 Jouni Malinen
|
355a5c8ec5
OpenSSL: Reject OCSP-required configuration if no OCSP support
|
9 years ago |
|
Jouni Malinen
|
c07e7b43e9
BoringSSL: Fix PKCS12_parse() segfault when used without password
|
9 years ago |
|
Jouni Malinen
|
a89beee589
OpenSSL: Handshake completion and resumption state into debug log
|
9 years ago |
|
Jouni Malinen
|
a7803b0caf
BoringSSL: Fix session resumption
|
9 years ago |
|
Jouni Malinen
|
0f56057c64
BoringSSL: Make SSL_set_ssl_method() conditional on EAP-FAST
|
9 years ago |
|
Jouni Malinen
|
226cdea6ca
BoringSSL: Comment out SSL_build_cert_chain() call
|
9 years ago |
 Jouni Malinen
|
de2a7b796d
OpenSSL: Use connection certificate chain with PKCS#12 extra certs
|
9 years ago |
|
Jouni Malinen
|
0d2c0e6776
OpenSSL: Fix PKCS#12 extra certificate handling
|
9 years ago |
|
Jouni Malinen
|
4fc53159b9
OpenSSL: Fix FIPS mode enabling in dynamic interface case
|
9 years ago |
|
Jouni Malinen
|
1046db8b53
Rename tls_connection_get_keys() to tls_connection_get_random()
|
9 years ago |
|
Jouni Malinen
|
d0eb8a0b4e
OpenSSL: Allow server/client random to be fetched in FIPS mode
|
9 years ago |
|
Jouni Malinen
|
266cf4a0bc
OpenSSL: Comment out openssl_get_keyblock_size() if CONFIG_FIPS=y
|
9 years ago |
|
Jouni Malinen
|
06836013d3
OpenSSL: Remove EAP-FAST TLSv1.0 only workaround for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
c34cd66866
OpenSSL: Drop security level to 0 if needed for EAP-FAST
|
9 years ago |
|
Jouni Malinen
|
16bc3b8935
OpenSSL: Add SHA256 support in openssl_tls_prf() for TLSv1.2
|
9 years ago |
|
Jouni Malinen
|
3de28506d2
OpenSSL: Implement openssl_tls_prf() for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
4d2a1b4f8f
OpenSSL: Implement SSL_set_session_secret_cb() callback for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
005c5dcf43
OpenSSL: Implement tls_connection_get_keys() for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
690e543e8a
OpenSSL: Include openssl/engine.h and openssl/dsa.h explicitly
|
9 years ago |
|
Jouni Malinen
|
e9690eb74e
OpenSSL: Remove extra BIO_write() call on TLS client
|
9 years ago |
|
Jouni Malinen
|
fe1bf32974
Make TLS version number available in STATUS command
|
9 years ago |
|
Jouni Malinen
|
5650d379a3
OpenSSL: Add option to disable use of TLSv1.0
|
9 years ago |
|
Jouni Malinen
|
f24b97972b
OpenSSL: Merge error returns
|
9 years ago |
|
Jouni Malinen
|
84d6a17a27
TLS: Remove unused tls_capabilities()
|
9 years ago |
|
Jouni Malinen
|
fdc5608c12
OpenSSL: Remove SSL_CTX_{get,set}_app_data() compatibility wrapper
|
9 years ago |
 Ben Rosenfeld
|
144b6a0650
OpenSSL: Fix memory leak on an openssl_tls_prf() error path
|
9 years ago |
 MAYANK HAARIT
|
92f190a0ac
OpenSSL: Fix build iwth OpenSSL 0.9.8
|
9 years ago |
 Mike Gerow
|
fd4fb28179
OpenSSL: Try to ensure we don't throw away the PIN unnecessarily
|
10 years ago |
|
Jouni Malinen
|
cb71a8342d
OpenSSL: Clean up TLS PRF implementation
|
10 years ago |
|
Jouni Malinen
|
af851914f8
Make tls_connection_get_keyblock_size() internal to tls_*.c
|
10 years ago |
