summaryrefslogtreecommitdiff
path: root/ssl
Commit message (Expand)AuthorAgeFilesLines
* Fix memory leak on realloc error.Dr. Stephen Henson2016-09-151-3/+6
* Fix memory leak on error.Dr. Stephen Henson2016-09-151-0/+3
* Abort on unrecognised warning alertsMatt Caswell2016-09-131-1/+6
* Ensure the CertStatus message adds a DTLS message header where neededMatt Caswell2016-08-301-12/+9
* Add basic test for Cisco DTLS1_BAD_VER and record replay handlingDavid Woodhouse2016-08-262-1/+924
* Fix ubsan 'left shift of negative value -1' error in satsub64be()David Woodhouse2016-08-261-19/+42
* Fix SSL_export_keying_material() for DTLS1_BAD_VERDavid Woodhouse2016-08-261-1/+1
* Fix the no-tls1 optionMatt Caswell2016-08-261-0/+3
* Always use session_ctx when removing a sessionTodd Short2016-08-263-4/+4
* SWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUMRich Salz2016-08-241-17/+17
* Fix no-ecMatt Caswell2016-08-241-1/+1
* Sanity check ticket length.Dr. Stephen Henson2016-08-231-3/+8
* VMS: Use strict refdef extern model when building library object filesRichard Levitte2016-08-221-1/+1
* Prevent DTLS Finished message injectionMatt Caswell2016-08-221-0/+6
* Fix DTLS buffered message DoS attackMatt Caswell2016-08-225-29/+47
* Silence some "maybe used uninitialised" warningsMatt Caswell2016-08-222-2/+2
* Fix NULL-return checks in 1.0.2Rich Salz2016-08-196-0/+21
* Update function error codeMatt Caswell2016-08-191-1/+1
* Fix DTLS replay protectionMatt Caswell2016-08-193-13/+52
* Add DTLS replay protection testMatt Caswell2016-08-191-4/+16
* Fix DTLS unprocessed records bugMatt Caswell2016-08-191-2/+21
* Add a DTLS unprocesed records testMatt Caswell2016-08-192-1/+136
* Add missing casts.Rich Salz2016-07-281-2/+3
* Send alert for bad DH CKEDr. Stephen Henson2016-07-221-2/+4
* Sanity check in ssl_get_algorithm2().Dr. Stephen Henson2016-07-201-1/+4
* Send alert on CKE error.Dr. Stephen Henson2016-07-191-3/+5
* Avoid an overflow in constructing the ServerKeyExchange messageMatt Caswell2016-07-011-0/+5
* Change usage of RAND_pseudo_bytes to RAND_bytesMatt Caswell2016-06-278-27/+20
* Avoid some undefined pointer arithmeticMatt Caswell2016-06-013-34/+38
* The ssl3_digest_cached_records() function does not handle errors properlyMatt Caswell2016-05-261-2/+6
* Ensure verify error is set when X509_verify_cert() failsViktor Dukhovni2016-05-191-0/+6
* Fix a double free in tls1_setup_key_blockMatt Caswell2016-05-191-1/+0
* Fix SSL compression symbol exportingMatt Caswell2016-05-173-13/+15
* Don't send signature algorithms when client_version is below TLS 1.2.David Benjamin2016-05-092-1/+7
* Remove confusing comment.TJ Saunders2016-05-021-1/+0
* Issue #719:TJ Saunders2016-05-021-7/+22
* Ensure we check i2d_X509 return valMatt Caswell2016-04-261-2/+7
* Fix memory leak on invalid CertificateRequest.David Benjamin2016-04-071-0/+2
* Fix ALPNTodd Short2016-04-045-42/+250
* Add a check for a failed mallocMatt Caswell2016-03-182-0/+4
* Ensure that memory allocated for the ticket is freedMatt Caswell2016-03-181-1/+3
* Add no-ssl2-methodKurt Roeckx2016-03-142-2/+14
* expose SSLv2 method prototypesViktor Dukhovni2016-03-092-5/+3
* Retain SSLv2 methods as functions that return NULLViktor Dukhovni2016-03-081-3/+3
* Remove LOW from the defaultKurt Roeckx2016-03-075-62/+63
* make updateMatt Caswell2016-03-011-34/+33
* Disable EXPORT and LOW SSLv3+ ciphers by defaultViktor Dukhovni2016-03-011-0/+54
* Add a test for SSLv2 configurationMatt Caswell2016-03-012-1/+232
* Disable SSLv2 default build, default negotiation and weak ciphers.Viktor Dukhovni2016-03-013-1/+22
* Handle SSL_shutdown while in init more appropriately #2Matt Caswell2016-02-084-18/+6
View Lorry Controller Status