Always return errors in ssl3_get_client_hello
[openssl.git] / ssl / t1_lib.c
2013-04-04 Dr. Stephen HensonMake TLS 1.2 ciphers work again.
2013-03-28 Dr. Stephen HensonEnable TLS 1.2 ciphers in DTLS 1.2.
2013-03-26 Dr. Stephen HensonEnable various DTLS extensions.
2013-03-18 Dr. Stephen HensonUse enc_flags when deciding protocol variations.
2013-03-18 Dr. Stephen HensonDTLS revision.
2013-02-06 Ben LaurieAdd and use a constant-time memcmp.
2013-01-24 Dr. Stephen HensonFix warning: lenmax isn't used any more.
2013-01-19 Ben LaurieMerge branch 'master' of openssl.net:openssl
2013-01-19 Ben LaurieMerge branch 'master' of openssl.net:openssl
2013-01-19 Ben LaurieRemove extraneous brackets (clang doesn't like them).
2013-01-19 Ben LaurieCan't check a size_t for < 0.
2012-12-18 Dr. Stephen HensonUse client version when deciding which cipher suites...
2012-12-10 Dr. Stephen Hensonrevert SUITEB128ONLY patch, anything wanting to use...
2012-12-09 Dr. Stephen Hensonallow ECDSA+SHA384 signature algorithm in SUITEB128ONLY...
2012-11-26 Dr. Stephen HensonUse default point formats extension for server side...
2012-11-22 Dr. Stephen Hensonreject zero length point format list or supported curve...
2012-11-19 Dr. Stephen Hensonfix typo and warning
2012-11-08 Dr. Stephen Hensonnew feature: if ctx==NULL in SSL_CTX_ctrl perform synta...
2012-09-11 Dr. Stephen HensonMinor enhancement to PR#2836 fix. Instead of modifying...
2012-09-11 Ben LaurieCall OCSP Stapling callback after ciphersuite has been...
2012-09-07 Dr. Stephen Hensonstore and print out message digest peer signed with...
2012-08-29 Dr. Stephen HensonAdd compilation flag to disable certain protocol checks...
2012-08-15 Dr. Stephen HensonAdd three Suite B modes to TLS code, supporting RFC6460.
2012-07-27 Dr. Stephen HensonMake tls1_check_chain return a set of flags indicating...
2012-07-24 Dr. Stephen HensonAbort handshake if signature algorithm used not support...
2012-07-24 Dr. Stephen Hensoncheck EC tmp key matches preferences
2012-07-24 Dr. Stephen Hensontypo
2012-07-19 Dr. Stephen Hensonstop warning
2012-07-18 Dr. Stephen HensonNew function ssl_set_client_disabled to set masks for...
2012-07-03 Dr. Stephen Hensonno need to check s->server as default_nid is never...
2012-07-03 Dr. Stephen HensonSeparate client and server permitted signature algorith...
2012-06-29 Dr. Stephen HensonAdd certificate callback. If set this is called wheneve...
2012-06-28 Dr. Stephen HensonFunction tls1_check_ec_server_key is now redundant...
2012-06-28 Dr. Stephen HensonAdd new "valid_flags" field to CERT_PKEY structure...
2012-06-27 Dr. Stephen Hensondon't use pseudo digests for default values of keys
2012-06-25 Dr. Stephen HensonReorganise supported signature algorithm extension...
2012-06-22 Dr. Stephen HensonAdd support for application defined signature algorithm...
2012-06-11 Ben LaurieFix memory leak.
2012-06-06 Ben LaurieParse authz correctly.
2012-06-03 Ben LaurieVersion skew reduction: trivia (I hope).
2012-05-30 Ben LaurieRFC 5878 support.
2012-04-24 Dr. Stephen HensonSubmitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
2012-04-18 Dr. Stephen Hensoncorrect error codes
2012-04-06 Dr. Stephen HensonSubmitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
2012-04-05 Dr. Stephen HensonAdd support for automatic ECDH temporary key parameter...
2012-04-04 Dr. Stephen HensonTidy up EC parameter check code: instead of accessing...
2012-03-28 Dr. Stephen HensonInitial revision of ECC extension handling.
2012-03-21 Dr. Stephen Hensonuse client version when deciding whether to send suppor...
2012-03-14 Dr. Stephen Hensonoops, revert unrelated patches
2012-03-14 Dr. Stephen Hensonupdate FAQ, NEWS
2012-03-06 Dr. Stephen HensonNew ctrls to retrieve supported signature algorithms...
2012-02-27 Dr. Stephen HensonPR: 2739
2012-02-10 Dr. Stephen HensonPR: 2704
2012-01-22 Dr. Stephen Hensonreturn error if md is NULL
2012-01-05 Dr. Stephen HensonSubmitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
2012-01-04 Dr. Stephen HensonSubmitted by: Adam Langley <agl@chromium.org>
2012-01-03 Dr. Stephen Hensononly send heartbeat extension from server if client...
2011-12-31 Dr. Stephen HensonPR: 2658
2011-12-07 Dr. Stephen Hensonfix error discrepancy
2011-11-24 Bodo MöllerFix NPN implementation for renegotiation.
2011-11-15 Ben LaurieAdd TLS exporter.
2011-11-15 Ben LaurieAdd DTLS-SRTP.
2011-09-05 Bodo MöllerFix session handling.
2011-06-01 Dr. Stephen Hensontypo
2011-05-30 Dr. Stephen HensonOutput supported curves in preference order instead...
2011-05-25 Dr. Stephen HensonDon't advertise or use MD5 for TLS v1.2 in FIPS mode
2011-05-25 Dr. Stephen Hensonuse TLS1_get_version macro to check version so TLS...
2011-05-20 Dr. Stephen HensonPR: 2295
2011-05-12 Dr. Stephen HensonProcess signature algorithms during TLS v1.2 client...
2011-05-11 Dr. Stephen HensonReorder signature algorithms in strongest hash first...
2011-05-09 Dr. Stephen HensonInitial TLS v1.2 client support. Include a default...
2011-05-06 Dr. Stephen HensonContinuing TLS v1.2 support: add support for server...
2011-03-12 Ben LaurieAdd SRP support.
2011-02-08 Bodo MöllerOCSP stapling fix (OpenSSL 0.9.8r/1.0.0d)
2010-11-25 Dr. Stephen HensonPR: 2240
2010-11-25 Dr. Stephen Hensonusing_ecc doesn't just apply to TLSv1
2010-11-17 Dr. Stephen HensonDon't assume a decode error if session tlsext_ecpointfo...
2010-11-16 Dr. Stephen Hensonbring HEAD up to date, add CVE-2010-3864 fix, update...
2010-09-05 Ben LaurieFixes to NPN from Adam Langley.
2010-08-27 Dr. Stephen HensonPR: 1833
2010-07-28 Ben LaurieAdd Next Protocol Negotiation.
2010-06-12 Ben LaurieFix warnings.
2010-02-17 Dr. Stephen HensonAllow renegotiation if SSL_OP_LEGACY_SERVER_CONNECT...
2010-01-07 Dr. Stephen HensonSimplify RI+SCSV logic:
2009-12-17 Dr. Stephen HensonAlert to use is now defined in spec: update code
2009-12-16 Dr. Stephen HensonNew option to enable/disable connection to unpatched...
2009-12-14 Dr. Stephen HensonAllow initial connection (but no renegoriation) to...
2009-12-08 Dr. Stephen HensonAdd support for magic cipher suite value (MCSV). Make...
2009-12-08 Dr. Stephen HensonPR: 2121
2009-12-07 Dr. Stephen HensonInitial experimental TLSv1.1 support
2009-11-18 Dr. Stephen HensonInclude a more meaningful error message when rejecting...
2009-11-11 Dr. Stephen Hensonadd missing parts of reneg port, fix apps patch
2009-11-08 Dr. Stephen HensonIf it is a new session don't send the old TLS ticket...
2009-10-30 Dr. Stephen HensonFix statless session resumption so it can coexist with SNI
2009-09-04 Dr. Stephen HensonPR: 2028
2009-04-28 Dr. Stephen HensonUpdate from 1.0.0-stable.
2008-12-29 Ben LaurieApparently s->ctx could be NULL. (Coverity ID 147).
2008-12-29 Ben LaurieApparently s->ctx could be NULL at this point (see...
2008-12-29 Ben LaurieIf we're going to return errors (no matter how stupid...
2008-12-13 Ben LaurieBack out pointless change.
next