Skip to content
  1. Oct 13, 2007
  2. Oct 12, 2007
  3. Oct 01, 2007
  4. Sep 27, 2007
  5. Sep 26, 2007
  6. Sep 21, 2007
    • Bodo Möller's avatar
      Implement the Opaque PRF Input TLS extension · 761772d7
      Bodo Möller authored
      (draft-rescorla-tls-opaque-prf-input-00.txt), and do some cleanups and
      bugfixes on the way.  In particular, this fixes the buffer bounds
      checks in ssl_add_clienthello_tlsext() and in ssl_add_serverhello_tlsext().
      
      Note that the opaque PRF Input TLS extension is not compiled by default;
      see CHANGES.
      761772d7
  7. Sep 07, 2007
  8. Aug 31, 2007
  9. Aug 27, 2007
  10. Aug 23, 2007
  11. Aug 11, 2007
  12. Jun 20, 2007
  13. Jun 07, 2007
  14. Jun 04, 2007
  15. May 22, 2007
  16. May 13, 2007
  17. Apr 23, 2007
  18. Apr 13, 2007
  19. Apr 11, 2007
  20. Apr 08, 2007
  21. Mar 28, 2007
  22. Mar 21, 2007
  23. Feb 26, 2007
  24. Feb 21, 2007
  25. Feb 20, 2007
  26. Feb 19, 2007
    • Bodo Möller's avatar
      Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a · 0a05123a
      Bodo Möller authored
      ciphersuite string such as "DEFAULT:RSA" cannot enable
      authentication-only ciphersuites.
      
      Also, change ssl_create_cipher_list() so that it no longer
      starts with an arbitrary ciphersuite ordering, but instead
      uses the logic that we previously had in SSL_DEFEAULT_CIPHER_LIST.
      SSL_DEFAULT_CIPHER_LIST simplifies into just "ALL:!aNULL:!eNULL".
      0a05123a
  27. Feb 17, 2007
    • Bodo Möller's avatar
      Reorganize the data used for SSL ciphersuite pattern matching. · 52b8dad8
      Bodo Möller authored
      This change resolves a number of problems and obviates multiple kludges.
      A new feature is that you can now say "AES256" or "AES128" (not just
      "AES", which enables both).
      
      In some cases the ciphersuite list generated from a given string is
      affected by this change.  I hope this is just in those cases where the
      previous behaviour did not make sense.
      52b8dad8
  28. Feb 03, 2007
  29. Dec 24, 2006
    • Dr. Stephen Henson's avatar
      Experimental streaming PKCS#7 support. · 11d8cdc6
      Dr. Stephen Henson authored
      I thought it was about time I dusted this off. This stuff had been sitting on
      my hard drive for *ages* (2003 in fact). Hasn't been tested well and may not
      work properly.
      
      Nothing uses it at present which is just as well.
      
      Think of this as a traditional Christmas present which looks far more
      impressive in the adverts and on the box, some of the bits are missing and
      falls to bits if you play with it too much.
      11d8cdc6
  30. Dec 21, 2006
  31. Dec 20, 2006
  32. Dec 19, 2006
  33. Nov 29, 2006
  34. Nov 27, 2006
  35. Nov 21, 2006