moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-08-13 17:03:50 -04:00
Code Issues Releases Wiki Activity
6efd2fa529
curl/lib/vtls
History
Daniel Stenberg 6efd2fa529 mbedtls/polarssl: set "hostname" unconditionally 
...as otherwise the TLS libs will skip the CN/SAN check and just allow
connection to any server. curl previously skipped this function when SNI
wasn't used or when connecting to an IP address specified host.

CVE-2016-3739

Bug: https://curl.haxx.se/docs/adv_20160518A.html
Reported-by: Moti Avrahami
2016-05-17 14:48:17 +02:00
..
axtls.c code: style updates 2016-04-03 22:38:36 +02:00
axtls.h URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
cyassl.c TLS: move the ALPN/NPN enable bits to the connection 2016-05-09 15:30:25 -04:00
cyassl.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
darwinssl.c darwinssl.c: fix OS X codename typo in comment 2016-05-13 09:59:17 +02:00
darwinssl.h URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
gskit.c URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
gskit.h URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
gtls.c TLS: move the ALPN/NPN enable bits to the connection 2016-05-09 15:30:25 -04:00
gtls.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
mbedtls.c mbedtls/polarssl: set "hostname" unconditionally 2016-05-17 14:48:17 +02:00
mbedtls.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
nss.c TLS: move the ALPN/NPN enable bits to the connection 2016-05-09 15:30:25 -04:00
nssg.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
openssl.c openssl: get_cert_chain: fix NULL dereference 2016-05-17 09:34:33 +02:00
openssl.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
polarssl_threadlock.c URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
polarssl_threadlock.h URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
polarssl.c mbedtls/polarssl: set "hostname" unconditionally 2016-05-17 14:48:17 +02:00
polarssl.h tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
schannel.c TLS: move the ALPN/NPN enable bits to the connection 2016-05-09 15:30:25 -04:00
schannel.h URLs: change all http:// URLs to https:// 2016-02-03 00:19:02 +01:00
vtls.c tls: make setting pinnedkey option fail if not supported 2016-05-01 17:05:38 +02:00
vtls.h vtls.h: remove a space before semicolon 2016-04-19 08:53:31 +02:00