- Mar 28, 2007
-
-
Bodo Möller authored
-
Bodo Möller authored
Submitted by: Matthew D Wood Reviewed by: Bodo Moeller
-
- Mar 21, 2007
-
-
Bodo Möller authored
-
- Feb 26, 2007
-
-
Bodo Möller authored
include release date of 0.9.8e
-
- Feb 21, 2007
-
-
Lutz Jänicke authored
EHLO or CAPABILITY handshake before sending STARTTLS Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>
-
Dr. Stephen Henson authored
-
- Feb 20, 2007
-
-
Bodo Möller authored
Change ssl_create_cipher_list() to prefer ephemeral ECDH over ephemeral DH.
-
- Feb 19, 2007
-
-
Bodo Möller authored
ciphersuite string such as "DEFAULT:RSA" cannot enable authentication-only ciphersuites. Also, change ssl_create_cipher_list() so that it no longer starts with an arbitrary ciphersuite ordering, but instead uses the logic that we previously had in SSL_DEFEAULT_CIPHER_LIST. SSL_DEFAULT_CIPHER_LIST simplifies into just "ALL:!aNULL:!eNULL".
-
- Feb 17, 2007
-
-
Bodo Möller authored
This change resolves a number of problems and obviates multiple kludges. A new feature is that you can now say "AES256" or "AES128" (not just "AES", which enables both). In some cases the ciphersuite list generated from a given string is affected by this change. I hope this is just in those cases where the previous behaviour did not make sense.
-
- Feb 03, 2007
-
-
Nils Larsch authored
-
- Dec 24, 2006
-
-
Dr. Stephen Henson authored
I thought it was about time I dusted this off. This stuff had been sitting on my hard drive for *ages* (2003 in fact). Hasn't been tested well and may not work properly. Nothing uses it at present which is just as well. Think of this as a traditional Christmas present which looks far more impressive in the adverts and on the box, some of the bits are missing and falls to bits if you play with it too much.
-
- Dec 21, 2006
-
-
Nils Larsch authored
PR: 1354, 1355, 1398, 1408
-
- Dec 20, 2006
-
-
Nils Larsch authored
-
- Dec 19, 2006
-
-
Bodo Möller authored
(need to prevent the removal of trailing zero bits).
-
- Nov 29, 2006
-
-
Bodo Möller authored
-
- Nov 27, 2006
-
-
Ben Laurie authored
-
- Nov 21, 2006
-
-
Dr. Stephen Henson authored
-
- Nov 16, 2006
-
-
Dr. Stephen Henson authored
casts.
-
- Oct 23, 2006
-
-
Andy Polyakov authored
recent mingw modifications.
-
- Sep 28, 2006
-
-
Bodo Möller authored
the redundant entries under the 0.9.9 heading.
-
Bodo Möller authored
-
Mark J. Cox authored
in a denial of service. (CVE-2006-2937) [Steve Henson]
-
Mark J. Cox authored
(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team] Fix SSL client code which could crash if connecting to a malicious SSLv2 server. (CVE-2006-4343) [Tavis Ormandy and Will Drewry, Google Security Team]
-
- Sep 21, 2006
-
-
Dr. Stephen Henson authored
loaded. Add new function X509_CRL_get0_by_serial() to lookup a revoked entry to avoid the need to access the structure directly. Add new X509_CRL_METHOD to allow common CRL operations (verify, lookup) to be redirected.
-
- Sep 17, 2006
-
-
Dr. Stephen Henson authored
-
- Sep 14, 2006
-
-
Dr. Stephen Henson authored
handling to support this.
-
- Sep 12, 2006
-
-
Bodo Möller authored
-
- Sep 11, 2006
-
-
Bodo Möller authored
ciphersuite as well
-
- Sep 06, 2006
-
-
Bodo Möller authored
-
- Sep 05, 2006
-
-
Mark J. Cox authored
(CVE-2006-4339) Submitted by: Ben Laurie, Google Security Team Reviewed by: bmoeller, mjc, shenson
-
- Aug 31, 2006
-
-
Ben Laurie authored
-
- Jul 25, 2006
-
-
Dr. Stephen Henson authored
verify logic to try to use an unexpired CRL if possible.
-
- Jul 24, 2006
-
-
Dr. Stephen Henson authored
-
- Jul 18, 2006
-
-
Dr. Stephen Henson authored
them.
-
- Jul 17, 2006
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jul 10, 2006
-
-
Dr. Stephen Henson authored
Send ctrls to EVP_PKEY_METHOD during signing of PKCS7 structure so customisation is possible.
-
- Jul 09, 2006
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jun 28, 2006
-
-
Bodo Möller authored
large FD: it's non-blocking mode anyway
-