summaryrefslogtreecommitdiff
path: root/lib/libssl/t1_lib.c
AgeCommit message (Expand)Author
2017-08-09Pull out the code that identifies if we have an ECC cipher in the cipherJoel Sing
2017-07-24Rewrite and move the last remnants of the ServerHello SNI handling intoJoel Sing
2017-07-24Rewrite the TLS Renegotiation Indication extension handling using CBB/CBSJoel Sing
2017-07-23Hook the TLS extension parsing framework into the serverhello parsing.Joel Sing
2017-07-19Check the return value of CBB_init_fixed(), since it can fail.Joel Sing
2017-07-16Start rewriting TLS extension handling.Joel Sing
2017-05-07Move state from ssl->internal to the handshake structure.Bob Beck
2017-05-06Bring in an SSL_HANDSHAKE structure and commence the great shovellingBob Beck
2017-02-07Change SSLerror() back to taking two args, with the first one being an SSL *.Bob Beck
2017-01-26Finish the fallout of the SSLerr->SSLerror cleanup to get rid of the uglyBob Beck
2017-01-26Send the error function codes to rot in the depths of hell where they belongBob Beck
2017-01-26Remove most of SSL3_ENC_METHOD - we can just inline the function callsJoel Sing
2017-01-24sk_pop_free() checks for NULL so do not bother doing it from the callers.Joel Sing
2017-01-24#if 0 the ecformats_list and eccurves_list - these are currently unused butJoel Sing
2017-01-24Add support for setting the supported EC curves viaJoel Sing
2017-01-24Correct bounds checks used when generating the EC curves extension.Joel Sing
2017-01-24Fix typo in brainpool curve name within a comment.Joel Sing
2017-01-23Move options and mode from SSL_CTX and SSL to internal, since these can beJoel Sing
2017-01-23Split most of SSL_METHOD out into an internal variant, which is opaque.Joel Sing
2017-01-23send state and rstate from ssl_st into internal. There are accessorsBob Beck
2017-01-23Move a large part of ssl_st into internal, so we can see what squeals.Bob Beck
2017-01-23Move most of the fields in SSL_CTX to internal - the ones that remain areJoel Sing
2017-01-23move the callbacks from ssl_st to internalBob Beck
2017-01-23Move callback function pointers and argument pointers from SSL_CTX toJoel Sing
2017-01-22Move most of the SSL3_STATE fields to internal - the ones that remain areJoel Sing
2017-01-22Move ALPN and NPN fields from SSL/SSL_CTX to internal.Joel Sing
2017-01-22Move internal parts of ssl_session_st to internalBob Beck
2016-12-21Add support for ECDHE with X25519.Joel Sing
2016-12-18Convert ssl3_get_server_hello() to CBS.Joel Sing
2016-11-05Convert ssl3_get_server_kex_ecdhe() to CBS, simplifying tls1_check_curve()Joel Sing
2016-10-19Remove support for fixed ECDH cipher suites - these is not widely supportedJoel Sing
2016-10-02Check for and handle failure of HMAC_{Update,Final} or EVP_DecryptUpdate()Philip Guenther
2016-10-02Detect zero-length encrypted session data early, instead of when malloc(0)Philip Guenther
2016-09-22Avoid unbounded memory growth, which can be triggered by a clientJoel Sing
2016-09-22Improve ticket validity checking when tlsext_ticket_key_cb() callbackPhilip Guenther
2016-08-27Be more strict when parsing TLS extensions.Joel Sing
2016-05-30deprecate internal use of EVP_[Cipher|Encrypt|Decrypt]_Final.Bob Beck
2016-03-10http -> https for a few more IETF URLs in comments or man pagesMichael McConville
2015-09-12Remove most of the SSLv3 version checks and a few TLS v1.0.Doug Hogan
2015-09-01Remove the ssl_prepare_{client,server}hello_tlsext() functions, which areJoel Sing
2015-08-19Properly handle missing TLS extensions in client hello as a non-failure.Brent Cook
2015-07-24Convert tls1_process_ticket to CBS.Doug Hogan
2015-07-24Convert tls1_process_sigalgs to CBS.Doug Hogan
2015-07-19Allow *_free() functions in libssl to handle NULL input.Doug Hogan
2015-07-17Remove compat hack that disabled ECDHE-ECDSA on OS X.Doug Hogan
2015-06-19Convert tls1_alpn_handle_client_hello() to CBS.Doug Hogan
2015-06-17Convert ssl_next_proto_validate to CBS.Doug Hogan
2015-06-17Convert tls1_check_curve to CBS.Doug Hogan
2015-03-02Fix a minor information leak that was introduced in t1_lib.c r1.71, wherebyJoel Sing
2014-12-14unifdef OPENSSL_NO_NEXTPROTONEG, which is one of the last standing #ifndefJoel Sing