Skip to content
  1. Jan 12, 2007
  2. Jan 04, 2007
  3. Dec 29, 2006
  4. Dec 27, 2006
  5. Dec 26, 2006
  6. Dec 25, 2006
  7. Dec 22, 2006
  8. Dec 21, 2006
  9. Dec 19, 2006
  10. Dec 13, 2006
  11. Dec 07, 2006
  12. Dec 06, 2006
  13. Dec 05, 2006
  14. Dec 04, 2006
  15. Dec 02, 2006
  16. Nov 30, 2006
    • Dr. Stephen Henson's avatar
      Update dependencies. · 45c027f3
      Dr. Stephen Henson authored
      45c027f3
    • Dr. Stephen Henson's avatar
      Fix default depflags. · 3b62e9eb
      Dr. Stephen Henson authored
      3b62e9eb
    • Dr. Stephen Henson's avatar
      Win32 fixes. · 34a8c7ec
      Dr. Stephen Henson authored
      Use OPENSSL_NO_RFC3779 instead of OPENSSL_RFC3779: this makes the Win32 scripts
      work and is consistent with other options.
      
      Fix Win32 scripts and Configure to process OPENSSL_NO_RFC3779 properly.
      
      Update ordinals.
      
      Change some prototypes for LSB because VC++ 6 doesn't like the */ sequence and thinks it is an invalid end of comment.
      34a8c7ec
  17. Nov 29, 2006
  18. Nov 27, 2006
  19. Nov 24, 2006
  20. Nov 21, 2006
  21. Nov 13, 2006
  22. Oct 27, 2006
  23. Oct 19, 2006
  24. Oct 05, 2006
  25. Oct 04, 2006
  26. Sep 29, 2006
  27. Sep 28, 2006
    • Bodo Möller's avatar
      fix typo · 0c66d3ae
      Bodo Möller authored
      0c66d3ae
    • Bodo Möller's avatar
      bd869183
    • Richard Levitte's avatar
      Fixes for the following claims: · 7e2bf831
      Richard Levitte authored
        1) Certificate Message with no certs
      
        OpenSSL implementation sends the Certificate message during SSL
        handshake, however as per the specification, these have been omitted.
      
        -- RFC 2712 --
           CertificateRequest, and the ServerKeyExchange shown in Figure 1
           will be omitted since authentication and the establishment of a
           master secret will be done using the client's Kerberos credentials
           for the TLS server.  The client's certificate will be omitted for
           the same reason.
        -- RFC 2712 --
      
        3) Pre-master secret Protocol version
      
        The pre-master secret generated by OpenSSL does not have the correct
        client version.
      
        RFC 2712 says, if the Kerberos option is selected, the pre-master
        secret structure is the same as that used in the RSA case.
      
        TLS specification defines pre-master secret as:
               struct {
                   ProtocolVersion client_version;
                   opaque random[46];
               } PreMasterSecret;
      
        where client_version is the latest protocol version supported by the
        client
      
        The pre-master secret generated by OpenSSL does not have the correct
        client version. The implementation does not update the first 2 bytes
        of random secret for Kerberos Cipher suites. At the server-end, the
        client version from the pre-master secret is not validated.
      
      PR: 1336
      7e2bf831