Todd Short
|
b67cb09f8d
Add support for compressed certificates (RFC8879)
|
%!s(int64=3) %!d(string=hai) anos |
Richard Levitte
|
e077455e9e
Stop raising ERR_R_MALLOC_FAILURE in most places
|
%!s(int64=2) %!d(string=hai) anos |
Tomas Mraz
|
38b051a1fe
SSL object refactoring using SSL_CONNECTION object
|
%!s(int64=2) %!d(string=hai) anos |
Pauli
|
7bf2e4d7f0
tls: ban SSL3, TLS1, TLS1.1 and DTLS1.0 at security level one and above
|
%!s(int64=2) %!d(string=hai) anos |
Matt Caswell
|
fecb3aae22
Update copyright year
|
%!s(int64=2) %!d(string=hai) anos |
Hugo Landau
|
948cf52179
Add SSL_(CTX_)?get0_(verify|chain)_cert_store functions
|
%!s(int64=2) %!d(string=hai) anos |
Nicola Tuveri
|
b139a95665
[ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3
|
%!s(int64=2) %!d(string=hai) anos |
Nicola Tuveri
|
66914fc024
[ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH alias
|
%!s(int64=2) %!d(string=hai) anos |
Dr. David von Oheimb
|
79b2a2f2ee
add OSSL_STACK_OF_X509_free() for commonly used pattern
|
%!s(int64=2) %!d(string=hai) anos |
Matt Caswell
|
c1c1bb7c5e
Fix invalid handling of verify errors in libssl
|
%!s(int64=3) %!d(string=hai) anos |
Peiwei Hu
|
e3f0362407
BIO_read_filename: fix return check
|
%!s(int64=3) %!d(string=hai) anos |
slontis
|
c3b5fa4ab7
Change TLS RC4 cipher strength check to be data driven.
|
%!s(int64=3) %!d(string=hai) anos |
Hubert Kario
|
657489e812
cross-reference the DH and RSA SECLEVEL to level of security mappings
|
%!s(int64=3) %!d(string=hai) anos |
Pauli
|
d7b5c648d6
ssl: do not choose auto DH groups that are weaker than the security level
|
%!s(int64=3) %!d(string=hai) anos |
Shane Lontis
|
4e4ae84056
Fix NULL access in ssl_build_cert_chain() when ctx is NULL.
|
%!s(int64=3) %!d(string=hai) anos |
Matt Caswell
|
5b64ce89b0
Remove OPENSSL_NO_DH guards from libssl
|
%!s(int64=3) %!d(string=hai) anos |
Richard Levitte
|
4333b89f50
Update copyright year
|
%!s(int64=3) %!d(string=hai) anos |
Dr. David von Oheimb
|
bf973d0697
Add X509_NAME_hash_ex() to be able to check if it failed due to unsupported SHA1
|
%!s(int64=3) %!d(string=hai) anos |
Matt Caswell
|
13c453728c
Only disabled what we need to in a no-dh build
|
%!s(int64=4) %!d(string=hai) anos |
Richard Levitte
|
c48ffbcca1
SSL: refactor all SSLfatal() calls
|
%!s(int64=4) %!d(string=hai) anos |
Richard Levitte
|
6849b73ccc
Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call
|
%!s(int64=4) %!d(string=hai) anos |
Dr. Matthias St. Pierre
|
b425001010
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX
|
%!s(int64=4) %!d(string=hai) anos |
Matt Caswell
|
d8652be06e
Run the withlibctx.pl script
|
%!s(int64=4) %!d(string=hai) anos |
Matt Caswell
|
e6623cfbff
Fix safestack issues in x509.h
|
%!s(int64=4) %!d(string=hai) anos |
Shane Lontis
|
6725682d77
Add X509 related libctx changes.
|
%!s(int64=4) %!d(string=hai) anos |
Richard Levitte
|
92dc275f95
SSL: refactor ssl_cert_lookup_by_pkey() to work with provider side keys
|
%!s(int64=4) %!d(string=hai) anos |
Pauli
|
64e54bf5c6
coverity 1462581 Dereference after null check
|
%!s(int64=4) %!d(string=hai) anos |
Rich Salz
|
852c2ed260
In OpenSSL builds, declare STACK for datatypes ...
|
%!s(int64=4) %!d(string=hai) anos |
Matt Caswell
|
33388b44b6
Update copyright year
|
%!s(int64=4) %!d(string=hai) anos |
Matt Caswell
|
a959b4fa97
Use X509_STORE_CTX_new_with_libctx() in libssl
|
%!s(int64=4) %!d(string=hai) anos |