Commits · bd31fb21454609b125ade1ad569ebcc2a2b9b73c · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Mar 28, 2007
- Change to mitigate branch prediction attacks · bd31fb21
  Bodo Möller authored Mar 28, 2007
```
Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
```
  bd31fb21
Mar 25, 2007
- Allow shared builds for aix[64]-gcc targets. · b506821d
  Andy Polyakov authored Mar 25, 2007
  
  b506821d
- aix[64]-cc config lines update. · 4bfb49b3
  Andy Polyakov authored Mar 25, 2007
  
  4bfb49b3
Mar 23, 2007
- Stage 1 GOST ciphersuite support. · 9981a51e
  Dr. Stephen Henson authored Mar 23, 2007
```
Submitted by: ran@cryptocom.ru
Reviewed by: steve@openssl.org
```
  9981a51e
- Synchronise the VMS build with recent movements in the Unix build. · ebb326af
  Richard Levitte authored Mar 23, 2007
  
  ebb326af
Mar 22, 2007
- Fixes for aix-shared rules. · 0d1aa74d
  Andy Polyakov authored Mar 22, 2007
  
  0d1aa74d
Mar 21, 2007
- stricter session ID context matching · 0f32c841
  Bodo Möller authored Mar 21, 2007
  
  0f32c841
- clarification regarding libdes files · 41a8d516
  Bodo Möller authored Mar 21, 2007
  
  41a8d516
Mar 20, 2007
- link warnings caused by nasm modules. · 8f41e4fa
  Andy Polyakov authored Mar 20, 2007
  
  8f41e4fa
- Two extra instructions in RC4 character loop give 80% performance · de504945
  Andy Polyakov authored Mar 20, 2007
```
improvement on Core2. I still need to detect Core2 and choose this
path...
```
  de504945
- Remove obsolete comment. · 3d1def01
  Andy Polyakov authored Mar 20, 2007
  
  3d1def01
- Various PowerPC config updates. · 0a29f511
  Andy Polyakov authored Mar 20, 2007
  
  0a29f511
- nasm fixes. · 8b71d354
  Andy Polyakov authored Mar 20, 2007
  
  8b71d354
- sparcv9a-mont was modified to handle 32-bit aligned input, but check · 760e3535
  Andy Polyakov authored Mar 20, 2007
```
for 64-bit alignment was not removed.
```
  760e3535
Mar 16, 2007
- Win32 fixes. Add GOST algorithm to mkdef, update ordinals. Signed/unsigned fixes. · 3627fedb
  Dr. Stephen Henson authored Mar 16, 2007
  
  3627fedb
Mar 05, 2007
- Fix from stable branch. · bbb5cf05
  Dr. Stephen Henson authored Mar 05, 2007
  
  bbb5cf05
Mar 02, 2007
- size_t -> int · ebb01b84
  Nils Larsch authored Mar 02, 2007
  
  ebb01b84
- remove unused file · a0d48e7e
  Nils Larsch authored Mar 02, 2007
  
  a0d48e7e
- Initialize "buf" to 0 to make valgrind happy :-) · 1fcfa222
  Lutz Jänicke authored Mar 02, 2007
```
Note: the RAND_bytes() manual page says:
 RAND_bytes() puts num cryptographically strong pseudo-random bytes into buf.
It does not talk about using the previous contents of buf so we are working
as documented.
```
  1fcfa222
- Do not use uninitialized memory to seed the PRNG as it may confuse · c9fb4e2c
  Lutz Jänicke authored Mar 02, 2007
```
code checking tools.
PR: 1499
```
  c9fb4e2c
Feb 27, 2007
- Update from stable branch. · 6e7ca5e1
  Dr. Stephen Henson authored Feb 27, 2007
  
  6e7ca5e1
- small cosmetics: align title with the other similar manual page · 954b2747
  Ralf S. Engelschall authored Feb 27, 2007
  
  954b2747
Feb 26, 2007
- allow EVP_PKEY_CTX_free(NULL) · 0d5ac5a7
  Nils Larsch authored Feb 26, 2007
  
  0d5ac5a7
- remove dead code · c209a358
  Nils Larsch authored Feb 26, 2007
  
  c209a358
- include complete 0.9.7 history · dd2b6750
  Bodo Möller authored Feb 26, 2007
```
include release date of 0.9.8e
```
  dd2b6750
- use 2007 copyright for generated files · 4bb89bca
  Bodo Möller authored Feb 26, 2007
  
  4bb89bca
Feb 23, 2007
- Update FAQ,NEWS in HEAD. · ac63b837
  Dr. Stephen Henson authored Feb 23, 2007
  
  ac63b837
Feb 22, 2007
- Fix incorrect substitution that happened during the recent ciphersuite · 882d29dd
  Bodo Möller authored Feb 22, 2007
```
selection remodeling

Submitted by: Victor Duchovni
```
  882d29dd
- Fix problem with multi line responses in -starttls by using a buffering · ee373e7f
  Lutz Jänicke authored Feb 22, 2007
```
BIO and BIO_gets().
```
  ee373e7f
Feb 21, 2007
- Extend SMTP and IMAP protocol handling to perform the required · 8d72476e
  Lutz Jänicke authored Feb 21, 2007
```
EHLO or CAPABILITY handshake before sending STARTTLS

Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>
```
  8d72476e
- Add automatic detection for Linux on SuperH · 02756aa8
  Lutz Jänicke authored Feb 21, 2007
```
PR: 1152
Submitted by: Mike Frysinger <vapier@gentoo.org>
```
  02756aa8
- Add support for m68k linux · 072dfb9e
  Lutz Jänicke authored Feb 21, 2007
```
PR: 1277
Submitted by: Mike Frysinger <vapier@gentoo.org>
```
  072dfb9e
- Fix incorrect handling of special characters · 0636c39b
  Lutz Jänicke authored Feb 21, 2007
```
PR: 1459
Submitted by: tnitschke@innominate.com
Reviewed by: steve@openssl.org
```
  0636c39b
- Update from 0.9.7-stable. · a2e623c0
  Dr. Stephen Henson authored Feb 21, 2007
  
  a2e623c0
- prefer SHA1 over MD5 (this affects the Kerberos ciphersuites) · aa79dd68
  Bodo Möller authored Feb 21, 2007
  
  aa79dd68
- delete obsolete comment · 60cad2ca
  Bodo Möller authored Feb 21, 2007
  
  60cad2ca
Feb 20, 2007
- SSL_kKRB5 ciphersuites shouldn't be preferred by default · 114c9c36
  Bodo Möller authored Feb 20, 2007
  
  114c9c36
- Improve ciphersuite order stability when disabling ciphersuites. · fd5bc65c
  Bodo Möller authored Feb 20, 2007
```
Change ssl_create_cipher_list() to prefer ephemeral ECDH over
ephemeral DH.
```
  fd5bc65c
- fix a typo in the new ciphersuite ordering code · e0418639
  Bodo Möller authored Feb 20, 2007
  
  e0418639
Feb 19, 2007

Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a · 0a05123a

Bodo Möller authored Feb 19, 2007

ciphersuite string such as "DEFAULT:RSA" cannot enable
authentication-only ciphersuites.

Also, change ssl_create_cipher_list() so that it no longer
starts with an arbitrary ciphersuite ordering, but instead
uses the logic that we previously had in SSL_DEFEAULT_CIPHER_LIST.
SSL_DEFAULT_CIPHER_LIST simplifies into just "ALL:!aNULL:!eNULL".

0a05123a