- May 21, 2014
-
-
Matt Caswell authored
-
Dr. Stephen Henson authored
Use triple DES for certificate encryption if no-rc2 is specified. PR#3357 (cherry picked from commit 4689c08453e95eeefcc88c9f32dc6e509f95caff)
-
Dr. Stephen Henson authored
PR#3357 (cherry picked from commit ca3ffd9670f2b589bf8cc04923f953e06d6fbc58)
-
- May 20, 2014
-
-
Dr. Stephen Henson authored
(cherry picked from commit dcca7b13)
-
- May 19, 2014
-
-
Janpopan authored
-
Ben Laurie authored
-
Mike Bland authored
Regression test against CVE-2014-0160 (Heartbleed). More info: http://mike-bland.com/tags/heartbleed.html (based on commit 35cb55988b75573105eefd00d27d0138eebe40b1)
-
Ben Laurie authored
-
Ben Laurie authored
-
- May 15, 2014
-
-
Matt Caswell authored
Moved note about lack of support for AEAD modes out of BUGS section to SUPPORTED CIPHERS section (bug has been fixed, but still no support for AEAD)
-
Dr. Stephen Henson authored
-
- May 14, 2014
-
-
Jeffrey Walton authored
-
Jeffrey Walton authored
-
Michal Bozon authored
-
- May 12, 2014
-
-
Kurt Roeckx authored
-
Jean-Paul Calderone authored
-
Serguei E. Leontiev authored
Replace manual ASN.1 decoder with ASN1_get object. This will decode the tag and length properly and check against it does not exceed the supplied buffer length. PR#3335 (cherry picked from commit b0308dddd1cc6a8e1de803ef29ba6da25ee072c2)
-
- May 11, 2014
-
-
Matt Caswell authored
-
Kurt Roeckx authored
-
Martin Brejcha authored
PR: 3327
-
Günther Noack authored
PR: 3317
-
Viktor Dukhovni authored
-
Tim Hudson authored
-
- May 09, 2014
-
-
Dr. Stephen Henson authored
If the key type does not match any CMS recipient type return an error instead of using a random key (MMA mitigation). This does not leak any useful information to an attacker. PR#3348
-
- May 08, 2014
-
-
Tim Hudson authored
-
Tim Hudson authored
-
- May 07, 2014
-
-
Tim Hudson authored
-
Matt Caswell authored
-
- May 06, 2014
-
-
Geoff Thorpe authored
This patch resolves RT ticket #2608. Thanks to Robert Dugal for originally spotting this, and to David Ramos for noticing that the ball had been dropped. Signed-off-by: Geoff Thorpe <geoff@openssl.org>
-
Geoff Thorpe authored
The lazy-initialisation of BN_MONT_CTX was serialising all threads, as noted by Daniel Sands and co at Sandia. This was to handle the case that 2 or more threads race to lazy-init the same context, but stunted all scalability in the case where 2 or more threads are doing unrelated things! We favour the latter case by punishing the former. The init work gets done by each thread that finds the context to be uninitialised, and we then lock the "set" logic after that work is done - the winning thread's work gets used, the losing threads throw away what they've done. Signed-off-by: Geoff Thorpe <geoff@openssl.org>
-
Geoff Thorpe authored
Even though the meat of dso_vms.c is compiled out on non-VMS builds, the (pre-)compiler still traverses some of the macro handling. This trips up at least one non-VMS build configuration, so this commit makes the skip-VMS case more robust. Signed-off-by: Geoff Thorpe <geoff@openssl.org>
-
Dr. Stephen Henson authored
PR#3289 PR#3345 (cherry picked from commit 3ba1e406)
-
Dr. Stephen Henson authored
-
- May 05, 2014
-
-
Tim Hudson authored
-
- May 03, 2014
-
-
David Ramos authored
PR: 3338
-
- May 01, 2014
-
-
Jeff Trawick authored
RT: 3304
-
- Apr 30, 2014
-
-
Matt Caswell authored
-
Lubomir Rintel authored
Newer pod2man considers =item [1-9] part of a numbered list, while =item 0 starts an unnumbered list. Add a zero effect formatting mark to override this. doc/apps/smime.pod around line 315: Expected text after =item, not a number ... PR#3146
-
- Apr 26, 2014
-
-
mancha authored
Specify -f is for compilation flags. Add -d to synopsis section. (cherry picked from commit 006397ea62bbcae22c8664d53c2222b808c4bdd1) Closes #79.
-
- Apr 24, 2014
-
-
mancha authored
Fix eckey_priv_encode to return an error on failure of i2d_ECPrivateKey.
-