summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-05-19Make SSL_is_server() accept a const SSLMatt Caswell
2017-05-10Copy custom extension flags in a call to SSL_set_SSL_CTX()Matt Caswell
2017-05-09Remove support for OPENSSL_SSL_TRACE_CRYPTOMatt Caswell
2017-04-26CT_POLICY_EVAL_CTX_set_time expects milliseconds, but given secondsRob Percival
2017-04-25Don't attempt to send fragments > max_send_fragment in DTLSMatt Caswell
2017-04-25Remove special case code for SCTP reneg handlingMatt Caswell
2017-04-13ASN.1: adapt SSL_SESSION_ASN1 by explicitely embedding INTxx et alRichard Levitte
2017-04-11Remove ECDH(E) ciphers from SSLv3Todd Short
2017-04-11Additional check to handle BAD SSL_write retryRich Salz
2017-04-11Allow an ALPN callback to pretend to not existBenjamin Kaduk
2017-04-04Convert SSL_SESSION_ASN1 to use size specific integersRichard Levitte
2017-03-30More typo fixesFdaSilvaYY
2017-03-28Fix a few more typosFdaSilvaYY
2017-03-14Fix some -Wshadow warningsBenjamin Kaduk
2017-03-10Use the callbacks from the SSL object instead of the SSL_CTX objectPauli
2017-03-10Avoid questionable use of the value of a pointer that refers to spaceBernd Edlinger
2017-03-08prevent undefined behavior when src and dst are equalRoberto Guimaraes
2017-03-07Provide a function to test whether we have unread records pendingMatt Caswell
2017-03-07Get pointer type right in BIO_ssl_shutdown()Rich Salz
2017-03-02Check for zero records and return immediatelyJon Spillett
2017-02-22Add some more consistency checks in tls_decrypt_ticket.Bernd Edlinger
2017-02-22Fix i2d_SSL_SESSION pp output parameter should point to end of asn1 data.Bernd Edlinger
2017-02-16Remove an OPENSSL_assert() and replace with a soft assert and checkMatt Caswell
2017-02-16Don't change the state of the ETM flags until CCS processingMatt Caswell
2017-02-15Rework error handling of custom_ext_meth_add towards strong exception safety.Bernd Edlinger
2017-02-14Use TLSEXT_KEYNAME_LENGTH in tls_decrypt_ticket.Bernd Edlinger
2017-02-14mem leak on error path and error propagation fixYuchi
2017-02-09Don't read uninitialised data for short session IDs.David Benjamin
2017-02-05Combined patch against OpenSSL_1_1_0-stable branch for the following issues:Bernd Edlinger
2017-02-05Majority rules, use session_ctx vs initial_ctxTodd Short
2017-01-28Correct pointer to be freedRichard Levitte
2017-01-26Use correct signature algorithm list when sending or checking.Dr. Stephen Henson
2017-01-26Better check of DH parameters in TLS dataRichard Levitte
2017-01-24Replace div-spoiler hack with simpler code, GH#1027,2253.Andy Polyakov
2017-01-24Cleanup EVP_CIPH/EP_CTRL duplicate definesTodd Short
2017-01-24Do not overallocate for tmp.ciphers_rawBenjamin Kaduk
2017-01-24Fix SSL_get0_raw_cipherlist()Matt Caswell
2017-01-24Fix a ssl session leak due to OOM in lh_SSL_SESSION_insertBernd Edlinger
2017-01-23Stop server from expecting Certificate message when not requestedMatt Caswell
2017-01-23Stop client from sending Certificate message when not requestedMatt Caswell
2017-01-23Fix SSL_VERIFY_CLIENT_ONCEMatt Caswell
2017-01-23fix a memory leak in ssl3_generate_key_block fix the error handling in ssl3_c...Bernd Edlinger
2017-01-18If client doesn't send curves list, don't assume all.Rich Salz
2017-01-10Mark a HelloRequest record as read if we ignore itMatt Caswell
2016-12-12Fix a leak in SSL_clear()Matt Caswell
2016-12-08Only call memcpy when the length is larger than 0.Kurt Roeckx
2016-11-29Ensure we are in accept state in DTLSv1_listenMatt Caswell
2016-11-23Fix missing NULL checks in CKE processingMatt Caswell
2016-11-21Make SSL_read and SSL_write return the old behaviour and document it.Kurt Roeckx
2016-11-16Remove a hack from ssl_test_oldMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-27 14:43:53 +0000