summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2016-08-26Fix the no-tls1 optionMatt Caswell
2016-08-26Always use session_ctx when removing a sessionTodd Short
2016-08-24SWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUMRich Salz
2016-08-24Fix no-ecMatt Caswell
2016-08-23Sanity check ticket length.Dr. Stephen Henson
2016-08-22VMS: Use strict refdef extern model when building library object filesRichard Levitte
2016-08-22Prevent DTLS Finished message injectionMatt Caswell
2016-08-22Fix DTLS buffered message DoS attackMatt Caswell
2016-08-22Silence some "maybe used uninitialised" warningsMatt Caswell
2016-08-19Fix NULL-return checks in 1.0.2Rich Salz
2016-08-19Update function error codeMatt Caswell
2016-08-19Fix DTLS replay protectionMatt Caswell
2016-08-19Add DTLS replay protection testMatt Caswell
2016-08-19Fix DTLS unprocessed records bugMatt Caswell
2016-08-19Add a DTLS unprocesed records testMatt Caswell
2016-07-28Add missing casts.Rich Salz
2016-07-22Send alert for bad DH CKEDr. Stephen Henson
2016-07-20Sanity check in ssl_get_algorithm2().Dr. Stephen Henson
2016-07-19Send alert on CKE error.Dr. Stephen Henson
2016-07-01Avoid an overflow in constructing the ServerKeyExchange messageMatt Caswell
2016-06-27Change usage of RAND_pseudo_bytes to RAND_bytesMatt Caswell
2016-06-01Avoid some undefined pointer arithmeticMatt Caswell
2016-05-26The ssl3_digest_cached_records() function does not handle errors properlyMatt Caswell
2016-05-19Ensure verify error is set when X509_verify_cert() failsViktor Dukhovni
2016-05-19Fix a double free in tls1_setup_key_blockMatt Caswell
2016-05-17Fix SSL compression symbol exportingMatt Caswell
2016-05-09Don't send signature algorithms when client_version is below TLS 1.2.David Benjamin
2016-05-02Remove confusing comment.TJ Saunders
2016-05-02Issue #719:TJ Saunders
2016-04-26Ensure we check i2d_X509 return valMatt Caswell
2016-04-07Fix memory leak on invalid CertificateRequest.David Benjamin
2016-04-04Fix ALPNTodd Short
2016-03-18Add a check for a failed mallocMatt Caswell
2016-03-18Ensure that memory allocated for the ticket is freedMatt Caswell
2016-03-14Add no-ssl2-methodKurt Roeckx
2016-03-09expose SSLv2 method prototypesViktor Dukhovni
2016-03-08Retain SSLv2 methods as functions that return NULLViktor Dukhovni
2016-03-07Remove LOW from the defaultKurt Roeckx
2016-03-01make updateMatt Caswell
2016-03-01Disable EXPORT and LOW SSLv3+ ciphers by defaultViktor Dukhovni
2016-03-01Add a test for SSLv2 configurationMatt Caswell
2016-03-01Disable SSLv2 default build, default negotiation and weak ciphers.Viktor Dukhovni
2016-02-08Handle SSL_shutdown while in init more appropriately #2Matt Caswell
2016-01-28Always generate DH keys for ephemeral DH cipher suitesMatt Caswell
2016-01-28Better SSLv2 cipher-suite enforcementViktor Dukhovni
2016-01-20Handle SSL_shutdown while in init more appropriatelyMatt Caswell
2016-01-19Validate ClientHello session_id field length and send alert on failureAlessandro Ghedini
2016-01-17Empty SNI names are not validViktor Dukhovni
2016-01-12Wrong definition of the macro SSL_set1_sigalgs in ssl.harijitnayak
2016-01-11Change minimum DH size from 768 to 1024Kurt Roeckx
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-12 09:27:59 +0000