Commits · be62b22b527e89061f88c0b9eaefb0410982f41e · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Jan 30, 2017
- Update the s_client -sess_out feature to work for TLSv1.3 · be62b22b
  Matt Caswell authored Jan 13, 2017
  be62b22b
- Never send a session id in TLS1.3 · f05bcf0f
  Matt Caswell authored Jan 13, 2017
  f05bcf0f
- Add a TODO around handling of SSL_get_session() and SSL_get1_session() · e7a28df7
  Matt Caswell authored Jan 13, 2017
  e7a28df7
- Process incoming NewSessionTicket messages on the client side · de1df7e9
  Matt Caswell authored Jan 13, 2017
  de1df7e9
- Create the NewSessionTicket message in TLSv1.3 · 30f05b19
  Matt Caswell authored Jan 13, 2017
  30f05b19
- Add support for the psk_key_exchange_modes extension · b2f7e8c0
  Matt Caswell authored Jan 12, 2017
  b2f7e8c0
- Move TLSv1.3 Session Ticket processing into the state machine · cc2455bf
  Matt Caswell authored Jan 11, 2017
  cc2455bf
- Disable requests for renegotiation in TLSv1.3 · cda6b998
  Matt Caswell authored Jan 11, 2017
  cda6b998
- Move state machine knowledge out of the record layer · c7f47786
  Matt Caswell authored Jan 10, 2017
  c7f47786
- Remove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS flag · 0386aad1
  Matt Caswell authored Jan 10, 2017
  0386aad1
- ChangeCipherSpec is not allowed in TLSv1.3 · 97997489
  Matt Caswell authored Jan 06, 2017
  97997489
Jan 29, 2017
- Remove annoying and pointless pause. · 26967dc3
  Ben Laurie authored Jan 02, 2017
  26967dc3
- Fix faulty free · d85d3c99
  Richard Levitte authored Jan 29, 2017
  d85d3c99
- test/evp_test.c: If no algorithm was specified, don't try to check for DES · 31b69e9a
  Richard Levitte authored Jan 29, 2017
  31b69e9a
Jan 28, 2017
- Update client and server corpus · d2828c8b
  Kurt Roeckx authored Jan 28, 2017
  d2828c8b
- Don't need the checkbox; the hook does it · ec675019
  Rich Salz authored Jan 28, 2017
  ec675019
- Add a couple of test to check CRL fingerprint · 929860d0
  Richard Levitte authored Jan 28, 2017
  929860d0
- Document what EXFLAG_SET is for in x509v3.h · 2d60c923
  Richard Levitte authored Jan 28, 2017
  2d60c923
- X509_CRL_digest() - ensure precomputed sha1 hash before returning it · 6195848b
  Richard Levitte authored Jan 28, 2017
  6195848b
- Correct pointer to be freed · 63414e64
  Richard Levitte authored Jan 28, 2017
  63414e64
Jan 26, 2017
- Avoid over-long strings. Fix a mem leak. · 26a39fa9
  Rich Salz authored Jan 26, 2017
  26a39fa9
- Add server signature algorithm bug test. · 9cf847d7
  Dr. Stephen Henson authored Jan 25, 2017
  9cf847d7
- Use correct signature algorithm list when sending or checking. · a9669ddc
  Dr. Stephen Henson authored Jan 25, 2017
  a9669ddc
- Update CHANGES and NEWS for new release · 536454e5
  Matt Caswell authored Jan 24, 2017
  536454e5
- bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqr8x_internal. · 3f4bcf5b
  Andy Polyakov authored Jan 21, 2017
  3f4bcf5b
- test/bntest.c: regression test for carry bug in bn_sqr8x_internal. · 3e7a4963
  Andy Polyakov authored Jan 21, 2017
  3e7a4963
- Document DH_check_params() · 6f8950a3
  Richard Levitte authored Jan 15, 2017
  6f8950a3
- Better check of DH parameters in TLS data · 26505153
  Richard Levitte authored Dec 30, 2016
  26505153
- crypto/evp: harden AEAD ciphers. · 2198b3a5
  Andy Polyakov authored Jan 19, 2017
  2198b3a5
- crypto/evp: harden RC4_MD5 cipher. · 8e204996
  Andy Polyakov authored Jan 19, 2017
  8e204996
Jan 25, 2017
- Limit the length of the encrypted premaster key. · f0deb4d3
  Cory Benfield authored Jan 25, 2017
  f0deb4d3
- Fix small typo · 4bb0b438
  Richard Levitte authored Jan 25, 2017
  4bb0b438
- Fix a merge error · b1531d8e
  Matt Caswell authored Jan 25, 2017
  b1531d8e
- Remove assert from is_partially_overlapping() · b153f092
  Matt Caswell authored Jan 25, 2017
  b153f092
- Adjust in and in_len instead of donelen · ef055ec5
  Matt Caswell authored Jan 25, 2017
  ef055ec5
- Fix the overlapping check for fragmented "Update" operations · 7141ba31
  Matt Caswell authored Jan 24, 2017
  7141ba31
- Update evp_test to make sure passing partial block to "Update" is ok · 0b96d77a
  Matt Caswell authored Jan 23, 2017
  0b96d77a
- Properly handle a partial block in OCB mode · 7c12c7b6
  Matt Caswell authored Jan 23, 2017
  7c12c7b6
- Don't use magic numbers in aes_ocb_cipher() · 0ba5a9ea
  Matt Caswell authored Jan 23, 2017
  0ba5a9ea
- Fix memory leaks in the Certificate extensions code · 5ee289ea
  Matt Caswell authored Jan 25, 2017
  5ee289ea