 Jouni Malinen
|
0f30844722
Revert "BoringSSL: Define RSA_bits() helper"
|
7 years ago |
|
Jouni Malinen
|
a2c442be25
OpenSSL: Allow cipher list to be overridden for tls_suiteb=1 case
|
7 years ago |
 David Benjamin
|
63942cf0f3
OpenSSL: Avoid SSL*_use_default_passwd_cb()
|
7 years ago |
|
David Benjamin
|
149143e31d
OpenSSL: Remove unnecessary os_strdup() from password callback
|
7 years ago |
 Jouni Malinen
|
7721fe082b
BoringSSL: Comment out SSL_set_default_passwd_cb*() calls
|
7 years ago |
|
Jouni Malinen
|
b9dc63c261
BoringSSL: Comment out SSL_set1_sigalgs_list() call
|
7 years ago |
|
Jouni Malinen
|
3cfbd3b0f6
BoringSSL: Define RSA_bits() helper
|
7 years ago |
|
Jouni Malinen
|
1c9663cf6b
OpenSSL: Force RSA 3072-bit DH prime size limit for Suite B
|
7 years ago |
|
Jouni Malinen
|
2ed70c7586
OpenSSL: Add option to disable ECDHE with Suite B RSA
|
7 years ago |
|
Jouni Malinen
|
4eb8cfe06b
OpenSSL: Force RSA 3072-bit key size limit for Suite B
|
7 years ago |
|
Jouni Malinen
|
60ed2f24eb
Suite B: Add tls_suiteb=1 parameter for RSA 3k key case
|
7 years ago |
|
Jouni Malinen
|
89971d8b1e
OpenSSL: Clear default_passwd_cb more thoroughly
|
7 years ago |
 Beniamino Galvani
|
f665c93e1d
OpenSSL: Fix private key password handling with OpenSSL >= 1.1.0f
|
7 years ago |
|
Beniamino Galvani
|
2b9891bd6e
OpenSSL: Add build option to select default ciphers
|
7 years ago |
|
Jouni Malinen
|
85cff4b0d8
OpenSSL: Try SHA256 hash for OCSP certificate matching
|
8 years ago |
 Johannes Berg
|
a1f11e34c4
Use os_memdup()
|
8 years ago |
 Paul Stewart
|
6d08f23f0a
OpenSSL/BoringSSL: Read certificate chain from client_cert on Android
|
8 years ago |
|
Jouni Malinen
|
d7f12e4eb9
OpenSSL: Make sure local certificate auto chaining is enabled
|
8 years ago |
|
Jouni Malinen
|
4be02b71bb
OpenSSL: Remove SSL_{CTX_,}_clear_options ifdefs
|
8 years ago |
 Julian Ospald
|
b70d508c50
LibreSSL: Fix compatibility for EAP-FAST
|
8 years ago |
 Christian Neukirchen
|
df426738fb
LibreSSL: Fix TLS initialization/deinitialization
|
8 years ago |
 David Woodhouse
|
c3d7fb7e27
OpenSSL: Initialise PKCS#11 engine even if found with ENGINE_by_id()
|
9 years ago |
|
David Benjamin
|
1cece2fafb
OpenSSL: Comment out tls_connection_get_eap_fast_key without EAP-FAST
|
9 years ago |
|
David Benjamin
|
7358170787
TLS: Split tls_connection_prf() into two functions
|
9 years ago |
|
David Benjamin
|
f150db6c83
OpenSSL: Remove two more accesses of ssl_ctx->cert_store
|
9 years ago |
|
David Benjamin
|
e4471338c6
OpenSSL: BoringSSL has SSL_get_client_random(), etc.
|
9 years ago |
|
Jouni Malinen
|
3a583e0023
OpenSSL: Fix PKCS#12 parsing of extra certificates with OpenSSL 1.0.1
|
9 years ago |
|
Jouni Malinen
|
8bcf8de827
OpenSSL: Fix memory leak in PKCS12 additional certificate parsing
|
9 years ago |
|
Jouni Malinen
|
d9a0f69747
OpenSSL: Fix memory leak in OCSP parsing
|
9 years ago |
|
Jouni Malinen
|
29bc76e3d3
OpenSSL: Do not use library init/deinit functions with 1.1.0
|
9 years ago |
