luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
447873dd4c
curl/lib/vtls
History
Daniel Stenberg 5c7da89d40
nss: return error if seemingly stuck in a cert loop 
CVE-2022-27781

Reported-by: Florian Kohnhäuser
Bug: https://curl.se/docs/CVE-2022-27781.html
Closes #8822
2022-05-09 10:07:15 +02:00
..
bearssl.c vtls: use a generic "ALPN, server accepted" message 2022-03-31 14:21:01 +02:00
bearssl.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
gskit.c gskit_connect_step1: fixed bogus setsockopt calls 2022-05-04 23:33:17 +02:00
gskit.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
gtls.c gnutls: don't leak the SRP credentials in redirects 2022-04-26 07:46:20 +02:00
gtls.h gtls: add gnutls include for the session type 2021-12-29 23:46:13 +01:00
hostcheck.c hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
hostcheck.h hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
keylog.c curl.se: new home 2020-11-04 23:59:47 +01:00
keylog.h curl.se: new home 2020-11-04 23:59:47 +01:00
mbedtls_threadlock.c misc: update incorrect copyright year ranges 2021-08-16 11:21:47 +02:00
mbedtls_threadlock.h curl.se: new home 2020-11-04 23:59:47 +01:00
mbedtls.c mbedtls: fix some error messages 2022-05-05 03:13:24 -04:00
mbedtls.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
nss.c nss: return error if seemingly stuck in a cert loop 2022-05-09 10:07:15 +02:00
nssg.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
openssl.c openssl: define HAVE_SSL_CTX_SET_EC_CURVES for libressl 2022-04-29 23:02:45 +02:00
openssl.h ngtcp2: add client certificate authentication for OpenSSL 2022-03-10 08:41:37 +01:00
rustls.c vtls: use a generic "ALPN, server accepted" message 2022-03-31 14:21:01 +02:00
rustls.h copyright: update copyright year ranges to 2021 2021-03-27 23:00:14 +01:00
schannel_verify.c schannel: remove dead code that will never run 2022-04-06 08:33:20 +02:00
schannel.c lib: remove exclamation marks 2022-04-16 11:55:05 +02:00
schannel.h schannel: move the algIds array out of schannel.h 2022-02-18 08:03:22 +01:00
sectransp.c sectransp: bail out if SSLSetPeerDomainName fails 2022-05-06 16:25:20 +02:00
sectransp.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
vtls.c url: check sasl additional parameters for connection reuse. 2022-04-25 11:44:05 +02:00
vtls.h vtls: use a generic "ALPN, server accepted" message 2022-03-31 14:21:01 +02:00
wolfssl.c lib: remove exclamation marks 2022-04-16 11:55:05 +02:00
wolfssl.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
x509asn1.c x509asn1: make do_pubkey handle EC public keys 2022-05-05 08:44:23 +02:00
x509asn1.h x509asn1: toggle off functions not needed for diff tls backends 2022-02-05 00:11:34 +01:00