summaryrefslogtreecommitdiff
path: root/lib/libssl/ssl_clnt.c
AgeCommit message (Expand)Author
2022-01-11Remove peer_pkeys from SSL_SESSION.Joel Sing
2022-01-11Rename 'peer' to 'peer_cert' in SSL_SESSION.Joel Sing
2022-01-11Plumb decode errors through key share parsing code.Joel Sing
2022-01-09ssl_check_srvr_ecc_cert_and_alg() only returns 0/1 - test accordingly.Joel Sing
2022-01-09Swap arguments to ssl_check_srvr_ecc_cert_and_alg()Joel Sing
2022-01-09Clean up ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Return 0/1 from ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Remove a comment from Captain Obvious.Joel Sing
2022-01-09Clean up pkey handling in ssl3_get_server_key_exchange()Joel Sing
2022-01-08Merge SESS_CERT into SSL_SESSION.Joel Sing
2022-01-06Convert legacy TLS client to tls_key_share.Joel Sing
2022-01-04Return 0 on failure from send/get kex functions in the legacy stack.Joel Sing
2022-01-04Use normal result testing for tls1_check_curve().Joel Sing
2022-01-04Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.Joel Sing
2021-12-09Convert ssl_clnt.c to opaque EVP_MD_CTXTheo Buehler
2021-12-04Move the minimum DHE key size check into ssl_kex_peer_params_dhe()Joel Sing
2021-12-04Check DH public key in ssl_kex_peer_public_dhe().Joel Sing
2021-11-29Factor out/rewrite DHE key exchange.Joel Sing
2021-11-26Stop reaching into EVP_PKEY in the rest of libssl.Theo Buehler
2021-11-19libssl: don't reach for pkey->save_type.Theo Buehler
2021-10-25Fold SSL_SESSION_INTERNAL back into SSL_SESSION.Joel Sing
2021-10-23Unhandroll X509_up_ref()Theo Buehler
2021-10-23Provide a way to determine our maximum legacy version.Joel Sing
2021-10-23Fold DTLS1_STATE_INTERNAL into DTLS1_STATE.Joel Sing
2021-10-23Untangle ssl3_get_message() return values.Joel Sing
2021-10-23Change tlsext_tick_lifetime_hint to uint32_t.Joel Sing
2021-09-03Ensure that a server hello does not have trailing data.Joel Sing
2021-09-02We need to allow for either a CERTIFICATE or CERTIFICATE_STATUS messageBob Beck
2021-09-02RFC 6066 section 8 allows the server MAY choose not send the CertificateStatusBob Beck
2021-08-30Clean up and simplify info and msg callbacks.Joel Sing
2021-06-30Correct sigalg hash usage when signing content for client verify.Joel Sing
2021-06-29Pull sigalg selection up into ssl3_send_client_verify().Joel Sing
2021-06-29Track sigalg used by ourselves and our peer in the legacy stack.Joel Sing
2021-06-29Convert legacy stack client to ssl_sigalg_for_peer().Joel Sing
2021-06-29Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok().Joel Sing
2021-06-27Have ssl3_send_client_verify() pass *pkey to called functions.Joel Sing
2021-06-27Change ssl_sigalgs_from_value() to perform sigalg list selection.Joel Sing
2021-06-27Rename ssl_sigalg() to ssl_sigalg_from_value().Joel Sing
2021-05-16Make local header inclusion consistent.Joel Sing
2021-05-16Move DTLS structs/definitions/prototypes to dtls_locl.h.Joel Sing
2021-05-16Explicitly include <openssl/opensslconf.h> in files using OPENSSL_NO_*Joel Sing
2021-05-02Clean up tls1_change_cipher_state().Joel Sing
2021-05-02Clean up dtls1_reset_seq_numbers().Joel Sing
2021-04-30Clean up and harden TLSv1.2 master key derivation.Joel Sing
2021-04-25Clean up derivation of finished/peer finished.Joel Sing
2021-04-21Clean up TLSv1.2 certificate request handshake data.Joel Sing
2021-04-19Move reuse_message, message_type, message_size and cert_verify into theJoel Sing
2021-04-11Update a stale comment and fix a typo.Theo Buehler
2021-03-27Garbage collect s->internal->typeTheo Buehler
2021-03-24Rename new_cipher to cipher.Joel Sing