summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2022-08-17Fix SSL_pending() and SSL_has_pending() with DTLSMatt Caswell
2022-08-02Check that IV length is not less than zeroDmitry Belyavskiy
2022-08-01Free up space in the session cache before adding.Todd Short
2022-07-13Check for EVP_MD being NULL inside ssl.slontis
2022-07-08ssl/tls_srp.c: Add check for BN_dupJiasheng Jiang
2022-06-22Improve diagnostics on setting groupsDmitry Belyavskiy
2022-06-21Update copyright yearMatt Caswell
2022-06-10add_provider_groups: Clean up algorithm pointer on failureTomas Mraz
2022-06-03Fix strict client chain check with TLS-1.3Tomas Mraz
2022-06-02Fix the erroneous checks of EVP_PKEY_CTX_set_group_namePeiwei Hu
2022-05-27The -no_legacy_server_connect option applies to clientTomas Mraz
2022-05-27Actually implement UnsafeLegacyServerConnect as documentedTomas Mraz
2022-05-26Fix check of dtls1_process_recordPeiwei Hu
2022-05-24Use safe pattern for buffer size determining in case of GOST key exchangeDmitry Belyavskiy
2022-05-24Fix a crash in ssl_security_cert_chainBernd Edlinger
2022-05-24Fix check of EVP_CIPHER_CTX_ctrlPeiwei Hu
2022-05-16Add return value check of EVP_PKEY_copy_parameters () in ssl_set_cert_and_key()Zhou Qingyang
2022-05-10err: get rid of err_free_strings_int()Dr. Matthias St. Pierre
2022-05-09Fix leakage when the cacheline is 32-bytes in CBC_MAC_ROTATE_IN_PLACEbasavesh
2022-05-03Update copyright yearMatt Caswell
2022-04-27Add SSL_(CTX_)?get0_(verify|chain)_cert_store functionsHugo Landau
2022-04-21str[n]casecmp => OPENSSL_strncasecmpDmitry Belyavskiy
2022-04-14Fix an assertion in the DTLS server codeBernd Edlinger
2022-04-12SSL_conf_cmd: Allow DH Parameters at any position.Daniel Fiala
2022-03-30tls_process_server_hello: Disallow repeated HRRTomas Mraz
2022-03-25ticket_lifetime_hint may exceed 1 week in TLSv1.3Todd Short
2022-03-23Fix Coverity 1498611 & 1498608: uninitialised readPauli
2022-03-18print SSL session, fix build warnings on OpenBSD.David Carlier
2022-03-15Update copyright yearMatt Caswell
2022-03-14Replace handling of negative verification result with SSL_set_retry_verify()Tomas Mraz
2022-03-03Add back check for the DH public key sizeTomas Mraz
2022-03-02[ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3Nicola Tuveri
2022-03-02[ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH aliasNicola Tuveri
2022-02-12Cleanup record length checks for KTLSBernd Edlinger
2022-01-19ssl: better support TSAN operationsPauli
2022-01-17ssl/t1_enc: Fix kTLS RX offload pathDmytro Podgornyi
2022-01-11Fix: some patches related to error exitingPeiwei Hu
2022-01-07fix the return check of EVP_PKEY_CTX_ctrl() in 5 spotsxkernel
2022-01-07properly free the resource from EVP_MD_CTX_new() at ssl3_record.c:1413xkernel
2022-01-06properly free the resource from CRYPTO_mallocxkernel
2021-12-14Fix invalid handling of verify errors in libsslMatt Caswell
2021-12-07Don't free the EVP_PKEY on error in set0_tmp_dh_pkey() functionsMatt Caswell
2021-11-29No EtM for GOST ciphers in TLS 1.2Dmitry Belyavskiy
2021-11-29Don't include any TLSv1.3 ciphersuites that are disabledolszomal
2021-11-16BIO_read_filename: fix return checkPeiwei Hu
2021-11-16RAND_bytes_ex: fix return checkPeiwei Hu
2021-11-15Reset the rwstate before calling ASYNC_start_job()Matt Caswell
2021-11-12Add return value NULL checks that were missingPauli
2021-11-08KTLS: use EVP_CIPHER_is_a instead of nidTianjia Zhang
2021-11-04Fix a memory leak in ssl_create_cipher_listBernd Edlinger
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-21 09:49:19 +0000