Commits · b095884a58876ccd3e65f620b7f80d61b4bce687 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Jan 08, 2015
- A memory leak can occur in dtls1_buffer_record if either of the calls to · b095884a
  Matt Caswell authored Jan 07, 2015
  b095884a
- Unauthenticated DH client certificate fix. · f7fe3d23
  Dr. Stephen Henson authored Oct 23, 2014
  f7fe3d23
- Follow on from CVE-2014-3571. This fixes the code that was the original source · b2688c91
  Matt Caswell authored Jan 03, 2015
  b2688c91
- Fix crash in dtls1_get_record whilst in the listen state where you get two · bf6fa208
  Dr. Stephen Henson authored Jan 03, 2015
  bf6fa208
- Fix for CVE-2014-3570. · eb37b6aa
  Andy Polyakov authored Jan 05, 2015
  eb37b6aa
Jan 07, 2015
- fix error discrepancy · f66f76a2
  Dr. Stephen Henson authored Jan 07, 2015
  f66f76a2
Jan 06, 2015
- use correct credit in CHANGES · 65c63da2
  Dr. Stephen Henson authored Jan 06, 2015
  65c63da2
- use correct function name · 9f028e4a
  Dr. Stephen Henson authored Jan 06, 2015
  9f028e4a
- Remove blank line from start of cflags character array in buildinf.h · 64eec8f8
  Matt Caswell authored Jan 06, 2015
  64eec8f8
- Only allow ephemeral RSA keys in export ciphersuites. · 08a88774
  Dr. Stephen Henson authored Oct 23, 2014
  08a88774
Jan 05, 2015
- ECDH downgrade bug fix. · 802a070b
  Dr. Stephen Henson authored Oct 24, 2014
  802a070b
- update ordinals · 31c65a7b
  Dr. Stephen Henson authored Jan 05, 2015
  31c65a7b
- Fix various certificate fingerprint issues. · 208a6012
  Dr. Stephen Henson authored Dec 20, 2014
  208a6012
- Constify ASN1_TYPE_cmp add X509_ALGOR_cmp. · d7f8a7ca
  Dr. Stephen Henson authored Dec 14, 2014
  d7f8a7ca
- Reject invalid constructed encodings. · 0f1c30b0
  Dr. Stephen Henson authored Dec 17, 2014
  0f1c30b0
Dec 19, 2014
- Fix a problem if CFLAGS is too long cversion.c fails to compile when config · c4b96963
  Matt Caswell authored Dec 19, 2014
  c4b96963
Dec 18, 2014
- Return error when a bit string indicates an invalid amount of bits left · bfb2e4b2
  Kurt Roeckx authored Dec 15, 2014
  bfb2e4b2
Dec 17, 2014
- Revert "RT3425: constant-time evp_enc" · d8c8a718
  Emilia Kasper authored Dec 17, 2014
  d8c8a718
- Premaster secret handling fixes · 40c2812f
  Adam Langley authored Dec 16, 2014
  40c2812f
Dec 16, 2014
- Add OPENSSL_NO_ECDH guards · 2e3e3d27
  Matt Caswell authored Nov 18, 2014
  2e3e3d27
- Remove extraneous white space, and add some braces · 2ececf59
  Matt Caswell authored Dec 15, 2014
  2ececf59
- DTLS fixes for signed/unsigned issues · a6053634
  Matt Caswell authored Dec 12, 2014
  a6053634
Dec 15, 2014
- Checkout return value of dtls1_output_cert_chain · 9d410579
  Matt Caswell authored Dec 03, 2014
  9d410579
- Check return value of ssl3_output_cert_chain · 4f90ef0c
  Matt Caswell authored Mar 18, 2014
  4f90ef0c
Dec 13, 2014
- Fix memory leak in s2_srvr.c if BUF_MEM_grow fails · eae2bb2f
  Matt Caswell authored Dec 12, 2014
  eae2bb2f
- Fixed memory leak if BUF_MEM_grow fails · c3132708
  Matt Caswell authored Dec 12, 2014
  c3132708
Dec 12, 2014
- Fix use of NULL memory pointer in X509_VERIFY_PARAM_new in the event of a · af8a66d1
  Matt Caswell authored Dec 04, 2014
  af8a66d1
Dec 08, 2014
- Fixed memory leak in the event of a failure of BUF_MEM_grow · ec5c25b3
  Matt Caswell authored Dec 04, 2014
  ec5c25b3
- Fix memory leak in SSL_new if errors occur. · 38afaa48
  Matt Caswell authored Dec 04, 2014
  38afaa48
Dec 04, 2014
- Remove incorrect code inadvertently introduced through commit 59669b6a . · 954818fe
  Matt Caswell authored Dec 04, 2014
  954818fe
Dec 03, 2014
- Remove "#if 0" code · 027381f6
  Matt Caswell authored Dec 03, 2014
  027381f6
- Only use the fallback mtu after 2 unsuccessful retransmissions if it is less · a900b3b5
  Matt Caswell authored Dec 02, 2014
  a900b3b5
- Updates to s_client and s_server to remove the constant 28 (for IPv4 header · 82d7247f
  Matt Caswell authored Dec 01, 2014
  82d7247f
- If we really get a situation where the underlying mtu is less than the minimum · ceb4c684
  Matt Caswell authored Dec 02, 2014
  ceb4c684
- Fix dtls_query_mtu so that it will always either complete with an mtu that is · a8da754d
  Matt Caswell authored Dec 01, 2014
  a8da754d
- Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP) · 8ccb44e6
  Matt Caswell authored Dec 01, 2014
  8ccb44e6
- There are a number of instances throughout the code where the constant 28 is · bbfdd1f0
  Matt Caswell authored Dec 01, 2014
  bbfdd1f0
- The first call to query the mtu in dtls1_do_write correctly checks that the · 8724f9f9
  Matt Caswell authored Dec 01, 2014
  8724f9f9
- The SSL_OP_NO_QUERY_MTU option is supposed to stop the mtu from being · 6d41cbb6
  Matt Caswell authored Dec 01, 2014
  6d41cbb6
- Verify that we have a sensible message len and fail if not · 04a73c84
  Matt Caswell authored Dec 01, 2014
  04a73c84