Harden ASN.1 BIO handling of large amounts of data.
[openssl.git] / ssl /
2015-02-27 Matt CaswellFix no-ec warning
2015-02-12 Eric DequinMissing OPENSSL_free on error path.
2015-02-06 Matt CaswellFix error handling in ssltest
2015-01-27 Matt CaswellMake DTLS always act as if read_ahead is set. The actua...
2015-01-22 Matt CaswellRe-align some comments after running the reformat script. OpenSSL_1_0_1-post-reformat
2015-01-22 Matt CaswellRerun util/openssl-format-source -v -c . OpenSSL_1_0_1-post-auto-reformat
2015-01-22 Matt CaswellRun util/openssl-format-source -v -c .
2015-01-22 Matt CaswellMore tweaks for comments due indent issues OpenSSL_1_0_1-pre-auto-reformat
2015-01-22 Matt CaswellTweaks for comments due to indent's inability to handle...
2015-01-22 Matt CaswellMove more comments that confuse indent
2015-01-22 Matt CaswellFix indent comment corruption issue
2015-01-22 Matt CaswellFix strange formatting by indent
2015-01-22 Matt Caswellindent has problems with comments that are on the right...
2015-01-22 Matt CaswellFix source where indent will not be able to cope
2015-01-22 Matt CaswellAdditional comment changes for reformat of 1.0.1
2015-01-22 Matt CaswellFurther comment changes for reformat
2015-01-22 Tim Hudsonmark all block comments that need format preserving...
2015-01-08 Matt CaswellA memory leak can occur in dtls1_buffer_record if eithe...
2015-01-08 Dr. Stephen HensonUnauthenticated DH client certificate fix.
2015-01-08 Matt CaswellFollow on from CVE-2014-3571. This fixes the code that...
2015-01-08 Dr. Stephen HensonFix crash in dtls1_get_record whilst in the listen...
2015-01-07 Dr. Stephen Hensonfix error discrepancy
2015-01-06 Emilia KasperOnly inherit the session ID context in SSL_set_SSL_CTX...
2015-01-06 Dr. Stephen HensonOnly allow ephemeral RSA keys in export ciphersuites.
2015-01-05 Dr. Stephen HensonECDH downgrade bug fix.
2015-01-05 Adam LangleyEnsure that the session ID context of an SSL* is updated
2015-01-02 Dr. Stephen HensonClear existing extension state.
2014-12-17 Richard LevitteClear warnings/errors within TLS_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within KSSL_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within CIPHER_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within CIPHER_DEBUG code sections
2014-12-17 Adam LangleyPremaster secret handling fixes
2014-12-16 Matt CaswellAdd OPENSSL_NO_ECDH guards
2014-12-16 Matt CaswellRemove extraneous white space, and add some braces
2014-12-16 Matt CaswellDTLS fixes for signed/unsigned issues
2014-12-15 Matt CaswellCheckout return value of dtls1_output_cert_chain
2014-12-15 Matt CaswellCheck return value of ssl3_output_cert_chain
2014-12-13 Matt CaswellFix memory leak in s2_srvr.c if BUF_MEM_grow fails
2014-12-13 Matt CaswellFixed memory leak if BUF_MEM_grow fails
2014-12-08 Matt CaswellFixed memory leak in the event of a failure of BUF_MEM_grow
2014-12-08 Matt CaswellFix memory leak in SSL_new if errors occur.
2014-12-05 Emilia KasperReject elliptic curve lists of odd lengths.
2014-12-04 Matt CaswellRemove incorrect code inadvertently introduced through...
2014-12-03 Matt CaswellRemove "#if 0" code
2014-12-03 Matt CaswellOnly use the fallback mtu after 2 unsuccessful retransm...
2014-12-03 Matt CaswellIf we really get a situation where the underlying mtu...
2014-12-03 Matt CaswellFix dtls_query_mtu so that it will always either comple...
2014-12-03 Matt CaswellRemove instances in libssl of the constant 28 (for...
2014-12-03 Matt CaswellThe first call to query the mtu in dtls1_do_write corre...
2014-12-03 Matt CaswellThe SSL_OP_NO_QUERY_MTU option is supposed to stop...
2014-12-03 Matt CaswellVerify that we have a sensible message len and fail...
2014-11-28 Richard Levitte[PR3597] Advance to the next state variant when reusing...
2014-11-27 Matt CaswellFixed warning in ssl2_enc
2014-11-27 Matt CaswellCheck EVP_Cipher return values for SSL2
2014-11-27 Matt CaswellAdd checks to the return value of EVP_Cipher to prevent...
2014-11-27 Matt CaswellRemove redundant checks in ssl_cert_dup. This was causi...
2014-11-27 Matt CaswellAdd include of ssl.h which is required by srtp.h
2014-11-26 Matt CaswellFixed memory leak due to incorrect freeing of DTLS...
2014-11-25 Matt CaswellCorrected comments in ssl.h about SSLv23_method and...
2014-11-20 David BenjaminDo not resume a session if the negotiated protocol...
2014-11-20 Emilia KasperEnsure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok...
2014-11-20 Emilia KasperAlways require an advertised NewSessionTicket message.
2014-11-20 Emilia KasperRemove ssl3_check_finished.
2014-11-20 Emilia KasperSet s->hit when resuming from external pre-shared secret.
2014-11-20 Emilia KasperReset s->tlsext_ticket_expected in ssl_scan_serverhello...
2014-11-19 Dr. Stephen HensonNew option no-ssl3-method which removes SSLv3_*method
2014-11-18 Matt CaswellAdded OPENSSL_NO_EC2M guards around the preferred EC...
2014-10-28 Emilia KasperTighten session ticket handling
2014-10-27 Emilia KasperFix ssltest logic when some protocols are compiled...
2014-10-21 Bodo MoellerFix and improve SSL_MODE_SEND_FALLBACK_SCSV documentation.
2014-10-21 Bodo MoellerWhen processing ClientHello.cipher_suites, don't ignore...
2014-10-21 Kurt RoeckxKeep old method in case of an unsupported protocol
2014-10-15 Geoff ThorpeFix no-ssl3 configuration option
2014-10-15 Dr. Stephen HensonFix for session tickets memory leak.
2014-10-15 Matt CaswellFix SRTP compile issues for windows
2014-10-15 Matt CaswellFix for SRTP Memory Leak
2014-10-15 Richard LevitteSpaces were added in some strings for better readabilit...
2014-10-15 Richard LevitteAdjust VMS build to Unix build. Most of all, make...
2014-10-15 Richard LevitteUpdate the VMS build according to the latest unixly...
2014-10-15 Richard LevitteMake sure that disabling the MAYLOSEDATA3 warning is...
2014-10-15 Bodo MoellerSupport TLS_FALLBACK_SCSV.
2014-10-10 Dr. Stephen HensonPreserve digests for SNI.
2014-09-24 Emilia KasperRT3067: simplify patch
2014-09-24 Adam LangleyThis change alters the processing of invalid, RSA pre...
2014-09-24 Emilia KasperRT3066: rewrite RSA padding checks to be slightly more...
2014-09-21 Tim HudsonFixed error introduced in commit f2be92b94dad3c6cbdf79d...
2014-09-08 Erik AuerswaldRT3301: Discard too-long heartbeat requests
2014-09-05 Adam Langleypsk_client_callback, 128-byte id bug.
2014-08-28 Emilia KasperConstant-time utilities
2014-08-22 Adam LangleyRT3060: Limit the number of empty records.
2014-08-15 Matt CaswellFixed out-of-bounds read errors in ssl3_get_key_exchange.
2014-08-12 Dr. Stephen HensonFix SRP ciphersuites.
2014-08-08 Dr. Stephen HensonFix SRP authentication ciphersuites.
2014-08-06 Dr. Stephen HensonCheck SRP parameters early.
2014-08-06 Dr. Stephen HensonFix SRP ciphersuite DoS vulnerability.
2014-08-06 Gabor TyukaszFix race condition in ssl_parse_serverhello_tlsext
2014-08-06 Emilia KäsperFix DTLS anonymous EC(DH) denial of service
2014-08-06 David BenjaminFix protocol downgrade bug in case of fragmented packets
2014-08-06 Adam LangleyRemove some duplicate DTLS code.
2014-08-06 Matt CaswellApplying same fix as in dtls1_process_out_of_seq_messag...
next