Only use FIPS EC methods in FIPS mode.
[openssl.git] / ssl /
2014-08-06 Dr. Stephen HensonCheck SRP parameters early.
2014-08-06 Dr. Stephen HensonFix SRP ciphersuite DoS vulnerability.
2014-08-06 Gabor TyukaszFix race condition in ssl_parse_serverhello_tlsext
2014-08-06 Emilia KäsperFix DTLS anonymous EC(DH) denial of service
2014-08-06 David BenjaminFix protocol downgrade bug in case of fragmented packets
2014-08-06 Adam LangleyRemove some duplicate DTLS code.
2014-08-06 Matt CaswellApplying same fix as in dtls1_process_out_of_seq_messag...
2014-08-06 Adam LangleyFix return code for truncated DTLS fragment.
2014-08-06 Adam LangleyFix memory leak from zero-length DTLS fragments.
2014-08-06 Matt CaswellFix DTLS handshake message size checks.
2014-08-06 Matt CaswellAdded comment for the frag->reassembly == NULL case...
2014-08-06 Adam LangleyAvoid double free when processing DTLS packets.
2014-08-01 Dr. Stephen Hensonmake update
2014-07-24 Dr. Stephen HensonAdd conditional unit testing interface.
2014-07-15 Dr. Stephen HensonFix DTLS certificate requesting code.
2014-07-15 Dr. Stephen HensonAdd ECC extensions with DTLS.
2014-07-14 Dr. Stephen HensonUse more common name for GOST key exchange.
2014-07-13 Peter MosmansAdd names of GOST algorithms.
2014-07-05 Dr. Stephen HensonDon't limit message sizes in ssl3_get_cert_verify.
2014-07-02 Thijs AlkemadeMake disabling last cipher work.
2014-07-01 Ben LaurieFix possible buffer overrun.
2014-06-29 Dr. Stephen HensonFix memory leak.
2014-06-27 Dr. Stephen HensonDon't disable state strings with no-ssl2
2014-06-27 yogesh nagarkarFix compilation with -DSSL_DEBUG -DTLS_DEBUG -DKSSL_DEBUG
2014-06-27 Ken BallouRemove redundant check.
2014-06-27 Tomas MrazDon't advertise ECC ciphersuits in SSLv2 compatible...
2014-06-22 Miod VallatFix off-by-one errors in ssl_cipher_get_evp()
2014-06-22 Matt CaswellRevert "Fix off-by-one errors in ssl_cipher_get_evp()"
2014-06-14 Dr. Stephen HensonAccept CCS after sending finished.
2014-06-13 Matt CaswellFixed incorrect return code handling in ssl3_final_fini...
2014-06-13 Matt CaswellRevert "Fixed incorrect return code handling in ssl3_fi...
2014-06-12 Kurt CancemiFix off-by-one errors in ssl_cipher_get_evp()
2014-06-10 Matt CaswellFixed incorrect return code handling in ssl3_final_fini...
2014-06-10 Mike BlandCreate test/testutil.h for unit test helper macros
2014-06-10 Dr. Stephen HensonFix null pointer errors.
2014-06-09 Dr. Stephen HensonSRP ciphersuite correction.
2014-06-09 Dr. Stephen HensonUpdate strength_bits for 3DES.
2014-06-07 Dr. Stephen HensonMake tls_session_secret_cb work with CVE-2014-0224...
2014-06-05 Dr. Stephen HensonFix CVE-2014-3470
2014-06-05 Dr. Stephen HensonFix CVE-2014-0221
2014-06-05 Dr. Stephen HensonAdditional CVE-2014-0224 protection.
2014-06-05 Dr. Stephen HensonFix for CVE-2014-0224
2014-06-05 Dr. Stephen HensonFix for CVE-2014-0195
2014-06-02 David BenjaminCheck there is enough room for extension.
2014-06-02 zhu qun-yingFree up s->d1->buffered_app_data.q properly.
2014-06-02 Sami FarinTypo: set i to -1 before goto.
2014-06-01 Matt CaswellAdded SSLErr call for internal error in dtls1_buffer_record
2014-06-01 David RamosDelays the queue insertion until after the ssl3_setup_b...
2014-06-01 Dr. Stephen HensonOption to disable padding extension.
2014-06-01 David RamosAllocate extra space when NETSCAPE_HANG_BUG defined.
2014-05-31 Dr. Stephen HensonUse correct digest when exporting keying material.
2014-05-31 Dr. Stephen HensonDon't compile heartbeat test code on Windows (for now).
2014-05-26 Matt CaswellFixed Windows compilation failure
2014-05-24 Matt CaswellFix for non compilation with TLS_DEBUG defined
2014-05-22 Mike BlandFix heartbeat_test for -DOPENSSL_NO_HEARTBEATS
2014-05-20 Dr. Stephen HensonFor portability use BUF_strndup instead of strndup.
2014-05-19 Ben LaurieMerge branch 'mbland-heartbeat-test-1.0.1' into OpenSSL...
2014-05-19 Mike BlandUnit/regression test for TLS heartbeats.
2014-05-19 Ben LaurieAllow the maximum value.
2014-05-19 Ben LaurieFix signed/unsigned warning.
2014-05-12 Kurt RoeckxCheck sk_SSL_CIPHER_num() after assigning sk.
2014-05-12 Serguei E. LeontievReplace manual ASN1 decoder with ASN1_get_object
2014-05-11 Matt CaswellFixed NULL pointer dereference. See PR#3321
2014-05-11 Günther NoackAvoid out-of-bounds write in SSL_get_shared_ciphers
2014-05-11 Tim Hudsonsafety check to ensure we dont send out beyond the...
2014-05-07 Tim Hudsonfix coverity issue 966597 - error line is not always...
2014-04-30 Matt CaswellFixed spelling error in error message. Fix supplied...
2014-04-23 Ben LaurieFix use after free.
2014-04-22 Ben LaurieFix double frees.
2014-04-08 Steven M. SchwedaVMS build fix #2.
2014-04-07 Steven M. SchwedaVMS build fix for older compilers.
2014-04-07 Dr. Stephen HensonAdd heartbeat extension bounds check.
2014-04-05 Dr. Stephen HensonSet TLS padding extension value.
2014-03-10 Dr. Stephen Hensontypo
2014-02-26 Dr. Stephen HensonFix for WIN32 builds with KRB5
2014-02-25 Andy Polyakovssl/t1_enc.c: check EVP_MD_CTX_copy return value.
2014-02-05 Dr. Stephen HensonBackport TLS padding extension from master.
2014-01-28 Dr. Stephen HensonCheck i before r[i].
2014-01-16 Kaspar BrandOmit initial status request callback check.
2014-01-11 Zoltan ArpadffyVMS fixes
2014-01-08 Dr. Stephen HensonFix warning
2014-01-06 Dr. Stephen HensonFix for TLS record tampering bug CVE-2013-4353
2014-01-06 Dr. Stephen Hensonmake update
2014-01-04 Dr. Stephen HensonRestore SSL_OP_MSIE_SSLV2_RSA_PADDING
2014-01-02 Dr. Stephen HensonDon't change version number if session established
2013-12-20 Dr. Stephen HensonFix DTLS retransmission from previous session.
2013-12-19 Dr. Stephen HensonUse version in SSL_METHOD not SSL structure.
2013-12-18 Dr. Stephen HensonCheck EVP errors for handshake digests.
2013-12-08 Dr. Stephen Hensonmake update
2013-11-06 Dr. Stephen HensonEnable PSK in FIPS mode.
2013-11-01 Robin SeggelmannDTLS/SCTP Finished Auth Bug
2013-10-20 Nick MathewsonFix another gmt_unix_time case in server_random
2013-10-20 Dr. Stephen HensonDon't use RSA+MD5 with TLS 1.2
2013-10-19 Ben LaurieMore cleanup.
2013-10-19 Ben LaurieCleanup.
2013-10-19 Ben LaurieMerge branch 'no_gmt_unix_time' of git://github.com...
2013-10-09 Nick MathewsonControl sending time with SSL_SEND_{CLIENT,SERVER}RANDO...
2013-10-09 Nick MathewsonRefactor {client,server}_random to call an intermediate...
2013-09-16 Nick MathewsonDo not include a timestamp in the ServerHello Random...
2013-09-16 Nick MathewsonDo not include a timestamp in the ClientHello Random...
next