summaryrefslogtreecommitdiff
path: root/ssl
Commit message (Expand)AuthorAgeFilesLines
* Don't send signature algorithms when client_version is below TLS 1.2.David Benjamin2016-05-092-1/+7
* Remove confusing comment.TJ Saunders2016-05-021-1/+0
* Issue #719:TJ Saunders2016-05-021-7/+22
* Ensure we check i2d_X509 return valMatt Caswell2016-04-261-2/+7
* Fix memory leak on invalid CertificateRequest.David Benjamin2016-04-071-0/+2
* Fix ALPNTodd Short2016-04-045-42/+250
* Add a check for a failed mallocMatt Caswell2016-03-182-0/+4
* Ensure that memory allocated for the ticket is freedMatt Caswell2016-03-181-1/+3
* Add no-ssl2-methodKurt Roeckx2016-03-142-2/+14
* expose SSLv2 method prototypesViktor Dukhovni2016-03-092-5/+3
* Retain SSLv2 methods as functions that return NULLViktor Dukhovni2016-03-081-3/+3
* Remove LOW from the defaultKurt Roeckx2016-03-075-62/+63
* make updateMatt Caswell2016-03-011-34/+33
* Disable EXPORT and LOW SSLv3+ ciphers by defaultViktor Dukhovni2016-03-011-0/+54
* Add a test for SSLv2 configurationMatt Caswell2016-03-012-1/+232
* Disable SSLv2 default build, default negotiation and weak ciphers.Viktor Dukhovni2016-03-013-1/+22
* Handle SSL_shutdown while in init more appropriately #2Matt Caswell2016-02-084-18/+6
* Always generate DH keys for ephemeral DH cipher suitesMatt Caswell2016-01-283-29/+4
* Better SSLv2 cipher-suite enforcementViktor Dukhovni2016-01-281-2/+13
* Handle SSL_shutdown while in init more appropriatelyMatt Caswell2016-01-204-4/+20
* Validate ClientHello session_id field length and send alert on failureAlessandro Ghedini2016-01-193-3/+11
* Empty SNI names are not validViktor Dukhovni2016-01-171-1/+4
* Wrong definition of the macro SSL_set1_sigalgs in ssl.harijitnayak2016-01-121-1/+1
* Change minimum DH size from 768 to 1024Kurt Roeckx2016-01-111-1/+1
* Ensure we don't call the OCSP callback if resuming a sessionMatt Caswell2015-12-271-1/+1
* Fix error when server does not send CertificateStatus messageMatt Caswell2015-12-272-34/+39
* Fix more URLs mangled by reformatMatt Caswell2015-12-191-1/+1
* Remove the "eay" c-file-style indicatorsRichard Levitte2015-12-184-4/+4
* Ensure |rwstate| is set correctly on BIO_flushMatt Caswell2015-12-101-1/+5
* Fix DTLS handshake fragment retriesMatt Caswell2015-12-101-20/+44
* Add a return value checkMatt Caswell2015-12-101-4/+4
* _BSD_SOURCE is deprecated, use _DEFAULT_SOURCE insteadRichard Levitte2015-12-021-0/+1
* Remove cookie validation return value trickMatt Caswell2015-12-011-6/+4
* ssl3_free(): Return if it wasn't createdPascal Cuoq2015-11-241-1/+1
* Set reference count earlierKurt Roeckx2015-11-242-2/+2
* Good hygiene with size_t output argument.Viktor Dukhovni2015-11-211-1/+1
* Ensure all EVP calls have their returns checked where appropriateMatt Caswell2015-11-2012-148/+272
* Stop DTLS servers asking for unsafe legacy renegotiationMatt Caswell2015-11-101-0/+13
* Only call ssl3_init_finished_mac once for DTLSMatt Caswell2015-11-101-2/+1
* Remove redundant check from tls1_get_curvelistMatt Caswell2015-11-091-1/+1
* Fix missing malloc return value checksMatt Caswell2015-11-092-0/+15
* Reject TLS 1.2 ciphersuites if not allowed.Dr. Stephen Henson2015-11-081-0/+5
* Ensure the dtls1_get_*_methods work with DTLS_ANY_VERSIONMatt Caswell2015-11-043-18/+24
* Remove useless codeAlessandro Ghedini2015-10-232-2/+0
* Fix references to various RFCsAlessandro Ghedini2015-10-231-10/+7
* Fix memory leaks and other mistakes on errorsAlessandro Ghedini2015-10-231-0/+1
* Change functions to pass in a limit rather than calculate itMatt Caswell2015-10-053-20/+20
* Validate ClientHello extension field lengthAlessandro Ghedini2015-10-051-1/+1
* RT2772: accept empty SessionTicketEmilia Kasper2015-09-281-8/+15
* Handle SSL_ERROR_WANT_X509_LOOKUPDr. Stephen Henson2015-09-201-0/+4
View Lorry Controller Status