| Commit message (Expand) | Author | Files | Lines |
|---|
| 2014-06-21 | loosen the spec for timingsafe functions slightly, so as to not | tedu | 1 | -10/+5 |
| 2014-06-21 | Pull the code that builds a DTLS sequence number out into its own function | jsing | 6 | -46/+58 |
| 2014-06-21 | Specify the correct strength bits for 3DES cipher suites. | jsing | 2 | -30/+26 |
| 2014-06-21 | Add DTLS support to ssltest and wire up some regress tests. | jsing | 2 | -8/+41 |
| 2014-06-21 | Switch to the ISC licensed versions of these files, which Google has made | jsing | 4 | -202/+52 |
| 2014-06-21 | Pull out the sequence number selection and handle this up front. Also, the | jsing | 2 | -18/+12 |
| 2014-06-21 | More KNF and clean up. | jsing | 2 | -26/+18 |
| 2014-06-21 | More KNF. | jsing | 16 | -122/+112 |
| 2014-06-21 | KNF | miod | 6 | -248/+274 |
| 2014-06-21 | KNF | miod | 6 | -356/+372 |
| 2014-06-21 | Fix memory leak in error path. | logan | 2 | -4/+4 |
| 2014-06-21 | Protect explicit_bzero() from link-time optimization | matthew | 1 | -7/+10 |
| 2014-06-21 | hash in correct pointer | deraadt | 2 | -4/+4 |
| 2014-06-20 | Remove the OPENSSL_*cap getenv's. A program should not be able to | deraadt | 6 | -50/+10 |
| 2014-06-20 | wrap getenv OPENSSL_ALLOW_PROXY_CERTS in an issetugid check, to protect | deraadt | 2 | -4/+4 |
| 2014-06-20 | KNF | beck | 2 | -96/+112 |
| 2014-06-20 | indent | deraadt | 2 | -4/+4 |
| 2014-06-20 | rearrange so that the main function with the important comments is at the top | otto | 2 | -156/+160 |
| 2014-06-20 | Work in progress on how to deal with the inherit unreliability of | beck | 2 | -0/+878 |
| 2014-06-20 | Remove OPENSSL_instrument_halt and OPENSSL_far_spin, which both might | miod | 2 | -140/+0 |
| 2014-06-20 | Fix incorrect bounds check in amd64 assembly version of bn_mul_mont(); | miod | 4 | -8/+8 |
| 2014-06-20 | Simple regress test for the amd64 bn_mul_mont bug found by Joyent | miod | 3 | -2/+86 |
| 2014-06-20 | Move the crypto/bn regression test one directory deeper in preparation for | miod | 3 | -7/+15 |
| 2014-06-20 | arc4random: hard fail with raise(SIGKILL) if getentropy() returns -1 | matthew | 1 | -3/+4 |
| 2014-06-19 | convert CRYPTO_memcmp to timingsafe_memcmp based on current policy favoring | tedu | 18 | -44/+44 |
| 2014-06-19 | check stack push return and make some effort to clean up. ok beck miod | tedu | 2 | -4/+12 |
| 2014-06-19 | improve error checking. set error code on error, and check malloc return. | tedu | 2 | -4/+26 |
| 2014-06-19 | Move rs_chacha and rs_buf into the same memory page and don't mark it | matthew | 1 | -22/+31 |
| 2014-06-18 | Always call atexit handlers as if they were registered with __cxa_atexit. | kettenis | 3 | -19/+13 |
| 2014-06-18 | Add regress tests to make sure arc4random(3) is reinitialized | matthew | 3 | -2/+181 |
| 2014-06-18 | In ssl3_send_newsession_ticket(), fix a memory leak in an error path. | miod | 2 | -4/+8 |
| 2014-06-18 | Missinc calloc() return value check; ok deraadt@ | miod | 1 | -1/+5 |
| 2014-06-18 | Make sure to always invoke EVP_CIPHER_CTX_cleanup() before returning in the | miod | 2 | -8/+20 |
| 2014-06-18 | Use asprintf() instead of a fixed 128-byte size in SSL_CIPHER_description() | miod | 2 | -22/+22 |
| 2014-06-18 | In SSL_COMP_add_compression_method(), make sure error cases actually return | miod | 2 | -4/+4 |
| 2014-06-17 | ssl_session_cmp is not a sort function, can use CRYPTO_memcmp here too. | tedu | 2 | -4/+8 |
| 2014-06-17 | Use MAP_INHERIT_ZERO in arc4random(3) | matthew | 1 | -37/+44 |
| 2014-06-15 | free iv, then cleanse. from Cyril Jouve | tedu | 2 | -4/+4 |
| 2014-06-15 | Simplify EVP_MD_CTX_create() by just using calloc(). Also, use 0 rather | jsing | 2 | -18/+8 |
| 2014-06-15 | Simplify EVP_CIPHER_CTX_new() - stop pretending that EVP_CIPHER_CTX_init() | jsing | 2 | -12/+4 |
| 2014-06-15 | Add missing OPENSSL_cleanse() in aead_aes_gcm_cleanup(). | jsing | 2 | -2/+4 |
| 2014-06-15 | The OPENSSL_cleanse() in aes_gcm_cleanup() only cleans the gcm field of the | jsing | 2 | -4/+4 |
| 2014-06-15 | Rename ssl3_record_sequence_update() to ssl3_record_sequence_increment(), | jsing | 7 | -55/+28 |
| 2014-06-15 | oops, typo. James Hartley is fast at trying -current | deraadt | 1 | -2/+2 |
| 2014-06-15 | In srandomdev(), use arc4random_buf() instead of from the kernel. | deraadt | 1 | -4/+3 |
| 2014-06-14 | Add more bounded attributes to the buffer and md5/sha headers in libssl | avsm | 6 | -38/+70 |
| 2014-06-13 | typo | miod | 2 | -4/+4 |
| 2014-06-13 | For now... assume success of getentropy() just like we assumed success | deraadt | 1 | -3/+3 |
| 2014-06-13 | Correctly calculate the key block length when using export ciphers. | jsing | 2 | -2/+10 |
| 2014-06-13 | Overhaul the keyblock handling in ssl3_change_cipher_state(). Use | jsing | 1 | -32/+45 |
