| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Remove support for fixed ECDH cipher suites - these is not widely supported | jsing | 2016-10-19 | 1 | -14/+5 |
| * | Merge a memleak fix from BoringSSL 6b6e0b2: | mmcc | 2016-03-27 | 1 | -1/+3 |
| * | X509_free(3) is NULL-safe, so remove NULL checks before its calls. | mmcc | 2016-03-11 | 1 | -7/+4 |
| * | s/ssl3_client_kex/ssl3_send_client_kex/ for consistency with the caller. | jsing | 2015-10-02 | 1 | -9/+11 |
| * | Stop generating private keys in a network buffer. | jsing | 2015-09-13 | 1 | -29/+29 |
| * | Use ECDH_size() instead of rolling our own. | jsing | 2015-09-13 | 1 | -6/+5 |
| * | Split ssl3_send_client_key_exchange() (387 lines of code) into five | jsing | 2015-09-12 | 1 | -327/+351 |
| * | explicit_bzero() the GOST premaster secret. | jsing | 2015-09-12 | 1 | -2/+7 |
| * | Remove most of the SSLv3 version checks and a few TLS v1.0. | doug | 2015-09-12 | 1 | -39/+21 |
| * | Use explicit_bzero() instead of memset() when clearing private keys. | jsing | 2015-09-12 | 1 | -3/+4 |
| * | Pull variable assignment out from function call, fix indentation and set | jsing | 2015-09-12 | 1 | -8/+7 |
| * | style(9) and whitespace cleanups. | jsing | 2015-09-12 | 1 | -29/+25 |
| * | Rename functions that moved to t1_enc.c, with a tls1_ prefix instead of a | jsing | 2015-09-11 | 1 | -7/+7 |
| * | Correct spelling of OPENSSL_cleanse. | jsing | 2015-09-10 | 1 | -2/+2 |
| * | Replace dtls1_client_hello() with ssl3_client_hello() - both are basically | jsing | 2015-09-02 | 1 | -5/+22 |
| * | Remove the ssl_prepare_{client,server}hello_tlsext() functions, which are | jsing | 2015-09-01 | 1 | -6/+1 |
| * | Remove SSLv3 method data structs and unlink s3_meth.c from the build. | doug | 2015-08-29 | 1 | -40/+1 |
| * | Remove SSLv3 support from LibreSSL. | doug | 2015-08-27 | 1 | -15/+1 |
| * | Add linker warnings in case SSLv3_{,client,server}_method are referenced. | miod | 2015-07-29 | 1 | -1/+7 |
| * | Convert ssl3_get_certificate_request to CBS. | doug | 2015-07-19 | 1 | -31/+33 |
| * | check n before cbs_init, coverity - ID 125063 | beck | 2015-07-15 | 1 | -3/+9 |
| * | test for n<0 before use in CBS_init - mostly to shut up coverity. | beck | 2015-07-15 | 1 | -5/+16 |
| * | Flense out dead code, we don't do ecdhe_clnt_cert. | beck | 2015-07-15 | 1 | -98/+40 |
| * | Convert ssl3_get_cert_status to CBS. | doug | 2015-07-14 | 1 | -17/+26 |
| * | Convert ssl3_get_server_certificate to CBS. | doug | 2015-07-14 | 1 | -17/+18 |
| * | Stop using BUF_memdup() within the LibreSSL code base - it is correctly | jsing | 2015-06-24 | 1 | -3/+3 |
| * | Convert ssl3_get_new_session_ticket to CBS. | doug | 2015-06-20 | 1 | -24/+24 |
| * | Remove ancient SSL_OP_NETSCAPE_CA_DN_BUG from SSLeay days. | doug | 2015-06-15 | 1 | -18/+6 |
| * | Nuke the OPENSSL_MAX_TLS1_2_CIPHER_LENGTH hack - this has to be enabled at | jsing | 2015-03-31 | 1 | -11/+1 |
| * | Factor out the init_buf initialisation code, rather than duplicating it | jsing | 2015-03-27 | 1 | -19/+6 |
| * | delay EVP_MD_CTX_init so we don't forget to clean it up. | tedu | 2015-03-11 | 1 | -3/+4 |
| * | Reject DH keys sent by a server if they are considered too small; inspired | miod | 2015-03-08 | 1 | -1/+12 |
| * | Clean up the {get,put}_cipher_by_char() implementations. Also use | jsing | 2015-02-07 | 1 | -7/+5 |
| * | Add additional checks to ssl3_send_client_key_exchange() that ensures | jsing | 2015-02-06 | 1 | -18/+25 |
| * | Bring back the horrible API that is get_cipher_by_char/put_cipher_by_char. | jsing | 2015-02-06 | 1 | -1/+3 |
| * | Ensure that a ServerKeyExchange message is received if the selected cipher | jsing | 2015-01-23 | 1 | -5/+18 |
| * | Add error handling for EVP_DigestInit_ex(). | doug | 2014-12-15 | 1 | -4/+8 |
| * | Convert all of the straight forward client handshake handling code to use | jsing | 2014-12-14 | 1 | -53/+43 |
| * | Remove trailing whitespace. | jsing | 2014-12-14 | 1 | -2/+2 |
| * | unifdef OPENSSL_NO_NEXTPROTONEG, which is one of the last standing #ifndef | jsing | 2014-12-14 | 1 | -9/+1 |
| * | ssl3_init_finished_mac() calls BIO_new() which can fail since it in turn | jsing | 2014-12-10 | 1 | -2/+5 |
| * | Remove support for GOST R 34.10-94 signature authentication, along with | jsing | 2014-12-10 | 1 | -3/+1 |
| * | Remove client handling of RSA in ServerKeyExchange messages, along with | jsing | 2014-12-06 | 1 | -81/+14 |
| * | Ensure that sess_cert is not NULL at the start of | jsing | 2014-11-27 | 1 | -25/+9 |
| * | Fix a memory leak with pkey in client key exchange | doug | 2014-11-19 | 1 | -1/+2 |
| * | Update the GOST code in libssl, as contributed by Dmitry Eremin-Solenikov. | miod | 2014-11-18 | 1 | -20/+51 |
| * | Sort and group includes. | jsing | 2014-11-16 | 1 | -4/+7 |
| * | Use arc4random_buf() instead of RAND_bytes() or RAND_pseudo_bytes(). | jsing | 2014-10-18 | 1 | -7/+4 |
| * | Check that the specified curve is one of the client preferences. | jsing | 2014-09-27 | 1 | -4/+20 |
| * | remove obfuscating parens. man operator is your friend. | tedu | 2014-09-19 | 1 | -6/+6 |
