summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2003-03-19countermeasure against new Klima-Pokorny-Rosa atackBodo Möller
2003-02-19Security fix: Vaudenay timing attack on CBC.Richard Levitte
2003-02-12commentsBodo Möller
2002-12-21Merge from HEAD...Richard Levitte
2002-11-29A few more memset()s converted to OPENSSL_cleanse().Richard Levitte
2002-11-28Have all tests use EXIT() to exit rather than exit(), since the latter doesn'tRichard Levitte
2002-11-28Cleanse memory using the new OPENSSL_cleanse() function.Richard Levitte
2002-11-20Fix bug introduced by the attempt to fix client side external sessionLutz Jänicke
2002-11-19allocate bio_err before memory debugging is enabled to avoid memory leaksBodo Möller
2002-11-15The pointer to the cipher object is not yet set, when session was reloadedLutz Jänicke
2002-11-15We need to read one more byte of the REQUEST-CERTIFICATE message.Richard Levitte
2002-11-05avoid Purify warningsBodo Möller
2002-10-29The recent session caching modifications (including docs, and CHANGES) wereGeoff Thorpe
2002-10-28increase permissible message length so that we can handleBodo Möller
2002-10-09Use double dashes so makedepend doesn't misunderstand the flags weRichard Levitte
2002-09-26fix more race conditionsBodo Möller
2002-09-25Add missing brackets.Lutz Jänicke
2002-09-25really fix race conditionsBodo Möller
2002-09-23really fix race conditionBodo Möller
2002-09-20there is no minimum length for session IDsBodo Möller
2002-09-19there is no minimum length for session IDsBodo Möller
2002-09-19fix race conditionBodo Möller
2002-08-16Reorder cleanup sequence in SSL_CTX_free() to leave ex_data for remove_cb().Lutz Jänicke
2002-08-15use correct function code in error messageBodo Möller
2002-08-15Sometimes, the value of the variable containing the compiler call canRichard Levitte
2002-08-14Instead of returning errors when certain flags are unusable, just ignore them.Richard Levitte
2002-08-14Small syntax error corrected. Fortunately, this one only issues aRichard Levitte
2002-08-02get rid of OpenSSLDieBodo Möller
2002-07-30OpenSSL Security Advisory [30 July 2002]Lutz Jänicke
2002-07-30"make update"Lutz Jänicke
2002-07-19'SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION' does not belong here,Bodo Möller
2002-07-10Ciphers with NULL encryption were not properly handled because they wereLutz Jänicke
2002-07-09emtpy fragments are not necessary for SSL_eNULLBodo Möller
2002-06-14New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBCBodo Möller
2002-06-13make updateRichard Levitte
2002-05-23Recover from errorsRichard Levitte
2002-05-06fix warningBodo Möller
2002-05-05fix castsBodo Möller
2002-05-02Win32 VC++ warning fixes.Dr. Stephen Henson
2002-04-29Fix unsigned vs. signed clashRichard Levitte
2002-04-18Make sure the opened directory is closed on exit.Richard Levitte
2002-04-14improve binary compatibilityBodo Möller
2002-04-13Implement known-IV countermeasure.Bodo Möller
2002-03-19Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).Lutz Jänicke
2002-03-15fix ssl3_pendingBodo Möller
2002-03-14Add missing strength entries.Lutz Jänicke
2002-03-14use BIO_nwrite() more properly to demonstrate the general idea ofBodo Möller
2002-02-27Fix the fix (Yoram Zahavi)...Lutz Jänicke
2002-02-26Make sure to remove bad sessions in SSL_clear() (found by Yoram Zahavi).Lutz Jänicke
2002-02-26make updateRichard Levitte
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-30 02:56:31 +0000