Commits · 239e9dc81c94885d25572959d9c8597d2504d731 · ISC Open Source Projects / BIND

21 Apr, 2017 1 commit
- Reject incorrect RSA key lengths during key generation and and sign/verify... · 239e9dc8
  Mukund Sivaraman authored Apr 21, 2017
```
Reject incorrect RSA key lengths during key generation and and sign/verify context creation (#45043)
```
  239e9dc8
13 Jan, 2017 2 commits
- update copyright notice / whitespace · 7b665158
  Tinderbox User authored Jan 13, 2017
  
  7b665158
- make e's declaration unconditional. [RT #44324] · b8eee0f4
  Mark Andrews authored Jan 13, 2017
  
  b8eee0f4
01 Nov, 2016 2 commits
- add more LIBRESSL_VERSION_NUMBER checks · 429b5430
  Mark Andrews authored Nov 01, 2016
  
  429b5430
- add more LIBRESSL_VERSION_NUMBER checks · 3d38cfaf
  Mark Andrews authored Nov 01, 2016
  
  3d38cfaf
30 Oct, 2016 1 commit
- 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] · 1fce0951
  Mark Andrews authored Oct 31, 2016
  
  1fce0951
18 Aug, 2016 1 commit
- 4450. [port] Provide more nuanced HSM support which better matches · 8ee6f289
  Mark Andrews authored Aug 19, 2016
```
                        the specific PKCS11 providers capabilities. [RT #42458]
```
  8ee6f289
27 Jun, 2016 1 commit
- 4401. [misc] Change LICENSE to MPL 2.0. · 0c27b3fe
  Mark Andrews authored Jun 27, 2016
  
  0c27b3fe
06 Dec, 2015 1 commit
- bracket mismatch; window openssl version check · a12a21a8
  Mark Andrews authored Dec 06, 2015
  
  a12a21a8
20 Nov, 2015 1 commit
- 4264. [bug] Check const of strchr/strrchr assignments match · 5b1c7ef3
  Mark Andrews authored Nov 20, 2015
```
                        argument's const status. [RT #41150]
```
  5b1c7ef3
18 Oct, 2015 1 commit
- 4340. [port] Fix LibreSSL compatibility. [RT #40977] · f824c65d
  Mark Andrews authored Oct 19, 2015
  
  f824c65d
18 Aug, 2015 2 commits

#include <isc/safe.h> · b46fc434
Mark Andrews authored Aug 18, 2015

b46fc434

[master] timing safe memory comparisons · 420a43c8

Evan Hunt authored Aug 17, 2015

4183.	[cleanup]	Use timing-safe memory comparisons in cryptographic
			code. Also, the timing-safe comparison functions have
			been renamed to avoid possible confusion with
			memcmp(). [RT #40148]

420a43c8

07 Aug, 2015 1 commit

[master] address buffer accounting error · ce9f893e

Evan Hunt authored Aug 07, 2015

4168.	[security]	A buffer accounting error could trigger an
			assertion failure when parsing certain malformed
			DNSSEC keys. (CVE-2015-5722) [RT #40212]

ce9f893e

30 May, 2015 1 commit
- add INSIST to silence coverity · 03089dd4
  Mark Andrews authored May 30, 2015
  
  03089dd4
28 May, 2015 2 commits
- 4129. [port] Address API changes in OpenSSL 1.1.0. [RT #39532] · 8bb630c7
  Mark Andrews authored May 28, 2015
  
  8bb630c7
- 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] · e53e202e
  Mark Andrews authored May 28, 2015
  
  e53e202e
17 Apr, 2015 1 commit
- misc fixes for VS 2015 CTP #39267 · bcb68be0
  Francis Dupont authored Apr 17, 2015
  
  bcb68be0
31 Jan, 2014 1 commit

[master] rationalize external key handling · 3249da26

Evan Hunt authored Jan 30, 2014

3723.	[cleanup]	Imported keys are now handled the same way
			regardless of DNSSEC algorithm. [RT #35215]

3249da26

14 Jan, 2014 1 commit

[master] native PKCS#11 support · ba751492

Evan Hunt authored Jan 14, 2014

3705.	[func]		"configure --enable-native-pkcs11" enables BIND
			to use the PKCS#11 API for all cryptographic
			functions, so that it can drive a hardware service
			module directly without the need to use a modified
			OpenSSL as intermediary (so long as the HSM's vendor
			provides a complete-enough implementation of the
			PKCS#11 interface). This has been tested successfully
			with the Thales nShield HSM and with SoftHSMv2 from
			the OpenDNSSEC project. [RT #29031]

ba751492

09 Jan, 2014 2 commits
- update copyright notice · 431a83fb
  Tinderbox User authored Jan 09, 2014
  
  431a83fb
- [master] replace memcpy() with memmove(). · e851ea82
  Evan Hunt authored Jan 08, 2014
```
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
```
  e851ea82
05 Sep, 2013 1 commit
- update copyright notice · 63737247
  Tinderbox User authored Sep 05, 2013
  
  63737247
04 Sep, 2013 1 commit

3642. [func] Allow externally generated DNSKEY to be imported · 0c91911b

Mark Andrews authored Sep 04, 2013

                        into the DNSKEY management framework.  A new tool
                        dnssec-importkey is used to this. [RT #34698]

0c91911b

24 Oct, 2012 1 commit
- [master] silence noisy OpenSSL logging · 0e37e9e3
  Evan Hunt authored Oct 24, 2012
```
3402.	[bug]		Correct interface numbers for IPv4 and IPv6 interfaces.
```
  0e37e9e3
24 Jul, 2012 1 commit
- cleanup unused variables · 1d2f2828
  Mark Andrews authored Jul 24, 2012
  
  1d2f2828
23 Jul, 2012 1 commit
- 3354. [func] Improve OpenSSL error logging. [RT #29932] · 6eb6af67
  Mark Andrews authored Jul 23, 2012
  
  6eb6af67
15 Jun, 2012 1 commit
- make maxbits signed as BN_num_bits is signed · ec048f46
  Mark Andrews authored Jun 15, 2012
  
  ec048f46
14 Jun, 2012 1 commit

3339. [func] Allow the maximum supported rsa exponent size to be ... · 7865ea95

Mark Andrews authored Jun 14, 2012

3339.   [func]          Allow the maximum supported rsa exponent size to be                        specified: "max-rsa-exponent-size <value>;" [RT #29228]

7865ea95

10 Mar, 2012 1 commit
- update copyright notice · 5fa46bc9
  Tinderbox User authored Mar 10, 2012
  
  5fa46bc9
07 Mar, 2012 1 commit
- set $Id$ · 28a8f5b0
  Mark Andrews authored Mar 08, 2012
  
  28a8f5b0
11 Mar, 2011 2 commits
- pkey is only used if USE_ENGINE is defined or USE_EVP is 1 · 8473cd92
  Mark Andrews authored Mar 11, 2011
  
  8473cd92
- 3068. [bug] Named failed to build with a OpenSSL without engine · 19f4b069
  Mark Andrews authored Mar 11, 2011
```
                        support. [RT #23473]
```
  19f4b069
11 Jan, 2011 1 commit
- update copyright notice · 135bcc2e
  Automatic Updater authored Jan 11, 2011
  
  135bcc2e
10 Jan, 2011 1 commit

3006. [func] Allow dynamically generated TSIG keys to be preserved · 433e06a2

Mark Andrews authored Jan 10, 2011

                        across restarts of named.  Initially this is for
                        TSIG keys generated using GSSAPI. [RT #22639]

433e06a2

30 Oct, 2009 1 commit
- silence compiler warnings. [RT #20472] · 8a0943e1
  Mark Andrews authored Oct 30, 2009
  
  8a0943e1
28 Oct, 2009 1 commit
- RFC5702 · 4c53f98d
  Mark Andrews authored Oct 28, 2009
  
  4c53f98d
27 Oct, 2009 2 commits
- update copyright notice · 990dca46
  Automatic Updater authored Oct 27, 2009
  
  990dca46
- 2738. [func] Add RSASHA256 and RSASHA512 tests to the dnssec system · e09cdbac
  Mark Andrews authored Oct 27, 2009
```
                        test. [RT #20453]
```
  e09cdbac
24 Oct, 2009 1 commit
- keygen progress indication [RT #20284] · 775a8d86
  Francis Dupont authored Oct 24, 2009
  
  775a8d86