openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2003-10-01	Pull patch from -current:OPENBSD_3_2	brad	5	-6/+22
	SECURITY FIX Fixed by markus@ security fix from http://www.openssl.org/news/secadv_20030930.txt ok markus@ deraadt@
2003-08-03	MFC:	brad	1	-8/+8
	Fix by millert@ Rename rootd to needslash and invert its value. This fixes the check for ENAMETOOLONG, though since we use strlcpy() and strlcat() this is not a big deal. Problem found by vincent@ ok deraadt@
2003-03-19	Errata #11 (markus):	margarida	1	-13/+12
	Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS
2003-03-19	Errata #11 (markus):	margarida	2	-5/+30
	Enforce blinding on RSA operations involving private keys. millert@ markus@ ok
2003-02-22	Pull patch from current:	margarida	2	-0/+12
	Fix by markus@ check for size < 0 when allocating memory, from openssl (-r1.34) markus@ deraadt@ ok
2003-02-22	Pull patch from current:	margarida	1	-16/+31
	Fix by markus@ security fix from openssl 0.9.7a: In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by performing a MAC computation even if incorrrect block cipher padding has been found. This is a countermeasure against active attacks where the attacker has to distinguish between bad padding and a MAC verification error. (CAN-2003-0078) markus@ ok
2002-11-14	Apply http://www.isc.org/products/BIND/patches/bind4910.diff	millert	1	-22/+37
	Fixes bugs listed in http://www.isc.org/products/BIND/bind-security.html
2002-09-26	This commit was manufactured by cvs2git to create branch 'OPENBSD_3_2'.	cvs2svn	650	-167445/+0

2002-09-26	do not install mdc2 man pages; markus ok	deraadt	1	-18/+1

2002-09-26	remove MDC2; patents	markus	5	-14/+11

2002-09-25	missing arg; peterw@ifost.org.au	deraadt	1	-2/+2

2002-09-25	remove rc5	markus	2	-218/+0

2002-09-23	pull in fix from openssl-0.9.7-stable-SNAP-20020921:	markus	2	-32/+10
	*) Don't impose a 16-byte length minimum on session IDs in ssl/s3_clnt.c (the SSL 3.0 and TLS 1.0 specifications allow any length up to 32 bytes). [Bodo Moeller]
2002-09-17	use arc4random instead of /dev/arandom,	markus	2	-60/+22
	allows RAND_poll after chroot, ok deraadt, fgsch
2002-09-17	undo local change, HMAC_Init() already does HMAC_CTX_init if(key && md)	markus	2	-2/+0

2002-09-16	add -elapsed to usage() for USE_TOD, too	markus	1	-1/+1

2002-09-16	sync with 0.9.7-beta3	markus	2	-0/+8

2002-09-16	remove old files	markus	6	-1680/+0

2002-09-16	remove generated file (from -beta3)	markus	2	-360/+0

2002-09-14	Move __cleanup into mprotect'ed page to prevent unintentional modifications	dhartmei	5	-27/+90
	similar to the atexit handlers. Idea and help deraadt@, ok deraadt@
2002-09-14	merge with openssl-0.9.7-stable-SNAP-20020911,	markus	153	-1211/+2465
	new minor for libcrypto (_X509_REQ_print_ex) tested by miod@, pb@
2002-09-12	import openssl-0.9.7-stable-SNAP-20020911 (without idea)	markus	128	-519/+6497

2002-09-12	import openssl-0.9.7-stable-SNAP-20020911 (without idea)	markus	41	-331/+1189

2002-09-10	evp.h should not pull in all other header files, especially	markus	2	-114/+0
	since it's supposed to hid the specific ciphers. this change also avoids problems when evp is used together with kerberos (and <des.h>). ok deraadt@
2002-09-10	merge openssl-0.9.7-beta3, tested on vax by miod@	markus	354	-4344/+9951

2002-09-07	ansi pedantic. ok deraadt@	jakob	1	-11/+12

2002-09-06	missing include, ok theo	henning	1	-1/+2

2002-09-06	use socklen_t where needed; henning pvalchev ok	deraadt	2	-5/+5

2002-09-05	import openssl-0.9.7-beta3	markus	205	-746/+5180

2002-09-05	import openssl-0.9.7-beta3	markus	78	-149/+765

2002-09-05	merge with 0.9.7-beta1	markus	45	-193/+119

2002-09-05	import openssl-0.9.7-beta1	markus	1098	-51321/+113317

2002-09-05	import openssl-0.9.7-beta1	markus	476	-27019/+46811

2002-09-04	more cruft	markus	2	-4/+0

2002-09-04	more cruft.	markus	9	-446/+0

2002-09-04	sync formatting with 0.9.7	markus	2	-4/+2

2002-09-04	no need to set $SHELL	markus	1	-1/+1

2002-09-04	execute bourne shell scripts with 'sh' and not with $SHELL	markus	86	-90/+90

2002-09-03	sync tests with 0.9.7-beta1	markus	12	-46/+138

2002-09-03	remove whitespace changes (keep diffs to 0.9.7-beta1 minimal)	markus	10	-10/+8

2002-09-03	sync these files with openssl-0.9.7-beta1, too	markus	15	-177/+359

2002-09-03	build OpenSSL without symlink trees:	markus	14	-1065/+2806
	* manpage related things moved to src/libssl/man/Makefile * there are now 3 obj directories src/libssl/{crypto,ssl,man}/ instead of one single src/libssl/obj * instead of running Configure (with generates lots of symlinks, and opensslconf.h) this patch stores pre-computed opensslconf.h files in src/libssl/crypto/arch * requires a make includes before the library can be built * libssl and libcrypto can be build separately (e.g. cd src/libssl/ssl && make obj && make) * make depend is now supported * no more symlink trees tested by miod@ and fries@
2002-09-03	evp_test.o should not be included in libcrypto (it defines _main !!)	markus	1	-1/+1
	no version change for the shared libs; ok deraadt@
2002-09-03	not part of OpenSSL 0.9.7	markus	3	-39/+0

2002-09-03	unused files, perl subdir not part of OpenSSL 0.9.7	markus	14	-2344/+0

2002-09-03	unused files, not part of OpenSSL 0.9.7	markus	76	-18240/+0

2002-09-02	Rename a bunch of the old bsd.regress.mk variables into the new ones.	avsm	7	-18/+18
	ok art@
2002-09-02	the regress target should be run-regress-atexit_test to avoid	avsm	1	-2/+2
	aborting a regress run if it fails
2002-09-01	e_os.h is longer installed	markus	1	-3/+3

2002-08-31	ssl headers are already installed for libssl	markus	1	-2/+2