Commit History

Autor SHA1 Mensaxe Data
  Todd Short b67cb09f8d Add support for compressed certificates (RFC8879) %!s(int64=3) %!d(string=hai) anos
  Richard Levitte e077455e9e Stop raising ERR_R_MALLOC_FAILURE in most places %!s(int64=2) %!d(string=hai) anos
  Tomas Mraz 38b051a1fe SSL object refactoring using SSL_CONNECTION object %!s(int64=2) %!d(string=hai) anos
  Pauli 7bf2e4d7f0 tls: ban SSL3, TLS1, TLS1.1 and DTLS1.0 at security level one and above %!s(int64=2) %!d(string=hai) anos
  Matt Caswell fecb3aae22 Update copyright year %!s(int64=2) %!d(string=hai) anos
  Hugo Landau 948cf52179 Add SSL_(CTX_)?get0_(verify|chain)_cert_store functions %!s(int64=2) %!d(string=hai) anos
  Nicola Tuveri b139a95665 [ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3 %!s(int64=2) %!d(string=hai) anos
  Nicola Tuveri 66914fc024 [ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH alias %!s(int64=2) %!d(string=hai) anos
  Dr. David von Oheimb 79b2a2f2ee add OSSL_STACK_OF_X509_free() for commonly used pattern %!s(int64=2) %!d(string=hai) anos
  Matt Caswell c1c1bb7c5e Fix invalid handling of verify errors in libssl %!s(int64=3) %!d(string=hai) anos
  Peiwei Hu e3f0362407 BIO_read_filename: fix return check %!s(int64=3) %!d(string=hai) anos
  slontis c3b5fa4ab7 Change TLS RC4 cipher strength check to be data driven. %!s(int64=3) %!d(string=hai) anos
  Hubert Kario 657489e812 cross-reference the DH and RSA SECLEVEL to level of security mappings %!s(int64=3) %!d(string=hai) anos
  Pauli d7b5c648d6 ssl: do not choose auto DH groups that are weaker than the security level %!s(int64=3) %!d(string=hai) anos
  Shane Lontis 4e4ae84056 Fix NULL access in ssl_build_cert_chain() when ctx is NULL. %!s(int64=3) %!d(string=hai) anos
  Matt Caswell 5b64ce89b0 Remove OPENSSL_NO_DH guards from libssl %!s(int64=3) %!d(string=hai) anos
  Richard Levitte 4333b89f50 Update copyright year %!s(int64=3) %!d(string=hai) anos
  Dr. David von Oheimb bf973d0697 Add X509_NAME_hash_ex() to be able to check if it failed due to unsupported SHA1 %!s(int64=3) %!d(string=hai) anos
  Matt Caswell 13c453728c Only disabled what we need to in a no-dh build %!s(int64=4) %!d(string=hai) anos
  Richard Levitte c48ffbcca1 SSL: refactor all SSLfatal() calls %!s(int64=4) %!d(string=hai) anos
  Richard Levitte 6849b73ccc Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call %!s(int64=4) %!d(string=hai) anos
  Dr. Matthias St. Pierre b425001010 Rename OPENSSL_CTX prefix to OSSL_LIB_CTX %!s(int64=4) %!d(string=hai) anos
  Matt Caswell d8652be06e Run the withlibctx.pl script %!s(int64=4) %!d(string=hai) anos
  Matt Caswell e6623cfbff Fix safestack issues in x509.h %!s(int64=4) %!d(string=hai) anos
  Shane Lontis 6725682d77 Add X509 related libctx changes. %!s(int64=4) %!d(string=hai) anos
  Richard Levitte 92dc275f95 SSL: refactor ssl_cert_lookup_by_pkey() to work with provider side keys %!s(int64=4) %!d(string=hai) anos
  Pauli 64e54bf5c6 coverity 1462581 Dereference after null check %!s(int64=4) %!d(string=hai) anos
  Rich Salz 852c2ed260 In OpenSSL builds, declare STACK for datatypes ... %!s(int64=4) %!d(string=hai) anos
  Matt Caswell 33388b44b6 Update copyright year %!s(int64=4) %!d(string=hai) anos
  Matt Caswell a959b4fa97 Use X509_STORE_CTX_new_with_libctx() in libssl %!s(int64=4) %!d(string=hai) anos