- Oct 02, 2013
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- Oct 01, 2013
-
-
Andy Polyakov authored
Suggested by: Ard Biesheuvel
-
- Sep 25, 2013
-
-
Ben Laurie authored
-
Ben Laurie authored
Conflicts: apps/s_server.c
-
- Sep 20, 2013
-
-
Ben Laurie authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Andy Polyakov authored
Submitted by: Ard Biesheuvel
-
- Sep 18, 2013
-
-
Dr. Stephen Henson authored
Add various functions to allocate and set the fields of an ECDSA_METHOD structure.
-
Dr. Stephen Henson authored
-
- Sep 17, 2013
-
-
Dr. Stephen Henson authored
Make DTLS behave like TLS when negotiating version: record layer has DTLS 1.0, message version is 1.2. Tolerate different version numbers if version hasn't been negotiated yet.
-
Bodo Moeller authored
(This went into 1.0.2 too, so it's not actually a change between 1.0.x and 1.1.0.)
-
Bodo Moeller authored
the main branch (http://cvs.openssl.org/chngview?cn=19322) later added to the 1.0.2 branch (http://cvs.openssl.org/chngview?cn=23113), and thus not a change "between 1.0.2 and 1.1.0".
-
- Sep 16, 2013
-
-
Trevor Perrin authored
-
Bodo Moeller authored
(Various changes from the master branch are now in the 1.0.2 branch too.)
-
Bodo Moeller authored
- EC_GROUP_cmp shouldn't consider curves equal just because the curve name is the same. (They really *should* be the same in this case, but there's an EC_GROUP_set_curve_name API, which could be misused.) - EC_POINT_cmp shouldn't return 0 for ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED or EC_R_INCOMPATIBLE_OBJECTS errors because in a cmp API, 0 indicates equality (not an error). Reported by: king cope
-
- Sep 15, 2013
-
-
Andy Polyakov authored
PR: 3125 Submitted by: Kyle McMartin
-
Andy Polyakov authored
PR: 3110 Submitted by Corinna Vinschen.
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Ard Biesheuvel authored
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
-
- Sep 14, 2013
-
-
Trevor Perrin authored
-
Trevor Perrin authored
-
Trevor Perrin authored
-
- Sep 13, 2013
-
-
Rob Stradling authored
-
Rob Stradling authored
-
Rob Stradling authored
-
Rob Stradling authored
-
Mat authored
-
- Sep 12, 2013
-
-
Scott Deboy authored
-
- Sep 10, 2013
-
-
Ben Laurie authored
-
- Sep 09, 2013
-
-
Andy Polyakov authored
Avoid occasional up to 8% performance drops.
-
Andy Polyakov authored
-
- Sep 08, 2013
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
When verifying a partial path always check to see if the EE certificate is explicitly trusted: the path could contain other untrusted certificates.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Experimental support for encrypt then mac from draft-gutmann-tls-encrypt-then-mac-02.txt To enable it set the appropriate extension number (0x10 for the test server) using e.g. -DTLSEXT_TYPE_encrypt_then_mac=0x10 For non-compliant peers (i.e. just about everything) this should have no effect.
-