提交 · 5e374d2ee85992523a3eafd7dfa8095e51b1a9a0 · OpenHarmony / Third Party Openssl

13 3月, 2011 1 次提交
- D
  
  Remove redundant check to stop compiler warning. · 5e374d2e
  由 Dr. Stephen Henson 提交于 3月 12, 2011
  
  5e374d2e
16 2月, 2010 1 次提交

PR: 2171 · 8d934c25

由 Dr. Stephen Henson 提交于 2月 16, 2010

Submitted by: Tomas Mraz <tmraz@redhat.com>

Since SSLv2 doesn't support renegotiation at all don't reject it if
legacy renegotiation isn't enabled.

Also can now use SSL2 compatible client hello because RFC5746 supports it.

8d934c25

28 12月, 2009 1 次提交
- D
  
  return v1.1 methods for client/server · 76774c5e
  由 Dr. Stephen Henson 提交于 12月 28, 2009
  
  76774c5e
07 12月, 2009 1 次提交
- D
  
  Initial experimental TLSv1.1 support · 637f374a
  由 Dr. Stephen Henson 提交于 12月 07, 2009
  
  637f374a
18 11月, 2009 1 次提交
- D
  
  Don't use SSLv2 compatible client hello if we don't tolerate legacy renegotiation · 4d09323a
  由 Dr. Stephen Henson 提交于 11月 18, 2009
  
  4d09323a
05 8月, 2009 1 次提交
- D
  
  Update from 1.0.0-stable. · f10f4447
  由 Dr. Stephen Henson 提交于 8月 05, 2009
  
  f10f4447
09 4月, 2009 1 次提交
- D
  
  Update from 1.0.0-stable · 22c98d4a
  由 Dr. Stephen Henson 提交于 4月 08, 2009
  
  22c98d4a
30 12月, 2008 1 次提交
- B
  
  Document dead code. · d41c785d
  由 Ben Laurie 提交于 12月 30, 2008
  
  d41c785d
03 9月, 2008 1 次提交
- D
  
  Make no-tlsext compile. · 0702150f
  由 Dr. Stephen Henson 提交于 9月 03, 2008
  
  0702150f
03 6月, 2008 1 次提交
- B
  
  Memory saving patch. · 8671b898
  由 Ben Laurie 提交于 6月 03, 2008
  
  8671b898
27 9月, 2007 1 次提交
- D
  
  Support for certificate status TLS extension. · 67c8e7f4
  由 Dr. Stephen Henson 提交于 9月 26, 2007
  
  67c8e7f4
21 9月, 2007 1 次提交

Implement the Opaque PRF Input TLS extension · 761772d7

由 Bodo Möller 提交于 9月 21, 2007

(draft-rescorla-tls-opaque-prf-input-00.txt), and do some cleanups and
bugfixes on the way.  In particular, this fixes the buffer bounds
checks in ssl_add_clienthello_tlsext() and in ssl_add_serverhello_tlsext().

Note that the opaque PRF Input TLS extension is not compiled by default;
see CHANGES.

761772d7

29 11月, 2006 1 次提交
- B
  
  fix support for receiving fragmented handshake messages · 1e24b3a0
  由 Bodo Möller 提交于 11月 29, 2006
  
  1e24b3a0
11 1月, 2006 2 次提交
- B
  
  improvements for alert handling · 6ad47e83
  由 Bodo Möller 提交于 1月 11, 2006
  
  6ad47e83
- B
  More TLS extension related changes. · 241520e6
  由 Bodo Möller 提交于 1月 11, 2006
```
Submitted by: Peter Sylvester
```
  241520e6
09 1月, 2006 1 次提交
- B
  
  Some error code cleanups (SSL lib. used SSL_R_... codes reserved for alerts) · 739a543e
  由 Bodo Möller 提交于 1月 08, 2006
  
  739a543e
03 1月, 2006 2 次提交
- B
  Various changes in the new TLS extension code, including the following: · f1fd4544
  由 Bodo Möller 提交于 1月 03, 2006
```
 - fix indentation
 - rename some functions and macros
 - fix up confusion between SSL_ERROR_... and SSL_AD_... values
```
  f1fd4544
- B
  Support TLS extensions (specifically, HostName) · ed3883d2
  由 Bodo Möller 提交于 1月 02, 2006
```
Submitted by: Peter Sylvester
```
  ed3883d2
06 12月, 2005 1 次提交
- D
  
  Avoid warnings on VC++ 2005. · 7bbcb2f6
  由 Dr. Stephen Henson 提交于 12月 05, 2005
  
  7bbcb2f6
08 10月, 2005 1 次提交
- D
  New option SSL_OP_NO_COMP to disable compression. New ctrls to set · 566dda07
  由 Dr. Stephen Henson 提交于 10月 08, 2005
```
maximum send fragment size. Allocate I/O buffers accordingly.
```
  566dda07
15 8月, 2005 1 次提交
- N
  Let the TLSv1_method() etc. functions return a const SSL_METHOD · 4ebb342f
  由 Nils Larsch 提交于 8月 14, 2005
```
pointer and make the SSL_METHOD parameter in SSL_CTX_new,
SSL_CTX_set_ssl_version and SSL_set_ssl_method const.
```
  4ebb342f
06 8月, 2005 1 次提交
- D
  Initialize SSL_METHOD structures at compile time. This removes the need · f3b656b2
  由 Dr. Stephen Henson 提交于 8月 05, 2005
```
for locking code. The CRYPTO_LOCK_SSL_METHOD lock is now no longer used.
```
  f3b656b2
12 5月, 2005 2 次提交
- B
  fix msg_callback() arguments for SSL 2.0 compatible client hello · 3f19bbf4
  由 Bodo Möller 提交于 5月 12, 2005
```
(previous revision got this wrong)
```
  3f19bbf4
- B
  Don't use the SSL 2.0 Client Hello format if SSL 2.0 is disabled · c6c2e313
  由 Bodo Möller 提交于 5月 11, 2005
```
with the SSL_OP_NO_SSLv2 option.
```
  c6c2e313
30 4月, 2005 1 次提交
- N
  
  check return value of RAND_pseudo_bytes; backport from the stable branch · 7c7667b8
  由 Nils Larsch 提交于 4月 29, 2005
  
  7c7667b8
22 12月, 2002 1 次提交

Stop a possible memory leak. · 8d6ad9e3

由 Richard Levitte 提交于 12月 21, 2002

(I wonder why s2_connect() handles the initial buffer allocation slightly
differently...)
PR: 416

8d6ad9e3

13 11月, 2002 1 次提交
- B
  
  Security fixes brought forward from 0.9.7. · 54a656ef
  由 Ben Laurie 提交于 11月 13, 2002
  
  54a656ef
25 9月, 2002 1 次提交
- B
  really fix race conditions · b8565a9a
  由 Bodo Möller 提交于 9月 25, 2002
```
Submitted by: "Patrick McCormick" <patrick@tellme.com>

PR: 262
PR: 291
```
  b8565a9a
23 9月, 2002 1 次提交
- B
  really fix race condition · e78f1378
  由 Bodo Möller 提交于 9月 23, 2002
```
PR: 262
```
  e78f1378
10 7月, 2002 1 次提交

Reorder inclusion of header files: · 7b63c0fa

由 Lutz Jänicke 提交于 7月 10, 2002

des_old.h redefines crypt:
#define crypt(b,s)\
        DES_crypt((b),(s))

This scheme leads to failure, if header files with the OS's true definition
of crypt() are processed _after_ des_old.h was processed. This is e.g. the
case on HP-UX with unistd.h.
As evp.h now again includes des.h (which includes des_old.h), this problem
only came up after this modification.
Solution: move header files (indirectly) including e_os.h before the header
files (indirectly) including evp.h.
Submitted by:
Reviewed by:
PR:

7b63c0fa

12 1月, 2002 1 次提交
- B
  
  Prototype info function. · 45d87a1f
  由 Ben Laurie 提交于 1月 12, 2002
  
  45d87a1f
10 11月, 2001 1 次提交
- B
  Implement msg_callback for SSL 2.0. · cf82191d
  由 Bodo Möller 提交于 11月 10, 2001
```
Important SSL 2.0 bugfixes (bugs found while implementing msg_callback).
```
  cf82191d
25 10月, 2001 1 次提交
- B
  Fix SSL handshake functions and SSL_clear() such that SSL_clear() · 979689aa
  由 Bodo Möller 提交于 10月 24, 2001
```
never resets s->method to s->ctx->method when called from within
one of the SSL handshake functions.
```
  979689aa
20 2月, 2001 1 次提交

Use new-style system-id macros everywhere possible. I hope I haven't · bc36ee62

由 Richard Levitte 提交于 2月 20, 2001

missed any.

This compiles and runs on Linux, and external applications have no
problems with it.  The definite test will be to build this on VMS.

bc36ee62

30 7月, 2000 2 次提交

B

Document rollback issues. · aa826d88
由 Bodo Möller 提交于 7月 29, 2000

aa826d88

Fix SSL 2.0 rollback checking: The previous implementation of the · 37569e64

由 Bodo Möller 提交于 7月 29, 2000

test was never triggered due to an off-by-one error.

In s23_clnt.c, don't use special rollback-attack detection padding
(RSA_SSLV23_PADDING) if SSL 2.0 is the only protocol enabled in the
client; similarly, in s23_srvr.c, don't do the rollback check if
SSL 2.0 is the only protocol enabled in the server.

37569e64

21 1月, 2000 1 次提交
- U
  
  Check RAND_bytes() return value or use RAND_pseudo_bytes(). · e7f97e2d
  由 Ulf Möller 提交于 1月 21, 2000
  
  e7f97e2d
17 1月, 2000 1 次提交

Add missing #ifndefs that caused missing symbols when building libssl · aa82db4f

由 Ulf Möller 提交于 1月 16, 2000

as a shared library without RSA.  Use #ifndef NO_SSL2 instead of
NO_RSA in ssl/s2*.c.

Submitted by: Kris Kennaway <kris@hub.freebsd.org>
Modified by Ulf Möller

aa82db4f

14 1月, 2000 1 次提交

Precautions against using the PRNG uninitialized: RAND_bytes() now · eb952088

由 Ulf Möller 提交于 1月 13, 2000

returns int (1 = ok, 0 = not seeded). New function RAND_add() is the
same as RAND_seed() but takes an estimate of the entropy as an additional
argument.

eb952088

11 6月, 1999 1 次提交
- B
  
  Avoid warnings. · d58d092b
  由 Bodo Möller 提交于 6月 10, 1999
  
  d58d092b

OpenHarmony / Third Party Openssl 大约 1 年 前同步成功

OpenHarmony / Third Party Openssl
大约 1 年前同步成功