openssl

Author	SHA1	Message	Date
Richard Levitte	17085b022c	Pass CFLAG to dependency makers, so non-standard system include paths are handled properly. Part of PR 75	2002-06-27 16:39:25 +00:00
Bodo Möller	c21506ba02	New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBC vulnerability workaround (included in SSL_OP_ALL). PR: #90	2002-06-14 12:21:11 +00:00
Richard Levitte	b2c04539a1	Merge from 0.9.7-stable.	2002-06-06 07:22:33 +00:00
Richard Levitte	a9a025d08c	Recover from errors	2002-05-23 23:31:22 +00:00
Richard Levitte	b935754cb0	Allow the use of the TCP/IP stack keyword TCPIP and NONE	2002-05-22 11:37:20 +00:00
Bodo Möller	98a9092af1	Fix ciphersuite list to enforce low priority for RC4.	2002-05-07 08:36:26 +00:00
Bodo Möller	87108f5af9	ensure that, for each strength, RC4 ciphers have least preference in the default ciphersuite list	2002-05-07 07:59:35 +00:00
Bodo Möller	f257d984b7	refer to latest draft for AES ciphersuites	2002-05-07 07:55:36 +00:00
Bodo Möller	b889d6a8e8	fix warning	2002-05-06 10:44:59 +00:00
Bodo Möller	a4f576a378	disable AES ciphersuites unless explicitly requested	2002-05-05 23:44:27 +00:00
Bodo Möller	3def5a010e	fix casts	2002-05-05 23:00:28 +00:00
Bodo Möller	b52f3818f4	undo nonsense patch (r is signed or we have signedness mismatches elsewhere)	2002-04-29 11:03:06 +00:00
Richard Levitte	cc12975514	Fix unsigned vs. signed clash	2002-04-29 10:29:38 +00:00
Richard Levitte	9738f395c6	Synchronise with 0.9.7-stable.	2002-04-29 10:28:29 +00:00
Richard Levitte	d4294c8984	Synchronise with 0.9.7-stable.	2002-04-29 10:19:19 +00:00
Richard Levitte	8b07f23c30	Signedness mismatch. Notified by Bernd Matthes <bernd.matthes@gemplus.com>	2002-04-20 10:23:19 +00:00
Richard Levitte	6176df94ed	Make sure the opened directory is closed on exit. Notified by Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>	2002-04-18 16:20:13 +00:00
Bodo Möller	2fb3f002d0	fix length field we create when converting SSL 2.0 format into SSL 3.0/TLS 1.0 format (the bug was introduced with message callback support)	2002-04-14 13:05:15 +00:00
Bodo Möller	82b0bf0b87	Implement known-IV countermeasure. Fix length checks in ssl3_get_client_hello(). Use s->s3->in_read_app_data differently to fix ssl3_read_internal().	2002-04-13 22:47:20 +00:00
Lutz Jänicke	11c26ecf81	Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).	2002-03-19 16:42:09 +00:00
Dr. Stephen Henson	611ba3f4a1	Initialize ciph_ctx in kssl.c	2002-03-19 01:28:00 +00:00
Bodo Möller	304d90425f	fix ssl3_pending	2002-03-15 10:52:32 +00:00
Lutz Jänicke	bfaa8a89e1	Add missing strength entries.	2002-03-14 18:53:15 +00:00
Dr. Stephen Henson	de941e289e	Initialize cipher context in KRB5 ("D. Russell" <russelld@aol.net>) Allow HMAC functions to use an alternative ENGINE.	2002-03-14 18:22:23 +00:00
Bodo Möller	234c73767d	use BIO_nwrite() more properly to demonstrate the general idea of BIO_nwrite0/BIO_nwrite (the previous code was OK for BIO pairs but not in general)	2002-03-14 09:48:54 +00:00
Dr. Stephen Henson	497810cae7	Undo previous patch: avoid warnings by #undef'ing duplicate definitions. Suggested by "Kenneth R. Robinette" <support@securenetterm.com>	2002-03-13 13:59:38 +00:00
Dr. Stephen Henson	cbc9d9713d	Fix Kerberos warnings with VC++.	2002-03-12 19:37:18 +00:00
Dr. Stephen Henson	98fa4fe8c5	Fix ASN1 additions for KRB5	2002-03-12 13:32:35 +00:00
Dr. Stephen Henson	0b4c91c0fc	Fix various warnings when compiling with KRB5 code.	2002-03-12 02:59:37 +00:00
Bodo Möller	9437fef8cc	use ERR_peek_last_error() instead of ERR_peek_error()	2002-02-28 14:07:37 +00:00
Richard Levitte	26414ee013	Increase internal security when using strncpy, by making sure the resulting string is NUL-terminated	2002-02-28 12:42:19 +00:00
Bodo Möller	023ec151df	Add 'void *' argument to app_verify_callback. Submitted by: D. K. Smetters <smetters@parc.xerox.com> Reviewed by: Bodo Moeller	2002-02-28 10:52:56 +00:00
Lutz Jänicke	d62bfb39cd	Fix the fix (Yoram Zahavi)...	2002-02-27 11:23:05 +00:00
Lutz Jänicke	334f1842fc	Make sure to remove bad sessions in SSL_clear() (found by Yoram Zahavi).	2002-02-26 21:40:09 +00:00
Dr. Stephen Henson	3a3ca3f515	Fix for AIX. Submitted by Dawn Whiteside <dwhitesi@tiercel.uwaterloo.ca>	2002-02-22 21:26:25 +00:00
Bodo Möller	4d94ae00d5	ECDSA support Submitted by: Nils Larsch <nla@trustcenter.de>	2002-02-13 18:21:51 +00:00
Lutz Jänicke	acfe628b6e	Make removal from session cache more robust.	2002-02-10 12:46:41 +00:00
Lutz Jänicke	4de920c91d	Do not store unneeded data.	2002-02-08 15:15:04 +00:00
Bodo Möller	8c74b5e56c	Bugfix: In ssl3_accept, don't use a local variable 'got_new_session' to indicate that a real handshake is taking place (the value will be lost during multiple invocations). Set s->new_session to 2 instead.	2002-01-14 23:40:26 +00:00
Bodo Möller	c59ba5b528	Return -1 from ssl3_get_server_done (ssl3/s3_clnt.c) if the SSL_R_LENGTH_MISMATCH error is detected.	2002-01-14 12:37:59 +00:00
Ben Laurie	45d87a1ffe	Prototype info function.	2002-01-12 15:56:13 +00:00
Ben Laurie	a3feb21bbe	Add client_cert_cb prototype.	2002-01-12 13:15:40 +00:00
Ulf Möller	dcbbf83dba	ssl3_read_bytes bug fix Submitted by: D P Chang <dpc@qualys.com> Reviewed by: Bodo	2001-12-28 17:14:35 +00:00
Bodo Möller	4d7072f4b5	remove redundant ERR_load_... declarations	2001-12-17 19:22:23 +00:00
Ben Laurie	ff3fa48fc7	Improve back compatibility.	2001-12-09 21:53:31 +00:00
Bodo Möller	47ff5c6279	For future portability reasons MIT is moving all macros to function calls. This patch allows compilation either way. Submitted by: Jeffrey Altman <jaltman@columbia.edu>	2001-11-23 21:50:50 +00:00
Bodo Möller	c23d16ac19	cast to unsigned int, not to int to avoid the warning -- all these values really are unsigned	2001-11-14 21:18:35 +00:00
Richard Levitte	3102792161	unsigned int vs. int.	2001-11-14 10:55:29 +00:00
Bodo Möller	2b90b1f344	make code a little more similar to what it looked like before the fixes, call ssl2_part_read again to parse error message	2001-11-10 10:44:15 +00:00
Bodo Möller	cf82191d77	Implement msg_callback for SSL 2.0. Important SSL 2.0 bugfixes (bugs found while implementing msg_callback).	2001-11-10 01:16:28 +00:00

1 2 3 4 5 ...

507 Commits