| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2017-11-16 | ssl: Resolve merge conflict resolution error | Ingela Anderton Andin | |
| 2017-11-16 | Merge branch 'maint' | Ingela Anderton Andin | |
| Conflicts: lib/ssl/src/dtls_connection.erl lib/ssl/src/ssl_connection.erl lib/ssl/src/ssl_handshake.erl lib/ssl/src/tls_connection.erl | |||
| 2017-11-16 | ssl: Align code of TLS/DTLS handshake handling | Ingela Anderton Andin | |
| 2017-11-16 | ssl: Align code of TLS/DTLS record handling | Ingela Anderton Andin | |
| 2017-11-16 | ssl: Align code of main modules implementing the gen_statem behaviour | Ingela Anderton Andin | |
| 2017-11-16 | dtls: Add state spec | Ingela Anderton Andin | |
| 2017-11-10 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-11-09 | ssl: Sessions must be registered with SNI if exists | Ingela Anderton Andin | |
| 2017-11-09 | ssl: Extend hostname check to fallback to checking IP-address | Ingela Anderton Andin | |
| If no SNI is available and the hostname is an IP-address also check for IP-address match. This check is not as good as a DNS hostname check and certificates using IP-address are not recommended. | |||
| 2017-11-09 | ssl: Use ?FUNCTION_NAME | Ingela Anderton Andin | |
| Use ?FUNCTION_NAME macro to enhance code as we will not back-port this version of the ssl application to versions pre OTP 19. | |||
| 2017-11-09 | ssl: Countermeasurements for Bleichenbacher attack | Ingela Anderton Andin | |
| 2017-11-08 | ssl: Add private key configuration for crypto engine | Ingela Anderton Andin | |
| 2017-10-23 | Merge branch 'maint' | Ingela Anderton Andin | |
| Conflicts: lib/ssl/src/inet_tls_dist.erl | |||
| 2017-10-20 | ssl: Do not provide IP address to ssl:connect in erlang distribution over TLS | Ingela Anderton Andin | |
| As TLS clients will perform a hostname check against certificates the IP-address does not make much sense. | |||
| 2017-10-18 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-10-18 | Merge branch 'ingela/dtls/no-packet-upd/OTP-14664' into maint | Ingela Anderton Andin | |
| * ingela/dtls/no-packet-upd/OTP-14664: ssl: No support for packet option over unreliable transport | |||
| 2017-10-17 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-10-17 | Merge branch 'ingela/ssl/extend-hostname-check/OTP-14632/OTP-14655' into maint | Ingela Anderton Andin | |
| * ingela/ssl/extend-hostname-check/OTP-14632/OTP-14655: ssl: Fix test cases to work on all test platforms public_key: Fix dialyzer spec ssl: Sessions must be registered with SNI if exists ssl: Extend hostname check to fallback to checking IP-address public_key, ssl: Handles keys so that APIs are preserved correctly | |||
| 2017-10-17 | ssl: No support for packet option over unreliable transport | Ingela Anderton Andin | |
| 2017-10-16 | Merge branch 'maint' | Ingela Anderton Andin | |
| Conflicts: lib/ssl/src/ssl_connection.erl | |||
| 2017-10-16 | ssl: Use ?FUNCTION_NAME | Ingela Anderton Andin | |
| Use ?FUNCTION_NAME macro to enhance code as we will not back-port this version of the ssl application to versions pre OTP 19. | |||
| 2017-10-13 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-10-13 | ssl: Sessions must be registered with SNI if exists | Ingela Anderton Andin | |
| 2017-10-13 | ssl: Extend hostname check to fallback to checking IP-address | Ingela Anderton Andin | |
| If no SNI is available and the hostname is an IP-address also check for IP-address match. This check is not as good as a DNS hostname check and certificates using IP-address are not recommended. | |||
| 2017-10-05 | ssl: Use new string functions | Ingela Anderton Andin | |
| The functions are not performance critical. Will be used when errors occurs, CRL data base is managed or legacy OpenSSL names are used for ciphers. | |||
| 2017-10-02 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-09-30 | dtls: Compleate DTLS renegotiate implementation | Ingela Anderton Andin | |
| 2017-09-29 | Merge branch 'raimo/ssl-dist-skip-loopback/OTP-14465' | Raimo Niskanen | |
| * raimo/ssl-dist-skip-loopback/OTP-14465: Update runtime dependencies Disable debug function Pass all info's to the ssl_connection state function Remove ssl_tls_dist_ctrl module Remove ssl_tls_dist_ctrl process Remove ssl_tls_dist_proxy Avoid dialyzer warning Separate in and out in dist ctrl Rewrite dist ctrl from port to process Conflicts: lib/ssl/src/ssl.app.src | |||
| 2017-09-29 | Update runtime dependencies | Raimo Niskanen | |
| 2017-09-28 | Disable debug function | Raimo Niskanen | |
| 2017-09-27 | Pass all info's to the ssl_connection state function | Raimo Niskanen | |
| 2017-09-27 | Remove ssl_tls_dist_ctrl module | Raimo Niskanen | |
| 2017-09-26 | Remove ssl_tls_dist_ctrl process | Raimo Niskanen | |
| 2017-09-20 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-09-20 | public_key, ssl: Prepare for release | Ingela Anderton Andin | |
| OTP-14236 requires ssl runtime dependencies to update to latest public_key. OTP-14181 makes ssl test cases dependent on latest version latest public_key. | |||
| 2017-09-15 | Remove ssl_tls_dist_proxy | Raimo Niskanen | |
| 2017-09-15 | Avoid dialyzer warning | Raimo Niskanen | |
| 2017-09-15 | Separate in and out in dist ctrl | Raimo Niskanen | |
| 2017-09-15 | Rewrite dist ctrl from port to process | Raimo Niskanen | |
| 2017-09-13 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-09-11 | ssl: Do not break abstraction | Ingela Anderton Andin | |
| ssl_pkix_db should not hard code names. On the other hand the names are nicer with as <Prefix>_dist than <Prefix>dist. | |||
| 2017-09-04 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-09-04 | Merge branch 'ingela/ssl/session-cache-max/OTP-14556' into maint | Ingela Anderton Andin | |
| * ingela/ssl/session-cache-max/OTP-14556: ssl: Mend Max session handling | |||
| 2017-09-04 | ssl: Mend Max session handling | Ingela Anderton Andin | |
| The commit 256e01ce80b3aadd63f303b9bda5722ad313220f was a misunderstanding that actually broke the implementation. It is not so important to keep specific max, rather max is a threshold when the table should be shrinked as to not grow indefinitely. New sessions are created when the id is created and may be short lived it they are not registered for reuse due to handshake failure. | |||
| 2017-09-04 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-09-01 | ssl: Add the role (server or client) to the alert message | Ingela Anderton Andin | |
| It is desirable to be as specific as possible in the info message, so there can be no mistake if the alert is form the peer or generated by us. This use to be an error message, but it is better to make it an info message as sending an ALERT ending the connection is an expected behaviour. | |||
| 2017-08-24 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-08-24 | Merge branch 'ingela/ssl/dtls-alert-handling/OTP-14078' into maint | Ingela Anderton Andin | |
| * ingela/ssl/dtls-alert-handling/OTP-14078: dtls: Customize alert handling for DTLS over UDP | |||
| 2017-08-24 | Merge branch 'maint' | Ingela Anderton Andin | |
| 2017-08-24 | ssl: DTLS packet support | Ingela Anderton Andin | |
| Test that DTLS handles "high" level packet types as http-packet types. Low level packet type as {packet, 2} we will consider later if they should be relevant to support or not. | |||
 |
index : otp.git | |
| Mirror of Erlang/OTP repository. | OTP Team |
| aboutsummaryrefslogtreecommitdiffstats |