- Feb 17, 2010
-
-
Dr. Stephen Henson authored
initial connection to unpatched servers. There are no additional security concerns in doing this as clients don't see renegotiation during an attack anyway.
-
Dr. Stephen Henson authored
Submitted by: James Baker <jbaker@tableausoftware.com> et al. Workaround for slow Heap32Next on some versions of Windows.
-
- Feb 16, 2010
-
-
Dr. Stephen Henson authored
Submitted by: Tomas Mraz <tmraz@redhat.com> Since SSLv2 doesn't support renegotiation at all don't reject it if legacy renegotiation isn't enabled. Also can now use SSL2 compatible client hello because RFC5746 supports it.
-
- Feb 15, 2010
-
-
Dr. Stephen Henson authored
should be the number of feedback bits expressed in bytes. For CFB1 mode set this to 1 by rounding up to the nearest multiple of 8.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Submitted by: "Noszticzius, Istvan" <inoszticzius@rightnow.com> Don't clear the output buffer: ciphers should correctly the same input and output buffers.
-
- Feb 12, 2010
-
-
Dr. Stephen Henson authored
-
- Feb 09, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Feb 04, 2010
-
-
Dr. Stephen Henson authored
-
- Feb 02, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Feb 01, 2010
-
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Make session tickets work with DTLS.
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Typo in PR#1949 bug, oops!
-
- Jan 28, 2010
-
-
Dr. Stephen Henson authored
out any we added using ERR_set_mark() and ERR_pop_to_mark() otherwise errors from other sources (e.g. SSL library) can be wiped.
-
- Jan 27, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
pod2man test. Use ./util instead to avoid this.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
calling underlying method directly.
-
- Jan 26, 2010
-
-
Dr. Stephen Henson authored
Submitted by: steve@openssl.org More robust fix and workaround for PR#1949. Don't try to work out if there is any write pending data as this can be unreliable: always flush.
-
Dr. Stephen Henson authored
Submitted by: Kevin Regan <k.regan@f5.com> Clear stat structure if -DPURIFY is set to avoid problems on some platforms which include unitialised fields.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jan 25, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Submitted by: Douglas Stebila <douglas@stebila.ca> Fix wap OIDs.
-
- Jan 24, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
ctrl is incorrectly implemented (e.g. some versions of Apache). As a workaround call both BIO_CTRL_INFO and BIO_CTRL_WPENDING if it returns zero. This should both address the original bug and retain compatibility with the old behaviour.
-
- Jan 22, 2010
-
-
Dr. Stephen Henson authored
server attempts to renegotiate with an unpatched client.
-
- Jan 20, 2010
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jan 19, 2010
-
-
Andy Polyakov authored
-
Andy Polyakov authored
PR: 2094,2095
-
Dr. Stephen Henson authored
-