Age | Commit message (Collapse) | Author | |
---|---|---|---|
2011-04-11 | Reorder headers to get definitions before they are used. | Dr. Stephen Henson | |
2011-04-03 | PR: 2462 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Reviewed by: steve Fix DTLS Retransmission Buffer Bug | |||
2011-04-03 | PR: 2458 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Reviewed by: steve Don't change state when answering DTLS ClientHello. | |||
2011-04-03 | PR: 2457 | Dr. Stephen Henson | |
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Reviewed by: steve Fix DTLS fragment reassembly bug. | |||
2011-03-25 | Corrections to the VMS build system. | Richard Levitte | |
Submitted by Steven M. Schweda <sms@antinode.info> | |||
2011-03-25 | For VMS, implement the possibility to choose 64-bit pointers with | Richard Levitte | |
different options: "64" The build system will choose /POINTER_SIZE=64=ARGV if the compiler supports it, otherwise /POINTER_SIZE=64. "64=" The build system will force /POINTER_SIZE=64. "64=ARGV" The build system will force /POINTER_SIZE=64=ARGV. | |||
2011-03-23 | make update (1.1.0-dev) | Richard Levitte | |
This meant alarger renumbering in util/libeay.num due to symbols appearing in 1.0.0-stable and 1.0.1-stable. However, since there's been no release on this branch yet, it should be harmless. | |||
2011-03-19 | After some adjustments, apply the changes OpenSSL 1.0.0d on OpenVMS | Richard Levitte | |
submitted by Steven M. Schweda <sms@antinode.info> | |||
2011-03-16 | Fix broken SRP error/function code assignment. | Dr. Stephen Henson | |
2011-03-12 | Fix warnings: signed/unisgned comparison, shadowing (in some cases global | Dr. Stephen Henson | |
functions such as rand() ). | |||
2011-03-12 | Remove redundant check to stop compiler warning. | Dr. Stephen Henson | |
2011-03-12 | Add SRP support. | Ben Laurie | |
2011-02-16 | Include openssl/crypto.h first in several other files so FIPS renaming | Dr. Stephen Henson | |
is picked up. | |||
2011-02-12 | New option to disable characteristic two fields in EC code. | Dr. Stephen Henson | |
2011-02-08 | OCSP stapling fix (OpenSSL 0.9.8r/1.0.0d) | Bodo Möller | |
Submitted by: Neel Mehta, Adam Langley, Bodo Moeller | |||
2011-02-03 | Assorted bugfixes: | Bodo Möller | |
- safestack macro changes for C++ were incomplete - RLE decompression boundary case - SSL 2.0 key arg length check Submitted by: Google (Adam Langley, Neel Mehta, Bodo Moeller) | |||
2011-02-03 | CVE-2010-4180 fix (from OpenSSL_1_0_0-stable) | Bodo Möller | |
2011-02-03 | make update | Bodo Möller | |
2011-01-26 | FIPS_allow_md5() no longer exists and is no longer required | Dr. Stephen Henson | |
2011-01-04 | Don't use decryption_failed alert for TLS v1.1 or later. | Dr. Stephen Henson | |
2011-01-04 | Since DTLS 1.0 is based on TLS 1.1 we should never return a decryption_failed | Dr. Stephen Henson | |
alert. | |||
2010-12-14 | First attempt at adding the possibility to set the pointer size for the ↵ | Richard Levitte | |
builds on VMS. PR: 2393 | |||
2010-11-25 | PR: 2240 | Dr. Stephen Henson | |
Submitted by: Jack Lloyd <lloyd@randombit.net>, "Mounir IDRASSI" <mounir.idrassi@idrix.net>, steve Reviewed by: steve As required by RFC4492 an absent supported points format by a server is not an error: it should be treated as equivalent to an extension only containing uncompressed. | |||
2010-11-25 | using_ecc doesn't just apply to TLSv1 | Dr. Stephen Henson | |
2010-11-24 | oops, revert invalid change | Dr. Stephen Henson | |
2010-11-24 | use generalise mac API for SSL key generation | Dr. Stephen Henson | |
2010-11-22 | Taken from OpenSSL_1_0_0-stable: | Richard Levitte | |
Include proper header files for time functions. Submitted by Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se> | |||
2010-11-18 | remove duplicate statement | Dr. Stephen Henson | |
2010-11-17 | oops, reinstate TLSv1 string | Dr. Stephen Henson | |
2010-11-17 | Don't assume a decode error if session tlsext_ecpointformatlist is not NULL: ↵ | Dr. Stephen Henson | |
it can be legitimately set elsewhere. | |||
2010-11-16 | bring HEAD up to date, add CVE-2010-3864 fix, update NEWS files | Dr. Stephen Henson | |
2010-11-14 | Only use explicit IV if cipher is in CBC mode. | Dr. Stephen Henson | |
2010-11-14 | Get correct GOST private key instead of just assuming the last one is | Dr. Stephen Henson | |
correct: this isn't always true if we have more than one certificate. | |||
2010-10-10 | PR: 2314 | Dr. Stephen Henson | |
Submitted by: Mounir IDRASSI <mounir.idrassi@idrix.net> Reviewed by: steve Fix for double free bug in ssl/s3_clnt.c CVE-2010-2939 | |||
2010-09-05 | Fixes to NPN from Adam Langley. | Ben Laurie | |
2010-09-05 | NPN tests. | Ben Laurie | |
2010-09-05 | Fix warnings. | Ben Laurie | |
2010-08-27 | PR: 1833 | Dr. Stephen Henson | |
Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de> Fix other cases not covered by original patch. | |||
2010-08-26 | For better forward-security support, add functions | Bodo Möller | |
SSL_[CTX_]set_not_resumable_session_callback. Submitted by: Emilia Kasper (Google) [A part of this change affecting ssl/s3_lib.c was accidentally commited separately, together with a compilation fix for that file; see s3_lib.c CVS revision 1.133 (http://cvs.openssl.org/chngview?cn=19855).] | |||
2010-08-26 | Patch from PR #1833 was broken: there's no s->s3->new_session | Bodo Möller | |
(only s->new_session). | |||
2010-08-26 | PR: 1833 | Dr. Stephen Henson | |
Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de> Support for abbreviated handshakes when renegotiating. | |||
2010-07-28 | Add Next Protocol Negotiation. | Ben Laurie | |
2010-07-18 | PR: 1830 | Dr. Stephen Henson | |
Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>, Steve Henson Support for RFC5705 key extractor. | |||
2010-07-18 | oops, revert wrong patch.. | Dr. Stephen Henson | |
2010-07-18 | Fix warnings (From HEAD, original patch by Ben). | Dr. Stephen Henson | |
2010-06-27 | no need for empty fragments with TLS 1.1 and later due to explicit IV | Dr. Stephen Henson | |
2010-06-12 | Fix warnings. | Ben Laurie | |
2010-05-17 | PR: 2259 | Dr. Stephen Henson | |
Submitted By: Artem Chuprina <ran@cryptocom.ru> Check return values of HMAC in tls_P_hash and tls1_generate_key_block. Although the previous version could in theory crash that would only happen if a digest call failed. The standard software methods can never fail and only one ENGINE currently uses digests and it is not compiled in by default. | |||
2010-05-03 | PR: 2230 | Dr. Stephen Henson | |
Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de> Fix bug in bitmask macros and stop warnings. | |||
2010-04-14 | fix signed/unsigned comparison warnings | Dr. Stephen Henson | |