summaryrefslogtreecommitdiff
path: root/lib/libssl/ssl_srvr.c
AgeCommit message (Expand)Author
2022-07-03Simplify certificate list handling code in legacy server.Joel Sing
2022-07-02Rename uses 'curve' to 'group' and rework tls1 group API.Theo Buehler
2022-06-30Add checks to ensure we do not initiate or negotiate handshakes withTheo Buehler
2022-06-29Check the security of DH key sharesTheo Buehler
2022-06-29Check the security level when building sigalgsTheo Buehler
2022-06-28Free ciphers before assigning to themTheo Buehler
2022-06-07Add error checking to tls_session_secret_cb() callsTheo Buehler
2022-02-05Bye bye S3I.Joel Sing
2022-01-11Remove peer_pkeys from SSL_SESSION.Joel Sing
2022-01-11Rename 'peer' to 'peer_cert' in SSL_SESSION.Joel Sing
2022-01-11Plumb decode errors through key share parsing code.Joel Sing
2022-01-09Clean up ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Return 0/1 from ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Fix GOST skip certificate verify handling.Joel Sing
2022-01-08Merge SESS_CERT into SSL_SESSION.Joel Sing
2022-01-08Rename CERT to SSL_CERT and CERT_PKEY to SSL_CERT_PKEY.Joel Sing
2022-01-07Rename dh_tmp to dhe_params.Joel Sing
2022-01-07Convert legacy server to tls_key_share.Joel Sing
2022-01-04Return 0 on failure from send/get kex functions in the legacy stack.Joel Sing
2021-12-26Hoist memset of CBB above EVP_MD_CTX_new() and HMAC_CTX_new() to avoidTheo Buehler
2021-12-09Convert ssl_srvr.c to opaque EVP_MD_CTX.Theo Buehler
2021-12-04Clean up and refactor server side DHE key exchange.Joel Sing
2021-11-29Convert server serialisation of DHE parameters/public key to new functions.Joel Sing
2021-11-26Stop reaching into EVP_PKEY in the rest of libssl.Theo Buehler
2021-11-19libssl: don't reach for pkey->save_type.Theo Buehler
2021-10-25Fold SSL_SESSION_INTERNAL back into SSL_SESSION.Joel Sing
2021-10-23Provide a way to determine our maximum legacy version.Joel Sing
2021-10-23Fold DTLS1_STATE_INTERNAL into DTLS1_STATE.Joel Sing
2021-10-23Untangle ssl3_get_message() return values.Joel Sing
2021-09-03Ensure that a client hello does not have trailing data.Joel Sing
2021-08-30Clean up and simplify info and msg callbacks.Joel Sing
2021-06-29Track sigalg used by ourselves and our peer in the legacy stack.Joel Sing
2021-06-29Convert legacy stack server to ssl_sigalg_for_peer().Joel Sing
2021-06-29Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok().Joel Sing
2021-06-27Change ssl_sigalgs_from_value() to perform sigalg list selection.Joel Sing
2021-06-27Rename ssl_sigalg() to ssl_sigalg_from_value().Joel Sing
2021-06-27Change ssl_sigalgs_build() to perform sigalg list selection.Joel Sing
2021-05-16Make local header inclusion consistent.Joel Sing
2021-05-16Move DTLS structs/definitions/prototypes to dtls_locl.h.Joel Sing
2021-05-16Explicitly include <openssl/opensslconf.h> in files using OPENSSL_NO_*Joel Sing
2021-05-02Clean up tls1_change_cipher_state().Joel Sing
2021-05-02In the TLSv1.2 server, set up the key block after sending the CCS.Joel Sing
2021-05-02Clean up dtls1_reset_seq_numbers().Joel Sing
2021-04-30Clean up and harden TLSv1.2 master key derivation.Joel Sing
2021-04-25Clean up derivation of finished/peer finished.Joel Sing
2021-04-21Clean up TLSv1.2 certificate request handshake data.Joel Sing
2021-04-19Move reuse_message, message_type, message_size and cert_verify into theJoel Sing
2021-03-29Avoid transcript initialisation when sending a TLS HelloRequest.Joel Sing
2021-03-27Garbage collect s->internal->typeTheo Buehler
2021-03-24Rename new_cipher to cipher.Joel Sing