wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Dr. Stephen Henson d15d17bb64 Check SRP parameters early. 
Check SRP parameters when they are received so we can send back an
appropriate alert.
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
2014-08-06 20:27:51 +01:00
..
.cvsignore
bio_ssl.c
d1_both.c Remove some duplicate DTLS code. 2014-08-06 20:27:51 +01:00
d1_clnt.c Fix DTLS anonymous EC(DH) denial of service 2014-08-06 20:27:51 +01:00
d1_enc.c Update DTLS code to match CBC decoding in TLS. 2013-01-28 17:34:33 +00:00
d1_lib.c Free up s->d1->buffered_app_data.q properly. 2014-06-02 14:40:18 +01:00
d1_meth.c
d1_pkt.c Added SSLErr call for internal error in dtls1_buffer_record 2014-06-01 21:38:01 +01:00
d1_srtp.c ssl/*: fix linking errors with no-srtp. 2013-02-09 19:52:07 +01:00
d1_srvr.c Fix DTLS certificate requesting code. 2014-07-15 18:23:44 +01:00
dtls1.h
heartbeat_test.c Add conditional unit testing interface. 2014-07-24 19:43:25 +01:00
install-ssl.com
kssl.c
kssl.h Fix for WIN32 builds with KRB5 2014-02-26 15:33:09 +00:00
kssl_lcl.h
Makefile make update 2014-08-01 21:23:49 +01:00
s2_clnt.c Add and use a constant-time memcmp. 2013-01-28 17:30:38 +00:00
s2_enc.c
s2_lib.c Update strength_bits for 3DES. 2014-06-09 12:09:49 +01:00
s2_meth.c
s2_pkt.c Add and use a constant-time memcmp. 2013-01-28 17:30:38 +00:00
s2_srvr.c
s3_both.c Fix for TLS record tampering bug CVE-2013-4353 2014-01-06 14:35:04 +00:00
s3_cbc.c Check DTLS_BAD_VER for version number. 2013-02-12 15:16:05 +00:00
s3_clnt.c Check SRP parameters early. 2014-08-06 20:27:51 +01:00
s3_enc.c Fixed incorrect return code handling in ssl3_final_finish_mac. 2014-06-13 15:53:29 +01:00
s3_lib.c SRP ciphersuite correction. 2014-06-09 12:09:49 +01:00
s3_meth.c
s3_pkt.c Remove redundant check. 2014-06-27 23:18:21 +01:00
s3_srvr.c Check SRP parameters early. 2014-08-06 20:27:51 +01:00
s23_clnt.c Fix warning 2014-01-08 13:36:27 +00:00
s23_lib.c Don't advertise ECC ciphersuits in SSLv2 compatible client hello. 2014-06-27 16:52:05 +01:00
s23_meth.c
s23_pkt.c
s23_srvr.c Fix protocol downgrade bug in case of fragmented packets 2014-08-06 20:27:51 +01:00
srtp.h
ssl-lib.com VMS build fix #2. 2014-04-08 17:23:03 +01:00
ssl.h Check SRP parameters early. 2014-08-06 20:27:51 +01:00
ssl2.h
ssl3.h Fix for CVE-2014-0224 2014-06-05 09:04:27 +01:00
ssl23.h
ssl_algs.c e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. 2013-02-02 19:35:09 +01:00
ssl_asn1.c fix coverity issue 966597 - error line is not always initialised 2014-05-08 00:00:08 +01:00
ssl_cert.c
ssl_ciph.c Use more common name for GOST key exchange. 2014-07-14 18:31:54 +01:00
ssl_err.c Check SRP parameters early. 2014-08-06 20:27:51 +01:00
ssl_err2.c
ssl_lib.c Fix SRP ciphersuite DoS vulnerability. 2014-08-06 20:27:51 +01:00
ssl_locl.h Check SRP parameters early. 2014-08-06 20:27:51 +01:00
ssl_rsa.c
ssl_sess.c
ssl_stat.c Don't disable state strings with no-ssl2 2014-06-28 00:56:42 +01:00
ssl_task.c
ssl_txt.c
ssl_utst.c Add conditional unit testing interface. 2014-07-24 19:43:25 +01:00
ssltest.c Fix in ssltest is no-ssl2 configured 2013-02-11 18:17:50 +00:00
t1_clnt.c
t1_enc.c Fix compilation with -DSSL_DEBUG -DTLS_DEBUG -DKSSL_DEBUG 2014-06-28 00:41:49 +01:00
t1_lib.c Fix race condition in ssl_parse_serverhello_tlsext 2014-08-06 20:27:51 +01:00
t1_meth.c
t1_reneg.c
t1_srvr.c
tls1.h Set TLS padding extension value. 2014-04-05 20:52:59 +01:00
tls_srp.c Check SRP parameters early. 2014-08-06 20:27:51 +01:00