1. 29 Oct, 2014 1 commit
  2. 28 Oct, 2014 2 commits
  3. 27 Oct, 2014 1 commit
  4. 21 Oct, 2014 3 commits
  5. 20 Oct, 2014 1 commit
  6. 17 Oct, 2014 3 commits
  7. 15 Oct, 2014 19 commits
  8. 10 Oct, 2014 1 commit
    • Dr. Stephen Henson's avatar
      Preserve digests for SNI. · 4e05aedb
      Dr. Stephen Henson authored
      
      
      SSL_set_SSL_CTX is normally called for SNI after ClientHello has
      received and the digest to use for each certificate has been decided.
      The original ssl->cert contains the negotiated digests and is now
      copied to the new ssl->cert.
      
      PR: 3560
      Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
      4e05aedb
  9. 06 Oct, 2014 1 commit
  10. 29 Sep, 2014 1 commit
    • Dr. Stephen Henson's avatar
      Add additional DigestInfo checks. · 55614f89
      Dr. Stephen Henson authored
      
      
      Reencode DigestInto in DER and check against the original: this
      will reject any improperly encoded DigestInfo structures.
      
      Note: this is a precautionary measure, there is no known attack
      which can exploit this.
      
      Thanks to Brian Smith for reporting this issue.
      Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
      55614f89
  11. 25 Sep, 2014 1 commit
  12. 24 Sep, 2014 6 commits