| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Let realloc handle and produce moved pointers for allocations betweenlibressl-v2.5.1 | otto | 2017-02-01 | 1 | -20/+37 |
| * | tweak previous; | jmc | 2017-01-31 | 2 | -12/+8 |
| * | Add tls_config_[add|set]keypair_ocsp functions so that ocsp staples may be | beck | 2017-01-31 | 6 | -58/+209 |
| * | Disable client-initiated renegotiation for libtls servers. | jsing | 2017-01-31 | 1 | -1/+3 |
| * | Provide an SSL_OP_NO_CLIENT_RENEGOTIATION option that disallows | jsing | 2017-01-31 | 2 | -2/+12 |
| * | LibreSSL : Truncated packet could crash via OOB read | inoguchi | 2017-01-31 | 2 | -3/+10 |
| * | Document functions returning standard moduli for DH key exchange. | schwarze | 2017-01-31 | 2 | -1/+136 |
| * | tweak previous; | jmc | 2017-01-30 | 3 | -11/+11 |
| * | Document BN_set_flags(3) and BN_get_flags(3). | schwarze | 2017-01-30 | 6 | -13/+159 |
| * | Seriously warn against calling BN_init(3), BN_MONT_CTX_init(3), | schwarze | 2017-01-29 | 3 | -12/+75 |
| * | Marko Kreen contributed significantly to the ocsp stuff for libtls | beck | 2017-01-29 | 1 | -2/+3 |
| * | Move the ocsp staple to being part of the keypair structure internally, | beck | 2017-01-29 | 3 | -14/+32 |
| * | Send the function codes from the error functions to the bit bucket, | beck | 2017-01-29 | 275 | -3892/+2400 |
| * | Put comment back in the right place. | jsing | 2017-01-29 | 1 | -9/+9 |
| * | Avoid clearing the mac_packet flag in the wrong place. | jsing | 2017-01-29 | 1 | -2/+1 |
| * | add HISTORY and AUTHORS | schwarze | 2017-01-28 | 12 | -24/+256 |
| * | Fix Copyright notices; ok beck@ jsing@ tedu@ | schwarze | 2017-01-27 | 11 | -28/+43 |
| * | More s/OSCP/OCSP/ typos | tom | 2017-01-27 | 1 | -1/+1 |
| * | fix Dt; | jmc | 2017-01-26 | 1 | -3/+3 |
| * | Use a flag to track when we need to call SSL_shutdown(). This avoids an | jsing | 2017-01-26 | 4 | -5/+11 |
| * | Bump TLS_API due to new features being added earlier this week. | jsing | 2017-01-26 | 1 | -2/+2 |
| * | Bump libtls minor due to symbol additions earlier this week. | jsing | 2017-01-26 | 1 | -1/+1 |
| * | knf | beck | 2017-01-26 | 1 | -6/+11 |
| * | Convert ssl3_get_client_hello() to CBS. | jsing | 2017-01-26 | 1 | -76/+71 |
| * | Finish the fallout of the SSLerr->SSLerror cleanup to get rid of the ugly | beck | 2017-01-26 | 18 | -653/+335 |
| * | Hide SSLerr() under #ifndef LIBRESSL_INTERNAL since we shouldn't be | beck | 2017-01-26 | 1 | -2/+4 |
| * | Send the error function codes to rot in the depths of hell where they belong | beck | 2017-01-26 | 24 | -798/+572 |
| * | Merge the single two line function from ssl_err2.c into ssl_err.c. | jsing | 2017-01-26 | 3 | -76/+12 |
| * | english is hard. | beck | 2017-01-26 | 1 | -2/+2 |
| * | Limit the number of sequential empty records that we will process | beck | 2017-01-26 | 4 | -7/+30 |
| * | Refactor the code to generate a WANT_READ into a function, as we are | beck | 2017-01-26 | 1 | -18/+20 |
| * | Remove most of SSL3_ENC_METHOD - we can just inline the function calls | jsing | 2017-01-26 | 11 | -135/+63 |
| * | Move relatively new version range code from ssl_lib.c into a separate | jsing | 2017-01-26 | 3 | -158/+175 |
| * | Rename s3_{both,clnt,pkt_srvr}.c to have an ssl_ prefix since they are no | jsing | 2017-01-26 | 5 | -6/+6 |
| * | Merge the client/server version negotiation into the existing (currently | jsing | 2017-01-26 | 16 | -1229/+395 |
| * | Document ERR_load_BN_strings(3). | schwarze | 2017-01-26 | 1 | -11/+47 |
| * | Remove ssl3_undef_enc_method - if we have internal bugs we want to segfault | jsing | 2017-01-26 | 5 | -36/+8 |
| * | Remove a sess_cert reference from a comment in the public header. | jsing | 2017-01-26 | 1 | -5/+2 |
| * | split the tls_init(3) that had grown fat to allow healthy future growth; | schwarze | 2017-01-25 | 15 | -888/+1474 |
| * | document BN_asc2bn(3); | schwarze | 2017-01-25 | 1 | -3/+27 |
| * | Limit enabled version range by the versions configured on the SSL_CTX/SSL, | jsing | 2017-01-25 | 3 | -23/+84 |
| * | Change the SSL_IS_DTLS() macro to check the version, rather than using a | jsing | 2017-01-25 | 2 | -7/+4 |
| * | Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested | beck | 2017-01-25 | 6 | -10/+170 |
| * | Provide ssl3_packet_read() and ssl3_packet_extend() functions that improve | jsing | 2017-01-25 | 3 | -35/+59 |
| * | Provide defines for SSL_CTRL_SET_CURVES/SSL_CTRL_SET_CURVES_LIST for things | jsing | 2017-01-25 | 1 | -1/+15 |
| * | BUF_MEM_free(), X509_STORE_free() and X509_VERIFY_PARAM_free() all check | jsing | 2017-01-24 | 2 | -18/+10 |
| * | sk_free() checks for NULL so do not bother doing it from the callers. | jsing | 2017-01-24 | 4 | -10/+9 |
| * | sk_pop_free() checks for NULL so do not bother doing it from the callers. | jsing | 2017-01-24 | 7 | -50/+31 |
| * | Within libssl a SSL_CTX * is referred to as a ctx - fix this for | jsing | 2017-01-24 | 1 | -29/+29 |
| * | in resolver(3), document that _EDNS0 and _DNSSEC are no ops; | jmc | 2017-01-24 | 1 | -6/+17 |
