oweals/openssl.git
2016-11-02 Richard LevitteSecure our notification email.
2016-11-01 Benjamin KadukFix grammar-o in CONTRIBUTING
2016-10-28 Richard LevitteAdd $(EX_LIBS) to the LIBDEPS for libgost.so, just...
2016-10-28 Matt CaswellImplement length checks as a macro
2016-10-28 Matt CaswellEnsure we have length checks for all extensions
2016-10-28 Matt CaswellFix length check writing status request extension
2016-10-28 Matt CaswellFix a double free in ca command line
2016-10-28 Matt CaswellA zero return from BIO_read/BIO_write() could be retryable
2016-10-26 Rich SalzFix typo (reported by Matthias St. Pierre)
2016-10-25 Dr. Matthias... Fix leak of secrecy in ecdh_compute_key()
2016-10-22 Rich SalzCorrectly find all critical CRL extensions
2016-10-20 Cristian Stoicaremove redundant zero assignments
2016-10-20 Richard Levitte%p takes void*, so make sure to cast arguments to void*
2016-10-20 Richard Levitteapps: make setup_engine() and release_engine() availabl...
2016-10-20 Richard LevitteIf an engine comes up explicitely, it must also come...
2016-10-19 Richard LevitteFix no-des
2016-10-19 Richard LevitteMake 'openssl prime ""' not segfault
2016-10-18 Patrick SteuerFix strict-warnings build
2016-10-18 Patrick SteuerFix strict-warnings build
2016-10-15 Steven FacklerFix signatures of EVP_Digest{Sign,Verify}Update
2016-10-15 Matt CaswellEnsure we handle len == 0 in ERR_err_string_n
2016-10-14 Vitezslav CizekDegrade 3DES to MEDIUM in SSL2
2016-10-13 Rich SalzRT is put out to pasture
2016-10-11 Kurt CancemiAdd missing error string for SSL_R_TOO_MANY_WARN_ALERTS
2016-09-28 Richard Levitteapps/apps.c: initialize and de-initialize engine around...
2016-09-28 Rich SalzRevert "Call ENGINE_init() before trying to use keys...
2016-09-28 David WoodhouseCall ENGINE_init() before trying to use keys from engine
2016-09-26 Matt CaswellFix NEWS error
2016-09-26 Matt CaswellPrepare for 1.0.2k-dev
2016-09-26 Matt CaswellPrepare for 1.0.2j release OpenSSL_1_0_2j
2016-09-26 Matt CaswellUpdate CHANGES and NEWS for the new release
2016-09-26 Matt CaswellAdd some sanity checks when checking CRL scores
2016-09-22 Dirk FeytonsFix build with no-nextprotoneg
2016-09-22 Rich SalzFix typo introduced by a03f81f4
2016-09-22 Matt CaswellPrepare for 1.0.2j-dev
2016-09-22 Matt CaswellPrepare for 1.0.2i release OpenSSL_1_0_2i
2016-09-22 Matt CaswellUpdates CHANGES and NEWS for new release
2016-09-22 Dmitry BelyavskyAvoid KCI attack for GOST
2016-09-22 Matt CaswellFix a mem leak in NPN handling
2016-09-22 Matt CaswellFix OCSP Status Request extension unbounded memory...
2016-09-22 Richard Levittemk1mf.pl: check for no-tls1 here as well
2016-09-21 Matt CaswellDon't allow too many consecutive warning alerts
2016-09-21 Dr. Stephen... Make message buffer slightly larger than message.
2016-09-21 Dr. Stephen... Use SSL3_HM_HEADER_LENGTH instead of 4.
2016-09-21 Dr. Stephen... Remove unnecessary check.
2016-09-21 Rich SalzDcoument -alpn flag
2016-09-21 Rich SalzGH1555: Don't bump size on realloc failure
2016-09-21 Richard Levitteapps/apps.c: include sys/socket.h to declare recv()
2016-09-21 Dr. Stephen... Fix small OOB reads.
2016-09-21 Matt CaswellFix a missing NULL check in dsa_builtin_paramgen
2016-09-20 Richard LevitteRT4669: dgst can only sign/verify one file
2016-09-20 Marcus Meissnerinitialize the RSA struct to 0.
2016-09-15 Dr. Stephen... update default dependencies
2016-09-15 Matt CaswellRevert "Abort on unrecognised warning alerts"
2016-09-15 Richard LevitteFinally, make sure vms_term_sock.c is built
2016-09-15 Richard LevitteRefactor to avoid unnecessary preprocessor logic
2016-09-15 Richard LevitteReformat to fit OpenSSL source code standards
2016-09-15 Richard LevitteRemove entirely unnecessary pointer size guards
2016-09-15 Richard LevitteAdd copyright and license on apps/vms_term_sock.[ch]
2016-09-15 Richard LevitteVSI submission: redirect terminal input through socket
2016-09-15 Dr. Stephen... Fix memory leak on realloc error.
2016-09-15 Dr. Stephen... Fix memory leak on error.
2016-09-15 Richard LevitteVMS: only use _realloc32 with /POINTER_SIZE=32
2016-09-14 Matt CaswellAdd some sanity checks around usage of t_fromb64()
2016-09-13 Matt CaswellAbort on unrecognised warning alerts
2016-09-12 Richard LevitteAdd enginesdir to libcrypto.pc pkg-config file
2016-09-11 Dr. Stephen... Fix memory leak on error.
2016-09-09 Rich SalzMake update
2016-09-08 Richard LevitteIf errno is ENXIO in BSS_new_file(), set BIO_R_NO_SUCH_FILE
2016-09-07 David WoodhouseAvoid EVP_PKEY_cmp() crash on EC keys without public...
2016-09-06 Rich SalzMisc BN fixes
2016-08-31 Andy Polyakovcrypto/bn/*: x86[_64] division instruction doesn't...
2016-08-30 Matt CaswellEnsure the CertStatus message adds a DTLS message heade...
2016-08-26 Matt CaswellSRP_create_verifier does not check for NULL before...
2016-08-26 Richard LevitteImprove the definition of STITCHED_CALL in e_rc4_hmac_md5.c
2016-08-26 FdaSilvaYYFix a few leaks in X509_REQ_to_X509.
2016-08-26 David WoodhouseAdd basic test for Cisco DTLS1_BAD_VER and record repla...
2016-08-26 David WoodhouseFix ubsan 'left shift of negative value -1' error in...
2016-08-26 David WoodhouseFix SSL_export_keying_material() for DTLS1_BAD_VER
2016-08-26 Matt CaswellFix the no-tls1 option
2016-08-26 Andy Polyakovec/asm/ecp_nistz256-x86_64.pl: /cmovb/cmovc/ as nasm...
2016-08-26 Andy Polyakovec/ecp_nistz256: harmonize is_infinity with ec_GFp_simp...
2016-08-26 Andy Polyakovec/asm/ecp_nistz256-x86_64.pl: addition to perform...
2016-08-26 Todd ShortAlways use session_ctx when removing a session
2016-08-24 Dr. Stephen... Avoid overflow in MDC2_Update()
2016-08-24 Rich SalzSWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUM
2016-08-24 Matt CaswellFix no-ec
2016-08-23 Dr. Stephen... Sanity check ticket length.
2016-08-22 Richard Levittemk1mf: dtlstest needs ssltestlib, include it with a...
2016-08-22 David BenjaminDon't check for malloc failure twice.
2016-08-22 Kazuki YamaguchiFix overflow check in BN_bn2dec()
2016-08-22 Rich SalzRT2676: Reject RSA eponent if even or 1
2016-08-22 Richard LevitteVMS: Use strict refdef extern model when building libra...
2016-08-22 Richard LevitteGOST: rearrange code so it's more like C rather than C++
2016-08-22 Richard LevitteMake 'openssl req -x509' more equivalent to 'openssl...
2016-08-22 Andy Polyakovbn/asm/x86[_64]-mont*.pl: implement slightly alternativ...
2016-08-22 Richard Levittessltestlib: Tell compiler we don't care about the value...
2016-08-22 Matt CaswellPrevent DTLS Finished message injection
2016-08-22 Matt CaswellFix DTLS buffered message DoS attack
2016-08-22 Matt CaswellSilence some "maybe used uninitialised" warnings
next