summaryrefslogtreecommitdiffstats
path: root/ssl/s3_pkt.c
AgeCommit message (Expand)Author
2015-01-22mark all block comments that need format preserving so thatTim Hudson
2015-01-08Fix crash in dtls1_get_record whilst in the listen state where you get twoDr. Stephen Henson
2014-11-27Add checks to the return value of EVP_Cipher to prevent silent encryption fai...Matt Caswell
2014-08-22RT3060: Limit the number of empty records.Adam Langley
2014-07-05s3_pkt.c: fix typo.Andy Polyakov
2014-06-27Remove redundant check.Ken Ballou
2014-06-22Fixed Windows compilation failureMatt Caswell
2014-06-17Fix signed/unsigned comparisons.Felix Laurie von Massenbach
2014-06-12Added OPENSSL_assert check as per PR#3377 reported by Rainer Jung <rainer.jun...Matt Caswell
2014-06-05Fix for CVE-2014-0224Dr. Stephen Henson
2014-06-05Additional CVE-2014-0224 protection.Dr. Stephen Henson
2014-05-12Fixed NULL pointer dereference. See PR#3321Matt Caswell
2014-05-11Move length check earlier to ensure we don't go beyond the end of the user's ...Matt Caswell
2014-05-11safety check to ensure we dont send out beyond the users bufferTim Hudson
2014-04-23Fix use after free.Ben Laurie
2014-02-14ssl/s3_pkt.c: detect RAND_bytes error in multi-block.Andy Polyakov
2014-02-05ssl/s3_pkt.c: add multi-block processing [from master].Andy Polyakov
2014-01-02Don't change version number if session establishedDr. Stephen Henson
2013-12-18Check EVP errors for handshake digests.Dr. Stephen Henson
2013-09-18Use enc_flags when deciding protocol variations.Dr. Stephen Henson
2013-02-26Fix error codes.Dr. Stephen Henson
2013-02-08ssl/[d1|s3]_pkt.c: harmomize orig_len handling.Andy Polyakov
2013-02-06ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.Andy Polyakov
2013-02-06Update DTLS code to match CBC decoding in TLS.Ben Laurie
2013-02-06Don't crash when processing a zero-length, TLS >= 1.1 record.Ben Laurie
2013-02-06Make CBC decoding constant time.Ben Laurie
2013-02-06Add and use a constant-time memcmp.Ben Laurie
2012-12-26SSL/TLS record tracing code (backport from HEAD).Dr. Stephen Henson
2012-06-03Reduce version skew: trivia (I hope).Ben Laurie
2012-05-11PR: 2811Dr. Stephen Henson
2012-04-17Partial workaround for PR#2771.Dr. Stephen Henson
2012-04-15e_aes_cbc_hmac_sha1.c: handle zero-length payload and engage empty fragAndy Polyakov
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-20Fix DTLS.Ben Laurie
2011-11-13Add Next Protocol Negotiation.Ben Laurie
2011-09-24make sure eivlen is initialisedDr. Stephen Henson
2011-08-04Backport GCM support from HEAD.Dr. Stephen Henson
2011-05-25PR: 2533Dr. Stephen Henson
2011-05-11Backport TLS v1.2 support from HEAD.Dr. Stephen Henson
2011-03-16Add SRP.Ben Laurie
2010-11-14Only use explicit IV if cipher is in CBC mode.Dr. Stephen Henson
2010-08-27oops, revert previous patchDr. Stephen Henson
2010-08-27PR: 1833Dr. Stephen Henson
2010-08-26PR: 1833Dr. Stephen Henson
2010-06-27Backport TLS v1.1 support from HEAD, ssl/ changesDr. Stephen Henson
2010-03-25Fix for "Record of death" vulnerability CVE-2010-0740.Bodo Möller
2009-12-08Send no_renegotiation alert as required by spec.Dr. Stephen Henson
2009-07-14Stop warning of signed/unsigned compare.Dr. Stephen Henson
2009-07-13PR: 1984Dr. Stephen Henson
2009-04-19PR: 1751Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-30 13:08:13 +0000