| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | This commit was manufactured by cvs2git to create tag 'OPENBSD_5_8_BASE'.OPENBSD_5_8_BASE | cvs2svn | 2015-08-02 | 1 | -1244/+0 |
| * | Remove workaround for TLS padding bug from SSLeay days. | doug | 2015-07-17 | 1 | -5/+1 |
| * | Keep alerts sorted by alert code. | jsing | 2015-06-17 | 1 | -3/+3 |
| * | Reluctantly add server-side support for TLS_FALLBACK_SCSV. | jsing | 2015-02-22 | 1 | -1/+3 |
| * | Remove useless variables and use the values directly. | doug | 2015-02-07 | 1 | -5/+3 |
| * | Add error handling for EVP_DigestInit_ex(). | doug | 2014-12-15 | 1 | -3/+4 |
| * | Remove trailing whitespace. | jsing | 2014-12-14 | 1 | -3/+3 |
| * | Update the GOST code in libssl, as contributed by Dmitry Eremin-Solenikov. | miod | 2014-11-18 | 1 | -1/+13 |
| * | Sort and group includes. | jsing | 2014-11-16 | 1 | -1/+3 |
| * | Use arc4random_buf() instead of RAND_bytes() or RAND_pseudo_bytes(). | jsing | 2014-10-18 | 1 | -4/+3 |
| * | Typical malloc() with size multiplication to reallocarray(). | doug | 2014-10-18 | 1 | -4/+4 |
| * | Oops, revert changes commited by mistake. The previous commit was supposed | miod | 2014-08-07 | 1 | -4/+3 |
| * | When you expect a function to return a particular value, don't put a comment | miod | 2014-08-07 | 1 | -3/+4 |
| * | Remove more compression related code. | jsing | 2014-07-10 | 1 | -8/+1 |
| * | decompress libssl. ok beck jsing | tedu | 2014-07-10 | 1 | -44/+1 |
| * | tedu the SSL export cipher handling - since we do not have enabled export | jsing | 2014-07-09 | 1 | -63/+1 |
| * | pedantic avoidance of division by zero, likely not actually | beck | 2014-07-08 | 1 | -1/+6 |
| * | Pull the code that builds a DTLS sequence number out into its own function | jsing | 2014-06-21 | 1 | -20/+10 |
| * | Pull out the sequence number selection and handle this up front. Also, the | jsing | 2014-06-21 | 1 | -9/+6 |
| * | More KNF and clean up. | jsing | 2014-06-21 | 1 | -13/+9 |
| * | Rename ssl3_record_sequence_update() to ssl3_record_sequence_increment(), | jsing | 2014-06-15 | 1 | -19/+5 |
| * | Correctly calculate the key block length when using export ciphers. | jsing | 2014-06-13 | 1 | -1/+5 |
| * | Swap compress/expand around so they are in the correct order - these ended | jsing | 2014-06-13 | 1 | -14/+14 |
| * | Combine the MAC handling for both !EVP_CIPH_FLAG_AEAD_CIPHER and | jsing | 2014-06-13 | 1 | -14/+11 |
| * | Add support for handling SSL_CIPHER_ALGORITHM2_AEAD ciphers, which are | jsing | 2014-06-13 | 1 | -27/+238 |
| * | Remove support for the `opaque PRF input' extension, which draft has expired | miod | 2014-06-13 | 1 | -18/+1 |
| * | tags as requested by miod and tedu | deraadt | 2014-06-12 | 1 | -1/+1 |
| * | Stop setting the EVP_MD_CTX_FLAG_NON_FIPS_ALLOW - it has been ignored since | jsing | 2014-06-11 | 1 | -2/+0 |
| * | In tls1_cert_verify_mac(), check the return value of EVP_MD_CTX_copy_ex() | jsing | 2014-06-10 | 1 | -3/+5 |
| * | Add a define for the SSLv3 sequence size and use it, rather than sprinkling | jsing | 2014-06-08 | 1 | -2/+2 |
| * | Be explicit with types. No binary change. | jsing | 2014-06-08 | 1 | -3/+3 |
| * | Factor out the part of tls1_change_cipher_state() that is specific to | jsing | 2014-06-08 | 1 | -126/+153 |
| * | Factor out the sequence number reset code to aid in upcoming changes. | jsing | 2014-06-08 | 1 | -8/+10 |
| * | Add missing NULL check after calling EVP_PKEY_new_mac_key(). | jsing | 2014-06-07 | 1 | -0/+2 |
| * | Use !is_read to imply SSL3_CC_WRITE. | jsing | 2014-06-07 | 1 | -3/+2 |
| * | Move the export label initialisation into the export handling code, since | jsing | 2014-06-07 | 1 | -6/+11 |
| * | Remove pointless casts - no binary change. | jsing | 2014-06-07 | 1 | -2/+2 |
| * | Rename variables to make it clear that these are only used in the export | jsing | 2014-06-07 | 1 | -15/+18 |
| * | Further clean up of context handling in tls1_change_cipher_state(). | jsing | 2014-06-07 | 1 | -21/+17 |
| * | Rename more variables for readability and consistency. | jsing | 2014-06-02 | 1 | -25/+25 |
| * | Overhaul the key block handling in tls1_change_cipher_state() - use | jsing | 2014-06-01 | 1 | -46/+66 |
| * | In tls1_setup_key_block(), use the correct IV length for GCM mode, which | jsing | 2014-06-01 | 1 | -17/+24 |
| * | Clean up the tls1_change_cipher_state() key length handling and use a | jsing | 2014-06-01 | 1 | -10/+12 |
| * | remove some #if 0 code. we don't need any more reminders that we're using | tedu | 2014-05-30 | 1 | -4/+0 |
| * | Make use of SSL_IS_DTLS, SSL_USE_EXPLICIT_IV, SSL_USE_SIGALGS and | jsing | 2014-05-30 | 1 | -8/+5 |
| * | Fix another two cases where the return value of ssl_replace_hash() is | jsing | 2014-05-29 | 1 | -8/+18 |
| * | More KNF. | jsing | 2014-05-28 | 1 | -11/+12 |
| * | Refactor tls1_change_cipher_state() and split the compression handling out | jsing | 2014-05-28 | 1 | -32/+44 |
| * | There is no point in checking if a pointer is non-NULL before calling free, | jsing | 2014-05-28 | 1 | -4/+2 |
| * | Remove TLS_DEBUG, SSL_DEBUG, CIPHER_DEBUG and OPENSSL_RI_DEBUG. Much of | jsing | 2014-05-25 | 1 | -46/+0 |
