Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-01-21 | Merge branch 'ia/ssl/openssl-reneogtiation-bug' | Ingela Anderton Andin | |
* ia/ssl/openssl-reneogtiation-bug: ssl: Add versions to check for sane OpenSSL version for renegotiation | |||
2014-01-21 | Merge remote-tracking branch 'upstream/maint' | Ingela Anderton Andin | |
2014-01-15 | ssl: Prepare for release | Ingela Anderton Andin | |
2014-01-14 | ssl: fix elliptic curve selection in server mode | Andreas Schultz | |
The server code erroneously took the list of curves supported by the client from it's own hello extension, effectively breaking curve selection all together. Also the default fallback secp256k1 curve is not supported by all clients. secp256r1 is recommended as part of the NIST Suite B cryptographic suites. The chances are much better that all clients support it, so use that as fallback. | |||
2014-01-14 | ssl: Prepare for release | Ingela Anderton Andin | |
2014-01-14 | ssl: Add missing options validation of server_name_indication | Ingela Anderton Andin | |
2014-01-14 | ssl: Add versions to check for sane OpenSSL version for renegotiation | Ingela Anderton Andin | |
2014-01-13 | crypto: selective support for GF2m curves | Andreas Schultz | |
Newer OpenSSL versions allow to selectively disable GF2m elliptic curves. Selectively enable GF2m curves is support for them is available. | |||
2014-01-13 | ssl: add brainpool elliptic curves to TLS (RFC-7027) | Andreas Schultz | |
2013-12-10 | Merge tag 'OTP_R16B03' | Magnus Lidén | |
The R16B03 release Conflicts: lib/sasl/vsn.mk | |||
2013-12-09 | Prepare releaseOTP_R16B03 | Erlang/OTP | |
2013-12-02 | Merge branch 'maint' | Ingela Anderton Andin | |
2013-12-02 | ssl: Trap exits | Ingela Anderton Andin | |
2013-12-02 | ssl: Refactor connetion handling | Ingela Anderton Andin | |
2013-12-02 | ssl: API and supervisor | Ingela Anderton Andin | |
2013-12-02 | ssl: Dialyzer fixes | Ingela Anderton Andin | |
2013-12-02 | ssl: Test case enhancement | Ingela Anderton Andin | |
Make sure that test cases does not fail due to timing circumstances, use selective receive even if it means we can not use test library functions in some cases. TCP does not have delivery guarantee to application layer, so sometimes a error message {error, Msg} or {error, closed} can be acceptable. | |||
2013-12-02 | ssl: Refactor API | Ingela Anderton Andin | |
New design : ssl - Main tls - Reflect tls specific semantics dtls - Reflect dtls specific semantics | |||
2013-12-02 | ssl, public_key: Dialyzer fixes | Ingela Anderton Andin | |
2013-12-02 | ssl: Refactor premaster secret handling | Ingela Anderton Andin | |
2013-12-02 | ssl: Refactor connection and handshake handling | Ingela Anderton Andin | |
2013-12-02 | ssl: Refactor handshake and record handling | Ingela Anderton Andin | |
2013-11-20 | Merge branch 'maint' | Hans Nilsson | |
2013-11-19 | ftp,ssl: Fixes broken type link (ssloption). | Hans Nilsson | |
2013-11-11 | Merge branch 'maint' | Fredrik Gustafsson | |
2013-11-06 | Update documentation | Julien Barbot | |
2013-11-06 | Add a new server_name_indication option to ssl:connect | Julien Barbot | |
- Set to disable to explicitly disable SNI support. - Set to a hostname when upgrading from TCP to TLS. | |||
2013-11-06 | Add SSL Server Name Indication (SNI) client support | Julien Barbot | |
See RFC 6066 section 3 | |||
2013-11-04 | Merge branch 'maint' | Fredrik Gustafsson | |
2013-11-01 | Fix client_preferred_next_protocols documentation | Julien Barbot | |
2013-10-31 | Merge branch 'maint' | Fredrik Gustafsson | |
2013-10-31 | Remove extraneous dev debug code left in the close function. | Ken Key | |
We do not need a traceback on every close in inet_tls_dist and this breaks using nodetool in control scripts on SSL clustered nodes | |||
2013-10-23 | Merge branch 'RoadRunnr/fix_dtls_fragment_decoder/OTP-11376' | Fredrik Gustafsson | |
* RoadRunnr/fix_dtls_fragment_decoder/OTP-11376: ssl: fix initialization of DTLS fragment reassembler | |||
2013-10-14 | Merge remote-tracking branch 'upstream/maint' | Ingela Anderton Andin | |
2013-10-14 | ssl: Fix dialyzer spec | Ingela Anderton Andin | |
2013-10-14 | ssl: Honor TLS client ECC extension | Ingela Anderton Andin | |
Also the server should only send ECC point formats extension not ECC curve extension. | |||
2013-09-29 | ssl: fix initialization of DTLS fragment reassembler | Andreas Schultz | |
The DTLS fragment reassembler use a list [{Start, End}] for the fragments. When the first received fragment was not the starting fragment, that list got initialized with [{Start, Length}], causing the merge of following fragment to fail. | |||
2013-09-17 | Merge tag 'OTP_R16B02' | Magnus Lidén | |
The R16B02 release Conflicts: lib/sasl/vsn.mk | |||
2013-09-16 | Prepare releaseOTP_R16B02 | Erlang/OTP | |
2013-09-10 | Merge remote-tracking branch 'upstream/maint' | Ingela Anderton Andin | |
2013-09-10 | ssl: Prepare for release | Ingela Anderton Andin | |
2013-09-10 | Merge remote-tracking branch 'upstream/maint' | Ingela Anderton Andin | |
2013-09-10 | ssl: Refactor TLS/DTLS record handling | Ingela Anderton Andin | |
2013-09-10 | ssl: Dialyzer fixes | Ingela Anderton Andin | |
2013-09-10 | ssl: Solve rebase issues | Ingela Anderton Andin | |
2013-09-10 | ssl: DTLS record handling | Ingela Anderton Andin | |
Also refactor so that TLS and DTLS can have common functions when possible. | |||
2013-09-10 | ssl: Add DTLS record primitives | Andreas Schultz | |
This code is to 99 % written by Andreas Schultz only some small changes to start integrating with OTPs DTLS solution. | |||
2013-09-10 | ssl: Refactor to provide common handshake functions for TLS/DTLS | Ingela Anderton Andin | |
Common functions will be located in ssl_handshake.erl while specific functions will be located in tls_handshake.erl and dtls_handshake.erl | |||
2013-09-10 | ssl: Add DTLS handshake primitivs. | Andreas Schultz | |
This code is to 99 % written by Andreas Schultz only some small changes to start integrating with OTPs DTLS solution. | |||
2013-09-03 | Merge remote-tracking branch 'upstream/maint' | Ingela Anderton Andin | |