openssl/ssl
Dr. Stephen Henson 25128a11fb Fix bug in CVE-2011-4619: check we have really received a client hello
before rejecting multiple SGC restarts.
2012-02-16 15:21:46 +00:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
bio_ssl.c PR: 2529 2011-05-25 15:15:52 +00:00
d1_both.c PR: 2628 2011-10-27 13:06:34 +00:00
d1_clnt.c PR: 2505 2011-05-25 12:24:26 +00:00
d1_enc.c Since DTLS 1.0 is based on TLS 1.1 we should never return a decryption_failed 2011-01-04 19:33:22 +00:00
d1_lib.c PR: 2602 2011-09-23 13:35:19 +00:00
d1_meth.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
d1_pkt.c Fix for DTLS DoS issue introduced by fix for CVE-2011-4109. 2012-01-18 13:36:04 +00:00
d1_srvr.c PR: 2628 2011-10-27 13:01:08 +00:00
dtls1.h PR: 2230 2010-04-14 00:17:29 +00:00
install-ssl.com Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:44:53 +00:00
kssl.c Submitted by: Tomas Hoger <thoger@redhat.com> 2010-03-03 15:41:00 +00:00
kssl.h Make kerberos ciphersuite code work with newer header files 2005-04-09 23:55:55 +00:00
kssl_lcl.h Some fixes for kerberos builds. 2009-04-21 22:20:12 +00:00
Makefile make update 2010-12-02 18:26:12 +00:00
s2_clnt.c Updatde from stable branch. 2009-01-07 23:44:27 +00:00
s2_enc.c Update ssl library to support EVP_PKEY MAC API. Include generic MAC support. 2007-06-04 17:04:40 +00:00
s2_lib.c Make no-ssl2 work including on Win32 builds. 2009-04-04 17:57:34 +00:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Use new common flags and fix resulting warnings. 2009-02-15 14:08:51 +00:00
s2_srvr.c Assorted bugfixes: 2011-02-03 12:04:40 +00:00
s3_both.c PR: 1731 and maybe 2197 2010-03-24 23:16:49 +00:00
s3_clnt.c PR: 2326 2011-12-26 19:38:19 +00:00
s3_enc.c Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576) [include source patch this time!] 2012-01-04 15:38:54 +00:00
s3_lib.c In ssl3_clear, preserve s3->init_extra along with s3->rbuf. 2011-10-13 13:05:12 +00:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c PR: 2533 2011-05-25 15:21:12 +00:00
s3_srvr.c Fix bug in CVE-2011-4619: check we have really received a client hello 2012-02-16 15:21:46 +00:00
s23_clnt.c PR: 2171 2010-02-16 14:20:40 +00:00
s23_lib.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
s23_meth.c recent changes from 0.9.8: fix cipher list order in s3_lib.c, 2006-01-15 17:35:28 +00:00
s23_pkt.c Reorder inclusion of header files: 2002-07-10 07:01:54 +00:00
s23_srvr.c PR: 2171 2010-02-16 14:20:40 +00:00
ssl-lib.com Corrections to the VMS build system. 2011-03-25 16:21:39 +00:00
ssl.h Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619) 2012-01-04 15:27:54 +00:00
ssl2.h Implement msg_callback for SSL 2.0. 2001-11-10 01:16:28 +00:00
ssl3.h add missing part for SGC restart fix (CVE-2011-4619) 2012-01-04 16:46:10 +00:00
ssl23.h Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 10:56:39 +00:00
ssl_algs.c Add SHA2 algorithms to SSL_library_init(). Although these aren't used 2010-04-07 13:18:30 +00:00
ssl_asn1.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
ssl_cert.c PR: 1731 and maybe 2197 2010-03-24 23:16:49 +00:00
ssl_ciph.c Resolve a stack set-up race condition (if the list of compression 2011-12-02 12:51:05 +00:00
ssl_err.c Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619) 2012-01-04 15:27:54 +00:00
ssl_err2.c Use new-style system-id macros everywhere possible. I hope I haven't 2001-02-20 08:13:47 +00:00
ssl_lib.c Fix for builds without DTLS support. 2012-01-05 10:22:23 +00:00
ssl_locl.h PR: 2602 2011-09-23 13:35:19 +00:00
ssl_rsa.c PR: 1411 2009-09-12 23:09:26 +00:00
ssl_sess.c PR: 2160 2010-02-01 16:49:42 +00:00
ssl_stat.c PR: 2133 2010-01-16 19:20:38 +00:00
ssl_task.c Security fixes brought forward from 0.9.7. 2002-11-13 15:43:43 +00:00
ssl_txt.c Update from 0.9.8-stable. 2009-06-30 22:26:28 +00:00
ssltest.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
t1_clnt.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
t1_enc.c Fix warnings (From HEAD, original patch by Ben). 2010-06-15 17:25:15 +00:00
t1_lib.c Submitted by: Adam Langley <agl@chromium.org> 2012-01-04 14:24:48 +00:00
t1_meth.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:59:09 +00:00
t1_srvr.c Let the TLSv1_method() etc. functions return a const SSL_METHOD 2005-08-14 21:48:33 +00:00
tls1.h add missing parts of reneg port, fix apps patch 2009-11-11 14:51:29 +00:00