summaryrefslogtreecommitdiff
path: root/lib/libssl/ssl_clnt.c
AgeCommit message (Expand)Author
2022-12-26spelling fixes; from paul tagliamonteJason McIntyre
2022-11-26Make internal header file names consistentTheo Buehler
2022-10-20Annotate misuse of EVP_Digest()Theo Buehler
2022-10-02Get rid of SSL_CTX_INTERNAL and SSL_INTERNAL.Joel Sing
2022-10-01Move handshake message handling functions from ssl_both.c to client/server.Joel Sing
2022-08-17Deduplicate peer certificate chain processing code.Joel Sing
2022-08-15Remove redeclaration of retTheo Buehler
2022-07-03Simplify certificate list handling code in legacy client.Joel Sing
2022-07-02Rename uses 'curve' to 'group' and rework tls1 group API.Theo Buehler
2022-06-30Add checks to ensure we do not initiate or negotiate handshakes withTheo Buehler
2022-06-29There's tentacles, tentacles everywhereTheo Buehler
2022-06-29Check the security of DH key sharesTheo Buehler
2022-06-07Simplify various CBS_write_bytes() callsTheo Buehler
2022-06-07Add missing error check call in ssl3_get_new_session_ticket()Theo Buehler
2022-06-07Another small readability tweak: compare explicitly against 0 and NULL,Theo Buehler
2022-06-07Add error checking to tls_session_secret_cb() callsTheo Buehler
2022-06-06Remove incorrect and ungrammattical commentTheo Buehler
2022-02-05Bye bye S3I.Joel Sing
2022-02-03Cleanup/simplify ssl_cert_type()Joel Sing
2022-01-24Garbage collect unused ret in ssl3_get_new_session_ticket()Theo Buehler
2022-01-24In ssl3_get_server_key_exchange() switch a 'goto err' toTheo Buehler
2022-01-11Remove peer_pkeys from SSL_SESSION.Joel Sing
2022-01-11Rename 'peer' to 'peer_cert' in SSL_SESSION.Joel Sing
2022-01-11Plumb decode errors through key share parsing code.Joel Sing
2022-01-09ssl_check_srvr_ecc_cert_and_alg() only returns 0/1 - test accordingly.Joel Sing
2022-01-09Swap arguments to ssl_check_srvr_ecc_cert_and_alg()Joel Sing
2022-01-09Clean up ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Return 0/1 from ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Remove a comment from Captain Obvious.Joel Sing
2022-01-09Clean up pkey handling in ssl3_get_server_key_exchange()Joel Sing
2022-01-08Merge SESS_CERT into SSL_SESSION.Joel Sing
2022-01-06Convert legacy TLS client to tls_key_share.Joel Sing
2022-01-04Return 0 on failure from send/get kex functions in the legacy stack.Joel Sing
2022-01-04Use normal result testing for tls1_check_curve().Joel Sing
2022-01-04Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.Joel Sing
2021-12-09Convert ssl_clnt.c to opaque EVP_MD_CTXTheo Buehler
2021-12-04Move the minimum DHE key size check into ssl_kex_peer_params_dhe()Joel Sing
2021-12-04Check DH public key in ssl_kex_peer_public_dhe().Joel Sing
2021-11-29Factor out/rewrite DHE key exchange.Joel Sing
2021-11-26Stop reaching into EVP_PKEY in the rest of libssl.Theo Buehler
2021-11-19libssl: don't reach for pkey->save_type.Theo Buehler
2021-10-25Fold SSL_SESSION_INTERNAL back into SSL_SESSION.Joel Sing
2021-10-23Unhandroll X509_up_ref()Theo Buehler
2021-10-23Provide a way to determine our maximum legacy version.Joel Sing
2021-10-23Fold DTLS1_STATE_INTERNAL into DTLS1_STATE.Joel Sing
2021-10-23Untangle ssl3_get_message() return values.Joel Sing
2021-10-23Change tlsext_tick_lifetime_hint to uint32_t.Joel Sing
2021-09-03Ensure that a server hello does not have trailing data.Joel Sing
2021-09-02We need to allow for either a CERTIFICATE or CERTIFICATE_STATUS messageBob Beck
2021-09-02RFC 6066 section 8 allows the server MAY choose not send the CertificateStatusBob Beck