| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Simple regress test for the amd64 bn_mul_mont bug found by Joyent | miod | 2014-06-20 | 3 | -2/+86 |
| * | Move the crypto/bn regression test one directory deeper in preparation for | miod | 2014-06-20 | 3 | -7/+15 |
| * | arc4random: hard fail with raise(SIGKILL) if getentropy() returns -1 | matthew | 2014-06-20 | 1 | -3/+4 |
| * | convert CRYPTO_memcmp to timingsafe_memcmp based on current policy favoring | tedu | 2014-06-19 | 18 | -44/+44 |
| * | check stack push return and make some effort to clean up. ok beck miod | tedu | 2014-06-19 | 2 | -4/+12 |
| * | improve error checking. set error code on error, and check malloc return. | tedu | 2014-06-19 | 2 | -4/+26 |
| * | Move rs_chacha and rs_buf into the same memory page and don't mark it | matthew | 2014-06-19 | 1 | -22/+31 |
| * | Always call atexit handlers as if they were registered with __cxa_atexit. | kettenis | 2014-06-18 | 3 | -19/+13 |
| * | Add regress tests to make sure arc4random(3) is reinitialized | matthew | 2014-06-18 | 3 | -2/+181 |
| * | In ssl3_send_newsession_ticket(), fix a memory leak in an error path. | miod | 2014-06-18 | 2 | -4/+8 |
| * | Missinc calloc() return value check; ok deraadt@ | miod | 2014-06-18 | 1 | -1/+5 |
| * | Make sure to always invoke EVP_CIPHER_CTX_cleanup() before returning in the | miod | 2014-06-18 | 2 | -8/+20 |
| * | Use asprintf() instead of a fixed 128-byte size in SSL_CIPHER_description() | miod | 2014-06-18 | 2 | -22/+22 |
| * | In SSL_COMP_add_compression_method(), make sure error cases actually return | miod | 2014-06-18 | 2 | -4/+4 |
| * | ssl_session_cmp is not a sort function, can use CRYPTO_memcmp here too. | tedu | 2014-06-17 | 2 | -4/+8 |
| * | Use MAP_INHERIT_ZERO in arc4random(3) | matthew | 2014-06-17 | 1 | -37/+44 |
| * | free iv, then cleanse. from Cyril Jouve | tedu | 2014-06-15 | 2 | -4/+4 |
| * | Simplify EVP_MD_CTX_create() by just using calloc(). Also, use 0 rather | jsing | 2014-06-15 | 2 | -18/+8 |
| * | Simplify EVP_CIPHER_CTX_new() - stop pretending that EVP_CIPHER_CTX_init() | jsing | 2014-06-15 | 2 | -12/+4 |
| * | Add missing OPENSSL_cleanse() in aead_aes_gcm_cleanup(). | jsing | 2014-06-15 | 2 | -2/+4 |
| * | The OPENSSL_cleanse() in aes_gcm_cleanup() only cleans the gcm field of the | jsing | 2014-06-15 | 2 | -4/+4 |
| * | Rename ssl3_record_sequence_update() to ssl3_record_sequence_increment(), | jsing | 2014-06-15 | 7 | -55/+28 |
| * | oops, typo. James Hartley is fast at trying -current | deraadt | 2014-06-15 | 1 | -2/+2 |
| * | In srandomdev(), use arc4random_buf() instead of from the kernel. | deraadt | 2014-06-15 | 1 | -4/+3 |
| * | Add more bounded attributes to the buffer and md5/sha headers in libssl | avsm | 2014-06-14 | 6 | -38/+70 |
| * | typo | miod | 2014-06-13 | 2 | -4/+4 |
| * | For now... assume success of getentropy() just like we assumed success | deraadt | 2014-06-13 | 1 | -3/+3 |
| * | Correctly calculate the key block length when using export ciphers. | jsing | 2014-06-13 | 2 | -2/+10 |
| * | Overhaul the keyblock handling in ssl3_change_cipher_state(). Use | jsing | 2014-06-13 | 1 | -32/+45 |
| * | Correctly calculate the key block length when used with export ciphers. | jsing | 2014-06-13 | 1 | -17/+24 |
| * | Remove deprecated RFC2292 ancillary data convenience functions. | chrisz | 2014-06-13 | 2 | -488/+2 |
| * | use getgentropy() call. If it fails, things are pretty bad -- | deraadt | 2014-06-13 | 1 | -8/+3 |
| * | use getentropy; from matthew | deraadt | 2014-06-13 | 1 | -5/+2 |
| * | Use meaningful variable names, rather than i, j, k and cl. | jsing | 2014-06-13 | 1 | -23/+27 |
| * | Do not bother trying to work out of we can reuse a cipher context - just | jsing | 2014-06-13 | 1 | -22/+12 |
| * | Separate the comression handling from the cipher/message digest handling in | jsing | 2014-06-13 | 1 | -43/+47 |
| * | Swap compress/expand around so they are in the correct order - these ended | jsing | 2014-06-13 | 2 | -28/+28 |
| * | The export_key/export_iv variables are only used in the is_export case. | jsing | 2014-06-13 | 1 | -7/+10 |
| * | Rename a bunch of variables in ssl3_change_cipher_state() for readability. | jsing | 2014-06-13 | 1 | -38/+40 |
| * | Add ChaCha20-Poly1305 based ciphersuites. | jsing | 2014-06-13 | 10 | -14/+162 |
| * | Switch the AES-GCM cipher suites to SSL_CIPHER_ALGORITHM2_AEAD. | jsing | 2014-06-13 | 2 | -42/+136 |
| * | Combine the MAC handling for both !EVP_CIPH_FLAG_AEAD_CIPHER and | jsing | 2014-06-13 | 2 | -28/+22 |
| * | Use SSL3_SEQUENCE_SIZE and if we're going to preincrement we may as well | jsing | 2014-06-13 | 1 | -4/+3 |
| * | Add support for handling SSL_CIPHER_ALGORITHM2_AEAD ciphers, which are | jsing | 2014-06-13 | 8 | -66/+498 |
| * | Add an SSL_AEAD_CTX to enable the use of EVP_AEAD with an SSL cipher. | jsing | 2014-06-13 | 8 | -8/+98 |
| * | Remove support for the `opaque PRF input' extension, which draft has expired | miod | 2014-06-13 | 24 | -700/+29 |
| * | Add timingsafe_memcmp(). | matthew | 2014-06-13 | 6 | -38/+153 |
| * | Add regress tests for timingsafe_bcmp and timingsafe_memcmp. | matthew | 2014-06-13 | 3 | -2/+86 |
| * | Add regress test for explicit_bzero. | matthew | 2014-06-12 | 3 | -2/+145 |
| * | replace atoi() calls with strtol(). Follow the idiomatic pattern in our | deraadt | 2014-06-12 | 6 | -80/+194 |
