summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2014-01-04Restore SSL_OP_MSIE_SSLV2_RSA_PADDINGDr. Stephen Henson
2014-01-02Don't change version number if session establishedDr. Stephen Henson
2013-12-20Fix DTLS retransmission from previous session.Dr. Stephen Henson
2013-12-19Use version in SSL_METHOD not SSL structure.Dr. Stephen Henson
2013-12-18Check EVP errors for handshake digests.Dr. Stephen Henson
2013-12-08make updateDr. Stephen Henson
2013-11-06Enable PSK in FIPS mode.Dr. Stephen Henson
2013-11-01DTLS/SCTP Finished Auth BugRobin Seggelmann
2013-10-20Fix another gmt_unix_time case in server_randomNick Mathewson
2013-10-20Don't use RSA+MD5 with TLS 1.2Dr. Stephen Henson
2013-10-19More cleanup.Ben Laurie
2013-10-19Cleanup.Ben Laurie
2013-10-19Merge branch 'no_gmt_unix_time' of git://github.com/nmathewson/openssl into O...Ben Laurie
2013-10-09Control sending time with SSL_SEND_{CLIENT,SERVER}RANDOM_MODENick Mathewson
2013-10-09Refactor {client,server}_random to call an intermediate functionNick Mathewson
2013-09-16Do not include a timestamp in the ServerHello Random field.Nick Mathewson
2013-09-16Do not include a timestamp in the ClientHello Random field.Nick Mathewson
2013-09-16Tidy up comments.Rob Stradling
2013-09-16Use TLS version supplied by client when fingerprinting Safari.Rob Stradling
2013-09-16Fix compilation with no-ec and/or no-tlsext.Rob Stradling
2013-09-16Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.Rob Stradling
2013-08-13DTLS message_sequence number wrong in rehandshake ServerHelloMichael Tuexen
2013-08-08DTLS handshake fix.Michael Tuexen
2013-04-08Set s->d1 to NULL after freeing it.Dr. Stephen Henson
2013-03-19Disable compression for DTLS.Dr. Stephen Henson
2013-03-18Avoid unnecessary fragmentation.Michael Tuexen
2013-02-12Check DTLS_BAD_VER for version number.David Woodhouse
2013-02-11Fix for SSL_get_certificateDr. Stephen Henson
2013-02-11Fix in ssltest is no-ssl2 configuredDr. Stephen Henson
2013-02-09ssl/*: fix linking errors with no-srtp.Andy Polyakov
2013-02-09ssl/s3_[clnt|srvr].c: fix warnings.Andy Polyakov
2013-02-08s3_cbc.c: make CBC_MAC_ROTATE_IN_PLACE universal.Andy Polyakov
2013-02-08s3_cbc.c: get rid of expensive divisions [from master].Andy Polyakov
2013-02-07Remove extraneous brackets (clang doesn't like them).Ben Laurie
2013-02-07ssl/[d1|s3]_pkt.c: harmomize orig_len handling.Andy Polyakov
2013-02-07Fix IV check and padding removal.Dr. Stephen Henson
2013-02-06Fix for EXP-RC2-CBC-MD5Adam Langley
2013-02-04make updateDr. Stephen Henson
2013-02-04Fix error codes.Dr. Stephen Henson
2013-02-02e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.Andy Polyakov
2013-02-01ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.Andy Polyakov
2013-02-01Don't access EVP_MD_CTX internals directly.Dr. Stephen Henson
2013-02-01s3/s3_cbc.c: allow for compilations with NO_SHA256|512.Andy Polyakov
2013-02-01ssl/s3_cbc.c: md_state alignment portability fix.Andy Polyakov
2013-02-01ssl/s3_cbc.c: uint64_t portability fix.Andy Polyakov
2013-01-31typo.Dr. Stephen Henson
2013-01-31Timing fix mitigation for FIPS mode.Dr. Stephen Henson
2013-01-28Oops. Add missing file.Ben Laurie
2013-01-28Update DTLS code to match CBC decoding in TLS.Ben Laurie
2013-01-28Don't crash when processing a zero-length, TLS >= 1.1 record.Ben Laurie
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-30 02:50:36 +0000