summaryrefslogtreecommitdiffstats
path: root/ssl/t1_lib.c
AgeCommit message (Expand)Author
2015-01-22Fix source where indent will not be able to copeMatt Caswell
2015-01-22mark all block comments that need format preserving so thatTim Hudson
2014-10-15Fix for session tickets memory leak.Dr. Stephen Henson
2014-08-06Fix race condition in ssl_parse_serverhello_tlsextGabor Tyukasz
2014-07-15Add ECC extensions with DTLS.Dr. Stephen Henson
2014-06-29Fix memory leak.Dr. Stephen Henson
2014-01-16Omit initial status request callback check.Kaspar Brand
2013-09-10Tidy up comments.Rob Stradling
2013-09-10Use TLS version supplied by client when fingerprinting Safari.Rob Stradling
2013-09-09Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.Rob Stradling
2013-02-05Add and use a constant-time memcmp.Ben Laurie
2012-11-22reject zero length point format list or supported curves extensionsDr. Stephen Henson
2012-10-05backport OCSP fix enhancementDr. Stephen Henson
2012-10-04Backport OCSP Stapling fix.Ben Laurie
2012-01-04Submitted by: Adam Langley <agl@chromium.org>Dr. Stephen Henson
2011-02-08OCSP stapling fix (OpenSSL 0.9.8r/1.0.0d)OpenSSL_1_0_0dBodo Möller
2010-11-25PR: 2240Dr. Stephen Henson
2010-11-16Don't assume a decode error if session tlsext_ecpointformatlist is not NULL:Dr. Stephen Henson
2010-11-16fix CVE-2010-3864Dr. Stephen Henson
2010-06-15Fix warnings (From HEAD, original patch by Ben).Dr. Stephen Henson
2010-02-17Allow renegotiation if SSL_OP_LEGACY_SERVER_CONNECT is set as well asDr. Stephen Henson
2010-01-07Simplify RI+SCSV logic:Dr. Stephen Henson
2009-12-17Alert to use is now defined in spec: update codeDr. Stephen Henson
2009-12-16New option to enable/disable connection to unpatched serversDr. Stephen Henson
2009-12-14Allow initial connection (but no renegoriation) to servers which don't supportDr. Stephen Henson
2009-12-08Add support for magic cipher suite value (MCSV). Make secure renegotiationDr. Stephen Henson
2009-12-08PR: 2121Dr. Stephen Henson
2009-11-18Include a more meaningful error message when rejecting legacy renegotiationDr. Stephen Henson
2009-11-11add missing parts of reneg port, fix apps patchDr. Stephen Henson
2009-11-08If it is a new session don't send the old TLS ticket: send a zero lengthDr. Stephen Henson
2009-10-30Fix statless session resumption so it can coexist with SNIDr. Stephen Henson
2009-09-04PR: 2028Dr. Stephen Henson
2009-04-28PR: 1629Dr. Stephen Henson
2008-12-29Apparently s->ctx could be NULL. (Coverity ID 147).Ben Laurie
2008-12-29Apparently s->ctx could be NULL at this point (see earlierBen Laurie
2008-12-29If we're going to return errors (no matter how stupid), then we shouldBen Laurie
2008-12-13Back out pointless change.Ben Laurie
2008-12-13*** empty log message ***Ben Laurie
2008-11-15PR: 1574Dr. Stephen Henson
2008-09-03Fix from stable branch.Dr. Stephen Henson
2008-05-28From HEAD:Bodo Möller
2008-04-30Update from stable branch.Dr. Stephen Henson
2008-04-29Oops!Dr. Stephen Henson
2008-04-29Update from stable branch.Dr. Stephen Henson
2008-04-25Disable debugging fprintf.Dr. Stephen Henson
2008-03-16Fix a variety of warnings generated by some elevated compiler-fascism,Geoff Thorpe
2007-10-261. Changes for s_client.c to make it return non-zero exit code in caseDr. Stephen Henson
2007-10-18Fix from stable branch.Dr. Stephen Henson
2007-09-28Move no status notification to ssl_check_serverhello_tlsext() to ensureDr. Stephen Henson
2007-09-26Support for certificate status TLS extension.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-30 05:16:56 +0000