- Jun 28, 2012
-
-
Dr. Stephen Henson authored
appropriate checks in tls1_check_chain.
-
Dr. Stephen Henson authored
the certificate can be used for (if anything). Set valid_flags field in new tls1_check_chain function. Simplify ssl_set_cert_masks which used to have similar checks in it. Add new "cert_flags" field to CERT structure and include a "strict mode". This enforces some TLS certificate requirements (such as only permitting certificate signature algorithms contained in the supported algorithms extension) which some implementations ignore: this option should be used with caution as it could cause interoperability issues.
-
- Jun 27, 2012
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
path with spaces. PR: 2835
-
- Jun 25, 2012
-
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
Only store encoded versions of peer and configured signature algorithms. Determine shared signature algorithms and cache the result along with NID equivalents of each algorithm.
-
- Jun 24, 2012
-
-
Andy Polyakov authored
-
- Jun 22, 2012
-
-
Dr. Stephen Henson authored
TLS v1.2. These are sent as an extension for clients and during a certificate request for servers. TODO: add support for shared signature algorithms, respect shared algorithms when deciding which ciphersuites and certificates to permit.
-
- Jun 19, 2012
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- Jun 18, 2012
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jun 15, 2012
-
-
Dr. Stephen Henson authored
for debugging purposes. Needs "enable-ssl-trace" configuration option.
-
- Jun 13, 2012
-
-
Dr. Stephen Henson authored
-
- Jun 12, 2012
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
-
- Jun 11, 2012
-
-
Andy Polyakov authored
PR: 2830 Submitted by: Robin Seggelmann
-
Andy Polyakov authored
-
Ben Laurie authored
-
Andy Polyakov authored
-
- Jun 07, 2012
-
-
Ben Laurie authored
-
- Jun 06, 2012
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- Jun 04, 2012
-
-
Andy Polyakov authored
-
- Jun 03, 2012
-
-
Ben Laurie authored
-
- May 30, 2012
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- May 28, 2012
-
-
Andy Polyakov authored
specific code path.
-
Andy Polyakov authored
-
- May 24, 2012
-
-
Andy Polyakov authored
-
Andy Polyakov authored
improve performance on Atom and P4.
-
- May 19, 2012
-
-
Andy Polyakov authored
-
- May 16, 2012
-
-
Andy Polyakov authored
-
Andy Polyakov authored
PR: 2810
-
- May 11, 2012
-
-
Dr. Stephen Henson authored
Reported by: Constantine Sapuntzakis <csapuntz@gmail.com> Fix possible deadlock when decoding public keys.
-
Dr. Stephen Henson authored
Reported by: Phil Pennock <openssl-dev@spodhuis.org> Make renegotiation work for TLS 1.2, 1.1 by not using a lower record version client hello workaround if renegotiating.
-