summaryrefslogtreecommitdiffstats
path: root/crypto/openssl/ssl/s3_srvr.c
Commit message (Collapse)AuthorAgeFilesLines
* Merge OpenSSL 1.0.1u.jkim2016-09-221-12/+15
|
* Merge OpenSSL 1.0.1r.jkim2016-01-281-15/+10
| | | | Relnotes: yes
* Merge OpenSSL 1.0.1q.jkim2015-12-031-27/+51
|
* MFC: r285329jkim2015-07-091-1/+1
| | | | | | | Merge OpenSSL 1.0.1p. Approved by: re (gjb) Relnotes: yes
* MFC: r284283jkim2015-06-111-77/+153
| | | | Merge OpenSSL 1.0.1n.
* MFC: r280297jkim2015-03-201-3324/+3203
| | | | | | Merge OpenSSL 1.0.1m. Relnotes: yes
* MFC: r276861, r276863jkim2015-01-091-41/+102
| | | | Merge OpenSSL 1.0.1k.
* MFC: r273144, r273146jkim2014-10-151-50/+63
| | | | | | Merge OpenSSL 1.0.1j. Relnotes: yes
* MFC: r269682jkim2014-08-071-1/+8
| | | | Merge OpenSSL 1.0.1i.
* MFC: r267256jkim2014-06-091-16/+12
| | | | | | Merge OpenSSL 1.0.1h. Approved by: so (delphij)
* Fix OpenSSL multiple vulnerabilities.delphij2014-06-051-0/+5
| | | | | | Security: CVE-2014-0195, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 Security: SA-14:14.openssl
* MFC: r261037, r264278jkim2014-04-101-14/+6
| | | | Merge OpenSSL 1.0.1f and 1.0.1g.
* Merge OpenSSL 1.0.1e.jkim2013-02-131-2/+17
|\ | | | | | | Approved by: secteam (simon), benl (silence)
* \ Merge OpenSSL 1.0.1c.jkim2012-07-121-293/+984
|\ \ | |/ | | | | Approved by: benl (maintainer)
* | Merge OpenSSL 0.9.8x.jkim2012-06-271-0/+2
| | | | | | | | | | | | Reviewed by: stas Approved by: benl (maintainer) MFC after: 3 days
* | Update the previous openssl fix. [12:01]bz2012-05-301-8/+7
| | | | | | | | | | | | | | | | Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02] Security: FreeBSD-SA-12:01.openssl (revised) Security: FreeBSD-SA-12:02.crypt Approved by: so (bz, simon)
* | Fix multiple OpenSSL vulnerabilities.bz2012-05-031-0/+10
| | | | | | | | | | | | | | Security: CVE-2011-4576, CVE-2011-4619, CVE-2011-4109 Security: CVE-2012-0884, CVE-2012-2110 Security: FreeBSD-SA-12:01.openssl Approved by: so (bz,simon)
* | Fix SSL memory handlig for (EC)DH cipher suites, in particular fordelphij2011-09-081-7/+15
| | | | | | | | | | | | | | | | | | multi-threaded use of ECDH. Security: CVE-2011-3210 Reviewed by: stas Obtained from: OpenSSL CVS Approved by: re (kib)
* | Merge OpenSSL 0.9.8q into head.simon2010-12-031-0/+5
|\ \ | |/ | | | | | | | | Security: CVE-2010-4180 Security: http://www.openssl.org/news/secadv_20101202.txt MFC after: 3 days
* | Merge OpenSSL 0.9.8m into head.simon2010-03-131-36/+55
|\ \ | |/ | | | | | | | | | | | | | | | | | | This also "reverts" some FreeBSD local changes so we should now be back to using entirely stock OpenSSL. The local changes were simple $FreeBSD$ lines additions, which were required in the CVS days, and the patch for FreeBSD-SA-09:15.ssl which has been superseded with OpenSSL 0.9.8m's RFC5746 'TLS renegotiation extension' support. MFC after: 3 weeks
* | Disable SSL renegotiation in order to protect against a seriouscperciva2009-12-031-0/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | protocol flaw. [09:15] Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16] Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17] Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate
* | Merge OpenSSL 0.9.8k into head.simon2009-06-141-29/+256
|\ \ | |/ | | | | Approved by: re
| * Flatten OpenSSL vendor tree.simon2008-08-231-2618/+0
| |
* | Prevent cross-site forgery attacks on lukemftpd(8) due to splittingsimon2009-01-071-1/+1
|/ | | | | | | | | | | | | | long commands into multiple requests. [09:01] Fix incorrect OpenSSL checks for malformed signatures due to invalid check of return value from EVP_VerifyFinal(), DSA_verify, and DSA_do_verify. [09:02] Security: FreeBSD-SA-09:01.lukemftpd Security: FreeBSD-SA-09:02.openssl Obtained from: NetBSD [SA-09:01] Obtained from: OpenSSL Project [SA-09:02] Approved by: so (simon)
* Vendor import of OpenSSL 0.9.8e.simon2007-03-151-4/+25
|
* Vendor import of OpenSSL 0.9.8d.simon2006-10-011-1/+1
|
* Vendor import of OpenSSL 0.9.8bsimon2006-07-291-89/+598
|
* Vendor import of OpenSSL 0.9.7e.nectar2005-02-251-2/+13
|
* Vendor import of OpenSSL 0.9.7d.nectar2004-03-171-1/+18
|
* Vendor import of OpenSSL 0.9.7cnectar2003-10-011-5/+10
|
* Import of PKCS #1 security fix.jedgar2003-03-201-13/+12
| | | | http://www.openssl.org/news/secadv_20030319.txt
* Vendor import of OpenSSL release 0.9.7. This release includesmarkm2003-01-281-61/+249
| | | | support for AES and OpenBSD's hardware crypto.
* Import of OpenSSL 0.9.6f.nectar2002-08-101-1/+5
|
* Import of OpenSSL 0.9.6e.nectar2002-07-301-0/+2
|
* Import of OpenSSL 0.9.6d.nectar2002-07-301-6/+12
|
* Initial import of OpenSSL 0.9.6ckris2002-01-271-22/+101
|
* Initial import of OpenSSL 0.9.6bkris2001-07-191-2/+24
|
* Import of OpenSSL 0.9.6-STABLE snapshot dated 2001-02-10kris2001-02-181-0/+1
|
* Initial import of OpenSSL 0.9.6kris2000-11-131-6/+20
|
* Initial import of OpenSSL 0.9.5akris2000-04-131-65/+122
|
* Initial import of OpenSSL 0.9.4, sans IDEA and RSA code for patentkris2000-01-101-0/+1683
infringement reasons.
OpenPOWER on IntegriCloud