Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Reorder inclusion of header files: | Lutz Jänicke | 2002-07-10 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | des_old.h redefines crypt: #define crypt(b,s)\ DES_crypt((b),(s)) This scheme leads to failure, if header files with the OS's true definition of crypt() are processed _after_ des_old.h was processed. This is e.g. the case on HP-UX with unistd.h. As evp.h now again includes des.h (which includes des_old.h), this problem only came up after this modification. Solution: move header files (indirectly) including e_os.h before the header files (indirectly) including evp.h. Submitted by: Reviewed by: PR: | ||||
* | emtpy fragments are not necessary for SSL_eNULL | Bodo Möller | 2002-07-09 | 1 | -2/+8 |
| | | | | | | (but noone uses it anyway) fix t1_enc.c: use OPENSSL_NO_RC4, not NO_RC4 | ||||
* | New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBC | Bodo Möller | 2002-06-14 | 1 | -5/+10 |
| | | | | | | vulnerability workaround (included in SSL_OP_ALL). PR: #90 | ||||
* | Implement known-IV countermeasure. | Bodo Möller | 2002-04-13 | 1 | -1/+65 |
| | | | | | | Fix length checks in ssl3_get_client_hello(). Use s->s3->in_read_app_data differently to fix ssl3_read_internal(). | ||||
* | Fix memory leak. | Bodo Möller | 2001-10-22 | 1 | -6/+9 |
| | |||||
* | Modify EVP cipher behaviour in a similar way | Dr. Stephen Henson | 2001-10-17 | 1 | -1/+1 |
| | | | | to digests to retain compatibility. | ||||
* | Retain compatibility of EVP_DigestInit() and EVP_DigestFinal() | Dr. Stephen Henson | 2001-10-16 | 1 | -23/+23 |
| | | | | | | with existing code. Modify library to use digest *_ex() functions. | ||||
* | comment | Bodo Möller | 2001-09-24 | 1 | -1/+2 |
| | |||||
* | Fix ssl/s3_enc.c, ssl/t1_enc.c and ssl/s3_pkt.c so that we don't | Bodo Möller | 2001-09-20 | 1 | -5/+6 |
| | | | | | | | | reveal whether illegal block cipher padding was found or a MAC verification error occured. In ssl/s2_pkt.c, verify that the purported number of padding bytes is in the legal range. | ||||
* | Really add the EVP and all of the DES changes. | Ben Laurie | 2001-07-30 | 1 | -1/+14 |
| | |||||
* | Change all calls to low level digest routines in the library and | Dr. Stephen Henson | 2001-06-19 | 1 | -25/+23 |
| | | | | | | | | | | applications to use EVP. Add missing calls to HMAC_cleanup() and don't assume HMAC_CTX can be copied using memcpy(). Note: this is almost identical to the patch submitted to openssl-dev by Verdon Walker <VWalker@novell.com> except some redundant EVP_add_digest_()/EVP_cleanup() calls were removed and some changes made to avoid compiler warnings. | ||||
* | pay attention to blocksize before attempting decryption | Bodo Möller | 2001-06-15 | 1 | -2/+13 |
| | |||||
* | Use memmove() instead of memcpy() on areas that may overlap. | Richard Levitte | 2001-06-07 | 1 | -1/+1 |
| | | | | Spotted by Nalin Dahyabhai <nalin@redhat.com> | ||||
* | Avoid assert() in the library. | Bodo Möller | 2001-04-08 | 1 | -7/+10 |
| | |||||
* | Resize a local buffer to accomodate the size requirements of AES. | Richard Levitte | 2001-04-08 | 1 | -1/+5 |
| | | | | Protect against future mistakes with an assert(). | ||||
* | This change should be suitable as a workaround for the Solaris x86 | Bodo Möller | 2001-04-03 | 1 | -1/+4 |
| | | | | | | compiler bug reported in <01032110293775.22278@weba3.iname.net> (the '++seq[i]' condition is evaluated as 256 rather than 0 when the previous value is 255). | ||||
* | Fix ERR_R_... problems. | Bodo Möller | 2001-03-07 | 1 | -1/+1 |
| | |||||
* | There have been a number of complaints from a number of sources that names | Richard Levitte | 2000-06-01 | 1 | -5/+5 |
| | | | | | | | | | like Malloc, Realloc and especially Free conflict with already existing names on some operating systems or other packages. That is reason enough to change the names of the OpenSSL memory allocation macros to something that has a better chance of being unique, like prepending them with OPENSSL_. This change includes all the name changes needed throughout all C files. | ||||
* | Change EVP_MD_CTX_type so it is more logical and add EVP_MD_CTX_md for | Dr. Stephen Henson | 2000-02-22 | 1 | -1/+1 |
| | | | | | | | | the old functionality. Various warning fixes. Initial EVP symmetric cipher docs. | ||||
* | Tolerate fragmentation and interleaving in the SSL 3/TLS record layer. | Bodo Möller | 2000-02-20 | 1 | -1/+1 |
| | |||||
* | ispell (and minor modifications) | Ulf Möller | 2000-02-03 | 1 | -2/+2 |
| | |||||
* | Use separate arrays for certificate verify and for finished hashes. | Bodo Möller | 2000-01-06 | 1 | -2/+2 |
| | |||||
* | Use prototypes. | Bodo Möller | 2000-01-05 | 1 | -1/+1 |
| | |||||
* | Delete NO_PROTO section (which apparently was just a typo for NOPROTO -- | Bodo Möller | 1999-12-29 | 1 | -4/+0 |
| | | | | if anyone had actually ever needed that they should have fixed this typo) | ||||
* | Support the EBCDIC character set and BS2000/OSD-POSIX (work in progress). | Ulf Möller | 1999-06-04 | 1 | -0/+9 |
| | | | | Submitted by: Martin Kraemer <Martin.Kraemer@MchP.Siemens.De> | ||||
* | Message digest stuff. | Ulf Möller | 1999-04-27 | 1 | -0/+2 |
| | |||||
* | Change #include filenames from <foo.h> to <openssl.h>. | Bodo Möller | 1999-04-23 | 1 | -1/+1 |
| | | | | | | Submitted by: Reviewed by: PR: | ||||
* | Change functions to ANSI C. | Ulf Möller | 1999-04-19 | 1 | -47/+16 |
| | |||||
* | Massive constification. | Ben Laurie | 1999-04-17 | 1 | -12/+12 |
| | |||||
* | Add support for new TLS export ciphersuites. | Ben Laurie | 1999-02-21 | 1 | -5/+4 |
| | |||||
* | Updates to the new SSL compression code | Mark J. Cox | 1999-02-16 | 1 | -10/+11 |
| | | | | | | | | | | | | | | [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)] Fix so that the version number in the master secret, when passed via RSA, checks that if TLS was proposed, but we roll back to SSLv3 (because the server will not accept higher), that the version number is 0x03,0x01, not 0x03,0x00 [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)] Submitted by: Reviewed by: PR: | ||||
* | In the absence of feedback either way, commit the fix that looks right for | Ben Laurie | 1999-02-13 | 1 | -3/+4 |
| | | | | wrong keylength with export null ciphers. | ||||
* | Fix comment. | Ben Laurie | 1999-01-10 | 1 | -1/+1 |
| | |||||
* | Accept NULL in *_free. | Ben Laurie | 1999-01-07 | 1 | -0/+1 |
| | |||||
* | Import of old SSLeay release: SSLeay 0.9.1b (unreleased) | Ralf S. Engelschall | 1998-12-21 | 1 | -13/+45 |
| | |||||
* | Import of old SSLeay release: SSLeay 0.9.0b | Ralf S. Engelschall | 1998-12-21 | 1 | -35/+127 |
| | |||||
* | Import of old SSLeay release: SSLeay 0.8.1b | Ralf S. Engelschall | 1998-12-21 | 1 | -0/+481 |