- 04 Jan, 2007 1 commit
-
-
Andy Polyakov authored
-
- 29 Dec, 2006 1 commit
-
-
Andy Polyakov authored
-
- 27 Dec, 2006 1 commit
-
-
Nils Larsch authored
PR: 1441
-
- 26 Dec, 2006 1 commit
-
-
Richard Levitte authored
-
- 25 Dec, 2006 1 commit
-
-
Richard Levitte authored
-
- 22 Dec, 2006 1 commit
-
-
Andy Polyakov authored
-
- 21 Dec, 2006 1 commit
-
-
Nils Larsch authored
PR: 1354, 1355, 1398
-
- 19 Dec, 2006 2 commits
-
-
Nils Larsch authored
PR: 1438
-
Bodo Möller authored
(need to prevent the removal of trailing zero bits).
-
- 13 Dec, 2006 1 commit
-
-
Nils Larsch authored
-
- 07 Dec, 2006 1 commit
-
-
Dr. Stephen Henson authored
-
- 06 Dec, 2006 2 commits
-
-
Dr. Stephen Henson authored
-
Nils Larsch authored
PR: 1343
-
- 05 Dec, 2006 2 commits
-
-
Nils Larsch authored
PR: 1407 Submitted by: Tomas Mraz <tmraz@redhat.com>
-
Nils Larsch authored
PR: 1435 Submitted by: "Haridharan" <haridharan@gmail.com>
-
- 04 Dec, 2006 2 commits
-
-
Nils Larsch authored
if it's NULL (in case of a malformed pkcs10 request) PR: 1347 Submitted by: Remo Inverardi <invi@your.toilet.ch>
-
Nils Larsch authored
"Subject Directory Attributes" OIDs PR: 1433
-
- 02 Dec, 2006 2 commits
-
-
Andy Polyakov authored
-
Andy Polyakov authored
Submitted by: Masashi Fujita, NTT
-
- 30 Nov, 2006 3 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Use OPENSSL_NO_RFC3779 instead of OPENSSL_RFC3779: this makes the Win32 scripts work and is consistent with other options. Fix Win32 scripts and Configure to process OPENSSL_NO_RFC3779 properly. Update ordinals. Change some prototypes for LSB because VC++ 6 doesn't like the */ sequence and thinks it is an invalid end of comment.
-
- 29 Nov, 2006 2 commits
-
-
Nils Larsch authored
Submitted by: Tracy Camp <tracyx.e.camp@intel.com>
-
Bodo Möller authored
-
- 27 Nov, 2006 1 commit
-
-
Ben Laurie authored
-
- 24 Nov, 2006 1 commit
-
-
Nils Larsch authored
PR: 1431
-
- 21 Nov, 2006 3 commits
-
-
Ulf Möller authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Improve mkerr.pl header file function name parsing.
-
- 13 Nov, 2006 1 commit
-
-
Dr. Stephen Henson authored
-
- 27 Oct, 2006 1 commit
-
-
Nils Larsch authored
-
- 19 Oct, 2006 1 commit
-
-
Andy Polyakov authored
-
- 05 Oct, 2006 1 commit
-
-
Dr. Stephen Henson authored
-
- 04 Oct, 2006 1 commit
-
-
Nils Larsch authored
-
- 29 Sep, 2006 2 commits
-
-
Mark J. Cox authored
Steve Kiernan
-
Richard Levitte authored
-
- 28 Sep, 2006 4 commits
-
-
Bodo Möller authored
-
Bodo Möller authored
-
Richard Levitte authored
1) Certificate Message with no certs OpenSSL implementation sends the Certificate message during SSL handshake, however as per the specification, these have been omitted. -- RFC 2712 -- CertificateRequest, and the ServerKeyExchange shown in Figure 1 will be omitted since authentication and the establishment of a master secret will be done using the client's Kerberos credentials for the TLS server. The client's certificate will be omitted for the same reason. -- RFC 2712 -- 3) Pre-master secret Protocol version The pre-master secret generated by OpenSSL does not have the correct client version. RFC 2712 says, if the Kerberos option is selected, the pre-master secret structure is the same as that used in the RSA case. TLS specification defines pre-master secret as: struct { ProtocolVersion client_version; opaque random[46]; } PreMasterSecret; where client_version is the latest protocol version supported by the client The pre-master secret generated by OpenSSL does not have the correct client version. The implementation does not update the first 2 bytes of random secret for Kerberos Cipher suites. At the server-end, the client version from the pre-master secret is not validated. PR: 1336 -
Mark J. Cox authored
-
