summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2012-09-11Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificateDr. Stephen Henson
2012-09-11Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-07-03revert unrelated test codeDr. Stephen Henson
2012-07-03PR: 2840Dr. Stephen Henson
2012-06-27don't use pseudo digests for default values of keysDr. Stephen Henson
2012-06-11Fix memory leak.Ben Laurie
2012-06-07Rearrange and test authz extension.Ben Laurie
2012-06-06Fix memory leak.Ben Laurie
2012-06-06Fix authz parsing.Ben Laurie
2012-06-06Version skew reduction.Ben Laurie
2012-06-03Reduce version skew: trivia (I hope).Ben Laurie
2012-05-29Don't insert in the middle.Ben Laurie
2012-05-29RFC 5878 support.Ben Laurie
2012-05-16s2_clnt.c: compensate for compiler bug [from HEAD].Andy Polyakov
2012-05-11PR: 2811Dr. Stephen Henson
2012-05-10PR: 2806Dr. Stephen Henson
2012-05-10Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 andDr. Stephen Henson
2012-05-10Don't forget to install srtp.h as wellRichard Levitte
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson
2012-04-25Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL andDr. Stephen Henson
2012-04-25s23_clnt.c: ensure interoperability by maitaining client "version capability"Andy Polyakov
2012-04-24Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>Dr. Stephen Henson
2012-04-18recognise X9.42 DH certificates on serversDr. Stephen Henson
2012-04-18correct error codeDr. Stephen Henson
2012-04-17Disable SHA-2 ciphersuites in < TLS 1.2 connections.Bodo Möller
2012-04-17Additional workaround for PR#2771Dr. Stephen Henson
2012-04-17Partial workaround for PR#2771.Dr. Stephen Henson
2012-04-16OPENSSL_NO_SOCK fixes [from HEAD].Andy Polyakov
2012-04-15s3_srvr.c: fix typo [from HEAD].Andy Polyakov
2012-04-15e_aes_cbc_hmac_sha1.c: handle zero-length payload and engage empty fragAndy Polyakov
2012-04-11use different variable for chain iterationDr. Stephen Henson
2012-04-06Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>Dr. Stephen Henson
2012-04-06Add support for automatic ECDH temporary key parameter selection. WhenDr. Stephen Henson
2012-04-06Tidy up EC parameter check code: instead of accessing internal structuresDr. Stephen Henson
2012-04-06Initial revision of ECC extension handling.Dr. Stephen Henson
2012-04-06New ctrls to retrieve supported signature algorithms and curves andDr. Stephen Henson
2012-04-06initialise i if n == 0Dr. Stephen Henson
2012-04-06Add support for distinct certificate chains per key type and per SSLDr. Stephen Henson
2012-04-06Backport: code tidy (from HEAD)Dr. Stephen Henson
2012-04-06Backport: Revise ssl code to use CERT_PKEY structure when outputting a certif...Dr. Stephen Henson
2012-04-06Backport: tidy/enhance certificate chain output code (from HEAD)Dr. Stephen Henson
2012-04-06Backport: initialise dh_clnt (from HEAD)Dr. Stephen Henson
2012-04-06Backport DH client certificate support (from HEAD)Dr. Stephen Henson
2012-04-06Backport support for fixed DH ciphersuites (from HEAD)Dr. Stephen Henson
2012-04-04ssl/ssl_ciph.c: interim solution for assertion in d1_pkt.c(444) [from HEAD].Andy Polyakov
2012-03-31PR: 2778(part)Dr. Stephen Henson
2012-03-21use client version when deciding whether to send supported signature algorith...Dr. Stephen Henson
2012-03-13ssl/t1_enc.c: pay attention to EVP_CIPH_FLAG_CUSTOM_CIPHER [from HEAD].Andy Polyakov
2012-03-09Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>Dr. Stephen Henson
2012-03-09PR: 2756Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-26 23:52:37 +0000