aboutsummaryrefslogtreecommitdiff
path: root/CHANGES
AgeCommit message (Expand)AuthorFilesLines
2012-06-29Add certificate callback. If set this is called whenever a certificateDr. Stephen Henson1-0/+9
2012-06-28Add new "valid_flags" field to CERT_PKEY structure which determines whatDr. Stephen Henson1-0/+12
2012-06-25Reorganise supported signature algorithm extension processing.Dr. Stephen Henson1-0/+6
2012-06-22Add support for application defined signature algorithms for use withDr. Stephen Henson1-0/+5
2012-06-18Make it possible to delete all certificates from an SSL structure.Dr. Stephen Henson1-0/+5
2012-06-15Initial record tracing code. Print out all fields in SSL/TLS recordsDr. Stephen Henson1-0/+6
2012-06-13New functions to retrieve certificate signatures and signature OID NID.Dr. Stephen Henson1-0/+4
2012-06-12print out issuer and subject unique identifier fields in certificatesDr. Stephen Henson1-0/+4
2012-05-30RFC 5878 support.Ben Laurie1-0/+3
2012-05-11PR: 2813Dr. Stephen Henson1-0/+3
2012-05-11PR: 2811Dr. Stephen Henson1-2/+7
2012-05-10Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 andDr. Stephen Henson1-0/+8
2012-05-10Reported by: Solar Designer of OpenwallDr. Stephen Henson1-0/+4
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson1-2/+9
2012-04-26CHANGES: clarify.Andy Polyakov1-1/+2
2012-04-26CHANGES: fix typos and clarify.Andy Polyakov1-3/+5
2012-04-25Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL andDr. Stephen Henson1-0/+11
2012-04-25s23_clnt.c: ensure interoperability by maitaining client "version capability"Andy Polyakov1-1/+11
2012-04-19Check for potentially exploitable overflows in asn1_d2i_read_bioDr. Stephen Henson1-1/+10
2012-04-17Disable SHA-2 ciphersuites in < TLS 1.2 connections.Bodo Möller1-0/+3
2012-04-17Additional workaround for PR#2771Dr. Stephen Henson1-0/+13
2012-04-05Add support for automatic ECDH temporary key parameter selection. WhenDr. Stephen Henson1-0/+7
2012-03-31CHANGES: harmonize with 1.0.0 and 1.0.1.Andy Polyakov1-2/+22
2012-03-28Initial revision of ECC extension handling.Dr. Stephen Henson1-0/+7
2012-03-06New ctrls to retrieve supported signature algorithms and curves andDr. Stephen Henson1-0/+5
2012-02-21Add new APIs EC_curve_nist2nid and EC_curve_nid2nist which convertDr. Stephen Henson1-0/+5
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson1-0/+7
2012-02-15Additional compatibility fix for MDC2 signature format.Dr. Stephen Henson1-0/+4
2012-02-15An incompatibility has always existed between the format used for RSADr. Stephen Henson1-0/+7
2012-02-09Modify client hello version when renegotiating to enhance interop withDr. Stephen Henson1-0/+7
2012-01-31Add support for distinct certificate chains per key type and per SSLDr. Stephen Henson1-0/+4
2012-01-25add support for use of fixed DH client certificatesDr. Stephen Henson1-0/+4
2012-01-18Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.Dr. Stephen Henson1-0/+16
2012-01-17fix CHANGES entryDr. Stephen Henson1-2/+6
2012-01-16Support for fixed DH ciphersuites.Dr. Stephen Henson1-0/+4
2012-01-05Update for 0.9.8s and 1.0.0f, and for 1.0.1 branch.Bodo Möller1-6/+35
2012-01-04update CHANGESDr. Stephen Henson1-1/+1
2012-01-04Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <t...Dr. Stephen Henson1-0/+14
2012-01-04Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)Dr. Stephen Henson1-0/+4
2012-01-04fix CHANGESDr. Stephen Henson1-8/+11
2012-01-04Check GOST parameters are not NULL (CVE-2012-0027)Dr. Stephen Henson1-0/+3
2012-01-04Prevent malformed RFC3779 data triggering an assertion failure (CVE-2011-4577)Dr. Stephen Henson1-0/+5
2011-12-31update CHANGESDr. Stephen Henson1-0/+3
2011-12-31PR: 2658Dr. Stephen Henson1-0/+3
2011-12-19PR: 2563Dr. Stephen Henson1-0/+3
2011-12-19update CHANGES.Andy Polyakov1-0/+11
2011-12-19update CHANGESDr. Stephen Henson1-0/+4
2011-12-13Back out redundant verification time change.Ben Laurie1-3/+0
2011-12-13Make it possible to set a time for verification.Ben Laurie1-0/+3
2011-12-10update CHANGESDr. Stephen Henson1-0/+3
generated by cgit v1.1 at 2024-07-13 15:46:06 +0000