- 28 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
the certificate can be used for (if anything). Set valid_flags field in new tls1_check_chain function. Simplify ssl_set_cert_masks which used to have similar checks in it. Add new "cert_flags" field to CERT structure and include a "strict mode". This enforces some TLS certificate requirements (such as only permitting certificate signature algorithms contained in the supported algorithms extension) which some implementations ignore: this option should be used with caution as it could cause interoperability issues.
-
- 27 Jun, 2012 2 commits
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
path with spaces. PR: 2835
-
- 25 Jun, 2012 2 commits
-
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
Only store encoded versions of peer and configured signature algorithms. Determine shared signature algorithms and cache the result along with NID equivalents of each algorithm.
-
- 24 Jun, 2012 1 commit
-
-
Andy Polyakov authored
-
- 22 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
TLS v1.2. These are sent as an extension for clients and during a certificate request for servers. TODO: add support for shared signature algorithms, respect shared algorithms when deciding which ciphersuites and certificates to permit.
-
- 19 Jun, 2012 3 commits
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- 18 Jun, 2012 2 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- 15 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
for debugging purposes. Needs "enable-ssl-trace" configuration option.
-
- 13 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
-
- 12 Jun, 2012 5 commits
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
-
- 11 Jun, 2012 4 commits
-
-
Andy Polyakov authored
PR: 2830 Submitted by: Robin Seggelmann
-
Andy Polyakov authored
-
Ben Laurie authored
-
Andy Polyakov authored
-
- 07 Jun, 2012 1 commit
-
-
Ben Laurie authored
-
- 06 Jun, 2012 2 commits
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- 04 Jun, 2012 1 commit
-
-
Andy Polyakov authored
-
- 03 Jun, 2012 1 commit
-
-
Ben Laurie authored
-
- 30 May, 2012 2 commits
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- 28 May, 2012 2 commits
-
-
Andy Polyakov authored
specific code path.
-
Andy Polyakov authored
-
- 24 May, 2012 2 commits
-
-
Andy Polyakov authored
-
Andy Polyakov authored
improve performance on Atom and P4.
-
- 19 May, 2012 1 commit
-
-
Andy Polyakov authored
-
- 16 May, 2012 2 commits
-
-
Andy Polyakov authored
-
Andy Polyakov authored
PR: 2810
-
- 11 May, 2012 2 commits
-
-
Dr. Stephen Henson authored
Reported by: Constantine Sapuntzakis <csapuntz@gmail.com> Fix possible deadlock when decoding public keys.
-
Dr. Stephen Henson authored
Reported by: Phil Pennock <openssl-dev@spodhuis.org> Make renegotiation work for TLS 1.2, 1.1 by not using a lower record version client hello workaround if renegotiating.
-
- 10 May, 2012 1 commit
-
-
Ben Laurie authored
-