aboutsummaryrefslogtreecommitdiff
path: root/ssl/ssl_ciph.c
AgeCommit message (Expand)AuthorFilesLines
2014-01-09Replace EDH-RSA-DES-CBC-SHA, etc. with DHE-RSA-DES-CBC-SHADaniel Kahn Gillmor1-0/+15
2014-01-09use SSL_kDHE throughout instead of SSL_kEDHDaniel Kahn Gillmor1-10/+10
2014-01-09Allow "DHE" and "kDHE" as synonyms of "EDH" and "kEDH" when specifiying ciphersDaniel Kahn Gillmor1-0/+2
2014-01-09use SSL_kECDHE throughout instead of SSL_kEECDHDaniel Kahn Gillmor1-13/+13
2014-01-09Allow "ECDHE" as a synonym of "EECDH" when specifiying ciphersDaniel Kahn Gillmor1-0/+2
2013-09-08Experimental encrypt-then-mac support.Dr. Stephen Henson1-1/+4
2013-08-17Make no-ec compilation work.Dr. Stephen Henson1-3/+4
2013-05-13Add AES-SHA256 stitch.Andy Polyakov1-0/+8
2013-04-09Suite B support for DTLS 1.2Dr. Stephen Henson1-3/+7
2012-12-01return error if Suite B mode is selected and TLS 1.2 can't be used. Correct e...Dr. Stephen Henson1-0/+7
2012-11-26set auto ecdh parameter selction for Suite BDr. Stephen Henson1-0/+2
2012-11-24add Suite B 128 bit mode offering only combination 2Dr. Stephen Henson1-2/+10
2012-11-15add "missing" TLSv1.2 cipher aliasDr. Stephen Henson1-2/+3
2012-09-30If OPENSSL_SSL_DEBUG_BROKEN_PROTOCOL is set allow the use of "SCSV" asDr. Stephen Henson1-1/+4
2012-09-12Add ctrl and utility functions to retrieve raw cipher list sent by client inDr. Stephen Henson1-0/+13
2012-08-31perform sanity checks on server certificate type as soon as it is received in...Dr. Stephen Henson1-1/+43
2012-08-15Add three Suite B modes to TLS code, supporting RFC6460.Dr. Stephen Henson1-1/+44
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson1-0/+5
2012-04-04ssl/ssl_ciph.c: interim solution for assertion in d1_pkt.c(444).Andy Polyakov1-6/+7
2012-01-16Support for fixed DH ciphersuites.Dr. Stephen Henson1-5/+3
2011-12-02Resolve a stack set-up race condition (if the list of compressionBodo Möller1-0/+1
2011-10-10disable GCM if not availableDr. Stephen Henson1-0/+2
2011-08-03Expand range of ctrls for AES GCM to support retrieval and setting ofDr. Stephen Henson1-7/+31
2011-07-25Add HMAC ECC ciphersuites from RFC5289. Include SHA384 PRF support andDr. Stephen Henson1-4/+21
2011-07-11ssl/ssl_ciph.c: allow to switch to predefined "composite" cipher/macAndy Polyakov1-1/+22
2011-05-19Implement FIPS_mode and FIPS_mode_setDr. Stephen Henson1-0/+7
2011-05-01Disable SHA256 if not supported.Dr. Stephen Henson1-0/+1
2011-04-29Initial incomplete TLS v1.2 support. New ciphersuites added, new versionDr. Stephen Henson1-6/+20
2011-04-29Initial "opaque SSL" framework. If an application definesDr. Stephen Henson1-0/+5
2011-03-12Add SRP support.Ben Laurie1-0/+8
2010-06-12Fix warnings.Ben Laurie1-4/+2
2009-09-12PR: 2025Dr. Stephen Henson1-1/+1
2009-04-07Update from 0.9.8-stable.Dr. Stephen Henson1-0/+1
2009-03-12Submitted by: Victor Duchovni <Victor.Duchovni@morganstanley.com>Dr. Stephen Henson1-1/+1
2009-01-05Fix compilation with -no-comp by adding some more #ifndef OPENSSL_NO_COMPLutz Jänicke1-0/+2
2008-12-29If we're going to return errors (no matter how stupid), then we shouldBen Laurie1-0/+3
2008-12-20Make no-engine work again.Dr. Stephen Henson1-3/+23
2008-11-24Stop warning about different const qualifiers.Dr. Stephen Henson1-1/+1
2008-10-29Fix warning.Ben Laurie1-3/+3
2008-10-27Win32 fixes... add new directory to build system. Fix warnings.Dr. Stephen Henson1-1/+1
2008-10-12Type-checked (and modern C compliant) OBJ_bsearch.Ben Laurie1-10/+9
2008-09-10Add SSL_FIPS flag for FIPS 140-2 approved ciphersuites and add a newDr. Stephen Henson1-0/+2
2007-10-261. Changes for s_client.c to make it return non-zero exit code in caseDr. Stephen Henson1-2/+4
2007-09-07Change safestack reimplementation to match 0.9.8.Dr. Stephen Henson1-1/+1
2007-08-31Update ssl code to support digests other than MD5+SHA1 in handshake.Dr. Stephen Henson1-13/+54
2007-06-04Update ssl library to support EVP_PKEY MAC API. Include generic MAC support.Dr. Stephen Henson1-7/+66
2007-04-23Add SEED encryption algorithm.Bodo Möller1-2/+13
2007-03-23Stage 1 GOST ciphersuite support.Dr. Stephen Henson1-2/+9
2007-02-21prefer SHA1 over MD5 (this affects the Kerberos ciphersuites)Bodo Möller1-2/+5
2007-02-20SSL_kKRB5 ciphersuites shouldn't be preferred by defaultBodo Möller1-0/+1
generated by cgit v1.1 at 2024-07-13 20:16:14 +0000