Age | Commit message (Collapse) | Author | |
---|---|---|---|
2010-06-07 | OTP-8587 DSA key support | Ingela Anderton Andin | |
New ssl now support client/server-certificates signed by dsa keys. | |||
2010-06-04 | Fixed handling of several ssl/tls packets arriving at the same time. | Ingela Anderton Andin | |
This was broken during a refactoring of the code. | |||
2010-06-01 | Added workaround for tcp delivery problem | Ingela Anderton Andin | |
2010-05-28 | Cleaned code | Ingela Anderton Andin | |
2010-05-28 | Hoops too quick to check in previous version, changed . to ;, compiled in | Ingela Anderton Andin | |
wrong shell! | |||
2010-05-28 | Added misssing version check for client. | Ingela Anderton Andin | |
2010-05-28 | Added missing padding check. | Ingela Anderton Andin | |
2010-05-28 | Added missing Mac check. | Ingela Anderton Andin | |
2010-05-28 | Added code to handle own alert in case MAC or padding check fails. | Ingela Anderton Andin | |
2010-05-27 | Moved nodelay workaround for linux, as it seems to only work if you do | Ingela Anderton Andin | |
it before sending the fatal alert, even though documentation suggests the socket will be flushed on linux as an effect of setting the nodelay option. | |||
2010-05-26 | OTP-8649 change in public_key api | Ingela Anderton Andin | |
2010-05-26 | Test ssl_session_cache_api. | Ingela Anderton Andin | |
2010-05-26 | Seems we need "nodelay socket flush" on some linux platforms after all. | Ingela Anderton Andin | |
2010-05-26 | Avoid apparently timing issus when closing down openssl | Ingela Anderton Andin | |
2010-05-26 | Added option list argument to the init function in ssl_session_cache_api. | Ingela Anderton Andin | |
2010-05-25 | Enhancements and fixes due to coverage investegation. | Ingela Anderton Andin | |
2010-05-25 | Enhanced protocol version handling. | Ingela Anderton Andin | |
2010-05-25 | Better coverage. | Ingela Anderton Andin | |
2010-05-25 | Better coverage | Ingela Anderton Andin | |
2010-05-24 | Fixed session validation bug thanks to cover. | Ingela Anderton Andin | |
2010-05-24 | Changed the documentation to match latest implementation and design decisions. | Ingela Anderton Andin | |
2010-05-21 | Clean up of code | Ingela Anderton Andin | |
2010-05-21 | Worked on getting better code coverage. | Ingela Anderton Andin | |
2010-05-21 | Decision not to support export cipher suites. | Ingela Anderton Andin | |
2010-05-21 | Decision not to support DH and export cipher suites. | Ingela Anderton Andin | |
2010-05-21 | Decision not to support DH and export cipher suites and clean up. | Ingela Anderton Andin | |
2010-05-20 | Honor internal API | Ingela Anderton Andin | |
2010-05-20 | Fixed internal API | Ingela Anderton Andin | |
2010-05-18 | Fixed extended_key_usage test so that it really tests what we want it to test. | Ingela Anderton Andin | |
2010-05-18 | Commented out currently unsupported code. To be supported or removed in the ↵ | Ingela Anderton Andin | |
future. | |||
2010-05-17 | Removed/commented out currently dead code. | Ingela Anderton Andin | |
2010-05-11 | Added tickets | Ingela Anderton Andin | |
2010-05-11 | OTP-8568 RFC -5746 | Ingela Anderton Andin | |
New ssl now supports secure renegotiation as described by RFC 5746. | |||
2010-04-29 | Started to prepare for next version | Ingela Anderton Andin | |
2010-04-29 | OTP-8588 Alert and packet handling improvment | Ingela Anderton Andin | |
Alert handling has been improved to better handle unexpected but valid messages and the implementation is also changed to avoid timing related issues that could cause different error messages depending on network latency. Packet handling was sort of broken but would mostly work as expected when socket was in binary mode. This has now been fixed. | |||
2010-04-19 | Prepare for release | Dan Gudmundsson | |
2010-04-17 | Reset inet options | Dan Gudmundsson | |
Temporary set the inet options on listen socket before doing accept so that the correct options will be inherited by the accept socket. Reset the options afterwards so that repeated use of listen socket get user set values. | |||
2010-04-16 | Avoid race condition of early handshake messages, when socket is active mode ↵ | Dan Gudmundsson | |
is not false. | |||
2010-04-15 | ** Empty commit message ** | Ingela Anderton Andin | |
2010-04-15 | Tried to minimize sleeping | Ingela Anderton Andin | |
2010-04-15 | Ignore renegotiation reject until we implemented RFC-5746 | Ingela Anderton Andin | |
2010-04-15 | Added more tests and small corrections. | Ingela Anderton Andin | |
2010-04-14 | Improved tests | Ingela Anderton Andin | |
2010-04-14 | Enhanced error handling | Ingela Anderton Andin | |
2010-04-14 | Update version number | Ingela Anderton Andin | |
2010-04-13 | We currently do not support fixed DH. Removal of dead code. | Ingela Anderton Andin | |
2010-04-13 | Fixed dialyzer warning | Ingela Anderton Andin | |
2010-04-13 | OTP-8554 Certificate extensions | Ingela Anderton Andin | |
2010-04-13 | Fixed spelling error | Dan Gudmundsson | |
2010-04-13 | OTP-8517 Renegotiation | Ingela Anderton Andin | |
New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. |