summaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Fix date in changelog.HEADmasterTomas Mraz8 days1-1/+1
* disable SSLv3 by default againTomas Mraz8 days2-3/+8
* update the FIPS RSA keygen to be FIPS 186-4 compliantTomas Mraz2014-10-212-5/+58
* new upstream release fixing multiple security issuesf21Tomas Mraz2014-10-162-1/+2
* new upstream release fixing multiple security issuesTomas Mraz2014-10-166-548/+511
* copy negotiated digests when switching certs by SNI (#1150032)Tomas Mraz2014-10-102-1/+39
* add support for RFC 5649Tomas Mraz2014-09-082-1/+1245
* - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_RebuildPeter Robinson2014-08-171-1/+4
* Make the fips_standalone_sha build on PPC.Tomas Mraz2014-08-141-4/+61
* drop RSA X9.31 from RSA FIPS selftestsTomas Mraz2014-08-136-178/+13405
* Merge branch 'master' into f21Tomas Mraz2014-08-0714-848/+240
|\
| * new upstream release fixing multiple moderate security issuesTomas Mraz2014-08-0714-848/+240
| * fix license handlingTom Callaway2014-07-181-3/+9
* | fix license handlingTom Callaway2014-07-181-3/+9
|/
* Sign the test string in the pairwise check instead of empty data.Tomas Mraz2014-07-042-2/+2
* disable SSLv2 and SSLv3 protocols by defaultTomas Mraz2014-06-302-1/+20
* And never call fclose with NULL parameter.Tomas Mraz2014-06-111-10/+11
* Cannot use malloc with OPENSSL_free.Tomas Mraz2014-06-111-2/+2
* use system profile for default cipher listTomas Mraz2014-06-112-1/+296
* fix CVE-2014-0224 fix that broke EAP-FAST session resumption supportTomas Mraz2014-06-103-11/+30
* - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_RebuildDennis Gilmore2014-06-071-1/+4
* new upstream release 1.0.1hTomas Mraz2014-06-057-606/+180
* Drop obsolete and irrelevant docs, Move devel docs to appropriate package, th...Peter Robinson2014-05-311-6/+7
* new upstream release 1.0.1gTomas Mraz2014-05-0715-1253/+482
* pull in upstream patch for CVE-2014-0160Dennis Gilmore2014-04-082-1/+116
* add support for ppc64le architecture (#1072633)Tomas Mraz2014-04-033-2/+25
* properly detect encryption failure in BIOTomas Mraz2014-03-173-7/+713
* use the key length from configuration file if req -newkey rsa is invokedTomas Mraz2014-02-142-2/+45
* Avoid unnecessary reseeding in BN_rand in FIPS mode.Tomas Mraz2014-02-131-0/+19
* Remove obsolete sentence.Tomas Mraz2014-02-131-2/+0
* Add macro for performance build on certain arches.Tomas Mraz2014-02-121-0/+2
* print ephemeral key size negotiated in TLS handshake (#1057715)Tomas Mraz2014-02-123-8/+179
* make expiration and key length changeable by DAYS and KEYLENTomas Mraz2014-02-063-11/+38
* make 3des strength to be 128 bits instead of 168 (#1056616)Tomas Mraz2014-01-222-1/+177
* Two security fixesTomas Mraz2014-01-074-1/+138
* dh->q might be NULL.Tomas Mraz2014-01-071-1/+1
* fix CVE-2013-6449 - crash when version in SSL structure is incorrectTomas Mraz2013-12-202-1/+95
* Additional FIPS requirements changes.Tomas Mraz2013-12-191-72/+544
* drop weak ciphers from the default TLS ciphersuite listTomas Mraz2013-12-184-17/+264
* fix locking and reseeding problems with FIPS drbgTomas Mraz2013-11-192-18/+293
* Fix typos.Tomas Mraz2013-11-151-10/+10
* additional changes required for FIPS validationTomas Mraz2013-11-152-1/+152
* disable verification of certificate, CRL, and OCSP signatures using MD5Tomas Mraz2013-11-131-0/+25
* disable verification of certificate, CRL, and OCSP signatures using MD5Tomas Mraz2013-11-131-1/+10
* add back support for secp521r1 EC curveTomas Mraz2013-11-081-0/+47
* add back support for secp521r1 EC curveTomas Mraz2013-11-085-56/+111
* fix misdetection of RDRAND support on Cyrix CPUS (from upstream) (#1022346)Tomas Mraz2013-10-292-1/+24
* do not advertise ECC curves we do not support (#1022493)Tomas Mraz2013-10-242-5/+43
* Merge remote-tracking branch 'origin/f19' into f19Tomas Mraz2013-10-160-0/+0
|\
| * resolve bugzilla 319901 (phew! only took 6 years & 9 days)Tom Callaway2013-10-154-16/+2064