generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/doc
History
Dr. Stephen Henson 72f1815391 Only allow ephemeral RSA keys in export ciphersuites. 
OpenSSL clients would tolerate temporary RSA keys in non-export
ciphersuites. It also had an option SSL_OP_EPHEMERAL_RSA which
enabled this server side. Remove both options as they are a
protocol violation.

Thanks to Karthikeyan Bhargavan for reporting this issue.
(CVE-2015-0204)
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

(cherry picked from commit 4b4c1fcc88aec8c9e001b0a0077d3cd4de1ed0e6)

Conflicts:
	CHANGES
	doc/ssl/SSL_CTX_set_options.pod
	ssl/d1_srvr.c
	ssl/s3_srvr.c
2015-01-06 13:27:22 +00:00
..
apps
Add TLS_FALLBACK_SCSV documentation, and move s_client -fallback_scsv
2014-10-15 11:15:58 +02:00
crypto
Minor documentation update removing "really" and a
2014-07-21 20:23:09 +10:00
HOWTO
Correct environment variable is OPENSSL_ALLOW_PROXY_CERTS.
2012-05-04 10:43:17 +00:00
ssl
Only allow ephemeral RSA keys in export ciphersuites.
2015-01-06 13:27:22 +00:00
c-indentation.el
Make sure to set indent-tabs-mode so that we get tabs, not spaces.
2008-02-21 07:23:46 +00:00
fingerprints.txt
Add Matt Caswell's fingerprint, and general update on the fingerprints file to bring it up to date
2014-07-15 23:25:07 +01:00
openssl_button.gif
Added the new `Includes OpenSSL Cryptography Software' button as
1999-03-04 12:55:42 +00:00
openssl_button.html
Added the new `Includes OpenSSL Cryptography Software' button as
1999-03-04 12:55:42 +00:00
openssl-shared.txt
Add documentation on how to handle the shared libaries.
2003-01-10 16:14:32 +00:00
openssl.txt
fix typos
2006-02-15 19:44:45 +00:00
README
Add a new file where all the standards and other documents that we try
2000-05-18 21:22:50 +00:00
ssleay.txt
PR: 1835
2009-02-14 21:50:14 +00:00
standards.txt
Add SEED encryption algorithm.
2007-04-23 23:50:26 +00:00

README 

 apps/openssl.pod .... Documentation of OpenSSL `openssl' command
 crypto/crypto.pod ... Documentation of OpenSSL crypto.h+libcrypto.a
 ssl/ssl.pod ......... Documentation of OpenSSL ssl.h+libssl.a
 openssl.txt ......... Assembled documentation files for OpenSSL [not final]
 ssleay.txt .......... Assembled documentation of ancestor SSLeay [obsolete]
 standards.txt ....... Assembled pointers to standards, RFCs or internet drafts
                       that are related to OpenSSL.

 An archive of HTML documents for the SSLeay library is available from
 http://www.columbia.edu/~ariel/ssleay/