openssl/ssl
Kurt Roeckx aba03ae571 Reduce the security bits for MD5 and SHA1 based signatures in TLS
This has as effect that SHA1 and MD5+SHA1 are no longer supported at
security level 1, and that TLS < 1.2 is no longer supported at the
default security level of 1, and that you need to set the security
level to 0 to use TLS < 1.2.

Reviewed-by: Tim Hudson <tjh@openssl.org>
GH: #10787
2020-06-27 08:41:40 +02:00
..
record TLSv13: add kTLS support 2020-06-08 11:13:53 +01:00
statem Fix the DTLS1_COOKIE_LENGTH value 2020-06-19 11:25:35 +01:00
bio_ssl.c Update copyright year 2020-05-15 14:09:49 +01:00
build.info
d1_lib.c
d1_msg.c
d1_srtp.c Update copyright year 2020-05-15 14:09:49 +01:00
methods.c
pqueue.c
s3_cbc.c Update copyright year 2020-04-23 13:55:52 +01:00
s3_enc.c Update copyright year 2020-04-23 13:55:52 +01:00
s3_lib.c Update the various SSL group getting and setting functions 2020-06-19 10:19:31 +01:00
s3_msg.c
ssl_asn1.c
ssl_cert_table.h
ssl_cert.c SSL: refactor ssl_cert_lookup_by_pkey() to work with provider side keys 2020-05-15 16:43:31 +02:00
ssl_ciph.c Add cipher list ciphersuites which using encryption algorithm in mode CBC. 2020-06-04 17:45:00 +03:00
ssl_conf.c SSL_OP_DISABLE_TLSEXT_CA_NAMES option implementation 2020-05-07 16:14:47 +03:00
ssl_err.c Provider a better error message if we fail to copy parameters 2020-06-19 10:19:32 +01:00
ssl_init.c Update copyright year 2020-04-23 13:55:52 +01:00
ssl_lib.c Don't attempt to duplicate the BIO state in SSL_dup 2020-06-23 12:46:47 +01:00
ssl_local.h Update the various SSL group getting and setting functions 2020-06-19 10:19:31 +01:00
ssl_mcnf.c
ssl_rsa.c Rename EVP_PKEY_cmp() to EVP_PKEY_eq() and EVP_PKEY_cmp_parameters() to EVP_PKEY_parameters_eq() 2020-05-27 14:36:13 +02:00
ssl_sess.c In OpenSSL builds, declare STACK for datatypes ... 2020-04-24 16:42:46 +02:00
ssl_stat.c
ssl_txt.c Update copyright year 2020-04-23 13:55:52 +01:00
ssl_utst.c
t1_enc.c kdf: make function naming consistent. 2020-06-11 11:14:21 +10:00
t1_lib.c Reduce the security bits for MD5 and SHA1 based signatures in TLS 2020-06-27 08:41:40 +02:00
t1_trce.c t1_trce: Fix remaining places where the 24 bit shift overflow happens 2020-05-20 17:31:56 +02:00
tls13_enc.c The EVP_MAC functions have been renamed for consistency. The EVP_MAC_CTX_* 2020-06-11 11:16:37 +10:00
tls_srp.c Update copyright year 2020-04-23 13:55:52 +01:00