summaryrefslogtreecommitdiffstats
path: root/CHANGES
AgeCommit message (Expand)Author
2012-07-23Add support for certificate stores in CERT structure. This makes itDr. Stephen Henson
2012-07-18New function ssl_set_client_disabled to set masks for any ciphersuitesDr. Stephen Henson
2012-07-08Add new ctrl to retrieve client certificate types, print outDr. Stephen Henson
2012-07-03Separate client and server permitted signature algorithm support: by defaultDr. Stephen Henson
2012-06-29Add certificate callback. If set this is called whenever a certificateDr. Stephen Henson
2012-06-28Add new "valid_flags" field to CERT_PKEY structure which determines whatDr. Stephen Henson
2012-06-25Reorganise supported signature algorithm extension processing.Dr. Stephen Henson
2012-06-22Add support for application defined signature algorithms for use withDr. Stephen Henson
2012-06-18Make it possible to delete all certificates from an SSL structure.Dr. Stephen Henson
2012-06-15Initial record tracing code. Print out all fields in SSL/TLS recordsDr. Stephen Henson
2012-06-13New functions to retrieve certificate signatures and signature OID NID.Dr. Stephen Henson
2012-06-12print out issuer and subject unique identifier fields in certificatesDr. Stephen Henson
2012-05-30RFC 5878 support.Ben Laurie
2012-05-11PR: 2813Dr. Stephen Henson
2012-05-11PR: 2811Dr. Stephen Henson
2012-05-10Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 andDr. Stephen Henson
2012-05-10Reported by: Solar Designer of OpenwallDr. Stephen Henson
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson
2012-04-26CHANGES: clarify.Andy Polyakov
2012-04-26CHANGES: fix typos and clarify.Andy Polyakov
2012-04-25Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL andDr. Stephen Henson
2012-04-25s23_clnt.c: ensure interoperability by maitaining client "version capability"Andy Polyakov
2012-04-19Check for potentially exploitable overflows in asn1_d2i_read_bioDr. Stephen Henson
2012-04-17Disable SHA-2 ciphersuites in < TLS 1.2 connections.Bodo Möller
2012-04-17Additional workaround for PR#2771Dr. Stephen Henson
2012-04-05Add support for automatic ECDH temporary key parameter selection. WhenDr. Stephen Henson
2012-03-31CHANGES: harmonize with 1.0.0 and 1.0.1.Andy Polyakov
2012-03-28Initial revision of ECC extension handling.Dr. Stephen Henson
2012-03-06New ctrls to retrieve supported signature algorithms and curves andDr. Stephen Henson
2012-02-21Add new APIs EC_curve_nist2nid and EC_curve_nid2nist which convertDr. Stephen Henson
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson
2012-02-15Additional compatibility fix for MDC2 signature format.Dr. Stephen Henson
2012-02-15An incompatibility has always existed between the format used for RSADr. Stephen Henson
2012-02-09Modify client hello version when renegotiating to enhance interop withDr. Stephen Henson
2012-01-31Add support for distinct certificate chains per key type and per SSLDr. Stephen Henson
2012-01-25add support for use of fixed DH client certificatesDr. Stephen Henson
2012-01-18Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.Dr. Stephen Henson
2012-01-17fix CHANGES entryDr. Stephen Henson
2012-01-16Support for fixed DH ciphersuites.Dr. Stephen Henson
2012-01-05Update for 0.9.8s and 1.0.0f, and for 1.0.1 branch.Bodo Möller
2012-01-04update CHANGESDr. Stephen Henson
2012-01-04Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <t...Dr. Stephen Henson
2012-01-04Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)Dr. Stephen Henson
2012-01-04fix CHANGESDr. Stephen Henson
2012-01-04Check GOST parameters are not NULL (CVE-2012-0027)Dr. Stephen Henson
2012-01-04Prevent malformed RFC3779 data triggering an assertion failure (CVE-2011-4577)Dr. Stephen Henson
2011-12-31update CHANGESDr. Stephen Henson
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-19PR: 2563Dr. Stephen Henson
2011-12-19update CHANGES.Andy Polyakov
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-29 03:40:50 +0000