summaryrefslogtreecommitdiffstats
path: root/ssl/s3_srvr.c
AgeCommit message (Expand)Author
2014-11-20Do not resume a session if the negotiated protocol version does not matchDavid Benjamin
2014-11-20Ensure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok for DTLS) is resetEmilia Kasper
2014-11-19New option no-ssl3-method which removes SSLv3_*methodDr. Stephen Henson
2014-09-24RT3067: simplify patchEmilia Kasper
2014-09-24This change alters the processing of invalid, RSA pre-master secrets soAdam Langley
2014-08-09Fix SRP authentication ciphersuites.Dr. Stephen Henson
2014-08-06Check SRP parameters early.Dr. Stephen Henson
2014-07-05Don't limit message sizes in ssl3_get_cert_verify.Dr. Stephen Henson
2014-06-05Fix for CVE-2014-0224Dr. Stephen Henson
2014-06-01Allocate extra space when NETSCAPE_HANG_BUG defined.David Ramos
2014-05-12Replace manual ASN1 decoder with ASN1_get_objectSerguei E. Leontiev
2014-01-28Check i before r[i].Dr. Stephen Henson
2014-01-02Don't change version number if session establishedDr. Stephen Henson
2013-10-20Fix another gmt_unix_time case in server_randomNick Mathewson
2013-10-19Cleanup.Ben Laurie
2013-10-09Refactor {client,server}_random to call an intermediate functionNick Mathewson
2013-09-16Do not include a timestamp in the ServerHello Random field.Nick Mathewson
2013-02-09ssl/s3_[clnt|srvr].c: fix warnings.Andy Polyakov
2012-09-17Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-06-08Reduce version skew.Ben Laurie
2012-04-15s3_srvr.c: fix typo [from HEAD].Andy Polyakov
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson
2012-01-05PR: 2671Dr. Stephen Henson
2012-01-04Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619)Dr. Stephen Henson
2012-01-04Submitted by: Adam Langley <agl@chromium.org>Dr. Stephen Henson
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-27PR: 1794Dr. Stephen Henson
2011-11-25PR: 1794Dr. Stephen Henson
2011-11-13Add Next Protocol Negotiation.Ben Laurie
2011-09-05Fix session handling.Bodo Möller
2011-09-05(EC)DH memory handling fixes.Bodo Möller
2011-06-14set FIPS allow before initialising ctxDr. Stephen Henson
2011-06-03fix error discrepancyDr. Stephen Henson
2011-05-25use TLS1_get_version macro to check version so TLS v1.2 changes don't interfe...Dr. Stephen Henson
2011-05-20Add server client certificate support for TLS v1.2 . This is more complexDr. Stephen Henson
2011-05-19add FIPS support to ssl: doesn't do anything on this branch yet as there is n...Dr. Stephen Henson
2011-05-19set encodedPoint to NULL after freeing itDr. Stephen Henson
2011-05-11Backport TLS v1.2 support from HEAD.Dr. Stephen Henson
2011-03-16Fix SRP error codes (from HEAD).Dr. Stephen Henson
2011-03-16Add SRP.Ben Laurie
2011-02-03CVE-2010-4180 fix (from OpenSSL_1_0_0-stable)Bodo Möller
2010-11-14Get correct GOST private key instead of just assuming the last one isDr. Stephen Henson
2010-08-27oops, revert previous patchDr. Stephen Henson
2010-08-27PR: 1833Dr. Stephen Henson
2010-08-26PR: 1833Dr. Stephen Henson
2010-02-27Add Kerberos fix which was in 0.9.8-stable but never committed to HEAD andDr. Stephen Henson
2010-01-26PR: 1949Dr. Stephen Henson
2010-01-26oopsDr. Stephen Henson
2010-01-26export OPENSSL_isservice and make updateDr. Stephen Henson
2010-01-24The fix for PR#1949 unfortunately broke cases where the BIO_CTRL_WPENDINGDr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-17 09:52:16 +0000