| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-08-20 | Merge branch 'pg/fix-ssl-handshake-client-certificate' into dev | Ingela Anderton Andin | |
| * pg/fix-ssl-handshake-client-certificate: Fix bug in ssl handshake protocol related to the choice of cipher suites OTP-8772 | |||
| 2010-08-20 | public_key, ssl: Patch 1112 | Dan Gudmundsson | |
| OTP-7046 Support for Diffie-Hellman. ssl-3.11 requires public_key-0.6. OTP-8553 Moved extended key usage test for ssl values to ssl. OTP-8557 Fixes handling of the option fail_if_no_peer_cert and some undocumented options. Thanks to Rory Byrne. OTP-7046 Support for Diffie-Hellman. ssl-3.11 requires public_key-0.6. OTP-8517 New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. However RFC-5746 is not yet supported, but will be in an upcoming release. OTP-8545 When gen_tcp is configured with the {packet,http} option, it automatically switches to expect HTTP Headers after a HTTP Request/Response line has been received. This update fixes ssl to behave in the same way. Thanks to Rory Byrne. OTP-8554 Ssl now correctly verifies the extended_key_usage extension and also allows the user to verify application specific extensions by supplying an appropriate fun. OTP-8560 Fixed ssl:transport_accept/2 to return properly when socket is closed. Thanks to Rory Byrne. | |||
| 2010-08-20 | ssl: Patch 1110 | Dan Gudmundsson | |
| OTP-8510 Fixed a crash in the certificate certification part. | |||
| 2010-08-18 | Remove ticket numbers from all vsn.mk files | Björn Gustavsson | |
| Some application's vsn.mk files contained a list of the ticket numbers fixed in each version. Since that information can be obtained from the notes.xml file or from the merge commits in the git repository (provided that the branch name includes the ticket number), there is no reason to manually maintain that information in the vsn.mk files. | |||
| 2010-08-18 | Fix bug in ssl handshake protocol related to the choice of cipher suites | Paul Guyot | |
| in client hello message when a client certificate is used The client hello message now always include ALL available cipher suites (or those specified by the ciphers option). Previous implementation would filter them based on the client certificate key usage extension (such filtering only makes sense for the server certificate). | |||
| 2010-08-18 | Do not check the padding for TLS 1.0 | Ingela Anderton Andin | |
| For interoperability reasons we do not check the padding in TLS 1.0 as it is not strictly required and breaks interopability with for instance Google. | |||
| 2010-07-26 | Fix minor typos and errors in documentation | Cristian Greco | |
| 2010-06-29 | Updated version. | Ingela Anderton Andin | |
| 2010-06-29 | The server now verifies the client certificate verify message correctly, ↵ | Ingela Anderton Andin | |
| instead of causing a case-clause. | |||
| 2010-06-23 | Added more specs and changed from using own min/2 funtion to erlang:min/2. | Ingela Anderton Andin | |
| 2010-06-22 | Added more -spec definitions. | Ingela Anderton Andin | |
| 2010-06-22 | Refreshed documentation to reflect the change of default implementation. | Ingela Anderton Andin | |
| Started to improve code documentation by using -spec directive, and some small refactorings to avoid ugly code. | |||
| 2010-06-14 | OTP-8695 New ssl default | Ingela Anderton Andin | |
| Ssl has now switched default implementation and removed deprecated certificate handling. All certificate handling is done by the public_key application. | |||
| 2010-06-11 | OTP-8695 New ssl default | Ingela Anderton Andin | |
| Ssl has now switched default implementation and removed deprecated certificate handling. All certificate handling is done by the public_key application. | |||
| 2010-06-11 | OTP-8695 New ssl default | Ingela Anderton Andin | |
| Ssl has now switched default implementation and removed deprecated certificate handling. All certificate handling is done by the public_key application. | |||
| 2010-06-08 | Move dsa ticket to r14a release | Ingela Anderton Andin | |
| (This is the merge of r13 version to r14_dev) | |||
| 2010-06-08 | Updated for ssl-3.11.1 | Ingela Anderton Andin | |
| 2010-06-07 | OTP-8587 DSA key support | Ingela Anderton Andin | |
| New ssl now support client/server-certificates signed by dsa keys. | |||
| 2010-06-04 | Fixed handling of several ssl/tls packets arriving at the same time. | Ingela Anderton Andin | |
| This was broken during a refactoring of the code. | |||
| 2010-06-01 | Added workaround for tcp delivery problem | Ingela Anderton Andin | |
| 2010-05-28 | Cleaned code | Ingela Anderton Andin | |
| 2010-05-28 | Hoops too quick to check in previous version, changed . to ;, compiled in | Ingela Anderton Andin | |
| wrong shell! | |||
| 2010-05-28 | Added misssing version check for client. | Ingela Anderton Andin | |
| 2010-05-28 | Added missing padding check. | Ingela Anderton Andin | |
| 2010-05-28 | Added missing Mac check. | Ingela Anderton Andin | |
| 2010-05-28 | Added code to handle own alert in case MAC or padding check fails. | Ingela Anderton Andin | |
| 2010-05-27 | Moved nodelay workaround for linux, as it seems to only work if you do | Ingela Anderton Andin | |
| it before sending the fatal alert, even though documentation suggests the socket will be flushed on linux as an effect of setting the nodelay option. | |||
| 2010-05-26 | OTP-8649 change in public_key api | Ingela Anderton Andin | |
| 2010-05-26 | Test ssl_session_cache_api. | Ingela Anderton Andin | |
| 2010-05-26 | Seems we need "nodelay socket flush" on some linux platforms after all. | Ingela Anderton Andin | |
| 2010-05-26 | Avoid apparently timing issus when closing down openssl | Ingela Anderton Andin | |
| 2010-05-26 | Added option list argument to the init function in ssl_session_cache_api. | Ingela Anderton Andin | |
| 2010-05-25 | Enhancements and fixes due to coverage investegation. | Ingela Anderton Andin | |
| 2010-05-25 | Enhanced protocol version handling. | Ingela Anderton Andin | |
| 2010-05-25 | Better coverage. | Ingela Anderton Andin | |
| 2010-05-25 | Better coverage | Ingela Anderton Andin | |
| 2010-05-24 | Fixed session validation bug thanks to cover. | Ingela Anderton Andin | |
| 2010-05-24 | Changed the documentation to match latest implementation and design decisions. | Ingela Anderton Andin | |
| 2010-05-21 | Clean up of code | Ingela Anderton Andin | |
| 2010-05-21 | Worked on getting better code coverage. | Ingela Anderton Andin | |
| 2010-05-21 | Decision not to support export cipher suites. | Ingela Anderton Andin | |
| 2010-05-21 | Decision not to support DH and export cipher suites. | Ingela Anderton Andin | |
| 2010-05-21 | Decision not to support DH and export cipher suites and clean up. | Ingela Anderton Andin | |
| 2010-05-20 | Honor internal API | Ingela Anderton Andin | |
| 2010-05-20 | Fixed internal API | Ingela Anderton Andin | |
| 2010-05-18 | Fixed extended_key_usage test so that it really tests what we want it to test. | Ingela Anderton Andin | |
| 2010-05-18 | Commented out currently unsupported code. To be supported or removed in the ↵ | Ingela Anderton Andin | |
| future. | |||
| 2010-05-17 | Removed/commented out currently dead code. | Ingela Anderton Andin | |
| 2010-05-11 | Added tickets | Ingela Anderton Andin | |
| 2010-05-11 | OTP-8568 RFC -5746 | Ingela Anderton Andin | |
| New ssl now supports secure renegotiation as described by RFC 5746. | |||
 |
index : otp.git | |
| Mirror of Erlang/OTP repository. | OTP Team |
| aboutsummaryrefslogtreecommitdiffstats |