Age | Commit message (Collapse) | Author | |
---|---|---|---|
2010-05-11 | Added tickets | Ingela Anderton Andin | |
2010-05-11 | OTP-8568 RFC -5746 | Ingela Anderton Andin | |
New ssl now supports secure renegotiation as described by RFC 5746. | |||
2010-04-29 | Started to prepare for next version | Ingela Anderton Andin | |
2010-04-29 | OTP-8588 Alert and packet handling improvment | Ingela Anderton Andin | |
Alert handling has been improved to better handle unexpected but valid messages and the implementation is also changed to avoid timing related issues that could cause different error messages depending on network latency. Packet handling was sort of broken but would mostly work as expected when socket was in binary mode. This has now been fixed. | |||
2010-04-19 | Prepare for release | Dan Gudmundsson | |
2010-04-17 | Reset inet options | Dan Gudmundsson | |
Temporary set the inet options on listen socket before doing accept so that the correct options will be inherited by the accept socket. Reset the options afterwards so that repeated use of listen socket get user set values. | |||
2010-04-16 | Avoid race condition of early handshake messages, when socket is active mode ↵ | Dan Gudmundsson | |
is not false. | |||
2010-04-15 | ** Empty commit message ** | Ingela Anderton Andin | |
2010-04-15 | Tried to minimize sleeping | Ingela Anderton Andin | |
2010-04-15 | Ignore renegotiation reject until we implemented RFC-5746 | Ingela Anderton Andin | |
2010-04-15 | Added more tests and small corrections. | Ingela Anderton Andin | |
2010-04-14 | Improved tests | Ingela Anderton Andin | |
2010-04-14 | Enhanced error handling | Ingela Anderton Andin | |
2010-04-14 | Update version number | Ingela Anderton Andin | |
2010-04-13 | We currently do not support fixed DH. Removal of dead code. | Ingela Anderton Andin | |
2010-04-13 | Fixed dialyzer warning | Ingela Anderton Andin | |
2010-04-13 | OTP-8554 Certificate extensions | Ingela Anderton Andin | |
2010-04-13 | Fixed spelling error | Dan Gudmundsson | |
2010-04-13 | OTP-8517 Renegotiation | Ingela Anderton Andin | |
New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. | |||
2010-04-12 | OTP-8517 Renegotiation | Ingela Anderton Andin | |
New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. | |||
2010-04-09 | Fix renegotiate doc | Ingela Anderton Andin | |
2010-04-09 | Update version number | Ingela Anderton Andin | |
2010-04-09 | Removed more sleeps | Ingela Anderton Andin | |
2010-04-09 | Removed need of sleep better to synchronize if possible. | Ingela Anderton Andin | |
2010-04-09 | Merge branch 'rb/ssl-fix-http-packet-decoding' into dev | Erlang/OTP | |
* rb/ssl-fix-http-packet-decoding: Fix ssl to decode http packets in the same way as gen_tcp OTP-8545 rb/ssl-fix-http-packet-decoding | |||
2010-04-08 | Fixed comment | Ingela Anderton Andin | |
2010-04-08 | Merge branch 'rb/ssl-transport-accept-fix' into dev | Erlang/OTP | |
* rb/ssl-transport-accept-fix: Fix ssl:transport_accept/2 to return properly when socket is closed OTP-8560 rb/ssl-transport-accept-fix Fixed ssl:transport_accept/2 to return properly when socket is closed. Thanks to Rory Byrne. | |||
2010-04-08 | Update version number | Ingela Anderton Andin | |
2010-04-07 | Generalized tcp_connect test | Ingela Anderton Andin | |
2010-04-07 | ** Empty commit message ** | Ingela Anderton Andin | |
2010-04-07 | Fix ssl to decode http packets in the same way as gen_tcp | Rory Byrne | |
When gen_tcp is configured with the {packet,http} option, it automatically switches to expect HTTP Headers after a HTTP Request/Response line has been received. This update fixes ssl to behave in the same way. | |||
2010-04-07 | Fix ssl:transport_accept/2 to return properly when socket is closed | Rory Byrne | |
A badmatch exception is thrown from ssl:transport_accept/2 when ssl:close/1 is called on the socket. This fixes it to return {error,closed} as expected. | |||
2010-04-07 | To preserve coding style of this module | Ingela Anderton Andin | |
2010-04-05 | Fix verification of ssl client when fail_if_no_peer_cert | Rory Byrne | |
The SSL handshake fails when an ssl server is configured with the 'fail_if_no_peer_cert' option and a valid client sends its certificate as instructed. On the server-side ssl:ssl_accept/2 will return {error,esslerrssl}, and it will send an "Unexpected Message" SSL Alert (type 10) to the client. | |||
2010-04-05 | Fix mishandling of valid ssl options | Rory Byrne | |
Using certain valid options in the new ssl implementation results in badarg exceptions. This happens for one documented option 'fail_if_no_peer_cert' and two undocumented options 'verify_client_once' and 'cb_info'. | |||
2010-04-01 | Fixed copy paste error | Ingela Anderton Andin | |
2010-04-01 | Added renegotiate/1 | Ingela Anderton Andin | |
2010-04-01 | Add dhfile option | Ingela Anderton Andin | |
2010-04-01 | Update version number | Ingela Anderton Andin | |
2010-03-31 | Fixed arguments to queue:in_r in clause that is very unlikly to happen and ↵ | Ingela Anderton Andin | |
hence not covered by test cases. | |||
2010-03-31 | Corrected merge errors | Ingela Anderton Andin | |
2010-03-25 | OTP-7046 Support for Diffie-Hellman keyexchange | Ingela Anderton Andin | |
2010-03-25 | OTP-8517 Renegotiation | Ingela Anderton Andin | |
New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. | |||
2010-03-16 | OTP-8510 ssl crash | Dan Gudmundsson | |
Fixed a crash in the certificate certification part. | |||
2010-02-18 | Avoid crash when trying to alert the user. | Dan Gudmundsson | |
2010-02-17 | ssl: Prepare release | Dan Gudmundsson | |
2010-02-17 | OTP-8459 Do a controlled shutdown if a non ssl packet arrives as the first | Dan Gudmundsson | |
packet. | |||
2010-02-12 | Merge branch 'yh/packet_option_for_new_ssl_send' into ccase/r13b04_dev | Erlang/OTP | |
* yh/packet_option_for_new_ssl_send: Fixed ssl:setopts(Socket, binary) which was didn't work for 'new' ssl. Fixed bug file cache bug and improved the error messages. Allow <c>ssl:listen/2</c> to be called with option {ssl_imp, old}. prepend packet size bytes in ssl:send() in new_ssl implementation OTP-8441 ssl:send/2 ignored packet option, fix provided by YAMASHINA Hio. Fixed a file cache bug which caused problems when the same file was used for both cert and cacert. Allow ssl:listen/2 to be called with option {ssl_imp, old}. Fixed ssl:setopts(Socket, binary) which didn't work for 'new' ssl.. | |||
2010-02-12 | Fixed ssl:setopts(Socket, binary) which was didn't work for 'new' ssl. | Dan Gudmundsson | |
2010-02-12 | Fixed bug file cache bug and improved the error messages. | Dan Gudmundsson | |