summaryrefslogtreecommitdiffstats
path: root/crypto/openssl/ssl/s3_lib.c
Commit message (Collapse)AuthorAgeFilesLines
* MFC: r306193jkim2016-09-221-18/+21
| | | | Merge OpenSSL 1.0.2u.
* Merge OpenSSL 1.0.2h.jkim2016-05-031-44/+44
|\ | | | | | | Relnotes: yes
* \ Merge OpenSSL 1.0.2g.jkim2016-03-011-15/+54
|\ \ | |/ | | | | Relnotes: yes
* | Merge OpenSSL 1.0.2f.jkim2016-01-281-15/+19
|\ \ | |/ | | | | Relnotes: yes
* | Merge OpenSSL 1.0.2e.jkim2015-12-031-1/+1
|\ \ | |/
* | Merge OpenSSL 1.0.2d.jkim2015-10-301-243/+413
|\ \ | |/
* | Merge OpenSSL 1.0.1m.jkim2015-03-201-3867/+3862
|\ \ | |/
* | Merge OpenSSL 1.0.1k.jkim2015-01-081-7/+9
|\ \ | |/
* | Merge OpenSSL 1.0.1j.jkim2014-10-151-4/+36
|\ \ | |/
* | Merge OpenSSL 1.0.1i.jkim2014-08-071-20/+20
|\ \ | |/
* | Merge OpenSSL 1.0.1f.jkim2014-01-221-3/+15
| | | | | | | | Approved by: so (delphij), benl (silence)
* | MFV r260399:delphij2014-01-071-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Apply vendor commits: 197e0ea Fix for TLS record tampering bug. (CVE-2013-4353). 3462896 For DTLS we might need to retransmit messages from the previous session so keep a copy of write context in DTLS retransmission buffers instead of replacing it after sending CCS. (CVE-2013-6450). ca98926 When deciding whether to use TLS 1.2 PRF and record hash algorithms use the version number in the corresponding SSL_METHOD structure instead of the SSL structure. The SSL structure version is sometimes inaccurate. Note: OpenSSL 1.0.2 and later effectively do this already. (CVE-2013-6449). Security: CVE-2013-4353 Security: CVE-2013-6449 Security: CVE-2013-6450
* | Merge OpenSSL 1.0.1e.jkim2013-02-131-8/+8
|\ \ | |/ | | | | Approved by: secteam (simon), benl (silence)
* | Merge OpenSSL 1.0.1c.jkim2012-07-121-767/+2406
|\ \ | |/ | | | | Approved by: benl (maintainer)
* | Merge OpenSSL 0.9.8x.jkim2012-06-271-1/+0
| | | | | | | | | | | | Reviewed by: stas Approved by: benl (maintainer) MFC after: 3 days
* | Fix SSL memory handlig for (EC)DH cipher suites, in particular fordelphij2011-09-081-0/+6
| | | | | | | | | | | | | | | | | | multi-threaded use of ECDH. Security: CVE-2011-3210 Reviewed by: stas Obtained from: OpenSSL CVS Approved by: re (kib)
* | Merge OpenSSL 0.9.8m into head.simon2010-03-131-4/+16
|\ \ | |/ | | | | | | | | | | | | | | | | | | This also "reverts" some FreeBSD local changes so we should now be back to using entirely stock OpenSSL. The local changes were simple $FreeBSD$ lines additions, which were required in the CVS days, and the patch for FreeBSD-SA-09:15.ssl which has been superseded with OpenSSL 0.9.8m's RFC5746 'TLS renegotiation extension' support. MFC after: 3 weeks
* | Disable SSL renegotiation in order to protect against a seriouscperciva2009-12-031-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | protocol flaw. [09:15] Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16] Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17] Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate
* | Merge OpenSSL 0.9.8k into head.simon2009-06-141-39/+256
|\ \ | |/ | | | | Approved by: re
| * Flatten OpenSSL vendor tree.simon2008-08-231-2406/+0
|/
* Vendor import of OpenSSL 0.9.8e.simon2007-03-151-5/+5
|
* Vendor import of OpenSSL 0.9.8d.simon2006-10-011-2/+172
|
* Vendor import of OpenSSL 0.9.8bsimon2006-07-291-311/+748
|
* Vendor import of OpenSSL 0.9.7e.nectar2005-02-251-33/+33
|
* Vendor import of OpenSSL 0.9.7d.nectar2004-03-171-0/+2
|
* Vendor import of OpenSSL release 0.9.7. This release includesmarkm2003-01-281-50/+461
| | | | support for AES and OpenBSD's hardware crypto.
* Import of OpenSSL 0.9.6e.nectar2002-07-301-4/+4
|
* Import of OpenSSL 0.9.6d.nectar2002-07-301-13/+20
|
* Initial import of OpenSSL 0.9.6akris2001-05-201-1/+1
|
* Import of OpenSSL 0.9.6-STABLE snapshot dated 2001-02-10kris2001-02-181-24/+64
|
* Initial import of OpenSSL 0.9.6kris2000-11-131-7/+7
|
* Initial import of OpenSSL 0.9.5akris2000-04-131-101/+333
|
* Initial import of OpenSSL 0.9.4, sans IDEA and RSA code for patentkris2000-01-101-0/+1107
infringement reasons.
OpenPOWER on IntegriCloud