summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2015-06-04Allow all curves when the client doesn't send an supported elliptic curves ex...Kurt Roeckx
2015-06-04Remove misleading commentMatt Caswell
2015-06-04Clean premaster_secret for GOSTMatt Caswell
2015-06-04Clean Kerberos pre-master secretMatt Caswell
2015-06-04Fix DTLS session resumptionMatt Caswell
2015-06-02Fix race condition in NewSessionTicketMatt Caswell
2015-06-01Check the message type requested is the type received in DTLSMatt Caswell
2015-05-26Fix ssltest to use 1024-bit DHE parametersEmilia Kasper
2015-05-26Don't check for a negative SRP extension sizeMatt Caswell
2015-05-25Don't send an alert if we've just received oneMatt Caswell
2015-05-23Fix the update target and remove duplicate file updatesRichard Levitte
2015-05-23Fix typo setting up certificate masksMatt Caswell
2015-05-23Remove export static DH ciphersuitesMatt Caswell
2015-05-22Lost alert in DTLSLubom
2015-05-20Correctly check for export size limitKurt Roeckx
2015-05-20Only support >= 256-bit elliptic curves with ecdh_auto (server) or by default...Emilia Kasper
2015-05-20client: reject handshakes with DH parameters < 768 bits.Emilia Kasper
2015-05-13Don't allow a CCS when expecting a CertificateVerifyMatt Caswell
2015-05-11Check sk_SSL_CIPHER_new_null return valueMatt Caswell
2015-05-05Add more error state transitions (DTLS)Matt Caswell
2015-05-05Add more error state transitions (client)Matt Caswell
2015-05-05Add more error state transitionsMatt Caswell
2015-05-05Add Error stateMatt Caswell
2015-04-30Add sanity check to ssl_get_prev_sessionMatt Caswell
2015-04-30Sanity check the return from final_finish_macMatt Caswell
2015-04-30Add sanity check in ssl3_cbc_digest_recordMatt Caswell
2015-04-30Sanity check EVP_CTRL_AEAD_TLS_AADMatt Caswell
2015-04-29Add length sanity check in SSLv2 n_do_ssl_write()Matt Caswell
2015-04-21Repair EAP-FAST session resumptionEmilia Kasper
2015-04-21make updateEmilia Kasper
2015-04-17Error out immediately on empty ciphers list.Emilia Kasper
2015-04-16Code style: space after 'if'Viktor Dukhovni
2015-04-14Fix ssl_get_prev_session overrunMatt Caswell
2015-04-14Check for ClientHello message overrunsMatt Caswell
2015-04-08Harden SSLv2-supporting servers against Bleichenbacher's attack.Emilia Kasper
2015-03-25Fix RAND_(pseudo_)?_bytes returnsMatt Caswell
2015-03-25Add ticket length before buffering DTLS messageMatt Caswell
2015-03-25Ensure last_write_sequence is saved in DTLS1.2Matt Caswell
2015-03-24Don't send a for ServerKeyExchange for kDHr and kDHdKurt Roeckx
2015-03-23Don't check curves that haven't been sentMatt Caswell
2015-03-22Fix no-ec with no-ec2mMatt Caswell
2015-03-20Add DTLS support to ssltestDavid Woodhouse
2015-03-20Add DTLS to SSL_get_versionDavid Woodhouse
2015-03-19Fix unsigned/signed warningsMatt Caswell
2015-03-19Fix reachable assert in SSLv2 servers.Emilia Kasper
2015-03-19Fix DHE Null CKE vulnerabilityMatt Caswell
2015-03-19Fix for CVE-2015-0291Dr. Stephen Henson
2015-03-19Fix Seg fault in DTLSv1_listenMatt Caswell
2015-03-19Multiblock corrupted pointer fixMatt Caswell
2015-03-18Add support for ServerInfo SSL_CONF option.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-04 07:32:25 +0000