projects
/
oweals
/
openssl.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
check length sanity before correcting in EVP_CTRL_AEAD_TLS1_AAD
[oweals/openssl.git]
/
ssl
/
2017-04-13
Richard Levitte
ASN.1: adapt SSL_SESSION_ASN1 by explicitely embedding...
tree
|
commitdiff
2017-04-11
Todd Short
Remove ECDH(E) ciphers from SSLv3
tree
|
commitdiff
2017-04-11
Rich Salz
Additional check to handle BAD SSL_write retry
tree
|
commitdiff
2017-04-11
Benjamin Kaduk
Allow an ALPN callback to pretend to not exist
tree
|
commitdiff
2017-04-04
Richard Levitte
Convert SSL_SESSION_ASN1 to use size specific integers
tree
|
commitdiff
2017-03-30
FdaSilvaYY
More typo fixes
tree
|
commitdiff
2017-03-28
FdaSilvaYY
Fix a few more typos
tree
|
commitdiff
2017-03-14
Benjamin Kaduk
Fix some -Wshadow warnings
tree
|
commitdiff
2017-03-10
Pauli
Use the callbacks from the SSL object instead of the...
tree
|
commitdiff
2017-03-10
Bernd Edlinger
Avoid questionable use of the value of a pointer that...
tree
|
commitdiff
2017-03-08
Roberto Guimaraes
prevent undefined behavior when src and dst are equal
tree
|
commitdiff
2017-03-07
Matt Caswell
Provide a function to test whether we have unread recor...
tree
|
commitdiff
2017-03-07
Rich Salz
Get pointer type right in BIO_ssl_shutdown()
tree
|
commitdiff
2017-03-02
Jon Spillett
Check for zero records and return immediately
tree
|
commitdiff
2017-02-22
Bernd Edlinger
Add some more consistency checks in tls_decrypt_ticket.
tree
|
commitdiff
2017-02-21
Bernd Edlinger
Fix i2d_SSL_SESSION pp output parameter should point...
tree
|
commitdiff
2017-02-16
Matt Caswell
Remove an OPENSSL_assert() and replace with a soft...
tree
|
commitdiff
2017-02-16
Matt Caswell
Don't change the state of the ETM flags until CCS proce...
tree
|
commitdiff
2017-02-15
Bernd Edlinger
Rework error handling of custom_ext_meth_add towards...
tree
|
commitdiff
2017-02-14
Bernd Edlinger
Use TLSEXT_KEYNAME_LENGTH in tls_decrypt_ticket.
tree
|
commitdiff
2017-02-14
Yuchi
mem leak on error path and error propagation fix
tree
|
commitdiff
2017-02-10
David Benjamin
Don't read uninitialised data for short session IDs.
tree
|
commitdiff
2017-02-04
Bernd Edlinger
Combined patch against OpenSSL_1_1_0-stable branch...
tree
|
commitdiff
2017-02-04
Todd Short
Majority rules, use session_ctx vs initial_ctx
tree
|
commitdiff
2017-01-28
Richard Levitte
Correct pointer to be freed
tree
|
commitdiff
2017-01-26
Dr. Stephen Henson
Use correct signature algorithm list when sending or...
tree
|
commitdiff
2017-01-26
Richard Levitte
Better check of DH parameters in TLS data
tree
|
commitdiff
2017-01-24
Andy Polyakov
Replace div-spoiler hack with simpler code, GH#1027...
tree
|
commitdiff
2017-01-24
Todd Short
Cleanup EVP_CIPH/EP_CTRL duplicate defines
tree
|
commitdiff
2017-01-24
Benjamin Kaduk
Do not overallocate for tmp.ciphers_raw
tree
|
commitdiff
2017-01-24
Matt Caswell
Fix SSL_get0_raw_cipherlist()
tree
|
commitdiff
2017-01-24
Bernd Edlinger
Fix a ssl session leak due to OOM in lh_SSL_SESSION_insert
tree
|
commitdiff
2017-01-23
Matt Caswell
Stop server from expecting Certificate message when...
tree
|
commitdiff
2017-01-23
Matt Caswell
Stop client from sending Certificate message when not...
tree
|
commitdiff
2017-01-23
Matt Caswell
Fix SSL_VERIFY_CLIENT_ONCE
tree
|
commitdiff
2017-01-23
Bernd Edlinger
fix a memory leak in ssl3_generate_key_block fix the...
tree
|
commitdiff
2017-01-18
Rich Salz
If client doesn't send curves list, don't assume all.
tree
|
commitdiff
2017-01-10
Matt Caswell
Mark a HelloRequest record as read if we ignore it
tree
|
commitdiff
2016-12-12
Matt Caswell
Fix a leak in SSL_clear()
tree
|
commitdiff
2016-12-08
Kurt Roeckx
Only call memcpy when the length is larger than 0.
tree
|
commitdiff
2016-11-29
Matt Caswell
Ensure we are in accept state in DTLSv1_listen
tree
|
commitdiff
2016-11-23
Matt Caswell
Fix missing NULL checks in CKE processing
tree
|
commitdiff
2016-11-21
Kurt Roeckx
Make SSL_read and SSL_write return the old behaviour...
tree
|
commitdiff
2016-11-16
Matt Caswell
Remove a hack from ssl_test_old
tree
|
commitdiff
2016-11-15
Rob Percival
Check that SCT timestamps are not in the future
tree
|
commitdiff
2016-11-09
EasySec
When no SRP identity is found, no error was reported...
tree
|
commitdiff
2016-11-07
Matt Caswell
Partial revert of "Fix client verify mode to check...
tree
|
commitdiff
2016-11-07
Matt Caswell
Always ensure that init_msg is initialised for a CCS
tree
|
commitdiff
2016-11-02
Matt Caswell
Fail if an unrecognised record type is received
tree
|
commitdiff
2016-11-02
Matt Caswell
Fix read_ahead
tree
|
commitdiff
2016-10-28
Matt Caswell
Implement length checks as a macro
tree
|
commitdiff
2016-10-28
Matt Caswell
Ensure we have length checks for all extensions
tree
|
commitdiff
2016-10-28
Matt Caswell
Fix length check writing status request extension
tree
|
commitdiff
2016-10-28
Matt Caswell
A zero return from BIO_read()/BIO_write() could be...
tree
|
commitdiff
2016-10-20
David Woodhouse
Disable encrypt_then_mac negotiation for DTLS.
tree
|
commitdiff
2016-09-29
Matt Caswell
Fix missing NULL checks in NewSessionTicket construction
tree
|
commitdiff
2016-09-29
Matt Caswell
Fix an Uninit read in DTLS
tree
|
commitdiff
2016-09-26
Matt Caswell
Fix Use After Free for large message sizes
tree
|
commitdiff
2016-09-22
Dmitry Belyavsky
Avoid KCI attack for GOST
tree
|
commitdiff
2016-09-22
Matt Caswell
Fix a hang with SSL_peek()
tree
|
commitdiff
2016-09-22
Matt Caswell
Fix a mem leak in NPN handling
tree
|
commitdiff
2016-09-22
Matt Caswell
Fix OCSP Status Request extension unbounded memory...
tree
|
commitdiff
2016-09-22
Richard Levitte
Fix error message typo, wrong function code
tree
|
commitdiff
2016-09-21
Matt Caswell
Excessive allocation of memory in dtls1_preprocess_frag...
tree
|
commitdiff
2016-09-21
Matt Caswell
Excessive allocation of memory in tls_get_message_header()
tree
|
commitdiff
2016-09-21
Matt Caswell
Don't allow too many consecutive warning alerts
tree
|
commitdiff
2016-09-21
Alessandro Ghedini
Use switch instead of multiple ifs
tree
|
commitdiff
2016-09-15
Matt Caswell
Revert "Abort on unrecognised warning alerts"
tree
|
commitdiff
2016-09-13
Matt Caswell
Abort on unrecognised warning alerts
tree
|
commitdiff
2016-09-08
Matt Caswell
Ensure trace recognises X25519
tree
|
commitdiff
2016-09-07
Rich Salz
Add missing debug strings.
tree
|
commitdiff
2016-08-30
Matt Caswell
Ensure the CertStatus message adds a DTLS message heade...
tree
|
commitdiff
2016-08-26
Rich Salz
Remove trailing zeros
tree
|
commitdiff
2016-08-24
Rich Salz
Put DES into "not default" category.
tree
|
commitdiff
2016-08-24
Rich Salz
To avoid SWEET32 attack, move 3DES to weak
tree
|
commitdiff
2016-08-24
Rob Percival
Fix comment about return value of ct_extract_tls_extens...
tree
|
commitdiff
2016-08-24
Matt Caswell
Remove some dead code from rec_layer_s3.c
tree
|
commitdiff
2016-08-23
Dr. Stephen Henson
Sanity check ticket length.
tree
|
commitdiff
2016-08-22
Matt Caswell
Fix leak on error in tls_construct_cke_gost
tree
|
commitdiff
2016-08-22
Matt Caswell
Prevent DTLS Finished message injection
tree
|
commitdiff
2016-08-22
Matt Caswell
Fix DTLS buffered message DoS attack
tree
|
commitdiff
2016-08-19
Matt Caswell
Fix DTLS replay protection
tree
|
commitdiff
2016-08-19
Matt Caswell
Fix DTLS unprocessed records bug
tree
|
commitdiff
2016-08-18
Emilia Kasper
Indent ssl/
tree
|
commitdiff
2016-08-17
Dr. Stephen Henson
Constify ssl_cert_type()
tree
|
commitdiff
2016-08-17
Dr. Stephen Henson
Convert X509* functions to use const getters
tree
|
commitdiff
2016-08-17
Remi Gacogne
Add missing session id and tlsext_status accessors
tree
|
commitdiff
2016-08-16
Matt Caswell
Convert SSL_SESSION* functions to use const getters
tree
|
commitdiff
2016-08-16
Matt Caswell
Ensure we unpad in constant time for read pipelining
tree
|
commitdiff
2016-08-16
David Woodhouse
Fix satsub64be() to unconditionally use 64-bit integers
tree
|
commitdiff
2016-08-15
Matt Caswell
Address feedback on SSLv2 ClientHello processing
tree
|
commitdiff
2016-08-15
Matt Caswell
Send an alert if we get a non-initial record with the...
tree
|
commitdiff
2016-08-15
Matt Caswell
Address feedback on SSLv2 ClientHello processing
tree
|
commitdiff
2016-08-15
Rob Percival
Improves CTLOG_STORE setters
tree
|
commitdiff
2016-08-15
Dr. Stephen Henson
Fix no-ec
tree
|
commitdiff
2016-08-13
Dr. Stephen Henson
Modify TLS support for new X25519 API.
tree
|
commitdiff
2016-08-12
Rich Salz
GH1446: Add SSL_SESSION_get0_cipher
tree
|
commitdiff
2016-08-08
Adam Langley
Fix test of first of 255 CBC padding bytes.
tree
|
commitdiff
2016-08-06
JimC
Fix CIPHER_DEBUG
tree
|
commitdiff
2016-08-05
klemens
spelling fixes, just comments and readme.
tree
|
commitdiff
next