summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-05-10Copy custom extension flags in a call to SSL_set_SSL_CTX()Matt Caswell
2017-04-11Additional check to handle BAD SSL_write retryRich Salz
2017-03-23Guard last few debugging printfs in libsslRichard Levitte
2017-03-21Fix BAD CCS alert in DTLSMatt Caswell
2017-03-21Avoid a mem leak on errorMatt Caswell
2017-03-13Fix DTLSv1_listen() sequence numbersMatt Caswell
2017-03-11Revert "Use the callbacks from the SSL object instead of the SSL_CTX object"Richard Levitte
2017-03-10Use the callbacks from the SSL object instead of the SSL_CTX objectPauli
2017-03-10Avoid questionable use of the value of a pointerBernd Edlinger
2017-03-08Prevent undefined behavior in memcpy call.Roberto Guimaraes
2017-02-24Restore the test coverage of COMP_rle and SSL_COMP_add_compression_methodBernd Edlinger
2017-02-22Add some more consistency checks in tls_decrypt_ticket.Bernd Edlinger
2017-02-15Fix some realloc error handling issues.Bernd Edlinger
2017-02-14mem leak on error path and error propagation fixYuchi
2017-02-13Don't read uninitialised data for short session IDs.David Benjamin
2017-02-09Fix issue #2113:Bernd Edlinger
2017-02-09Fix the crash due to inconsistent enc_write_ctxBernd Edlinger
2017-02-08Fix session ticket and SNITodd Short
2017-02-06Combined patch for the more or less obvious issuesBernd Edlinger
2017-01-26Use correct signature algorithm list when sending or checking.Dr. Stephen Henson
2017-01-26Better check of DH parameters in TLS dataRichard Levitte
2017-01-24Fix a ssl session leak due to OOM in lh_SSL_SESSION_insertBernd Edlinger
2017-01-23Fix SSL_VERIFY_CLIENT_ONCEMatt Caswell
2017-01-10Fix error handling in SSL_CTX_newBernd Edlinger
2016-12-14zero pad DHE public key in ServerKeyExchange message for interoprussor
2016-12-14Fix ssl_cert_dup: change one 'return NULL' to 'goto err'Richard Levitte
2016-12-14Make 'err' lable in ssl_cert_dup unconditionalRichard Levitte
2016-12-13Fix a bug in clienthello processingBenjamin Kaduk
2016-11-29Revert "Fix heartbeat_test"Matt Caswell
2016-11-21Make SSL_read and SSL_write return the old behaviour and document it.Kurt Roeckx
2016-11-12Solution proposal for issue #1647.Matthias Kraft
2016-11-02Fail if an unrecognised record type is receivedMatt Caswell
2016-11-02Fix heartbeat_testMatt Caswell
2016-10-28Implement length checks as a macroMatt Caswell
2016-10-28Ensure we have length checks for all extensionsMatt Caswell
2016-10-28Fix length check writing status request extensionMatt Caswell
2016-10-28A zero return from BIO_read/BIO_write() could be retryableMatt Caswell
2016-10-14Degrade 3DES to MEDIUM in SSL2Vitezslav Cizek
2016-10-11Add missing error string for SSL_R_TOO_MANY_WARN_ALERTSKurt Cancemi
2016-09-22Fix build with no-nextprotonegDirk Feytons
2016-09-22Avoid KCI attack for GOSTDmitry Belyavsky
2016-09-22Fix a mem leak in NPN handlingMatt Caswell
2016-09-22Fix OCSP Status Request extension unbounded memory growthMatt Caswell
2016-09-21Don't allow too many consecutive warning alertsMatt Caswell
2016-09-21Make message buffer slightly larger than message.Dr. Stephen Henson
2016-09-21Use SSL3_HM_HEADER_LENGTH instead of 4.Dr. Stephen Henson
2016-09-21Remove unnecessary check.Dr. Stephen Henson
2016-09-21Fix small OOB reads.Dr. Stephen Henson
2016-09-15Revert "Abort on unrecognised warning alerts"Matt Caswell
2016-09-15Fix memory leak on realloc error.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-04 13:23:17 +0000