| Commit message (Expand) | Author | Files | Lines |
|---|
| 2015-03-30 | add initial AIX getentropy/arc4random files. Thanks to Michael Felt. | bcook | 4 | -0/+1002 |
| 2015-03-27 | Factor out the init_buf initialisation code, rather than duplicating it | jsing | 16 | -206/+112 |
| 2015-03-27 | BUF_MEM_free() has its own explicit NULL check. | jsing | 2 | -18/+12 |
| 2015-03-26 | The code in socks.c writes multiple times in a row to a socket. If the | tobias | 1 | -3/+6 |
| 2015-03-26 | Fix error message in case of write failure. | tobias | 1 | -3/+3 |
| 2015-03-26 | Check for short writes in fdpass(). Clean up while at it. | tobias | 1 | -4/+3 |
| 2015-03-26 | Sync camel case of "ProxyUseFdpass" with ssh_config(5). | tobias | 1 | -3/+3 |
| 2015-03-23 | Make rcmdsh(3) not fail if it is passed a non resolvable hostname. | halex | 3 | -20/+16 |
| 2015-03-22 | differentiate between a failed read, returning -1, and encountering | halex | 1 | -2/+4 |
| 2015-03-22 | sys/sysctl.h includes linux/sysctl.h, remove the extra unchecked include | bcook | 2 | -4/+2 |
| 2015-03-22 | Since Windows needs BIO_sock_init() before you can call any networking | bcook | 2 | -12/+7 |
| 2015-03-22 | unmute rcmd hostname lookup failure | halex | 1 | -3/+2 |
| 2015-03-21 | free the server certificate in tls_connect_fds(); fixes a memory leak with | sthen | 1 | -1/+2 |
| 2015-03-21 | Fix indentation that incorrectly implies a different control flow. | doug | 6 | -16/+22 |
| 2015-03-20 | Fix a memory leak in an error path. | doug | 2 | -2/+6 |
| 2015-03-19 | zap #if 0'd code that's been dead since '96 | halex | 1 | -7/+0 |
| 2015-03-19 | Fix several crash causing defects from OpenSSL. | tedu | 24 | -126/+324 |
| 2015-03-18 | In the neverending saga of enabling and disabling assembler code for sha | miod | 2 | -10/+2 |
| 2015-03-15 | Avoid a NULL pointer deref when X509_get_pubkey() returns NULL. | doug | 2 | -4/+8 |
| 2015-03-15 | fix for regression test for strtol(). it failed (the wrong kind of | phessler | 1 | -2/+2 |
| 2015-03-14 | remove incorrect statement. the standard *does* require calloc to check | tedu | 1 | -7/+2 |
| 2015-03-11 | delay EVP_MD_CTX_init so we don't forget to clean it up. | tedu | 2 | -6/+8 |
| 2015-03-08 | Reject DH keys sent by a server if they are considered too small; inspired | miod | 3 | -40/+28 |
| 2015-03-05 | Do not use sha512-parisc for now, as it is subtly bugged - passes the sha | miod | 2 | -2/+6 |
| 2015-03-05 | subtraction is not comparison. the difference of two longs is not good | tedu | 1 | -1/+1 |
| 2015-03-02 | Update comment to match code; Caspar Schutijserlibressl-v2.1.4 | millert | 1 | -2/+2 |
| 2015-03-02 | Fix a minor information leak that was introduced in t1_lib.c r1.71, whereby | jsing | 2 | -4/+4 |
| 2015-03-02 | use correct formatter (int, because of type promotion after operations) | bcook | 1 | -2/+2 |
| 2015-02-28 | Reduce usage of predefined strings in manpages. | bentley | 1 | -7/+7 |
| 2015-02-26 | Prefix function parameter names with underscores in tls.h, since this makes | jsing | 1 | -42/+44 |
| 2015-02-25 | No need to use O_DIRECTORY when opening ".", O_RDONLY will suffice. | millert | 1 | -1/+1 |
| 2015-02-25 | Fix CVE-2014-3570: properly calculate the square of a BIGNUM value. | bcook | 7 | -1331/+672 |
| 2015-02-25 | Trivial fix for test progress output. | bcook | 1 | -4/+7 |
| 2015-02-25 | Avoid NULL pointer deref in hashinfo_free() when calling from error paths. | doug | 1 | -2/+3 |
| 2015-02-25 | Fix CVE-2015-0205: Do not accept client authentication with Diffie-Hellman | bcook | 2 | -4/+4 |
| 2015-02-24 | we don't let strtonum errors bleed through now. | tedu | 1 | -4/+2 |
| 2015-02-24 | Set errno to EINVAL, instead of letting ERANGE escape out. | tedu | 1 | -2/+4 |
| 2015-02-23 | fourth batch of perlpod(1) to mdoc(7) conversion | schwarze | 37 | -1276/+2521 |
| 2015-02-22 | While slick, this isn't accessing multiple directories concurrently, so | guenther | 1 | -29/+35 |
| 2015-02-22 | Bump libcrypto and libssl majors, due to various recent churn. | jsing | 4 | -4/+4 |
| 2015-02-22 | Reluctantly add server-side support for TLS_FALLBACK_SCSV. | jsing | 15 | -25/+159 |
| 2015-02-22 | There is not much point constructing an SSL_CIPHER, then calling | jsing | 2 | -14/+6 |
| 2015-02-22 | Remove IMPLEMENT_STACK_OF noops. | jsing | 4 | -8/+4 |
| 2015-02-22 | Update for recent verify related naming changes. | jsing | 2 | -28/+28 |
| 2015-02-22 | Bump libtls major due to symbol removal. | jsing | 1 | -3/+2 |
| 2015-02-22 | Rename tls_config_insecure_noverifyhost() to | jsing | 4 | -21/+20 |
| 2015-02-22 | Check return values when setting dheparams and ecdhecurve for the default | jsing | 1 | -11/+14 |
| 2015-02-22 | In the interests of being secure by default, make the default TLS ciphers | jsing | 2 | -2/+17 |
| 2015-02-21 | explain how tls_accept_socket works. | tedu | 1 | -2/+9 |
| 2015-02-21 | tls_config_set_protocols is really void. Greg Martin. | tedu | 1 | -3/+3 |
