summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2015-04-06readdir() is thread-safe when DIR handles aren't shared, so delete the lock.Philip Guenther
2015-03-31Nuke the OPENSSL_MAX_TLS1_2_CIPHER_LENGTH hack - this has to be enabled atJoel Sing
2015-03-27Factor out the init_buf initialisation code, rather than duplicating itJoel Sing
2015-03-27BUF_MEM_free() has its own explicit NULL check.Joel Sing
2015-03-19Fix several crash causing defects from OpenSSL.Ted Unangst
2015-03-11delay EVP_MD_CTX_init so we don't forget to clean it up.Ted Unangst
2015-03-08Reject DH keys sent by a server if they are considered too small; inspiredMiod Vallat
2015-03-02Fix a minor information leak that was introduced in t1_lib.c r1.71, wherebyJoel Sing
2015-02-25Fix CVE-2015-0205: Do not accept client authentication with Diffie-HellmanBrent Cook
2015-02-22Bump libcrypto and libssl majors, due to various recent churn.Joel Sing
2015-02-22Reluctantly add server-side support for TLS_FALLBACK_SCSV.Joel Sing
2015-02-22There is not much point constructing an SSL_CIPHER, then callingJoel Sing
2015-02-22Remove IMPLEMENT_STACK_OF noops.Joel Sing
2015-02-12unifdef -m -UOPENSSL_NO_NEXTPROTONEG - NPN is being replaced with ALPN,Joel Sing
2015-02-11Enable building with -DOPENSSL_NO_DEPRECATED.Doug Hogan
2015-02-09Jettison DTLS over SCTP.Joel Sing
2015-02-09Return NULL when there are no shared ciphers.Doug Hogan
2015-02-08Rely upon enc_flags rather than the tls version, to upgrade SHA1+MD5 toMiod Vallat
2015-02-07Remove useless variables and use the values directly.Doug Hogan
2015-02-07Convert several of the server side handshake functions to the new handshakeJoel Sing
2015-02-07Don't allow tag number 31 in CBB_add_asn1().Doug Hogan
2015-02-07Crank libssl major due to the recent changes and removals.Joel Sing
2015-02-07Clean up the {get,put}_cipher_by_char() implementations. Also useJoel Sing
2015-02-07Only call free in CBB_init().Doug Hogan
2015-02-07Provide a SSL_CIPHER_get_by_value() function that allows a cipher to beJoel Sing
2015-02-07Fix typo and ASN.1 tag number range comment in bytestring.h.Doug Hogan
2015-02-06KNF bytestring files.Doug Hogan
2015-02-06Remove accidental, commented out code.Doug Hogan
2015-02-06Unifdef NETSCAPE_HANG_BUG.Joel Sing
2015-02-06Add additional checks to ssl3_send_client_key_exchange() that ensuresJoel Sing
2015-02-06Import BoringSSL's crypto bytestring and crypto bytebuilder APIs.Doug Hogan
2015-02-06Bring back the horrible API that is get_cipher_by_char/put_cipher_by_char.Joel Sing
2015-02-06Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem().Reyk Floeter
2015-01-26Add AEAD as a "MAC alias" so that it is possible to identify/select ciphersJoel Sing
2015-01-23Ensure that a ServerKeyExchange message is received if the selected cipherJoel Sing
2015-01-22Support CA verification in chroot'ed processes without direct fileReyk Floeter
2015-01-21Fix DTLS memory leak (CVE-2015-0206).Doug Hogan
2014-12-29don't leak timing info about padding errors by generating a fake keyTed Unangst
2014-12-16Now that we have Camellia support in libcrypto, bring in the SHA256 flavour ofMiod Vallat
2014-12-15Add error handling for EVP_DigestInit_ex().Doug Hogan
2014-12-14unconditionally align SSL payloadsBrent Cook
2014-12-14Convert all of the straight forward client handshake handling code to useJoel Sing
2014-12-14Provide functions for starting, finishing and writing SSL handshakeJoel Sing
2014-12-14Remove trailing whitespace.Joel Sing
2014-12-14unifdef OPENSSL_NO_NEXTPROTONEG, which is one of the last standing #ifndefJoel Sing
2014-12-14unifdef NETSCAPE_HANG_BUG from the DTLS code. The code is not currentlyJoel Sing
2014-12-10ssl3_init_finished_mac() calls BIO_new() which can fail since it in turnJoel Sing
2014-12-10Remove support for GOST R 34.10-94 signature authentication, along withJoel Sing
2014-12-10libssl major++Joel Sing
2014-12-10Add support for ALPN.Joel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-12 03:34:53 +0000