The annotated tag OpenSSL_1_0_1q has been created at 075c0103d9e098bb44507e552e3dc45a13b8ce0f (tag) tagging 55615e8d48a4ddd684fcbfc7ba6523ed6414c8fc (commit) replaces OpenSSL_1_0_1p tagged by Matt Caswell on Thu Dec 3 14:50:26 2015 +0000
- Log ----------------------------------------------------------------- OpenSSL 1.0.1q release tag Adam Eijdenberg (1): Clarify return values for EVP_DigestVerifyFinal. Alessandro Ghedini (11): Make BUF_strndup() read-safe on arbitrary inputs Validate ClientHello extension field length Do not treat 0 return value from BIO_get_fd() as error Replace malloc+strlcpy with strdup Fix memory leaks and other mistakes on errors Set salt length after the malloc has succeeded Fix typos Fix references to various RFCs Check memory allocation Remove useless code Add initial AppVeyor configuration Andy Polyakov (1): e_os.h: limit _MSC_VER trickery to older compilers. Ben Kaduk (1): GH367 follow-up, for more clarity David Brodski (1): Fixed problem with multiple load-unload of comp zlib David Woodhouse (1): RT3479: Add UTF8 support to BIO_read_filename() Dirk Wetter (1): GH336: Return an exit code if report fails Dr. Stephen Henson (19): Sort @sstacklst correctly. use X9.31 keygen by default in FIPS mode Err isn't always malloc failure. Fix memory leak if setup fails. Return error for unsupported modes. Update docs. Use default field separator. Check for FIPS mode after loading config. Handle SSL_ERROR_WANT_X509_LOOKUP Make SRP work with -www SRP memory leak fix Link in applink with fips_premain_dso Don't try and parse boolean type. Typo. Limit depth of ASN1 parse printing. Fix uninitialised p error. typo Fix leak with ASN.1 combine. Add PSS parameter check. Emilia Kasper (11): bntest: don't dereference the |d| array for a zero BIGNUM. BN_mod_exp_mont_consttime: check for zero modulus. RT 3493: fix RSA test RT4002: check for NULL cipher in p12_crpt.c OpenSSL 1.0.1n: add missing CHANGES entry RT3754: check for NULL pointer RT3757: base64 encoding bugs base64 decode: check for high bit BUF_strndup: tidy BUF_strdup and friends: update docs RT2772: accept empty SessionTicket Ernie Hershey (1): GH322: Fix typo in generated comment. GitHub User (1): Missing perldoc markup around < literal Graeme Perrow (1): RT32671: wrong multiple errs TS_check_status_info Gunnar Kudrjavets (1): RT3823: Improve the robustness of event logging Guy Leaver (guleaver) (1): Fix seg fault with 0 p val in SKE Hubert Kario (1): RT4051: fix ciphers man page typo Ismo Puustinen (2): GH367: Fix dsa keygen for too-short seed GH367: use random data if seed too short. Ivo Raisr (1): Make no-psk compile without warnings. Kurt Roeckx (5): d2i: don't update input pointer on failure Fix more d2i cases to properly update the input pointer Use defined(__sun) instead of defined(sun) Set reference count earlier Use both sun and __sun Loganaden Velvindron (1): Clear BN-mont values when free'ing it. Marcus Meissner (1): mark openssl configuration as loaded at end of OPENSSL_config Markus Rinne (1): RT4019: Duplicate -hmac flag in dgst.pod Martin Vejnar (1): RT3774: double-free in DSA Matt Caswell (24): Prepare for 1.0.1q-dev Add test for SSL_set_session_ticket_ext Fix SSL_set_session_ticket_ext when used with SSLv23_method Fix warning when compiling with no-ec2m Check for 0 modulus in BN_MONT_CTX_set Fix missing return value checks in SCTP Fix "make test" seg fault with SCTP enabled Fix DTLS session ticket renewal Fix building with OPENSSL_NO_TLSEXT. Fix session resumption Make sure OPENSSL_cleanse checks for NULL Fix SRP memory leaks Change functions to pass in a limit rather than calculate it Don't treat a bare OCTETSTRING as DigestInfo in int_rsa_verify Clarify the preferred way of creating patch files Minor EVP_SignInit_ex doc fix Fix missing malloc return value checks Only call ssl3_init_finished_mac once for DTLS Stop DTLS servers asking for unsafe legacy renegotiation Ensure all EVP calls have their returns checked where appropriate Return errors even if the cookie validation has succeeded Update CHANGES and NEWS make update Prepare for 1.0.1q release Pascal Cuoq (4): Set flags to 0 before calling BN_with_flags() Move BN_CTX_start() call so the error case can always call BN_CTX_end(). BN_GF2m_mod_inv(): check bn_wexpand return value ssl3_free(): Return if it wasn't created Peter Waltenberg (1): Exit on error in ecparam Rich Salz (14): Revert "Missing perldoc markup around < literal" Tweak README about rt and bug reporting. Move FAQ to the web. GH372: Remove duplicate flags RT4044: Remove .cvsignore files. RT4044: Remove .cvsignore files. This undoes GH367 for non-master GH398: Add mingw cross-compile, etc. Change --debug to -d for compat with old releases. Fix typo in previous merge Fix travis build for 1.0.1 Avoid SHA1 weakness Some README and CONTRIBUTING cleanups. Fix release in README. Richard Levitte (13): Stop using tardy Set numeric IDs for tar as well Remove extra '; \' in apps/Makefile Small script to re-encode files that need it to UTF-8 Conversion to UTF-8 where needed Add new types to indent.pro Add emacs CC mode style for OpenSSL Add an example .dir-locals.el Remove auto-fill-mode Ignore .dir-locals.el When ENGINE_add finds that id or name is missing, actually return Make the match for previous cflags a bit more strict _BSD_SOURCE is deprecated, use _DEFAULT_SOURCE instead Tim Zhang (1): Fix the comment for POINT_CONVERSION_UNCOMPRESSED Viktor Dukhovni (2): GH correct organizationalUnitName Fix indentation mancha (1): Fix author credit for e5c0bc6 mrpre (1): check bn_new return value ----------------------------------------------------------------------- _____ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits