generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/doc
History
Dr. Stephen Henson 37580f43b5 Only allow ephemeral RSA keys in export ciphersuites. 
OpenSSL clients would tolerate temporary RSA keys in non-export
ciphersuites. It also had an option SSL_OP_EPHEMERAL_RSA which
enabled this server side. Remove both options as they are a
protocol violation.

Thanks to Karthikeyan Bhargavan for reporting this issue.
(CVE-2015-0204)
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

(cherry picked from commit 4b4c1fcc88aec8c9e001b0a0077d3cd4de1ed0e6)

Conflicts:
	doc/ssl/SSL_CTX_set_options.pod
2015-01-06 13:14:05 +00:00
..
apps
Document openssl dgst -hmac option
2014-12-30 17:00:23 +01:00
crypto
Updates to X509_NAME_get_index_by_NID.pod submitted by user Bernardh via the wiki
2014-11-27 13:57:23 +00:00
HOWTO
Improves certificates HOWTO
2014-12-22 16:26:12 +01:00
ssl
Only allow ephemeral RSA keys in export ciphersuites.
2015-01-06 13:14:05 +00:00
c-indentation.el
Make sure to set indent-tabs-mode so that we get tabs, not spaces.
2008-02-21 07:24:12 +00:00
fingerprints.txt
Add Matt Caswell's fingerprint, and general update on the fingerprints file to bring it up to date
2014-07-15 23:24:26 +01:00
openssl_button.gif
Added the new `Includes OpenSSL Cryptography Software' button as
1999-03-04 12:55:42 +00:00
openssl_button.html
Added the new `Includes OpenSSL Cryptography Software' button as
1999-03-04 12:55:42 +00:00
openssl-shared.txt
Add documentation on how to handle the shared libaries.
2003-01-10 16:14:32 +00:00
openssl.txt
fix typos
2006-02-15 19:42:22 +00:00
README
Add a new file where all the standards and other documents that we try
2000-05-18 21:22:50 +00:00
ssleay.txt
PR: 1894
2009-04-16 17:22:51 +00:00
standards.txt
Add SEED encryption algorithm.
2007-04-23 23:48:59 +00:00

README 

 apps/openssl.pod .... Documentation of OpenSSL `openssl' command
 crypto/crypto.pod ... Documentation of OpenSSL crypto.h+libcrypto.a
 ssl/ssl.pod ......... Documentation of OpenSSL ssl.h+libssl.a
 openssl.txt ......... Assembled documentation files for OpenSSL [not final]
 ssleay.txt .......... Assembled documentation of ancestor SSLeay [obsolete]
 standards.txt ....... Assembled pointers to standards, RFCs or internet drafts
                       that are related to OpenSSL.

 An archive of HTML documents for the SSLeay library is available from
 http://www.columbia.edu/~ariel/ssleay/