Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-03-29 | perlasm/x86masm.pl: fix last fix [from HEAD]. | Andy Polyakov | |
2012-03-29 | ans1/tasn_prn.c: avoid bool in variable names [from HEAD]. | Andy Polyakov | |
PR: 2776 | |||
2012-03-22 | fix leak | Dr. Stephen Henson | |
2012-03-22 | Submitted by: Markus Friedl <mfriedl@gmail.com> | Dr. Stephen Henson | |
Fix memory leaks in 'goto err' cases. | |||
2012-03-22 | update version to 1.0.1a-dev | Dr. Stephen Henson | |
2012-03-21 | use client version when deciding whether to send supported signature ↵ | Dr. Stephen Henson | |
algorithms extension | |||
2012-03-18 | Always use SSLv23_{client,server}_method in s_client.c and s_server.c, | Dr. Stephen Henson | |
the old code came from SSLeay days before TLS was even supported. | |||
2012-03-16 | bsaes-x86_64.pl: optimize key conversion [from HEAD]. | Andy Polyakov | |
2012-03-14 | remove trailing slash | Dr. Stephen Henson | |
2012-03-14 | cipher should only be set to PSK if JPAKE is used.OpenSSL_1_0_1 | Richard Levitte | |
2012-03-14 | update STATUS | Dr. Stephen Henson | |
2012-03-14 | prepare for 1.0.1 release | Dr. Stephen Henson | |
2012-03-13 | update NEWS | Dr. Stephen Henson | |
2012-03-13 | ssl/t1_enc.c: pay attention to EVP_CIPH_FLAG_CUSTOM_CIPHER [from HEAD]. | Andy Polyakov | |
2012-03-13 | x86_64-xlate.pl: remove old kludge. | Andy Polyakov | |
PR: 2435,2440 | |||
2012-03-12 | corrected fix to PR#2711 and also cover mime_param_cmp | Dr. Stephen Henson | |
2012-03-12 | Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and | Dr. Stephen Henson | |
continue with symmetric decryption process to avoid leaking timing information to an attacker. Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this issue. (CVE-2012-0884) | |||
2012-03-11 | PR: 2744 | Dr. Stephen Henson | |
Submitted by: Dmitry Belyavsky <beldmit@gmail.com> CMS support for ccgost engine | |||
2012-03-09 | Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr> | Dr. Stephen Henson | |
Add more extension names in s_cb.c extension printing code. | |||
2012-03-09 | PR: 2756 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix DTLS timeout handling. | |||
2012-03-08 | check return value of BIO_write in PKCS7_decrypt | Dr. Stephen Henson | |
2012-03-06 | PR: 2755 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Reduce MTU after failed transmissions. | |||
2012-03-06 | PR: 2748 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix possible DTLS timer deadlock. | |||
2012-03-03 | Configure: make no-whirlpool work [from HEAD]. | Andy Polyakov | |
2012-03-01 | On OpenVMS, try sha256 and sha512 et al as well. | Richard Levitte | |
2012-03-01 | For OpenVMS, use inttypes.h instead of stdint.h | Richard Levitte | |
2012-02-29 | PR: 2743 | Dr. Stephen Henson | |
Reported by: Dmitry Belyavsky <beldmit@gmail.com> Fix memory leak if invalid GOST MAC key given. | |||
2012-02-29 | PR: 2742 | Dr. Stephen Henson | |
Reported by: Dmitry Belyavsky <beldmit@gmail.com> If resigning with detached content in CMS just copy data across. | |||
2012-02-28 | Fix memory leak cause by race condition when creating public keys. | Dr. Stephen Henson | |
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug. | |||
2012-02-28 | x86cpuid.pl: fix processor capability detection on pre-586 [from HEAD]. | Andy Polyakov | |
2012-02-27 | PR: 2736 | Dr. Stephen Henson | |
Reported by: Remi Gacogne <rgacogne-bugs@coredump.fr> Preserve unused bits value in non-canonicalised ASN1_STRING structures by using ASN1_STRING_copy which preseves flags. | |||
2012-02-27 | PR: 2737 | Dr. Stephen Henson | |
Submitted by: Remi Gacogne <rgacogne-bugs@coredump.fr> Fix double free in PKCS12_parse if we run out of memory. | |||
2012-02-27 | PR: 2739 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix padding bugs in Heartbeat support. | |||
2012-02-27 | PR: 2735 | Dr. Stephen Henson | |
Make cryptodev digests work. Thanks to Nikos Mavrogiannopoulos for this fix. | |||
2012-02-27 | free headers after use in error message | Dr. Stephen Henson | |
2012-02-27 | Detect symmetric crypto errors in PKCS7_decrypt. | Dr. Stephen Henson | |
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug. | |||
2012-02-26 | Configure: remove adding of -D_XPG4_2 -D__EXTENSIONS__ in sctp builds, | Andy Polyakov | |
see corresponding commit to HEAD for details. | |||
2012-02-26 | seed.c: Solaris portability fix from HEAD. | Andy Polyakov | |
2012-02-25 | PR: 2730 | Dr. Stephen Henson | |
Submitted by: Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se> VMS fixes: disable SCTP by default. | |||
2012-02-23 | correct CHANGESOpenSSL_1_0_1-beta3 | Dr. Stephen Henson | |
2012-02-23 | PR: 2711 | Dr. Stephen Henson | |
Submitted by: Tomas Mraz <tmraz@redhat.com> Tolerate bad MIME headers in parser. | |||
2012-02-23 | PR: 2696 | Dr. Stephen Henson | |
Submitted by: Rob Austein <sra@hactrn.net> Fix inverted range problem in RFC3779 code. Thanks to Andrew Chi for generating test cases for this bug. | |||
2012-02-23 | PR: 2727 | Dr. Stephen Henson | |
Submitted by: Bruce Stephens <bruce.stephens@isode.com> Use same construct for EXHEADER in srp/Makefile as other makefiles to cope with possibly empty EXHEADER. | |||
2012-02-22 | ABI compliance fixes. | Dr. Stephen Henson | |
Move new structure fields to end of structures. Import library codes from 1.0.0 and recreate new ones. | |||
2012-02-21 | update NEWS | Dr. Stephen Henson | |
2012-02-17 | typo | Dr. Stephen Henson | |
2012-02-16 | Fix bug in CVE-2011-4619: check we have really received a client hello | Dr. Stephen Henson | |
before rejecting multiple SGC restarts. | |||
2012-02-15 | Additional compatibility fix for MDC2 signature format. | Dr. Stephen Henson | |
Update RSA EVP_PKEY_METHOD to use the OCTET STRING form of MDC2 signature: this will make all versions of MDC2 signature equivalent. | |||
2012-02-15 | An incompatibility has always existed between the format used for RSA | Dr. Stephen Henson | |
signatures and MDC2 using EVP or RSA_sign. This has become more apparent when the dgst utility in OpenSSL 1.0.0 and later switched to using the EVP_DigestSign functions which call RSA_sign. This means that the signature format OpenSSL 1.0.0 and later used with dgst -sign and MDC2 is incompatible with previous versions. Add detection in RSA_verify so either format works. Note: MDC2 is disabled by default in OpenSSL and very rarely used in practice. | |||
2012-02-12 | PR: 2708 | Dr. Stephen Henson | |
Submitted by: Bruce Stephens <bruce.stephens@isode.com> Translate path separators correctly for $fipsdir in util/mk1mf.pl |