Remove unicode characters from source
[openssl.git] / ssl /
2017-12-08 Richard LevitteRemove unicode characters from source
2017-12-07 Matt CaswellFix the buffer sizing in the fatalerrtest
2017-12-07 Matt CaswellFix initialisation in fatalerrtest
2017-12-06 Matt CaswellAdd a test for CVE-2017-3737
2017-12-06 Matt CaswellDon't allow read/write after fatal error
2017-11-14 Richard LevitteDon't use SSLv3_client_method internally with no-ssl3
2017-11-13 Andy PolyakovResolve warnings in VC-WIN32 build, which allows to...
2017-11-11 Richard Levittessltest.c: cb_ticket2 appears to not return a value...
2017-11-07 Bernd EdlingerFix error handling in heartbeat processing
2017-11-03 Kurt RoeckxFix no-ssl3-method build
2017-11-01 David BenjaminFix weak digest in TLS 1.2 with SNI.
2017-08-22 PauliUse casts for arguments to ctype functions.
2017-07-16 Bernd EdlingerBackport of 5b8fa43 and remove resolved TODO: see PR...
2017-06-21 Matt CaswellAdd documentation for the SSL_export_keying_material...
2017-06-01 Todd ShortFix ex_data memory leak
2017-06-01 Matt CaswellSend a protocol version alert
2017-05-26 Todd ShortFix inconsistent check of UNSAFE_LEGACY_RENEGOTIATION...
2017-05-25 Bernd EdlingerIgnore -rle and -comp when compiled with OPENSSL_NO_COMP.
2017-05-10 Matt CaswellCopy custom extension flags in a call to SSL_set_SSL_CTX()
2017-04-11 Rich SalzAdditional check to handle BAD SSL_write retry
2017-03-23 Richard LevitteGuard last few debugging printfs in libssl
2017-03-21 Matt CaswellFix BAD CCS alert in DTLS
2017-03-21 Matt CaswellAvoid a mem leak on error
2017-03-13 Matt CaswellFix DTLSv1_listen() sequence numbers
2017-03-11 Richard LevitteRevert "Use the callbacks from the SSL object instead...
2017-03-10 PauliUse the callbacks from the SSL object instead of the...
2017-03-10 Bernd EdlingerAvoid questionable use of the value of a pointer
2017-03-08 Roberto GuimaraesPrevent undefined behavior in memcpy call.
2017-02-24 Bernd EdlingerRestore the test coverage of COMP_rle and SSL_COMP_add_...
2017-02-22 Bernd EdlingerAdd some more consistency checks in tls_decrypt_ticket.
2017-02-15 Bernd EdlingerFix some realloc error handling issues.
2017-02-14 Yuchimem leak on error path and error propagation fix
2017-02-13 David BenjaminDon't read uninitialised data for short session IDs.
2017-02-09 Bernd EdlingerFix issue #2113:
2017-02-09 Bernd EdlingerFix the crash due to inconsistent enc_write_ctx
2017-02-08 Todd ShortFix session ticket and SNI
2017-02-06 Bernd EdlingerCombined patch for the more or less obvious issues
2017-01-26 Dr. Stephen HensonUse correct signature algorithm list when sending or...
2017-01-26 Richard LevitteBetter check of DH parameters in TLS data
2017-01-24 Bernd EdlingerFix a ssl session leak due to OOM in lh_SSL_SESSION_insert
2017-01-23 Matt CaswellFix SSL_VERIFY_CLIENT_ONCE
2017-01-10 Bernd EdlingerFix error handling in SSL_CTX_new
2016-12-14 russorzero pad DHE public key in ServerKeyExchange message...
2016-12-14 Richard LevitteFix ssl_cert_dup: change one 'return NULL' to 'goto...
2016-12-14 Richard LevitteMake 'err' lable in ssl_cert_dup unconditional
2016-12-13 Benjamin KadukFix a bug in clienthello processing
2016-11-29 Matt CaswellRevert "Fix heartbeat_test"
2016-11-21 Kurt RoeckxMake SSL_read and SSL_write return the old behaviour...
2016-11-13 Matthias KraftSolution proposal for issue #1647.
2016-11-02 Matt CaswellFail if an unrecognised record type is received
2016-11-02 Matt CaswellFix heartbeat_test
2016-10-28 Matt CaswellImplement length checks as a macro
2016-10-28 Matt CaswellEnsure we have length checks for all extensions
2016-10-28 Matt CaswellFix length check writing status request extension
2016-10-28 Matt CaswellA zero return from BIO_read/BIO_write() could be retryable
2016-10-14 Vitezslav CizekDegrade 3DES to MEDIUM in SSL2
2016-10-11 Kurt CancemiAdd missing error string for SSL_R_TOO_MANY_WARN_ALERTS
2016-09-22 Dirk FeytonsFix build with no-nextprotoneg
2016-09-22 Dmitry BelyavskyAvoid KCI attack for GOST
2016-09-22 Matt CaswellFix a mem leak in NPN handling
2016-09-22 Matt CaswellFix OCSP Status Request extension unbounded memory...
2016-09-21 Matt CaswellDon't allow too many consecutive warning alerts
2016-09-21 Dr. Stephen HensonMake message buffer slightly larger than message.
2016-09-21 Dr. Stephen HensonUse SSL3_HM_HEADER_LENGTH instead of 4.
2016-09-21 Dr. Stephen HensonRemove unnecessary check.
2016-09-21 Dr. Stephen HensonFix small OOB reads.
2016-09-15 Matt CaswellRevert "Abort on unrecognised warning alerts"
2016-09-15 Dr. Stephen HensonFix memory leak on realloc error.
2016-09-15 Dr. Stephen HensonFix memory leak on error.
2016-09-13 Matt CaswellAbort on unrecognised warning alerts
2016-08-30 Matt CaswellEnsure the CertStatus message adds a DTLS message heade...
2016-08-26 David WoodhouseAdd basic test for Cisco DTLS1_BAD_VER and record repla...
2016-08-26 David WoodhouseFix ubsan 'left shift of negative value -1' error in...
2016-08-26 David WoodhouseFix SSL_export_keying_material() for DTLS1_BAD_VER
2016-08-26 Matt CaswellFix the no-tls1 option
2016-08-26 Todd ShortAlways use session_ctx when removing a session
2016-08-24 Rich SalzSWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUM
2016-08-24 Matt CaswellFix no-ec
2016-08-23 Dr. Stephen HensonSanity check ticket length.
2016-08-22 Richard LevitteVMS: Use strict refdef extern model when building libra...
2016-08-22 Matt CaswellPrevent DTLS Finished message injection
2016-08-22 Matt CaswellFix DTLS buffered message DoS attack
2016-08-22 Matt CaswellSilence some "maybe used uninitialised" warnings
2016-08-19 Rich SalzFix NULL-return checks in 1.0.2
2016-08-19 Matt CaswellUpdate function error code
2016-08-19 Matt CaswellFix DTLS replay protection
2016-08-19 Matt CaswellAdd DTLS replay protection test
2016-08-19 Matt CaswellFix DTLS unprocessed records bug
2016-08-19 Matt CaswellAdd a DTLS unprocesed records test
2016-07-28 Rich SalzAdd missing casts.
2016-07-22 Dr. Stephen HensonSend alert for bad DH CKE
2016-07-19 Dr. Stephen HensonSanity check in ssl_get_algorithm2().
2016-07-19 Dr. Stephen HensonSend alert on CKE error.
2016-07-01 Matt CaswellAvoid an overflow in constructing the ServerKeyExchange...
2016-06-27 Matt CaswellChange usage of RAND_pseudo_bytes to RAND_bytes
2016-06-01 Matt CaswellAvoid some undefined pointer arithmetic
2016-05-26 Matt CaswellThe ssl3_digest_cached_records() function does not...
2016-05-19 Viktor DukhovniEnsure verify error is set when X509_verify_cert()...
2016-05-19 Matt CaswellFix a double free in tls1_setup_key_block
2016-05-17 Matt CaswellFix SSL compression symbol exporting