summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2023-02-07Update copyright yearRichard Levitte
2023-01-24Ensure our buffer allocation allows for the Explicit IVMatt Caswell
2022-12-05Fix the ceiling on how much encryption growth we can haveMatt Caswell
2022-11-01Update copyright yearTomas Mraz
2022-10-26ssl_cipher_process_rulestr: don't read outside rule_str bufferTodd C. Miller
2022-10-11Update copyright yearMatt Caswell
2022-09-09Convert serverinfo in SSL_CTX_use_serverinfo() to v2.Daniel Fiala
2022-08-22Coverity 1508506: misuse of time_tPauli
2022-08-19Coverity 1508534 & 1508540: misuses of time_tPauli
2022-08-10Fix SSL_pending() and SSL_has_pending() with DTLSMatt Caswell
2022-07-07Fix a memory leak in tls13_generate_secretBernd Edlinger
2022-06-21Update copyright yearMatt Caswell
2022-06-03Fix strict client chain check with TLS-1.3Tomas Mraz
2022-05-24Fix a crash in ssl_security_cert_chainBernd Edlinger
2022-05-09Fix leakage when the cacheline is 32-bytes in CBC_MAC_ROTATE_IN_PLACEbasavesh
2022-05-05Do not send an empty supported groups extensionTomas Mraz
2022-05-05(1.1) Add SSL_(CTX_)?get0_(verify|chain)_cert_store functionsHugo Landau
2022-05-03Update copyright yearMatt Caswell
2022-04-14Fix an assertion in the DTLS server codeBernd Edlinger
2022-04-13Fix a DTLS server hangup due to TLS13_AD_MISSING_EXTENSIONBernd Edlinger
2022-04-09err: get rid of err_free_strings_int()Dr. Matthias St. Pierre
2022-03-30Fix usage of SSLfatalMatt Caswell
2022-03-30tls_process_server_hello: Disallow repeated HRRTomas Mraz
2022-03-25ticket_lifetime_hint may exceed 1 week in TLSv1.3Todd Short
2022-03-23Fix Coverity 1498611 & 1498608: uninitialised readPauli
2022-03-18print SSL session, fix build warnings on OpenBSD.David Carlier
2022-03-15Update copyright yearMatt Caswell
2022-03-03[ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3Nicola Tuveri
2022-03-03[ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH aliasNicola Tuveri
2021-12-14Update copyright yearMatt Caswell
2021-12-03Fix ssl_free() and thus BIO_free() to respect BIO_NOCLOSEDr. David von Oheimb
2021-12-01No EtM for GOST ciphersDmitry Belyavskiy
2021-11-16free the Post-Handshake Auth digest when there is an error saving the digestx2018
2021-11-15Reset the rwstate before calling ASYNC_start_job()Matt Caswell
2021-11-04Fix a memory leak in ssl_create_cipher_listBernd Edlinger
2021-11-04Fix a memory leak in tls_parse_stoc_key_shareBernd Edlinger
2021-10-11New extensions can be sent in a certificate requestMatt Caswell
2021-09-27ssl: Correct filename in READMETianjia Zhang
2021-09-01Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass testsTomas Mraz
2021-08-25Fix some strict gcc-12 warningsBernd Edlinger
2021-08-25Fix the array size of dtlsseq in tls1_encBernd Edlinger
2021-08-24Update copyright yearMatt Caswell
2021-08-16Fix potential double-freeTodd Short
2021-07-20Fix some minor record layer issuesMatt Caswell
2021-07-16Disallow SSL_key_update() if there are writes pendingMatt Caswell
2021-07-16Don't reset the packet pointer in ssl3_setup_read_bufferMatt Caswell
2021-07-12Avoid "excessive message size" for session ticketsMatt Caswell
2021-07-08ssl: do not choose auto DH groups that are weaker than the security levelPauli
2021-06-04Only call dtls1_start_timer() onceMatt Caswell
2021-06-02Modify ssl_handshake_hash to call SSLfatalTrev Larock
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-18 03:14:24 +0000