summaryrefslogtreecommitdiffstats
path: root/ssl/t1_lib.c
AgeCommit message (Expand)Author
2015-10-05Change functions to pass in a limit rather than calculate itMatt Caswell
2015-10-05Validate ClientHello extension field lengthAlessandro Ghedini
2015-06-12Allow a zero length extension blockAdam Langley
2015-06-10Tighten extension handlingMatt Caswell
2015-05-26Don't check for a negative SRP extension sizeMatt Caswell
2015-04-16Code style: space after 'if'Viktor Dukhovni
2015-03-25Fix RAND_(pseudo_)?_bytes returnsMatt Caswell
2015-01-22Re-align some comments after running the reformat script.OpenSSL_1_0_1-post-reformatMatt Caswell
2015-01-22Run util/openssl-format-source -v -c .Matt Caswell
2015-01-22indent has problems with comments that are on the right hand side of a line.Matt Caswell
2015-01-22Fix source where indent will not be able to copeMatt Caswell
2015-01-22mark all block comments that need format preserving so thatTim Hudson
2015-01-02Clear existing extension state.Dr. Stephen Henson
2014-12-05Reject elliptic curve lists of odd lengths.Emilia Kasper
2014-11-20Ensure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok for DTLS) is resetEmilia Kasper
2014-11-20Reset s->tlsext_ticket_expected in ssl_scan_serverhello_tlsext.Emilia Kasper
2014-11-18Added OPENSSL_NO_EC2M guards around the preferred EC curve listMatt Caswell
2014-10-15Fix for session tickets memory leak.Dr. Stephen Henson
2014-10-15Fix for SRTP Memory LeakMatt Caswell
2014-08-06Fix race condition in ssl_parse_serverhello_tlsextGabor Tyukasz
2014-07-15Add ECC extensions with DTLS.Dr. Stephen Henson
2014-07-01Fix possible buffer overrun.Ben Laurie
2014-06-29Fix memory leak.Dr. Stephen Henson
2014-06-02Check there is enough room for extension.David Benjamin
2014-06-01Option to disable padding extension.Dr. Stephen Henson
2014-04-07Add heartbeat extension bounds check.Dr. Stephen Henson
2014-04-05Set TLS padding extension value.Dr. Stephen Henson
2014-02-05Backport TLS padding extension from master.Dr. Stephen Henson
2014-01-16Omit initial status request callback check.Kaspar Brand
2013-10-20Don't use RSA+MD5 with TLS 1.2Dr. Stephen Henson
2013-09-16Tidy up comments.Rob Stradling
2013-09-16Use TLS version supplied by client when fingerprinting Safari.Rob Stradling
2013-09-16Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.Rob Stradling
2013-02-09ssl/*: fix linking errors with no-srtp.Andy Polyakov
2013-02-07Remove extraneous brackets (clang doesn't like them).Ben Laurie
2013-01-28Add and use a constant-time memcmp.Ben Laurie
2012-11-22reject zero length point format list or supported curves extensionsDr. Stephen Henson
2012-09-21Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificateDr. Stephen Henson
2012-09-17Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-06-27don't use pseudo digests for default values of keysDr. Stephen Henson
2012-03-21use client version when deciding whether to send supported signature algorith...Dr. Stephen Henson
2012-02-27PR: 2739Dr. Stephen Henson
2012-02-17typoDr. Stephen Henson
2012-02-10PR: 2704Dr. Stephen Henson
2012-01-22return error if md is NULLDr. Stephen Henson
2012-01-05Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>Dr. Stephen Henson
2012-01-04Submitted by: Adam Langley <agl@chromium.org>Dr. Stephen Henson
2012-01-03only send heartbeat extension from server if client sent oneDr. Stephen Henson
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-07fix error discrepancyDr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-20 15:52:55 +0000