summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson
2012-04-25Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL andDr. Stephen Henson
2012-04-25s23_clnt.c: ensure interoperability by maitaining client "version capability"Andy Polyakov
2012-04-18correct error codeDr. Stephen Henson
2012-04-17Disable SHA-2 ciphersuites in < TLS 1.2 connections.Bodo Möller
2012-04-17Additional workaround for PR#2771Dr. Stephen Henson
2012-04-17Partial workaround for PR#2771.Dr. Stephen Henson
2012-04-16OPENSSL_NO_SOCK fixes [from HEAD].Andy Polyakov
2012-04-15s3_srvr.c: fix typo [from HEAD].Andy Polyakov
2012-04-15e_aes_cbc_hmac_sha1.c: handle zero-length payload and engage empty fragAndy Polyakov
2012-04-04ssl/ssl_ciph.c: interim solution for assertion in d1_pkt.c(444) [from HEAD].Andy Polyakov
2012-03-31PR: 2778(part)Dr. Stephen Henson
2012-03-29Experimental workaround to large client hello issue (see PR#2771).Dr. Stephen Henson
2012-03-21use client version when deciding whether to send supported signature algorith...Dr. Stephen Henson
2012-03-13ssl/t1_enc.c: pay attention to EVP_CIPH_FLAG_CUSTOM_CIPHER [from HEAD].Andy Polyakov
2012-03-09Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>Dr. Stephen Henson
2012-03-09PR: 2756Dr. Stephen Henson
2012-03-06PR: 2755Dr. Stephen Henson
2012-03-06PR: 2748Dr. Stephen Henson
2012-02-27PR: 2739Dr. Stephen Henson
2012-02-22ABI compliance fixes.Dr. Stephen Henson
2012-02-17typoDr. Stephen Henson
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson
2012-02-11Submitted by: Eric Rescorla <ekr@rtfm.com>Dr. Stephen Henson
2012-02-10PR: 2704Dr. Stephen Henson
2012-02-10Submitted by: Eric Rescorla <ekr@rtfm.com>Dr. Stephen Henson
2012-02-09Modify client hello version when renegotiating to enhance interop withDr. Stephen Henson
2012-01-22return error if md is NULLDr. Stephen Henson
2012-01-18Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.Dr. Stephen Henson
2012-01-151.0.1-specific OPNESSL vs. OPENSSL typo.Andy Polyakov
2012-01-05PR: 2652Dr. Stephen Henson
2012-01-05Fix for builds without DTLS support.Bodo Möller
2012-01-05PR: 2671Dr. Stephen Henson
2012-01-05Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>Dr. Stephen Henson
2012-01-04Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <t...Dr. Stephen Henson
2012-01-04Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)Dr. Stephen Henson
2012-01-04Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619)Dr. Stephen Henson
2012-01-04Submitted by: Adam Langley <agl@chromium.org>Dr. Stephen Henson
2012-01-03only send heartbeat extension from server if client sent oneDr. Stephen Henson
2012-01-02make updateDr. Stephen Henson
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-27make updateDr. Stephen Henson
2011-12-27PR: 1794Dr. Stephen Henson
2011-12-26PR: 2326Dr. Stephen Henson
2011-12-25PR: 2535Dr. Stephen Henson
2011-12-23typoDr. Stephen Henson
2011-12-23delete unimplemented function from header file, update ordinalsDr. Stephen Henson
2011-12-22remove prototype for deleted SRP functionDr. Stephen Henson
2011-12-22New ctrl values to clear or retrieve extra chain certs from an SSL_CTX.Dr. Stephen Henson
2011-12-20Fix DTLS.Ben Laurie
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-14 00:06:40 +0000