summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2014-12-03Remove "#if 0" codeMatt Caswell
2014-12-03Only use the fallback mtu after 2 unsuccessful retransmissions if it is lessMatt Caswell
2014-12-03If we really get a situation where the underlying mtu is less than the minimumMatt Caswell
2014-12-03Fix dtls_query_mtu so that it will always either complete with an mtu that isMatt Caswell
2014-12-03Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)Matt Caswell
2014-12-03The first call to query the mtu in dtls1_do_write correctly checks that theMatt Caswell
2014-12-03The SSL_OP_NO_QUERY_MTU option is supposed to stop the mtu from beingMatt Caswell
2014-12-03Verify that we have a sensible message len and fail if notMatt Caswell
2014-11-28Remove all .cvsignore filesRich Salz
2014-11-28[PR3597] Advance to the next state variant when reusing messages.Richard Levitte
2014-11-27Fix warning in ssl2_encMatt Caswell
2014-11-27Remove more references to dtls1_encMatt Caswell
2014-11-27Check EVP_Cipher return values for SSL2Matt Caswell
2014-11-27Delete unused fileMatt Caswell
2014-11-27Add checks to the return value of EVP_Cipher to prevent silent encryption fai...Matt Caswell
2014-11-27Remove redundant checks in ssl_cert_dup. This was causing spurious error mess...Matt Caswell
2014-11-27Add include of ssl.h which is required by srtp.hMatt Caswell
2014-11-26Fixed memory leak due to incorrect freeing of DTLS reassembly bit maskMatt Caswell
2014-11-25Corrected comments in ssl.h about SSLv23_method and friendsMatt Caswell
2014-11-20Fix SuiteB chain checking logic.Dr. Stephen Henson
2014-11-20Do not resume a session if the negotiated protocol version does not matchDavid Benjamin
2014-11-20Ensure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok for DTLS) is resetEmilia Kasper
2014-11-20Always require an advertised NewSessionTicket message.Emilia Kasper
2014-11-20Remove ssl3_check_finished.Emilia Kasper
2014-11-20Set s->hit when resuming from external pre-shared secret.Emilia Kasper
2014-11-20Reset s->tlsext_ticket_expected in ssl_scan_serverhello_tlsext.Emilia Kasper
2014-11-19New option no-ssl3-method which removes SSLv3_*methodDr. Stephen Henson
2014-11-19Only handle RI extension for SSLv3Dr. Stephen Henson
2014-11-19Process signature algorithms before deciding on certificate.Dr. Stephen Henson
2014-11-18Added references to RFC 7027Matt Caswell
2014-11-18Prevent use of binary curves when OPENSSL_NO_EC2M is definedDr. Stephen Henson
2014-11-18Updated comment references to draft-ietf-tls-ecc-12 to refer to RFC4492 insteadMatt Caswell
2014-11-13Additional output for ssltest.Dr. Stephen Henson
2014-11-13Add SSL_CONF support to ssltest.Dr. Stephen Henson
2014-10-28Tighten session ticket handlingEmilia Kasper
2014-10-27Fix ssltest logic when some protocols are compiled out.Emilia Kasper
2014-10-24Copy negotiated parameters in SSL_set_SSL_CTX.Dr. Stephen Henson
2014-10-24Process signature algorithms in ClientHello late.Dr. Stephen Henson
2014-10-21Fix and improve SSL_MODE_SEND_FALLBACK_SCSV documentation.Bodo Moeller
2014-10-21When processing ClientHello.cipher_suites, don't ignore cipher suitesBodo Moeller
2014-10-21Keep old method in case of an unsupported protocolKurt Roeckx
2014-10-15Fix no-ssl3 configuration optionGeoff Thorpe
2014-10-15Fix for session tickets memory leak.Dr. Stephen Henson
2014-10-15Fix SRTP compile issues for windowsMatt Caswell
2014-10-15Fix for SRTP Memory LeakMatt Caswell
2014-10-15Support TLS_FALLBACK_SCSV.Bodo Moeller
2014-10-10Disable encrypt them mac for SSL 3.0 and stream ciphers (RC4 only).Dr. Stephen Henson
2014-09-30Parse custom extensions after internal extensions.Dr. Stephen Henson
2014-09-24RT3544: Remove MWERKS supportRich Salz
2014-09-24RT3067: simplify patchEmilia Kasper
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-22 15:04:44 +0000