 Richard Levitte
|
a01fc63c11
Have ssl3_send_certificate_request() change the state to SSL3_ST_SW_CERT_REQ_B.
|
21 anos atrás |
 Dr. Stephen Henson
|
3158c87a02
Only accept a client certificate if the server requests
|
21 anos atrás |
 Bodo Möller
|
702eb4dc0a
tolerate extra data at end of client hello for SSL 3.0
|
21 anos atrás |
|
Bodo Möller
|
ef42d6a4ed
countermeasure against new Klima-Pokorny-Rosa atack
|
22 anos atrás |
|
Richard Levitte
|
6bad9d0522
A few more memset()s converted to OPENSSL_cleanse().
|
22 anos atrás |
|
Richard Levitte
|
920b700d4a
Cleanse memory using the new OPENSSL_cleanse() function.
|
22 anos atrás |
|
Bodo Möller
|
96eef150d6
increase permissible message length so that we can handle
|
22 anos atrás |
|
Bodo Möller
|
af4396e589
really fix race conditions
|
22 anos atrás |
|
Bodo Möller
|
924b6006d7
really fix race condition
|
22 anos atrás |
|
Bodo Möller
|
517a0e7fa0
get rid of OpenSSLDie
|
22 anos atrás |
 Lutz Jänicke
|
bb41724483
OpenSSL Security Advisory [30 July 2002]
|
22 anos atrás |
|
Bodo Möller
|
82c77c1b32
Implement known-IV countermeasure.
|
23 anos atrás |
|
Bodo Möller
|
19fa8cfe5a
Bugfix: In ssl3_accept, don't use a local variable 'got_new_session'
|
23 anos atrás |
|
Bodo Möller
|
0b9925be4f
Consistency with s2_... and s23_... variants (no real functional
|
23 anos atrás |
|
Bodo Möller
|
38b3e9edde
Fix SSL handshake functions and SSL_clear() such that SSL_clear()
|
23 anos atrás |
|
Bodo Möller
|
9ccadf1c6f
In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if
|
23 anos atrás |
|
Bodo Möller
|
1147fa5a5f
the previous commit accidentily removed 'ret = 1' from the SSL_ST_OK
|
23 anos atrás |
|
Bodo Möller
|
f8845509b6
Disable session related stuff in SSL_ST_OK case of ssl3_accept if we
|
23 anos atrás |
|
Bodo Möller
|
3f98e1dd11
Bugfix: correct cleanup after sending a HelloRequest
|
23 anos atrás |
|
Bodo Möller
|
e53afa9e9b
fix ssl3_accept: don't call ssl_init_wbio_buffer() in HelloRequest case
|
23 anos atrás |
|
Bodo Möller
|
10981a5c84
add comment
|
23 anos atrás |
|
Bodo Möller
|
9cf8888149
Increase permissible ClientKeyExchange message length as in main
|
23 anos atrás |
|
Lutz Jänicke
|
a04baf9b5c
Allow client certificate lists > 16kB ("Douglas E. Engert" <deengert@anl.gov>.)
|
23 anos atrás |
|
Bodo Möller
|
83583e9479
Fix Bleichenbacher PKCS #1 1.5 countermeasure.
|
23 anos atrás |
|
Dr. Stephen Henson
|
de0b3ab7fb
Zero the premaster secret after deriving the master secret in DH
|
24 anos atrás |
|
Bodo Möller
|
bbb8de0966
Avoid abort() throughout the library, except when preprocessor
|
24 anos atrás |
|
Bodo Möller
|
93d8bfcdc4
typo
|
24 anos atrás |
|
Bodo Möller
|
2c05c494c0
Implement SSL_OP_TLS_ROLLBACK_BUG for servers.
|
24 anos atrás |
|
Bodo Möller
|
98e04f9eeb
Comments for SSL_get_peer_cert_chain inconsistency.
|
25 anos atrás |
|
Dr. Stephen Henson
|
fbb41ae0ad
Allow code which calls RSA temp key callback to cope
|
25 anos atrás |
