openssl

History

Mark J. Cox 3ff55e9680 Fix buffer overflow in SSL_get_shared_ciphers() function.

(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]

Fix SSL client code which could crash if connecting to a
 malicious SSLv2 server.  (CVE-2006-4343)
[Tavis Ormandy and Will Drewry, Google Security Team]

2006-09-28 13:18:43 +00:00

.cvsignore

Add emacs cache files to .cvsignore.

2005-04-11 14:17:07 +00:00

bio_ssl.c

fix problems found by coverity: remove useless code

2006-03-15 17:45:43 +00:00

d1_both.c

Fix signed/unsigned warnings.

2005-07-26 04:25:05 +00:00

d1_clnt.c

Avoid warnings on VC++ 2005.

2005-12-05 17:21:22 +00:00

d1_enc.c

add additional checks + cleanup

2006-01-29 23:12:22 +00:00

d1_lib.c

remove unused internal foo_base_method functions

2005-08-08 19:04:37 +00:00

d1_meth.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

d1_pkt.c

Submitted by: Brad Spencer <spencer@jacknife.org>

2006-09-23 17:29:49 +00:00

d1_srvr.c

Ciphersuite string bugfixes, and ECC-related (re-)definitions.

2006-06-14 17:40:31 +00:00

dtls1.h

There's no such things as DTLS1_AD_MISSING_HANDSHAKE_MESSAGE.

2006-01-07 20:44:29 +00:00

install.com

Synchronise more with the Unix build.

2005-05-31 20:28:41 +00:00

kssl_lcl.h

To avoid commit wars over dependencies, let's make it so things that

2001-10-10 07:55:02 +00:00

kssl.c

Fix PEDANTIC compilation, using the same trick as elsewhere.

2005-07-26 04:05:03 +00:00

kssl.h

Make kerberos ciphersuite code work with newer header files

2005-04-09 23:55:55 +00:00

Makefile

Update dependencies.

2006-04-08 13:04:31 +00:00

s2_clnt.c

Fix buffer overflow in SSL_get_shared_ciphers() function.

2006-09-28 13:18:43 +00:00

s2_enc.c

Avoid including cryptlib.h, it's not really needed.

2003-12-27 16:10:30 +00:00

s2_lib.c

disable some invalid ciphersuites

2005-11-15 23:32:11 +00:00

s2_meth.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

s2_pkt.c

Avoid including cryptlib.h, it's not really needed.

2003-12-27 16:10:30 +00:00

s2_srvr.c

Avoid warnings on VC++ 2005.

2005-12-05 17:21:22 +00:00

s3_both.c

New option SSL_OP_NO_COMP to disable compression. New ctrls to set

2005-10-08 00:18:53 +00:00

s3_clnt.c

Fixes for the following claims:

2006-09-28 12:22:58 +00:00

s3_enc.c

add initial support for RFC 4279 PSK SSL ciphersuites

2006-03-10 23:06:27 +00:00

s3_lib.c

Fix algorithm handling for ECC ciphersuites: Adapt to recent changes,

2006-06-15 18:28:00 +00:00

s3_meth.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

s3_pkt.c

New option SSL_OP_NO_COMP to disable compression. New ctrls to set

2005-10-08 00:18:53 +00:00

s3_srvr.c

Fix buffer overflow in SSL_get_shared_ciphers() function.

2006-09-28 13:18:43 +00:00

s23_clnt.c

improvements for alert handling

2006-01-11 07:18:35 +00:00

s23_lib.c

remove unused internal foo_base_method functions

2005-08-08 19:04:37 +00:00

s23_meth.c

recent changes from 0.9.8: fix cipher list order in s3_lib.c,

2006-01-15 17:35:28 +00:00

s23_pkt.c

Reorder inclusion of header files:

2002-07-10 07:01:54 +00:00

s23_srvr.c

Various changes in the new TLS extension code, including the following:

2006-01-03 03:27:19 +00:00

ssl2.h

Implement msg_callback for SSL 2.0.

2001-11-10 01:16:28 +00:00

ssl3.h

Ciphersuite string bugfixes, and ECC-related (re-)definitions.

2006-06-14 17:40:31 +00:00

ssl23.h

Import of old SSLeay release: SSLeay 0.9.0b

1998-12-21 10:56:39 +00:00

ssl_algs.c

Camellia cipher, contributed by NTT

2006-06-09 15:44:59 +00:00

ssl_asn1.c

Remove ECC extension information from external representation

2006-04-05 17:11:19 +00:00

ssl_cert.c

Thread-safety fixes

2006-06-14 08:55:23 +00:00

ssl_ciph.c

ensure that ciphersuite strings such as "RC4-MD5" match the SSL 2.0

2006-09-11 09:49:03 +00:00

ssl_err2.c

Use new-style system-id macros everywhere possible. I hope I haven't

2001-02-20 08:13:47 +00:00

ssl_err.c

Error messages for client ECC cert verification.

2006-06-15 19:58:22 +00:00

ssl_lib.c

Fix buffer overflow in SSL_get_shared_ciphers() function.

2006-09-28 13:18:43 +00:00

ssl_locl.h

Error messages for client ECC cert verification.

2006-06-15 19:58:22 +00:00

ssl_rsa.c

add support for DER encoded private keys to SSL_CTX_use_PrivateKey_file()

2005-04-08 22:52:42 +00:00

ssl_sess.c

Implement Supported Elliptic Curves Extension.

2006-03-30 02:44:56 +00:00

ssl_stat.c

add initial support for RFC 4279 PSK SSL ciphersuites

2006-03-10 23:06:27 +00:00

ssl_task.c

Security fixes brought forward from 0.9.7.

2002-11-13 15:43:43 +00:00

ssl_txt.c

add initial support for RFC 4279 PSK SSL ciphersuites

2006-03-10 23:06:27 +00:00

ssl-lib.com

Synchronise more with the Unix build.

2005-05-31 20:28:41 +00:00

ssl.h

Error messages for client ECC cert verification.

2006-06-15 19:58:22 +00:00

ssltest.c

use BIO_snprintf() instead of snprintf + use BIO_FP_TEXT for text output

2006-03-12 22:16:57 +00:00

t1_clnt.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

t1_enc.c

Fix from stable branch.

2006-05-07 12:30:37 +00:00

t1_lib.c

Ciphersuite string bugfixes, and ECC-related (re-)definitions.

2006-06-14 17:40:31 +00:00

t1_meth.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

t1_srvr.c

Let the TLSv1_method() etc. functions return a const SSL_METHOD

2005-08-14 21:48:33 +00:00

tls1.h

Disable invalid ciphersuites

2006-06-14 17:51:46 +00:00