generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/ssl
History
Matt Caswell a8da754d84 Fix dtls_query_mtu so that it will always either complete with an mtu that is 
at least the minimum or it will fail.
There were some instances in dtls1_query_mtu where the final mtu can end up
being less than the minimum, i.e. where the user has set an mtu manually. This
shouldn't be allowed. Also remove dtls1_guess_mtu that, despite having
logic for guessing an mtu, was actually only ever used to work out the minimum
mtu to use.

Reviewed-by: Tim Hudson <tjh@openssl.org>
(cherry picked from commit 1620a2e49c777f31f2ce57966ae74006b48ad759)
2014-12-03 09:43:49 +00:00
..
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
bio_ssl.c
OPENSSL_NO_SOCK fixes [from HEAD].
2012-04-16 17:43:28 +00:00
d1_both.c
Fix dtls_query_mtu so that it will always either complete with an mtu that is
2014-12-03 09:43:49 +00:00
d1_clnt.c
Fix DTLS anonymous EC(DH) denial of service
2014-08-06 21:30:39 +01:00
d1_enc.c
Add checks to the return value of EVP_Cipher to prevent silent encryption failure.
2014-11-27 21:58:31 +00:00
d1_lib.c
Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)
2014-12-03 09:43:47 +00:00
d1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
d1_pkt.c
Add checks to the return value of EVP_Cipher to prevent silent encryption failure.
2014-11-27 21:58:31 +00:00
d1_srvr.c
Fix DTLS certificate requesting code.
2014-07-15 18:23:52 +01:00
dtls1.h
Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)
2014-12-03 09:43:47 +00:00
install-ssl.com
Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>
2011-03-19 09:44:53 +00:00
kssl_lcl.h
Some fixes for kerberos builds.
2009-04-21 22:20:12 +00:00
kssl.c
Submitted by: Tomas Hoger <thoger@redhat.com>
2010-03-03 15:41:00 +00:00
kssl.h
Fix for WIN32 builds with KRB5
2014-02-26 15:33:31 +00:00
Makefile
RT3067: simplify patch
2014-09-24 15:58:20 +02:00
s2_clnt.c
Add and use a constant-time memcmp.
2013-02-05 16:46:15 +00:00
s2_enc.c
Fixed warning in ssl2_enc
2014-11-27 21:58:32 +00:00
s2_lib.c
Support TLS_FALLBACK_SCSV.
2014-10-15 04:05:57 +02:00
s2_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s2_pkt.c
Check EVP_Cipher return values for SSL2
2014-11-27 21:58:32 +00:00
s2_srvr.c
Assorted bugfixes:
2011-02-03 12:04:40 +00:00
s3_both.c
[PR3597] Advance to the next state variant when reusing messages.
2014-11-28 23:31:53 +01:00
s3_cbc.c
RT3066: rewrite RSA padding checks to be slightly more constant time.
2014-09-24 14:35:03 +02:00
s3_clnt.c
Fixed error introduced in commit f2be92b94dad3c6cbdf79d99a324804094cf1617
2014-09-22 06:32:42 +10:00
s3_enc.c
Add checks to the return value of EVP_Cipher to prevent silent encryption failure.
2014-11-27 21:58:31 +00:00
s3_lib.c
Support TLS_FALLBACK_SCSV.
2014-10-15 04:05:57 +02:00
s3_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s3_pkt.c
Add checks to the return value of EVP_Cipher to prevent silent encryption failure.
2014-11-27 21:58:31 +00:00
s3_srvr.c
RT3067: simplify patch
2014-09-24 15:58:20 +02:00
s23_clnt.c
Fix no-ssl3 configuration option
2014-10-15 08:49:50 -04:00
s23_lib.c
Don't advertise ECC ciphersuits in SSLv2 compatible client hello.
2014-06-27 16:52:10 +01:00
s23_meth.c
recent changes from 0.9.8: fix cipher list order in s3_lib.c,
2006-01-15 17:35:28 +00:00
s23_pkt.c
Reorder inclusion of header files:
2002-07-10 07:01:54 +00:00
s23_srvr.c
Keep old method in case of an unsupported protocol
2014-10-21 21:15:58 +02:00
ssl2.h
Implement msg_callback for SSL 2.0.
2001-11-10 01:16:28 +00:00
ssl3.h
Support TLS_FALLBACK_SCSV.
2014-10-15 04:05:57 +02:00
ssl23.h
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
ssl_algs.c
Fixups from previous commit.
2013-02-05 16:46:17 +00:00
ssl_asn1.c
fix coverity issue 966597 - error line is not always initialised
2014-05-08 00:04:16 +01:00
ssl_cert.c
Remove redundant checks in ssl_cert_dup. This was causing spurious error messages when using GOST
2014-11-27 20:55:52 +00:00
ssl_ciph.c
Use more common name for GOST key exchange.
2014-07-14 18:31:54 +01:00
ssl_err2.c
Use new-style system-id macros everywhere possible. I hope I haven't
2001-02-20 08:13:47 +00:00
ssl_err.c
Support TLS_FALLBACK_SCSV.
2014-10-15 04:05:57 +02:00
ssl_lib.c
Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)
2014-12-03 09:43:47 +00:00
ssl_locl.h
Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)
2014-12-03 09:43:47 +00:00
ssl_rsa.c
PR: 1411
2009-09-12 23:09:26 +00:00
ssl_sess.c
PR: 2160
2010-02-01 16:49:42 +00:00
ssl_stat.c
Don't disable state strings with no-ssl2
2014-06-28 00:56:59 +01:00
ssl_task.c
Security fixes brought forward from 0.9.7.
2002-11-13 15:43:43 +00:00
ssl_txt.c
Update from 0.9.8-stable.
2009-06-30 22:26:28 +00:00
ssl-lib.com
Spaces were added in some strings for better readability. However, those spaces do not belong in file names, so when picking out the individual parts, remove the spaces
2014-10-15 11:32:17 +02:00
ssl.h
Remove instances in libssl of the constant 28 (for size of IPv4 header + UDP)
2014-12-03 09:43:47 +00:00
ssltest.c
Fix in ssltest is no-ssl2 configured
2013-02-11 18:27:06 +00:00
t1_clnt.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
t1_enc.c
Support TLS_FALLBACK_SCSV.
2014-10-15 04:05:57 +02:00
t1_lib.c
Fix for session tickets memory leak.
2014-10-15 08:49:50 -04:00
t1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
t1_reneg.c
Update RI to match latest spec.
2009-12-27 22:59:09 +00:00
t1_srvr.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
tls1.h
Oops -- fix typo in coment added with TLS_FALLBACK_SCSV support.
2014-10-15 04:25:41 +02:00