summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2013-09-18Update fixed DH requirements.Dr. Stephen Henson
2013-09-18DTLS 1.2 cached record support.Dr. Stephen Henson
2013-09-18Provisional DTLS 1.2 support.Dr. Stephen Henson
2013-09-18Remove versions test from dtls1_buffer_messageDr. Stephen Henson
2013-09-18Extend DTLS method macros.Dr. Stephen Henson
2013-09-18Enable various DTLS extensions.Dr. Stephen Henson
2013-09-18Use enc_flags when deciding protocol variations.Dr. Stephen Henson
2013-09-18Use appropriate versions of SSL3_ENC_METHODDr. Stephen Henson
2013-09-18DTLS revision.Dr. Stephen Henson
2013-09-16Various custom extension fixes.Trevor Perrin
2013-09-16Tidy up comments.Rob Stradling
2013-09-16Use TLS version supplied by client when fingerprinting Safari.Rob Stradling
2013-09-16Fix compilation with no-ec and/or no-tlsext.Rob Stradling
2013-09-16Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.Rob Stradling
2013-09-14Add missing code from SSL_CONF backport.Dr. Stephen Henson
2013-08-19Make no-ec compilation work.Dr. Stephen Henson
2013-08-18Return 1 when setting ECDH auto mode.Dr. Stephen Henson
2013-08-13DTLS message_sequence number wrong in rehandshake ServerHelloMichael Tuexen
2013-08-08DTLS handshake fix.Michael Tuexen
2013-07-31Cosmetic touchups.Trevor
2013-07-03Trying cherrypick:Trevor
2013-06-04Header needed for SOCK_STREAM on FreeBSD.Ben Laurie
2013-06-04Fix missing/incorrect prototype.Ben Laurie
2013-05-15RFC6689 support: add missing commit (git noob alert).Andy Polyakov
2013-05-15ssl/dnssec.c: compilation errors.Andy Polyakov
2013-05-13Initial support for RFC6689, a.k.a. DANE.Andy Polyakov
2013-04-08Set s->d1 to NULL after freeing it.Dr. Stephen Henson
2013-03-19Disable compression for DTLS.Dr. Stephen Henson
2013-03-18Avoid unnecessary fragmentation.Michael Tuexen
2013-02-26Fix error codes.Dr. Stephen Henson
2013-02-12Check DTLS_BAD_VER for version number.David Woodhouse
2013-02-11Fix in ssltest is no-ssl2 configuredDr. Stephen Henson
2013-02-08s3_cbc.c: make CBC_MAC_ROTATE_IN_PLACE universal.Andy Polyakov
2013-02-08s3_cbc.c: get rid of expensive divisions [from master].Andy Polyakov
2013-02-08ssl/[d1|s3]_pkt.c: harmomize orig_len handling.Andy Polyakov
2013-02-08Fix IV check and padding removal.Dr. Stephen Henson
2013-02-08Fix for EXP-RC2-CBC-MD5Adam Langley
2013-02-06e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.Andy Polyakov
2013-02-06ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.Andy Polyakov
2013-02-06Don't access EVP_MD_CTX internals directly.Dr. Stephen Henson
2013-02-06s3/s3_cbc.c: allow for compilations with NO_SHA256|512.Andy Polyakov
2013-02-06ssl/s3_cbc.c: md_state alignment portability fix.Andy Polyakov
2013-02-06ssl/s3_cbc.c: uint64_t portability fix.Andy Polyakov
2013-02-06typo.Dr. Stephen Henson
2013-02-06Timing fix mitigation for FIPS mode.Dr. Stephen Henson
2013-02-06Oops. Add missing file.Ben Laurie
2013-02-06Update DTLS code to match CBC decoding in TLS.Ben Laurie
2013-02-06Don't crash when processing a zero-length, TLS >= 1.1 record.Ben Laurie
2013-02-06Make CBC decoding constant time.Ben Laurie
2013-02-06Add and use a constant-time memcmp.Ben Laurie
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-22 10:04:01 +0000