summaryrefslogtreecommitdiffstats
path: root/ssl/ssl_lib.c
AgeCommit message (Expand)Author
2014-10-15Support TLS_FALLBACK_SCSV.Bodo Moeller
2014-10-10Preserve digests for SNI.Dr. Stephen Henson
2014-08-06Fix SRP ciphersuite DoS vulnerability.Dr. Stephen Henson
2014-05-12Check sk_SSL_CIPHER_num() after assigning sk.Kurt Roeckx
2014-05-11Avoid out-of-bounds write in SSL_get_shared_ciphersGünther Noack
2013-03-19Disable compression for DTLS.Dr. Stephen Henson
2013-02-11Fix for SSL_get_certificateDr. Stephen Henson
2013-02-09ssl/*: fix linking errors with no-srtp.Andy Polyakov
2013-02-04Fix error codes.Dr. Stephen Henson
2012-09-21Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificateDr. Stephen Henson
2012-09-17Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-06-08Reduce version skew.Ben Laurie
2012-01-05Fix for builds without DTLS support.Bodo Möller
2011-12-13SSL export fixes (from Adam Langley).Ben Laurie
2011-11-15Add TLS exporter.Ben Laurie
2011-11-15Add DTLS-SRTP.Ben Laurie
2011-11-13Add Next Protocol Negotiation.Ben Laurie
2011-10-09Don't disable TLS v1.2 by default any more.Dr. Stephen Henson
2011-10-07use client version when eliminating TLS v1.2 ciphersuites in client helloDr. Stephen Henson
2011-09-26fix signed/unsigned warningDr. Stephen Henson
2011-09-23PR: 2602Dr. Stephen Henson
2011-09-05Fix session handling.Bodo Möller
2011-08-14Remove hard coded ecdsaWithSHA1 hack in ssl routines and check for RSADr. Stephen Henson
2011-07-25Add HMAC ECC ciphersuites from RFC5289. Include SHA384 PRF support andDr. Stephen Henson
2011-05-25use TLS1_get_version macro to check version so TLS v1.2 changes don't interfe...Dr. Stephen Henson
2011-05-19add FIPS support to ssl: doesn't do anything on this branch yet as there is n...Dr. Stephen Henson
2011-05-11Backport TLS v1.2 support from HEAD.Dr. Stephen Henson
2011-05-11Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERNDr. Stephen Henson
2011-03-16Add SRP.Ben Laurie
2010-11-18remove duplicate statementDr. Stephen Henson
2010-11-17oops, reinstate TLSv1 stringDr. Stephen Henson
2010-08-27PR: 1833Dr. Stephen Henson
2010-08-27oops, revert previous patchDr. Stephen Henson
2010-08-27PR: 1833Dr. Stephen Henson
2010-08-26PR: 1833Dr. Stephen Henson
2010-06-27Backport TLS v1.1 support from HEAD, ssl/ changesDr. Stephen Henson
2010-06-15Fix warnings (From HEAD, original patch by Ben).Dr. Stephen Henson
2010-02-17OR default SSL_OP_LEGACY_SERVER_CONNECT so existing options are preservedDr. Stephen Henson
2010-01-07Simplify RI+SCSV logic:Dr. Stephen Henson
2010-01-06Updates to conform with draft-ietf-tls-renegotiation-03.txt:Dr. Stephen Henson
2009-12-27TypoDr. Stephen Henson
2009-12-27Update RI to match latest spec.Dr. Stephen Henson
2009-12-16New option to enable/disable connection to unpatched serversDr. Stephen Henson
2009-12-09Check s3 is not NULLDr. Stephen Henson
2009-12-09Add ctrls to clear options and mode.Dr. Stephen Henson
2009-12-08Add ctrl and macro so we can determine if peer support secure renegotiation.Dr. Stephen Henson
2009-12-08Add support for magic cipher suite value (MCSV). Make secure renegotiationDr. Stephen Henson
2009-10-16PR: 2073Dr. Stephen Henson
2009-06-30Add "missing" functions for setting all verify parameters for SSL_CTX and SSLDr. Stephen Henson
2009-05-16Disable ECDHE in DTLS in a cleaner way.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-03 05:30:49 +0000