- 28 Jan, 2014 4 commits
-
-
Dr. Stephen Henson authored
(cherry picked from commit 717cc858)
-
Dr. Stephen Henson authored
PR#3244 (cherry picked from commit 9614d2c6)
-
Dr. Stephen Henson authored
Always add a dynamically loaded ENGINE to list. Otherwise it can cause problems when multiply loaded, especially if it adds new public key methods. For all current engines we only want a single implementation anyway. (cherry picked from commit e933f91f)
-
Dr. Stephen Henson authored
(cherry picked from commit 46ab9bbd)
-
- 27 Jan, 2014 5 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
(cherry picked from commit 3323314f)
-
Dr. Stephen Henson authored
(cherry picked from commit 0ebc965b) Conflicts: ssl/s3_srvr.c ssl/ssl3.h
-
Dr. Stephen Henson authored
(cherry picked from commit ec492c8a)
-
Dr. Stephen Henson authored
(cherry picked from commit cbb67448)
-
- 23 Jan, 2014 2 commits
-
-
Dr. Stephen Henson authored
an algorithm from the supplied engine instead of just the default one. (cherry picked from commit bb845ee0)
-
Dr. Stephen Henson authored
-
- 16 Jan, 2014 2 commits
-
-
Dr. Stephen Henson authored
Partial fix for PR#3183. (cherry picked from commit ba168244)
-
Kaspar Brand authored
PR#3178 (cherry picked from commit d0b039d4)
-
- 11 Jan, 2014 1 commit
-
-
Zoltan Arpadffy authored
-
- 10 Jan, 2014 2 commits
-
-
Jeff Trawick authored
(cherry picked from commit 5edce568)
-
Jeff Trawick authored
(cherry picked from commit 4b64e0cb)
-
- 09 Jan, 2014 3 commits
-
-
Dr. Stephen Henson authored
(cherry picked from commit 8f4077ca)
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
(cherry picked from commit eedab524)
-
- 07 Jan, 2014 3 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- 04 Jan, 2014 3 commits
-
-
Andy Polyakov authored
(and shave off cycle even from integer-only code) (cherry picked from commit ad0d2579)
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
The flag SSL_OP_MSIE_SSLV2_RSA_PADDING hasn't done anything since OpenSSL 0.9.7h but deleting it will break source compatibility with any software that references it. Restore it but #define to zero.
-
- 03 Jan, 2014 2 commits
-
-
Dr. Stephen Henson authored
Fix a limitation in SSL_CTX_use_certificate_chain_file(): use algorithm specific chains instead of the shared chain. Update docs. (cherry picked from commit a4339ea3) Conflicts: CHANGES
-
Andy Polyakov authored
(cherry picked from commit e8b0dd57)
-
- 02 Jan, 2014 2 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
When sending an invalid version number alert don't change the version number to the client version if a session is already established. Thanks to Marek Majkowski for additional analysis of this issue. PR#3191 (cherry picked from commit b77b58a3)
-
- 29 Dec, 2013 1 commit
-
-
Dr. Stephen Henson authored
-
- 28 Dec, 2013 2 commits
-
-
Andy Polyakov authored
PR: 3202 (cherry picked from commit 926725b3)
-
Andy Polyakov authored
(cherry picked from commit 2218c296)
-
- 20 Dec, 2013 2 commits
-
-
Dr. Stephen Henson authored
For DTLS we might need to retransmit messages from the previous session so keep a copy of write context in DTLS retransmission buffers instead of replacing it after sending CCS. CVE-2013-6450. (cherry picked from commit 34628967)
-
Dr. Stephen Henson authored
(cherry picked from commit a6c62f0c)
-
- 18 Dec, 2013 4 commits
-
-
Andy Polyakov authored
(and ensure stack alignment in the process) (cherry picked from commit fc0503a2)
-
Andy Polyakov authored
It worked because it was never called. (cherry picked from commit e9c80e04)
-
Andy Polyakov authored
SHA512_Transform was initially added rather as tribute to tradition than for practucal reasons. But use was recently found in ssl/s3_cbc.c and it turned to be problematic on platforms that don't tolerate misasligned references to memory and lack assembly subroutine. (cherry picked from commit cdd1acd7)
-
Dr. Stephen Henson authored
Partial mitigation of PR#3200 (cherry picked from commit 0294b2be)
-
- 13 Dec, 2013 2 commits
-
-
Dr. Stephen Henson authored
(cherry picked from commit 9b3d7570) Conflicts: crypto/x509/x509_vpm.c
-
Dr. Stephen Henson authored
Move the IP, email and host checking fields from the public X509_VERIFY_PARAM structure into an opaque X509_VERIFY_PARAM_ID structure. By doing this the structure can be modified in future without risk of breaking any applications.
-