wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/include/internal
History
Viktor Dukhovni 5ae4ceb92c Perform DANE-EE(3) name checks by default 
In light of potential UKS (unknown key share) attacks on some
applications, primarily browsers, despite RFC761, name checks are
by default applied with DANE-EE(3) TLSA records.  Applications for
which UKS is not a problem can optionally disable DANE-EE(3) name
checks via the new SSL_CTX_dane_set_flags() and friends.

Reviewed-by: Rich Salz <rsalz@openssl.org>
2016-07-12 10:16:34 -04:00
..
bio.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
comp.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
conf.h RT4562: Fix misleading doc on OPENSSL_config 2016-06-14 12:30:37 -04:00
constant_time_locl.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
dane.h Perform DANE-EE(3) name checks by default 2016-07-12 10:16:34 -04:00
dso.h Remove unused error/function codes. 2016-05-23 15:04:23 -04:00
err.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
numbers.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
o_dir.h Copyright consolidation 03/10 2016-05-17 14:24:17 -04:00
o_str.h Remove internal functions OPENSSL_strcasecmp and OPENSSL_strncasecmp 2016-05-28 02:15:04 +02:00