | -14/+22 | |
| | | ||||||
| * | resolve conflicts | djm | 2012-10-13 | 1 | -10/+184 | |
| | | ||||||
| * | openssl-1.0.0e: resolve conflicts | djm | 2011-11-03 | 1 | -2/+4 | |
| | | ||||||
| * | resolve conflicts, fix local changes | djm | 2010-10-01 | 1 | -36/+415 | |
| | | ||||||
| * | update to openssl-0.9.8i; tested by several, especially krw@ | djm | 2009-01-05 | 1 | -2/+1 | |
| | | ||||||
| * | import of OpenSSL 0.9.8h | djm | 2008-09-06 | 1 | -0/+1156 | |
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |