| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | tags as requested by miod and tedu | deraadt | 2014-06-12 | 1 | -1/+1 |
| | | |||||
| * | http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2016265dfbab162e ↵ | deraadt | 2014-06-07 | 1 | -1/+2 |
| | | | | | | | | | | | | | | | | | | | | c30718b5e7480add42598158 Don't know the full story, but it looks like a "can't do random perfectly, so do it god awful" problem was found in 2013, and replaced with "only do it badly if a flag is set". New flags (SSL_MODE_SEND_SERVERHELLO_TIME and SSL_MODE_SEND_SERVERHELLO_TIME) were added [Ben Laurie?] to support the old scheme of "use time_t for first 4 bytes of the random buffer". Nothing uses these flags [ecosystem scan by sthen] Fully discourage use of these flags in the future by removing support & definition of them. The buflen < 4 check is also interesting, because no entropy would be returned. No callers passed such small buffers. ok miod sthen | ||||
| * | TLS would not be entirely functional without extensions, so unifdef | jsing | 2014-05-31 | 1 | -19/+0 |
| | | | | | | | OPENSSL_NO_TLSEXT. ok tedu@ | ||||
| * | remove some #if 0 code. we don't need any more reminders that we're using | tedu | 2014-05-30 | 1 | -5/+0 |
| | | | | | a not quite appropriate data structure. ok jsing | ||||
| * | unidef DH, ECDH, and ECDSA. there's no purpose to a libssl without them. | tedu | 2014-05-29 | 1 | -16/+0 |
| | | | | | ok deraadt jsing | ||||
| * | More KNF. | jsing | 2014-05-28 | 1 | -3/+2 |
| | | |||||
| * | DeIMPLEMENT libssl. Expand the IMPLEMENT_* macros since it is far more | jsing | 2014-05-24 | 1 | -3/+38 |
| | | | | | | | | | readable and one less layer of abstraction. Use C99 initialisers for clarity, grepability and to protect from future field reordering/removal. ok miod@ (tedu@ also thought it was a wonderful idea, beck@ also agreed, but ran away squealing since it reminded him of the VOP layer...) | ||||
| * | Remove SRP and Kerberos support from libssl. These are complex protocols | tedu | 2014-05-05 | 1 | -3/+0 |
| | | | | | | all on their own and we can't effectively maintain them without using them, which we don't. If the need arises, the code can be resurrected. | ||||
| * | Make libssl and libcrypto compile with -Werror | beck | 2014-04-23 | 1 | -1/+1 |
| | | | | | ok miod@ | ||||
| * | more malloc/realloc/calloc cleanups; ok beck kettenis | deraadt | 2014-04-21 | 1 | -2/+1 |
| | | |||||
| * | More KNF and style consistency tweaks | guenther | 2014-04-19 | 1 | -4/+3 |
| | | |||||
| * | always build in RSA and DSA. ok deraadt miod | tedu | 2014-04-17 | 1 | -8/+0 |
| | | |||||
| * | fix a potential double free | jsg | 2014-04-17 | 1 | -2/+2 |
| | | | | | ok miod@ | ||||
| * | Change library to use intrinsic memory allocation functions instead of | beck | 2014-04-17 | 1 | -6/+6 |
| | | | | | | | | | OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free | ||||
| * | strncpy(d, s, strlen(s)) is a special kind of stupid. even when it's right, | tedu | 2014-04-16 | 1 | -4/+8 |
| | | | | | | it looks wrong. replace with auditable code and eliminate many strlen calls to improve efficiency. (wait, did somebody say FASTER?) ok beck | ||||
| * | make OPENSSL_NO_HEARTBLEED the default and only option. ok deraadt miod | tedu | 2014-04-14 | 1 | -12/+0 |
| | | |||||
| * | So the OpenSSL codebase does "get the time, add it as a random seed" | deraadt | 2014-04-14 | 1 | -2/+0 |
| | | | | | | | | in a bunch of places inside the TLS engine, to try to keep entropy high. I wonder if their moto is "If you can't solve a problem, at least try to do it badly". ok miod | ||||
| * | First pass at applying KNF to the OpenSSL code, which almost makes it | jsing | 2014-04-14 | 1 | -797/+726 |
| | | | | | | readable. This pass is whitespace only and can readily be verified using tr and md5. | ||||
| * | Do not include "e_os.h" anymore. Simply pull in the necessary headers. | mpi | 2014-04-13 | 1 | -1/+1 |
| | | | | | ok miod@, deraadt@ | ||||
| * | Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery. | miod | 2014-04-13 | 1 | -9/+20 |
| | | |||||
| * | resolve conflicts | djm | 2012-10-13 | 1 | -19/+167 |
| | | |||||
| * | OpenSSL 1.0.0f: merge | djm | 2012-01-05 | 1 | -1/+1 |
| | | |||||
| * | openssl-1.0.0e: resolve conflicts | djm | 2011-11-03 | 1 | -7/+19 |
| | | |||||
| * | resolve conflicts, fix local changes | djm | 2010-10-01 | 1 | -68/+472 |
| | | |||||
| * | update to openssl-0.9.8i; tested by several, especially krw@ | djm | 2009-01-05 | 1 | -3/+3 |
| | | |||||
| * | import of OpenSSL 0.9.8h | djm | 2008-09-06 | 1 | -0/+1147 |
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |