#
fbed9f81 |
| 17-Dec-2009 |
Dr. Stephen Henson |
Alert to use is now defined in spec: update code
|
#
ef51b4b9 |
| 16-Dec-2009 |
Dr. Stephen Henson |
New option to enable/disable connection to unpatched servers
|
#
c27c9cb4 |
| 14-Dec-2009 |
Dr. Stephen Henson |
Allow initial connection (but no renegoriation) to servers which don't support RI. Reorganise RI checking code and handle some missing cases.
|
#
13f6d57b |
| 08-Dec-2009 |
Dr. Stephen Henson |
Add support for magic cipher suite value (MCSV). Make secure renegotiation work in SSLv3: initial handshake has no extensions but includes MCSV, if server indicates RI support then renegotiat
Add support for magic cipher suite value (MCSV). Make secure renegotiation work in SSLv3: initial handshake has no extensions but includes MCSV, if server indicates RI support then renegotiation handshakes include RI. NB: current MCSV value is bogus for testing only, will be updated when we have an official value. Change mismatch alerts to handshake_failure as required by spec. Also have some debugging fprintfs so we can clearly see what is going on if OPENSSL_RI_DEBUG is set.
show more ...
|
#
8025e251 |
| 08-Dec-2009 |
Dr. Stephen Henson |
PR: 2121 Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Add extension support to DTLS code mainly using existing implementation for TLS.
|
#
637f374a |
| 07-Dec-2009 |
Dr. Stephen Henson |
Initial experimental TLSv1.1 support
|
#
64abf5e6 |
| 18-Nov-2009 |
Dr. Stephen Henson |
Include a more meaningful error message when rejecting legacy renegotiation
|
#
860c3dd1 |
| 11-Nov-2009 |
Dr. Stephen Henson |
add missing parts of reneg port, fix apps patch
|
Revision tags: OpenSSL_1_0_0-beta4 |
|
#
7ba3838a |
| 08-Nov-2009 |
Dr. Stephen Henson |
If it is a new session don't send the old TLS ticket: send a zero length ticket to request a new session.
|
Revision tags: OpenSSL_0_9_8l |
|
#
661dc143 |
| 30-Oct-2009 |
Dr. Stephen Henson |
Fix statless session resumption so it can coexist with SNI
|
#
07a9d1a2 |
| 04-Sep-2009 |
Dr. Stephen Henson |
PR: 2028 Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Approved by: steve@openssl.org Fix DTLS cookie management bugs.
|
Revision tags: OpenSSL_1_0_0-beta3 |
|
#
5f8f94a6 |
| 28-Apr-2009 |
Dr. Stephen Henson |
Update from 1.0.0-stable.
|
Revision tags: OpenSSL_1_0_0-beta2, OpenSSL_1_0_0-beta1, OpenSSL_0_9_8k, OpenSSL_0_9_8j |
|
#
2bd45dc9 |
| 29-Dec-2008 |
Ben Laurie |
Apparently s->ctx could be NULL. (Coverity ID 147).
|
#
121f9e74 |
| 29-Dec-2008 |
Ben Laurie |
Apparently s->ctx could be NULL at this point (see earlier test). (Coverity ID 148).
|
#
0eab41fb |
| 29-Dec-2008 |
Ben Laurie |
If we're going to return errors (no matter how stupid), then we should test for them!
|
#
a9dbe71e |
| 13-Dec-2008 |
Ben Laurie |
Back out pointless change.
|
#
ecd3370b |
| 13-Dec-2008 |
Ben Laurie |
*** empty log message ***
|
#
12bf56c0 |
| 15-Nov-2008 |
Dr. Stephen Henson |
PR: 1574 Submitted by: Jouni Malinen <j@w1.fi> Approved by: steve@openssl.org Ticket override support for EAP-FAST.
|
Revision tags: OpenSSL_0_9_8i |
|
#
e8da6a1d |
| 03-Sep-2008 |
Dr. Stephen Henson |
Fix from stable branch.
|
#
40a70628 |
| 28-May-2008 |
Bodo Möller |
From HEAD: Fix double-free in TLS server name extensions which could lead to a remote crash found by Codenomicon TLS test suite (CVE-2008-0891) Reviewed by: openssl-security@ope
From HEAD: Fix double-free in TLS server name extensions which could lead to a remote crash found by Codenomicon TLS test suite (CVE-2008-0891) Reviewed by: openssl-security@openssl.org Obtained from: jorton@redhat.com
show more ...
|
Revision tags: OpenSSL_0_9_8h |
|
#
8a2062fe |
| 30-Apr-2008 |
Dr. Stephen Henson |
Update from stable branch.
|
#
c78bba23 |
| 29-Apr-2008 |
Dr. Stephen Henson |
Oops!
|
#
d26c905c |
| 29-Apr-2008 |
Dr. Stephen Henson |
Update from stable branch.
|
#
8e3b2dbb |
| 25-Apr-2008 |
Dr. Stephen Henson |
Disable debugging fprintf.
|
#
1e26a8ba |
| 16-Mar-2008 |
Geoff Thorpe |
Fix a variety of warnings generated by some elevated compiler-fascism, OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...
|