otp.git/lib/ssl/src, branch OTP-18.2.2 Mirror of Erlang/OTP repository. ssl: fix hibernate_after with instant or near instant timeouts 2015-12-11T16:52:02+00:00 Andrey Mayorov avmayorov@platbox.com 2015-12-11T00:23:53+00:00 4f13b9838c5f7e182661398418065b09716034f2 






Merge branch 'ia/ssl-prepare-release' into maint
2015-12-09T08:56:38+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-12-09T08:56:38+00:00

8f91fc9576aa4abadf7e20e5aaabec1b37832145

* ia/ssl-prepare-release:
  ssl: Correct spec
  ssl: Prepare for release





* ia/ssl-prepare-release:
  ssl: Correct spec
  ssl: Prepare for release







ssl: Correct spec
2015-12-08T13:59:28+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-12-08T13:59:28+00:00

80bf91029f9afcef147493a449ad0ae328efb3ae












ssl: Prepare for release
2015-12-08T13:55:30+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-12-07T10:10:35+00:00

fb64cba70b4b08442e04c932f88579a35e219fdb












Merge branch 'rlipscombe/rl-ssl-options' into maint
2015-12-07T15:04:44+00:00

Henrik Nord
henrik@erlang.org

2015-12-07T15:04:44+00:00

9be3ffd7bbb7fbf386fe7857b3ff9c9803e91cc7

* rlipscombe/rl-ssl-options:
  Ensure single 'raw' option is handled correctly
  Pass 'raw' options through

OTP-13166





* rlipscombe/rl-ssl-options:
  Ensure single 'raw' option is handled correctly
  Pass 'raw' options through

OTP-13166







Merge branch 'ia/ssl/sslv3-completeness' into maint
2015-12-07T11:28:37+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-12-07T11:28:37+00:00

bd06d4ecd680701373f5903cae1a31746e5530c6

* ia/ssl/sslv3-completeness:
  ssl: SSLv3 completeness





* ia/ssl/sslv3-completeness:
  ssl: SSLv3 completeness







ssl: SSLv3 completeness
2015-12-07T11:20:28+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-11-18T08:34:17+00:00

b7d8e2d89cfcc4c4265f45adc5ffc425e43c90fe

We are considering removing default support for DES cipher suites.
However this cipher suite is currently allowed in TLS and missing from
SSL.





We are considering removing default support for DES cipher suites.
However this cipher suite is currently allowed in TLS and missing from
SSL.







ssl: Add upper limit for session cache
2015-12-03T14:54:34+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-11-16T20:58:36+00:00

42b8a29dbae1d626f32bc16dd81a129caf741138

If upper limit is reached invalidate the current cache entries, e.i the session
lifetime is the max time a session will be keept, but it may be invalidated
earlier if the max limit for the table is reached. This will keep the ssl
manager process well behaved, not exhusting memeory. Invalidating the entries
will incrementally empty the cache to make room for fresh sessions entries.





If upper limit is reached invalidate the current cache entries, e.i the session
lifetime is the max time a session will be keept, but it may be invalidated
earlier if the max limit for the table is reached. This will keep the ssl
manager process well behaved, not exhusting memeory. Invalidating the entries
will incrementally empty the cache to make room for fresh sessions entries.







ssl: Measure elapsed time with erlang:monotonic_time
2015-12-03T13:45:27+00:00

Ingela Anderton Andin
ingela@erlang.org

2015-11-13T20:56:30+00:00

5e95fdff6589432327e38415fc9c5545231e7961












Merge branch 'legoscia/tls_dist_options' into maint
2015-12-01T16:10:58+00:00

Zandra
zandra@erlang.org

2015-12-01T16:07:51+00:00

417101bca30b5ae246b97485c7898c4e5c663b9c

* legoscia/tls_dist_options:
  Test interface listen option for TLS distribution
  Test socket listen options for TLS distribution
  Test port options for TLS distribution
  TLS Dist: Use inet_dist_ options

Conflicts:
	lib/ssl/src/ssl_tls_dist_proxy.erl
	lib/ssl/test/ssl_dist_SUITE.erl

OTP-12838





* legoscia/tls_dist_options:
  Test interface listen option for TLS distribution
  Test socket listen options for TLS distribution
  Test port options for TLS distribution
  TLS Dist: Use inet_dist_ options

Conflicts:
	lib/ssl/src/ssl_tls_dist_proxy.erl
	lib/ssl/test/ssl_dist_SUITE.erl

OTP-12838