Cleanse PKCS#8 private key components.
[openssl.git] / ssl /
2015-03-07 Kurt RoeckxRemove export ciphers from the DEFAULT cipher list
2015-03-05 Kurt CancemiUse constants not numbers
2015-03-05 Matt CaswellUnchecked malloc fixes
2015-02-27 Matt CaswellFix d2i_SSL_SESSION for DTLS1_BAD_VER
2015-02-27 Matt CaswellFixed missing return value checks.
2015-02-27 Matt CaswellFix missing return value checks.
2015-02-12 Eric DequinMissing OPENSSL_free on error path.
2015-02-06 Matt CaswellFix error handling in ssltest
2015-01-27 Matt CaswellMake DTLS always act as if read_ahead is set. The actua...
2015-01-24 Kurt RoeckxFix segfault with empty fields as last in the config.
2015-01-23 Dr. Stephen HensonFIPS build fixes.
2015-01-22 Matt CaswellFix post-reformat errors preventing windows compilation
2015-01-22 Matt CaswellRe-align some comments after running the reformat script. OpenSSL_1_0_2-post-reformat
2015-01-22 Matt CaswellRerun util/openssl-format-source -v -c . OpenSSL_1_0_2-post-auto-reformat
2015-01-22 Matt CaswellRun util/openssl-format-source -v -c .
2015-01-22 Matt CaswellMore tweaks for comments due indent issues OpenSSL_1_0_2-pre-auto-reformat
2015-01-22 Matt CaswellTweaks for comments due to indent's inability to handle...
2015-01-22 Matt CaswellMove more comments that confuse indent
2015-01-22 Matt CaswellFix indent comment corruption issue
2015-01-22 Matt CaswellFix strange formatting by indent
2015-01-22 Matt Caswellindent has problems with comments that are on the right...
2015-01-22 Matt CaswellMore indent fixes for STACK_OF
2015-01-22 Matt CaswellFix source where indent will not be able to cope
2015-01-22 Matt CaswellAdditional comment changes for reformat of 1.0.2
2015-01-22 Matt CaswellFurther comment amendments to preserve formatting prior...
2015-01-22 Tim Hudsonmark all block comments that need format preserving...
2015-01-08 Matt CaswellA memory leak can occur in dtls1_buffer_record if eithe...
2015-01-08 Dr. Stephen HensonUnauthenticated DH client certificate fix.
2015-01-08 Matt CaswellFollow on from CVE-2014-3571. This fixes the code that...
2015-01-08 Dr. Stephen HensonFix crash in dtls1_get_record whilst in the listen...
2015-01-07 Dr. Stephen Hensonfix error discrepancy
2015-01-07 Richard LevitteVMS fixups for 1.0.2
2015-01-06 Emilia KasperOnly inherit the session ID context in SSL_set_SSL_CTX...
2015-01-06 Dr. Stephen HensonOnly allow ephemeral RSA keys in export ciphersuites.
2015-01-05 Dr. Stephen HensonECDH downgrade bug fix.
2015-01-05 Adam LangleyEnsure that the session ID context of an SSL* is updated
2015-01-05 Matt CaswellAdditional fix required for no-srtp to work
2015-01-05 Piotr SikoraFix building with no-srtp
2015-01-02 Dr. Stephen HensonUpdate SGC flag comment.
2015-01-02 Dr. Stephen HensonRemove MS SGC
2015-01-02 Dr. Stephen HensonClear existing extension state.
2014-12-17 Richard LevitteClear warnings/errors within TLS_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within KSSL_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within CIPHER_DEBUG code sections
2014-12-17 Richard LevitteClear warnings/errors within CIPHER_DEBUG code sections
2014-12-17 Adam LangleyPremaster secret handling fixes
2014-12-16 Dr. Stephen HensonCheck return value of ssl3_output_cert_chain
2014-12-16 Matt CaswellThe dtls1_output_cert_chain function no longer exists...
2014-12-16 Adam LangleyDon't set client_version to the ServerHello version.
2014-12-16 Matt CaswellAdd more meaningful OPENSSL_NO_ECDH error message for...
2014-12-16 Matt CaswellAdd OPENSSL_NO_ECDH guards
2014-12-16 Matt CaswellRemove extraneous white space, and add some braces
2014-12-16 Matt CaswellDTLS fixes for signed/unsigned issues
2014-12-13 Matt CaswellFix memory leak in s2_srvr.c if BUF_MEM_grow fails
2014-12-13 Matt CaswellFixed memory leak if BUF_MEM_grow fails
2014-12-08 Matt CaswellFixed memory leak in the event of a failure of BUF_MEM_grow
2014-12-08 Matt CaswellFix memory leak in SSL_new if errors occur.
2014-12-05 Emilia KasperClarify the return values for SSL_get_shared_curve.
2014-12-05 Emilia KasperAdd extra checks for odd-length EC curve lists.
2014-12-05 Emilia KasperMake 'make update' succeed and run it
2014-12-05 Emilia KasperReject elliptic curve lists of odd lengths.
2014-12-04 Matt CaswellRemove incorrect code inadvertently introduced through...
2014-12-03 Matt CaswellRemove "#if 0" code
2014-12-03 Matt CaswellOnly use the fallback mtu after 2 unsuccessful retransm...
2014-12-03 Matt CaswellIf we really get a situation where the underlying mtu...
2014-12-03 Matt CaswellFix dtls_query_mtu so that it will always either comple...
2014-12-03 Matt CaswellRemove instances in libssl of the constant 28 (for...
2014-12-03 Matt CaswellThe first call to query the mtu in dtls1_do_write corre...
2014-12-03 Matt CaswellThe SSL_OP_NO_QUERY_MTU option is supposed to stop...
2014-12-03 Matt CaswellVerify that we have a sensible message len and fail...
2014-11-28 Richard Levitte[PR3597] Advance to the next state variant when reusing...
2014-11-27 Matt CaswellFix warning in ssl2_enc
2014-11-27 Matt CaswellRemove more references to dtls1_enc
2014-11-27 Matt CaswellCheck EVP_Cipher return values for SSL2
2014-11-27 Matt CaswellDelete unused file
2014-11-27 Matt CaswellAdd checks to the return value of EVP_Cipher to prevent...
2014-11-27 Matt CaswellRemove redundant checks in ssl_cert_dup. This was causi...
2014-11-27 Matt CaswellAdd include of ssl.h which is required by srtp.h
2014-11-26 Matt CaswellFixed memory leak due to incorrect freeing of DTLS...
2014-11-25 Matt CaswellCorrected comments in ssl.h about SSLv23_method and...
2014-11-20 Dr. Stephen HensonFix SuiteB chain checking logic.
2014-11-20 David BenjaminDo not resume a session if the negotiated protocol...
2014-11-20 Emilia KasperEnsure SSL3_FLAGS_CCS_OK (or d1->change_cipher_spec_ok...
2014-11-20 Emilia KasperAlways require an advertised NewSessionTicket message.
2014-11-20 Emilia KasperRemove ssl3_check_finished.
2014-11-20 Emilia KasperSet s->hit when resuming from external pre-shared secret.
2014-11-20 Emilia KasperReset s->tlsext_ticket_expected in ssl_scan_serverhello...
2014-11-19 Dr. Stephen HensonNew option no-ssl3-method which removes SSLv3_*method
2014-11-19 Dr. Stephen HensonProcess signature algorithms before deciding on certifi...
2014-11-18 Matt CaswellAdded RFC 7027 references
2014-11-18 Matt CaswellAdded OPENSSL_NO_EC2M guards around the default EC...
2014-11-10 Daniel Kahn GillmorAllow ECDHE and DHE as forward-compatible aliases for...
2014-10-28 Emilia KasperTighten session ticket handling
2014-10-27 Emilia KasperFix ssltest logic when some protocols are compiled...
2014-10-24 Dr. Stephen HensonCopy negotiated parameters in SSL_set_SSL_CTX.
2014-10-24 Dr. Stephen HensonProcess signature algorithms in ClientHello late.
2014-10-23 Dr. Stephen HensonParse custom extensions after SNI.
2014-10-21 Bodo MoellerFix and improve SSL_MODE_SEND_FALLBACK_SCSV documentation.
2014-10-21 Bodo MoellerWhen processing ClientHello.cipher_suites, don't ignore...
2014-10-21 Kurt RoeckxKeep old method in case of an unsupported protocol
next