summaryrefslogtreecommitdiff
path: root/src (unfollow)
Commit message (Expand)AuthorFilesLines
2014-06-13Overhaul the keyblock handling in ssl3_change_cipher_state(). Usejsing1-32/+45
2014-06-13Correctly calculate the key block length when used with export ciphers.jsing1-17/+24
2014-06-13Remove deprecated RFC2292 ancillary data convenience functions.chrisz2-488/+2
2014-06-13use getgentropy() call. If it fails, things are pretty bad --deraadt1-8/+3
2014-06-13use getentropy; from matthewderaadt1-5/+2
2014-06-13Use meaningful variable names, rather than i, j, k and cl.jsing1-23/+27
2014-06-13Do not bother trying to work out of we can reuse a cipher context - justjsing1-22/+12
2014-06-13Separate the comression handling from the cipher/message digest handling injsing1-43/+47
2014-06-13Swap compress/expand around so they are in the correct order - these endedjsing2-28/+28
2014-06-13The export_key/export_iv variables are only used in the is_export case.jsing1-7/+10
2014-06-13Rename a bunch of variables in ssl3_change_cipher_state() for readability.jsing1-38/+40
2014-06-13Add ChaCha20-Poly1305 based ciphersuites.jsing10-14/+162
2014-06-13Switch the AES-GCM cipher suites to SSL_CIPHER_ALGORITHM2_AEAD.jsing2-42/+136
2014-06-13Combine the MAC handling for both !EVP_CIPH_FLAG_AEAD_CIPHER andjsing2-28/+22
2014-06-13Use SSL3_SEQUENCE_SIZE and if we're going to preincrement we may as welljsing1-4/+3
2014-06-13Add support for handling SSL_CIPHER_ALGORITHM2_AEAD ciphers, which arejsing8-66/+498
2014-06-13Add an SSL_AEAD_CTX to enable the use of EVP_AEAD with an SSL cipher.jsing8-8/+98
2014-06-13Remove support for the `opaque PRF input' extension, which draft has expiredmiod24-700/+29
2014-06-13Add timingsafe_memcmp().matthew6-38/+153
2014-06-13Add regress tests for timingsafe_bcmp and timingsafe_memcmp.matthew3-2/+86
2014-06-12Add regress test for explicit_bzero.matthew3-2/+145
2014-06-12replace atoi() calls with strtol(). Follow the idiomatic pattern in ourderaadt6-80/+194
2014-06-12tags as requested by miod and teduderaadt1537-1373/+1553
2014-06-12Disable the "switch to insertion sort" optimization to avoid quadraticmillert1-13/+2
2014-06-11Really remove the obsolete manpages left by earlier commitchrisz2-0/+0
2014-06-11Remove manpages about deprecated RFC2292 ancillary data convenience functions.chrisz4-769/+4
2014-06-11Stop setting the EVP_MD_CTX_FLAG_NON_FIPS_ALLOW - it has been ignored sincejsing9-17/+0
2014-06-11Tsk. Tsk. Someone forgot to compile test the other half.jsing2-4/+4
2014-06-11Disable TLS support...jsing6-16/+0
2014-06-11Provide support for non-funopen systems.deraadt3-18/+62
2014-06-11More KNF.jsing2-112/+182
2014-06-11Fix memory leak: free s if calloc fails.logan2-2/+6
2014-06-11c-file-style hints, begone; ok beckderaadt94-94/+94
2014-06-10Check return value of EVP_MD_CTX_copy_ex() in ssl3_handshake_mac()logan1-1/+3
2014-06-10stick with 16k buffers for a little while to avoid bufferbloat.tedu1-2/+2
2014-06-10increase buffer size to 64k, and actually use it. ok deraadttedu1-3/+3
2014-06-10Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receivesderaadt9-2738/+4
2014-06-10KNF.jsing16-1512/+1512
2014-06-10KNF.jsing22-870/+1032
2014-06-10Remove pointless casts and use c instead of &c[0], since it is the samejsing1-9/+3
2014-06-10In tls1_cert_verify_mac(), check the return value of EVP_MD_CTX_copy_ex()jsing2-6/+10
2014-06-10Use C99 initialisers for EVP_MD structs, for clarity, grepability and tojsing22-360/+532
2014-06-10More KNF.jsing1-19/+18
2014-06-10Avoid potential NULL pointer function calls in n_ssl3_mac() by checkingjsing1-2/+4
2014-06-10Multiple fixes for ssl3_digest_cached_records() - if EVP_MD_CTX_create()jsing1-8/+12
2014-06-10Ensure ssl3_final_finish_mac() returns failure if either the MD5 or SHA1jsing1-5/+10
2014-06-10mop up ifndef KERNEL goo; ok miodderaadt12-60/+12
2014-06-09use memset instead of bzeroderaadt2-4/+4
2014-06-09do not include dso.h where it is not needed; ok miodderaadt6-6/+0
2014-06-09More KNF.jsing1-11/+11
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-30 11:13:57 +0000