Age | Commit message (Expand) | Author |
2017-01-23 | Move the stats struct from SSL_CTX to internal. | Joel Sing |
2017-01-22 | Move most of the SSL3_STATE fields to internal - the ones that remain are | Joel Sing |
2017-01-22 | Move most of DTLS1_STATE to internal. | Bob Beck |
2017-01-22 | Move ALPN and NPN fields from SSL/SSL_CTX to internal. | Joel Sing |
2016-12-21 | Add support for ECDHE with X25519. | Joel Sing |
2016-12-07 | Ensure that we zero memory that contiansthe ASN.1 encoded session, since | Joel Sing |
2016-12-06 | Convert certificate handshake message generation to CBB, with some clean | Joel Sing |
2016-12-04 | Convert ssl3_send_server_hello() to CBB. | Joel Sing |
2016-12-03 | Avoid signed vs unsigned warnings from clang by adding two casts, | Joel Sing |
2016-11-17 | Convert ssl3_get_client_kex_dhe() to CBS and perform some general code | Joel Sing |
2016-11-06 | Split ssl3_get_client_key_exchange() into separate per algorithm functions. | Joel Sing |
2016-11-06 | Remove pointless check - without fixed ECDH, there is only one way to reach | Joel Sing |
2016-11-06 | Split out the DHE and ECDHE code paths from | Joel Sing |
2016-11-05 | Do a partial CBB conversion of ssl3_send_server_key_exchange(), which will | Joel Sing |
2016-10-19 | Remove support for fixed ECDH cipher suites - these is not widely supported | Joel Sing |
2016-09-22 | Check for packet with truncated DTLS cookie. | Philip Guenther |
2016-05-30 | deprecate internal use of EVP_[Cipher|Encrypt|Decrypt]_Final. | Bob Beck |
2016-03-11 | X509_free(3) is NULL-safe, so remove NULL checks before its calls. | Michael McConville |
2016-01-27 | deprecate SSL_OP_SINGLE_DH_USE | Bob Beck |
2015-09-13 | Use ECDH_size() instead of rolling our own. | Joel Sing |
2015-09-13 | The *_accept() functions increment in_handshake at the start of the function, | Joel Sing |
2015-09-12 | Remove most of the SSLv3 version checks and a few TLS v1.0. | Doug Hogan |
2015-09-12 | Move handshake message header length determination into a separate | Joel Sing |
2015-09-12 | Convert the rest of the server handshake functions to ssl3_handshake_msg_*. | Joel Sing |
2015-09-11 | Rename functions that moved to t1_enc.c, with a tls1_ prefix instead of a | Joel Sing |
2015-09-10 | Remove support for DTLS_BAD_VER. We do not support non-standard and | Joel Sing |
2015-09-10 | Correct spelling of OPENSSL_cleanse. | Joel Sing |
2015-09-01 | Remove the ssl_prepare_{client,server}hello_tlsext() functions, which are | Joel Sing |
2015-08-29 | Remove SSLv3 method data structs and unlink s3_meth.c from the build. | Doug Hogan |
2015-08-27 | Remove SSLv3 support from LibreSSL. | Doug Hogan |
2015-07-29 | Add linker warnings in case SSLv3_{,client,server}_method are referenced. | Miod Vallat |
2015-07-18 | Remove support for the SSL_OP_TLS_D5_BUG compat hack from SSLeay. | Doug Hogan |
2015-07-14 | Convert ssl3_get_client_certificate to CBS. | Doug Hogan |
2015-06-20 | Convert ssl3_get_next_proto to CBS. | Doug Hogan |
2015-06-18 | Remove Microsoft Server Gated Crypto. | Doug Hogan |
2015-06-17 | KNF whitespace. | Doug Hogan |
2015-06-15 | Remove ancient SSL_OP_NETSCAPE_CA_DN_BUG from SSLeay days. | Doug Hogan |
2015-06-15 | Remove ancient compat hack SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG. | Doug Hogan |
2015-06-15 | Remove 1997's compat hack SSL_OP_SSLEAY_080_CLIENT_DH_BUG. | Doug Hogan |
2015-05-15 | Fix return paths with missing EVP_CIPHER_CTX_cleanup() calls. | Jonathan Gray |
2015-04-15 | Clean up the ssl_bytes_to_cipher_list() API - rather than having the | Joel Sing |
2015-03-27 | Factor out the init_buf initialisation code, rather than duplicating it | Joel Sing |
2015-02-25 | Fix CVE-2015-0205: Do not accept client authentication with Diffie-Hellman | Brent Cook |
2015-02-07 | Convert several of the server side handshake functions to the new handshake | Joel Sing |
2015-02-06 | Unifdef NETSCAPE_HANG_BUG. | Joel Sing |
2015-02-06 | Bring back the horrible API that is get_cipher_by_char/put_cipher_by_char. | Joel Sing |
2014-12-29 | don't leak timing info about padding errors by generating a fake key | Ted Unangst |
2014-12-15 | Add error handling for EVP_DigestInit_ex(). | Doug Hogan |
2014-12-14 | unifdef OPENSSL_NO_NEXTPROTONEG, which is one of the last standing #ifndef | Joel Sing |
2014-12-10 | ssl3_init_finished_mac() calls BIO_new() which can fail since it in turn | Joel Sing |