summaryrefslogtreecommitdiff
path: root/ssl/t1_enc.c
Commit message (Expand)AuthorAgeFilesLines
* ssl/*: revert "remove SSL_RECORD->orig_len" and merge "fix IV".Andy Polyakov2013-02-081-7/+3
* ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility.Andy Polyakov2013-02-061-3/+7
* Timing fix mitigation for FIPS mode.Dr. Stephen Henson2013-02-061-0/+7
* Update DTLS code to match CBC decoding in TLS.Ben Laurie2013-02-061-4/+0
* Don't crash when processing a zero-length, TLS >= 1.1 record.Ben Laurie2013-02-061-4/+9
* Make CBC decoding constant time.Ben Laurie2013-02-061-76/+55
* * ssl/t1_enc.c (tls1_change_cipher_state): Stupid bug. Fortunately inRichard Levitte2012-09-211-1/+1
* New compile time option OPENSSL_SSL_TRACE_CRYPTO, when set this passesDr. Stephen Henson2012-08-281-0/+42
* Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 andDr. Stephen Henson2012-05-101-0/+2
* ssl/t1_enc.c: pay attention to EVP_CIPH_FLAG_CUSTOM_CIPHER.Andy Polyakov2012-03-131-1/+4
* SSL export fixes (from Adam Langley) [original from 1.0.1]Dr. Stephen Henson2012-02-221-29/+29
* Remove redundant TLS exporter.Ben Laurie2011-12-131-25/+1
* PR: 1794Dr. Stephen Henson2011-11-251-3/+0
* bcmp doesn't exist on all platforms, replace with memcmpDr. Stephen Henson2011-11-211-4/+4
* Add TLS exporter.Ben Laurie2011-11-151-0/+89
* Expand range of ctrls for AES GCM to support retrieval and setting ofDr. Stephen Henson2011-08-031-3/+19
* ssl/t1_enc.c: initial support for AEAD ciphers.Andy Polyakov2011-07-111-16/+65
* Don't round up partitioned premaster secret length if there is only oneDr. Stephen Henson2011-05-311-0/+2
* Implement FIPS_mode and FIPS_mode_setDr. Stephen Henson2011-05-191-0/+2
* Initial TLS v1.2 client support. Include a default supported signatureDr. Stephen Henson2011-05-091-0/+11
* Initial incomplete TLS v1.2 support. New ciphersuites added, new versionDr. Stephen Henson2011-04-291-7/+7
* Add SRP support.Ben Laurie2011-03-121-0/+3
* Don't use decryption_failed alert for TLS v1.1 or later.Dr. Stephen Henson2011-01-041-0/+2
* use generalise mac API for SSL key generationDr. Stephen Henson2010-11-241-28/+34
* Only use explicit IV if cipher is in CBC mode.Dr. Stephen Henson2010-11-141-2/+4
* PR: 1830Dr. Stephen Henson2010-07-181-0/+23
* oops, revert wrong patch..Dr. Stephen Henson2010-07-181-23/+0
* Fix warnings (From HEAD, original patch by Ben).Dr. Stephen Henson2010-07-181-0/+23
* no need for empty fragments with TLS 1.1 and later due to explicit IVDr. Stephen Henson2010-06-271-1/+2
* Fix warnings.Ben Laurie2010-06-121-10/+4
* PR: 2259Dr. Stephen Henson2010-05-171-54/+97
* Initial experimental TLSv1.1 supportDr. Stephen Henson2009-12-071-1/+28
* Updates from 1.0.0-stable branch.Dr. Stephen Henson2009-04-201-2/+2
* Fix warnings properly this time ;-)Dr. Stephen Henson2009-01-111-3/+3
* Fix sign-compare warnings.Dr. Stephen Henson2009-01-111-1/+1
* Fix compilation with -no-comp by adding some more #ifndef OPENSSL_NO_COMPLutz Jänicke2009-01-051-0/+2
* If we're going to return errors (no matter how stupid), then we shouldBen Laurie2008-12-291-4/+16
* Handle the unlikely event that BIO_get_mem_data() returns -ve.Ben Laurie2008-12-271-4/+7
* Revert the size_t modifications from HEAD that had led to moreGeoff Thorpe2008-11-121-24/+19
* Make -DKSSL_DEBUG work again.Dr. Stephen Henson2008-11-101-19/+24
* Fix unsigned/signed warnings in ssl.Andy Polyakov2008-01-051-2/+2
* 1. Changes for s_client.c to make it return non-zero exit code in caseDr. Stephen Henson2007-10-261-3/+5
* Make DTLS1 record layer MAC calculation RFC compliant.Andy Polyakov2007-10-091-6/+19
* Support for certificate status TLS extension.Dr. Stephen Henson2007-09-261-1/+1
* Implement the Opaque PRF Input TLS extensionBodo Möller2007-09-211-65/+98
* Update ssl code to support digests other than MD5+SHA1 in handshake.Dr. Stephen Henson2007-08-311-31/+68
* Update ssl library to support EVP_PKEY MAC API. Include generic MAC support.Dr. Stephen Henson2007-06-041-23/+53
* Reorganize the data used for SSL ciphersuite pattern matching.Bodo Möller2007-02-171-5/+7
* ensure that the EVP_CIPHER_CTX object is initializedNils Larsch2007-02-161-5/+6
* Fix from stable branch.Dr. Stephen Henson2006-05-071-1/+9