Add heartbeat extension bounds check.
[openssl.git] / ssl / t1_lib.c
2014-04-07 Dr. Stephen HensonAdd heartbeat extension bounds check.
2014-04-05 Dr. Stephen HensonSet TLS padding extension value.
2014-02-05 Dr. Stephen HensonBackport TLS padding extension from master.
2014-01-16 Kaspar BrandOmit initial status request callback check.
2013-10-20 Dr. Stephen HensonDon't use RSA+MD5 with TLS 1.2
2013-10-19 Ben LaurieMerge branch 'no_gmt_unix_time' of git://
2013-09-16 Rob StradlingTidy up comments.
2013-09-16 Rob StradlingUse TLS version supplied by client when fingerprinting...
2013-09-16 Rob StradlingDon't prefer ECDHE-ECDSA ciphers when the client appear...
2013-02-09 Andy Polyakovssl/*: fix linking errors with no-srtp.
2013-02-08 Ben LaurieRemove extraneous brackets (clang doesn't like them).
2013-01-28 Ben LaurieAdd and use a constant-time memcmp.
2012-11-22 Dr. Stephen Hensonreject zero length point format list or supported curve...
2012-09-21 Dr. Stephen HensonMinor enhancement to PR#2836 fix. Instead of modifying...
2012-09-17 Ben LaurieCall OCSP Stapling callback after ciphersuite has been...
2012-06-27 Dr. Stephen Hensondon't use pseudo digests for default values of keys
2012-03-21 Dr. Stephen Hensonuse client version when deciding whether to send suppor...
2012-02-27 Dr. Stephen HensonPR: 2739
2012-02-17 Dr. Stephen Hensontypo
2012-02-10 Dr. Stephen HensonPR: 2704
2012-01-22 Dr. Stephen Hensonreturn error if md is NULL
2012-01-05 Dr. Stephen HensonSubmitted by: Robin Seggelmann <>
2012-01-04 Dr. Stephen HensonSubmitted by: Adam Langley <>
2012-01-03 Dr. Stephen Hensononly send heartbeat extension from server if client...
2011-12-31 Dr. Stephen HensonPR: 2658
2011-12-07 Dr. Stephen Hensonfix error discrepancy
2011-11-24 Ben LaurieDon't send NPN during renegotiation.
2011-11-15 Ben LaurieAdd TLS exporter.
2011-11-15 Ben LaurieAdd DTLS-SRTP.
2011-11-13 Ben LaurieAdd Next Protocol Negotiation.
2011-09-05 Bodo MöllerFix session handling.
2011-06-01 Dr. Stephen Hensontypo
2011-05-30 Dr. Stephen HensonOutput supported curves in preference order instead...
2011-05-25 Dr. Stephen HensonDon't advertise or use MD5 for TLS v1.2 in FIPS mode
2011-05-25 Dr. Stephen Hensonuse TLS1_get_version macro to check version so TLS...
2011-05-21 Dr. Stephen HensonAdd tls12_sigalgs which somehow didn't get added to...
2011-05-20 Dr. Stephen HensonAdd server client certificate support for TLS v1.2...
2011-05-12 Dr. Stephen HensonProcess signature algorithms during TLS v1.2 client...
2011-05-11 Dr. Stephen HensonBackport TLS v1.2 support from HEAD.
2011-03-16 Ben LaurieAdd SRP.
2011-02-08 Bodo MöllerOCSP stapling fix (OpenSSL 0.9.8r/1.0.0d)
2010-11-25 Dr. Stephen HensonPR: 2240
2010-11-25 Dr. Stephen Hensonusing_ecc doesn't just apply to TLSv1
2010-11-17 Dr. Stephen Hensonfix CVE-2010-3864
2010-08-27 Dr. Stephen HensonPR: 1833
2010-08-27 Dr. Stephen Hensonoops, revert previous patch
2010-08-27 Dr. Stephen HensonPR: 1833
2010-06-27 Dr. Stephen HensonBackport TLS v1.1 support from HEAD, ssl/ changes
2010-06-16 cvs2svnThis commit was manufactured by cvs2svn to create branch
2010-06-15 Dr. Stephen HensonFix warnings (From HEAD, original patch by Ben).
2010-02-17 Dr. Stephen HensonAllow renegotiation if SSL_OP_LEGACY_SERVER_CONNECT...
2010-01-07 Dr. Stephen HensonSimplify RI+SCSV logic:
2009-12-17 Dr. Stephen HensonAlert to use is now defined in spec: update code
2009-12-16 Dr. Stephen HensonNew option to enable/disable connection to unpatched...
2009-12-14 Dr. Stephen HensonAllow initial connection (but no renegoriation) to...
2009-12-08 Dr. Stephen HensonAdd support for magic cipher suite value (MCSV). Make...
2009-12-08 Dr. Stephen HensonPR: 2121
2009-11-18 Dr. Stephen HensonInclude a more meaningful error message when rejecting...
2009-11-11 Dr. Stephen Hensonadd missing parts of reneg port, fix apps patch
2009-11-08 Dr. Stephen HensonIf it is a new session don't send the old TLS ticket...
2009-10-30 Dr. Stephen HensonFix statless session resumption so it can coexist with SNI
2009-09-04 Dr. Stephen HensonPR: 2028
2009-04-28 Dr. Stephen HensonPR: 1629
2009-03-31 cvs2svnThis commit was manufactured by cvs2svn to create branch
2008-12-29 Ben LaurieApparently s->ctx could be NULL. (Coverity ID 147).
2008-12-29 Ben LaurieApparently s->ctx could be NULL at this point (see...
2008-12-29 Ben LaurieIf we're going to return errors (no matter how stupid...
2008-12-13 Ben LaurieBack out pointless change.
2008-12-13 Ben Laurie*** empty log message ***
2008-11-15 Dr. Stephen HensonPR: 1574
2008-09-03 Dr. Stephen HensonFix from stable branch.
2008-05-28 Bodo MöllerFrom HEAD:
2008-04-30 Dr. Stephen HensonUpdate from stable branch.
2008-04-29 Dr. Stephen HensonOops!
2008-04-29 Dr. Stephen HensonUpdate from stable branch.
2008-04-25 Dr. Stephen HensonDisable debugging fprintf.
2008-03-16 Geoff ThorpeFix a variety of warnings generated by some elevated...
2007-10-26 Dr. Stephen Henson1. Changes for s_client.c to make it return non-zero...
2007-10-18 Dr. Stephen HensonFix from stable branch.
2007-09-28 Dr. Stephen HensonMove no status notification to ssl_check_serverhello_tl...
2007-09-26 Dr. Stephen HensonSupport for certificate status TLS extension.
2007-09-23 Bodo Möllerproperly handle length-zero opaque PRF input values
2007-09-21 Bodo MöllerImplement the Opaque PRF Input TLS extension
2007-08-20 Dr. Stephen HensonUse SHA256 for ticket HMAC if possible.
2007-08-12 Dr. Stephen HensonOPENSSL_NO_TLS1 WIN32 build support. Fix so normal...
2007-08-12 Dr. Stephen HensonFix warning and make no-tlsext work.
2007-08-12 Dr. Stephen HensonRemove debugging fprintfs, fix typo.
2007-08-11 Dr. Stephen HensonRFC4507 (including RFC4507bis) TLS stateless session...
2007-04-24 Bodo Möllerfix function codes for error
2007-02-17 Bodo MöllerReorganize the data used for SSL ciphersuite pattern...
2007-01-21 Dr. Stephen HensonConstify version strings is ssl lib.
2006-06-14 Bodo MöllerCiphersuite string bugfixes, and ECC-related (re-)defin...
2006-04-03 Bodo Möllerclarification
2006-04-03 Bodo Möllercheck length properly
2006-04-03 Bodo Möllersimplify: use s2n macro
2006-04-03 Bodo MöllerAvoid hard-coded table length where we can use sizeof.
2006-03-30 Bodo Möllerfix for hostname extension
2006-03-30 Bodo MöllerImplement Supported Elliptic Curves Extension.
2006-03-15 Nils Larschfix for OPENSSL_NO_EC
2006-03-15 Richard Levittetlsext_ecpointformatlist_length is unsigned, so check...