Commits · 81fe8dcfe1735962a6591f25b43d57f7c80de7bf · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

27 Sep, 2007 1 commit
- ARMv4 assembler pack. · 4c7c5ff6
  Andy Polyakov authored Sep 27, 2007
  
  4c7c5ff6
26 Sep, 2007 1 commit
- Support for certificate status TLS extension. · 67c8e7f4
  Dr. Stephen Henson authored Sep 26, 2007
  
  67c8e7f4
21 Sep, 2007 1 commit

Implement the Opaque PRF Input TLS extension · 761772d7

Bodo Möller authored Sep 21, 2007

(draft-rescorla-tls-opaque-prf-input-00.txt), and do some cleanups and
bugfixes on the way.  In particular, this fixes the buffer bounds
checks in ssl_add_clienthello_tlsext() and in ssl_add_serverhello_tlsext().

Note that the opaque PRF Input TLS extension is not compiled by default;
see CHANGES.

761772d7

07 Sep, 2007 1 commit
- Change safestack reimplementation to match 0.9.8. · a6fbcb42
  Dr. Stephen Henson authored Sep 07, 2007
```
Fix additional gcc 4.2 value not used warnings.
```
  a6fbcb42
31 Aug, 2007 1 commit
- Update ssl code to support digests other than MD5+SHA1 in handshake. · 81025661
  Dr. Stephen Henson authored Aug 31, 2007
```
Submitted by: Victor B. Wagner <vitus@cryptocom.ru>
```
  81025661
27 Aug, 2007 1 commit
- Add Google sponsorship note. · ec5d7473
  Dr. Stephen Henson authored Aug 27, 2007
  
  ec5d7473
23 Aug, 2007 1 commit
- Update from stable branch. · ba0e826d
  Dr. Stephen Henson authored Aug 23, 2007
  
  ba0e826d
11 Aug, 2007 1 commit
- RFC4507 (including RFC4507bis) TLS stateless session resumption support · 6434abbf
  Dr. Stephen Henson authored Aug 11, 2007
```
for OpenSSL.
```
  6434abbf
20 Jun, 2007 1 commit
- CHANGES update from 098-stable. · 85a5668d
  Andy Polyakov authored Jun 20, 2007
  
  85a5668d
07 Jun, 2007 1 commit
- Finish gcc 4.2 changes. · 3c07d3a3
  Dr. Stephen Henson authored Jun 07, 2007
  
  3c07d3a3
04 Jun, 2007 2 commits
- Avoid use of function pointer casts in pem library. Modify safestack to · 297e6f19
  Dr. Stephen Henson authored Jun 04, 2007
```
always use inline functions.
```
  297e6f19
- Update ssl library to support EVP_PKEY MAC API. Include generic MAC support. · b948e2c5
  Dr. Stephen Henson authored Jun 04, 2007
  
  b948e2c5
22 May, 2007 1 commit
- Fix crypto/ec/ec_mult.c to work properly with scalars of value 0 · 19f6c524
  Bodo Möller authored May 22, 2007
  
  19f6c524
13 May, 2007 2 commits
- More IGE speedup. · 69ab0852
  Ben Laurie authored May 13, 2007
  
  69ab0852
- AES IGE mode speedup. · 5f09d0ec
  Ben Laurie authored May 13, 2007
  
  5f09d0ec
23 Apr, 2007 1 commit
- Add SEED encryption algorithm. · 96afc1cf
  Bodo Möller authored Apr 23, 2007
```
PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller
```
  96afc1cf
13 Apr, 2007 1 commit

Update smime utility to support streaming for -encrypt and -sign -nodetach · 9cfc8a9d

Dr. Stephen Henson authored Apr 13, 2007

options. Add new streaming i2d (though strictly speaking it is BER format
when streaming) and PEM functions.

These all process content on the fly without storing it all in memory.

9cfc8a9d

11 Apr, 2007 2 commits
- New -mac and -macopt options to dgst utility. Reimplement -hmac option in · 2022cfe0
  Dr. Stephen Henson authored Apr 11, 2007
```
terms of new API.
```
  2022cfe0
- Update CHANGES. · 47b71e6e
  Dr. Stephen Henson authored Apr 11, 2007
  
  47b71e6e
08 Apr, 2007 1 commit
- New -sigopt option for dgst utility. · d952c79a
  Dr. Stephen Henson authored Apr 08, 2007
  
  d952c79a
28 Mar, 2007 2 commits
- make BN_FLG_CONSTTIME semantics more fool-proof · b002265e
  Bodo Möller authored Mar 28, 2007
  
  b002265e
- Change to mitigate branch prediction attacks · bd31fb21
  Bodo Möller authored Mar 28, 2007
```
Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
```
  bd31fb21
21 Mar, 2007 1 commit
- stricter session ID context matching · 0f32c841
  Bodo Möller authored Mar 21, 2007
  
  0f32c841
26 Feb, 2007 1 commit
- include complete 0.9.7 history · dd2b6750
  Bodo Möller authored Feb 26, 2007
```
include release date of 0.9.8e
```
  dd2b6750
21 Feb, 2007 2 commits
- Extend SMTP and IMAP protocol handling to perform the required · 8d72476e
  Lutz Jänicke authored Feb 21, 2007
```
EHLO or CAPABILITY handshake before sending STARTTLS

Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>
```
  8d72476e
- Update from 0.9.7-stable. · a2e623c0
  Dr. Stephen Henson authored Feb 21, 2007
  
  a2e623c0
20 Feb, 2007 1 commit
- Improve ciphersuite order stability when disabling ciphersuites. · fd5bc65c
  Bodo Möller authored Feb 20, 2007
```
Change ssl_create_cipher_list() to prefer ephemeral ECDH over
ephemeral DH.
```
  fd5bc65c
19 Feb, 2007 1 commit

Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a · 0a05123a

Bodo Möller authored Feb 19, 2007

ciphersuite string such as "DEFAULT:RSA" cannot enable
authentication-only ciphersuites.

Also, change ssl_create_cipher_list() so that it no longer
starts with an arbitrary ciphersuite ordering, but instead
uses the logic that we previously had in SSL_DEFEAULT_CIPHER_LIST.
SSL_DEFAULT_CIPHER_LIST simplifies into just "ALL:!aNULL:!eNULL".

0a05123a

17 Feb, 2007 1 commit

Reorganize the data used for SSL ciphersuite pattern matching. · 52b8dad8

Bodo Möller authored Feb 17, 2007

This change resolves a number of problems and obviates multiple kludges.
A new feature is that you can now say "AES256" or "AES128" (not just
"AES", which enables both).

In some cases the ciphersuite list generated from a given string is
affected by this change.  I hope this is just in those cases where the
previous behaviour did not make sense.

52b8dad8

03 Feb, 2007 1 commit
- add support for DSA with SHA2 · 357d5de5
  Nils Larsch authored Feb 03, 2007
  
  357d5de5
24 Dec, 2006 1 commit

Experimental streaming PKCS#7 support. · 11d8cdc6

Dr. Stephen Henson authored Dec 24, 2006

I thought it was about time I dusted this off. This stuff had been sitting on
my hard drive for *ages* (2003 in fact). Hasn't been tested well and may not
work properly.

Nothing uses it at present which is just as well.

Think of this as a traditional Christmas present which looks far more
impressive in the adverts and on the box, some of the bits are missing and
falls to bits if you play with it too much.

11d8cdc6

21 Dec, 2006 1 commit
- fix typos · fec38ca4
  Nils Larsch authored Dec 21, 2006
```
PR: 1354, 1355, 1398, 1408
```
  fec38ca4
20 Dec, 2006 1 commit
- add support for ecdsa-with-sha256 etc. · 06e2dd03
  Nils Larsch authored Dec 20, 2006
  
  06e2dd03
19 Dec, 2006 1 commit
- Fix the BIT STRING encoding of EC points or parameter seeds · 772e3c07
  Bodo Möller authored Dec 19, 2006
```
(need to prevent the removal of trailing zero bits).
```
  772e3c07
29 Nov, 2006 1 commit
- fix support for receiving fragmented handshake messages · 1e24b3a0
  Bodo Möller authored Nov 29, 2006
  
  1e24b3a0
27 Nov, 2006 1 commit
- Add RFC 3779 support. · 96ea4ae9
  Ben Laurie authored Nov 27, 2006
  
  96ea4ae9
21 Nov, 2006 1 commit
- Update from 0.9.8 stable. Eliminate duplicate error codes. · 47a9d527
  Dr. Stephen Henson authored Nov 21, 2006
  
  47a9d527
16 Nov, 2006 1 commit
- Initial, incomplete support for typesafe macros without using function · de121164
  Dr. Stephen Henson authored Nov 16, 2006
```
casts.
```
  de121164
23 Oct, 2006 1 commit
- Switch Win32/64 targets to Winsock2. Updates to ISNTALL.W32 cover even · 3189772e
  Andy Polyakov authored Oct 23, 2006
```
recent mingw modifications.
```
  3189772e
28 Sep, 2006 1 commit
- All 0.9.8d patches have been applied to HEAD now, so we no longer need · 3c5406b3
  Bodo Möller authored Sep 28, 2006
```
the redundant entries under the 0.9.9 heading.
```
  3c5406b3