index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
lib
/
libssl
/
ssl_tlsext.c
Age
Commit message (
Expand
)
Author
2022-01-04
Pull key share group/length CBB code up from tls13_key_share_public()
Joel Sing
2022-01-04
Only allow zero length key shares when we know we're doing HRR.
Joel Sing
2021-11-01
Improve SNI hostname validation.
Joel Sing
2021-10-25
Fold SSL_SESSION_INTERNAL back into SSL_SESSION.
Joel Sing
2021-09-10
Do not ignore SSL_TLSEXT_ERR_FATAL from the ALPN callback
Theo Buehler
2021-09-02
Correct the is_server flag in the call to the debug callback to be correct.
Bob Beck
2021-06-29
Use appropriate TLS version when building client sigalg extensions.
Joel Sing
2021-06-27
Change ssl_sigalgs_build() to perform sigalg list selection.
Joel Sing
2021-06-11
Only use SSL_AD_* internally.
Joel Sing
2021-06-08
Simplify tlsext_ecpf_parse()
Theo Buehler
2021-06-08
Adjust alert for ECPF without uncompressed point format
Theo Buehler
2021-05-16
Make local header inclusion consistent.
Joel Sing
2021-05-16
Explicitly include <openssl/opensslconf.h> in files using OPENSSL_NO_*
Joel Sing
2021-04-22
Only hash known CH extensions
Theo Buehler
2021-03-29
Move finished and peer finished to the handshake struct.
Joel Sing
2021-03-21
Move the TLSv1.3 handshake struct inside the shared handshake struct.
Joel Sing
2021-03-10
Improve internal version handling.
Joel Sing
2021-02-08
Remove bogus DTLS checks to disable ECC and OCSP.
Joel Sing
2020-10-14
Replace SSL_IS_DTLS with SSL_is_dtls().
Joel Sing
2020-10-11
Constipate srtp_known_profiles, pushing it into .data.rel.ro
Philip Guenther
2020-10-11
Constipate ssl3_ciphers and tls1[23]_sigalgs*, pushing them into
Philip Guenther
2020-09-09
Set alpn_selected_len = 0 when alpn_selected is NULL
Kinichiro Inoguchi
2020-08-03
Only parse a client's status_request in the CH
Theo Buehler
2020-08-03
Ensure clients only send a status_request in the CH
Theo Buehler
2020-08-03
Correctly handle server requests for an OCSP response
Theo Buehler
2020-07-03
zap trailing whitespace on one line
Theo Buehler
2020-07-03
Make the message type available to the extension functions
Theo Buehler
2020-07-03
Improve argument order for the internal tlsext API
Theo Buehler
2020-06-06
Implement a rolling hash of the ClientHello message, Enforce RFC 8446
Bob Beck
2020-05-29
Mop up servername_done, which is unused.
Joel Sing
2020-05-24
Fix some stylistic nits from jsing.
Theo Buehler
2020-05-23
Enforce that SNI hostnames be correct as per rfc 6066 and 5980.
Bob Beck
2020-05-23
Do not assume that server_group != 0 or tlsext_supportedgroups != NULL
Theo Buehler
2020-05-19
Only send ocsp staples if the client asked for ocsp certificate status.
Bob Beck
2020-05-19
Add support for TLS 1.3 server to send certificate status
Bob Beck
2020-05-13
Fix pesky whitespace.
Joel Sing
2020-05-10
Use size_t for OCSP response length.
Joel Sing
2020-05-10
Only reset TLS extension state when parsing client hello or server hello.
Joel Sing
2020-05-09
Add support for certificate status requests in TLS 1.3 client
Bob Beck
2020-05-09
Add support for HelloRetryRequests in the TLSv1.3 server.
Joel Sing
2020-04-21
Handle TLSv1.3 key shares other than X25519 on the server side.
Joel Sing
2020-02-18
drop unused include <openssl/curve25519.h>
Theo Buehler
2020-02-16
Avoid potential NULL dereference when parsing a server keyshare extension.
Joel Sing
2020-02-06
Correctly handle key share extensions in a hello retry request.
Joel Sing
2020-02-01
Correctly unpack client key shares.
Joel Sing
2020-01-30
Provide struct/functions for handling TLSv1.3 key shares.
Joel Sing
2020-01-26
Add sigalgs for server side to enable client certificate processing
Bob Beck
2020-01-25
Only discard the extension block for client hello and server hello
Joel Sing
2020-01-25
Only send an RI extension for pre-TLSv1.3 versions.
Joel Sing
2020-01-22
Rename failure into alert_desc in tlsext_ocsp_server_parse().
Theo Buehler
[next]