- Jun 14, 2014
-
-
Richard Levitte authored
Partly provided by Zoltan Arpadffy <arpadffy@polarhome.com>
-
Andy Polyakov authored
PR: 3405 (cherry picked from commit 91a6bf80)
-
Andy Polyakov authored
PR: 3405 (cherry picked from commit c9cf29cc)
-
- Jun 13, 2014
-
-
Matt Caswell authored
Based on an original patch by Joel Sing (OpenBSD) who also originally identified the issue.
-
Matt Caswell authored
This reverts commit 728bd41a. Missing attribution.
-
- Jun 12, 2014
-
-
Viktor Dukhovni authored
A client reference identity of ".example.com" matches a server certificate presented identity that is any sub-domain of "example.com" (e.g. "www.sub.example.com). With the X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS flag, it matches only direct child sub-domains (e.g. "www.sub.example.com"). (cherry picked from commit e52c52f10bb8e34aaf8f28f3e5b56939e8f6b357)
-
Kurt Cancemi authored
In the ssl_cipher_get_evp() function, fix off-by-one errors in index validation before accessing arrays. PR#3375
-
Andy Polyakov authored
Fix SEH and stack handling in Win64 build. (cherry picked from commit 977f32e8)
-
Matt Caswell authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Richard Levitte authored
Partly provided by Zoltan Arpadffy <arpadffy@polarhome.com>
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
- Jun 11, 2014
-
-
Andy Polyakov authored
(cherry picked from commit 77a27a50)
-
Dr. Stephen Henson authored
(cherry picked from commit 7239a09c7b5757ed8d0e9869f3e9b03c0e11f4d1)
-
Andy Polyakov authored
(cherry picked from commit 1cf8f57b)
-
Andy Polyakov authored
(cherry picked from commit 619b9466)
-
- Jun 10, 2014
-
-
Rob Stradling authored
(cherry picked from commit fd2309aa)
-
Matt Caswell authored
-
Andy Polyakov authored
(cherry picked from commit 82741e9c)
-
Andy Polyakov authored
Result of joint effort with Ard Biesheuvel. (cherry picked from commit 2d5a799d)
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
Submitted by: Ard Biesheuvel. (cherry picked from commit cd91fd7c)
-
Andy Polyakov authored
(cherry picked from commit f8aab617)
-
Andy Polyakov authored
(cherry picked from commit ddb6b965)
-
Andy Polyakov authored
armcap.c is shared between 32- and 64-bit builds and features link-time detection of getauxval. Submitted by: Ard Biesheuvel. (cherry picked from commit e8d93e34)
-
Andy Polyakov authored
(cherry picked from commit e2eabed1)
-
Andy Polyakov authored
Pointer out and suggested by: Ard Biesheuvel. (cherry picked from commit 5dcf70a1)
-
Andy Polyakov authored
(cherry picked from commit 72346328)
-
Andy Polyakov authored
(cherry picked from commit 797d24be)
-
Andy Polyakov authored
sha/asm/sha256-armv4.pl: add ARMv8 code path. (cherry picked from commit 9250a306)
-
Andy Polyakov authored
(cherry picked from commit 4afa9f03)
-
Hubert Kario authored
Backport of patch: add ECC strings to ciphers(1), point out difference between DH and ECDH and backport of other other assorted fixes to this man page * Make a clear distinction between DH and ECDH key exchange. * Group all key exchange cipher suite identifiers, first DH then ECDH * add descriptions for all supported *DH* identifiers * add ECDSA authentication descriptions * add example showing how to disable all suites that offer no authentication or encryption * update status of static DH (it's now supported) * backport descriptions of AES128, AES256, AESGCM * backport descriptions of CAMELLIA128, CAMELLIA256 * backport listing of standard names for ECC cipher suites and TLSv1.2 cipher suites * backport description of PSK cipher suites
-
Mike Bland authored
Defines SETUP_TEST_FIXTURE and EXECUTE_TEST, and updates ssl/heartbeat_test.c using these macros. SETUP_TEST_FIXTURE makes use of the new TEST_CASE_NAME macro, defined to use __func__ or __FUNCTION__ on platforms that support those symbols, or to use the file name and line number otherwise. This should fix several reported build problems related to lack of C99 support.
-
Dr. Stephen Henson authored
Remove experimental DANE/dnssec code: not ready for use in an official release yet.
-