summaryrefslogtreecommitdiff
path: root/lib/libssl/tls13_client.c
AgeCommit message (Expand)Author
2022-02-03Cleanup/simplify ssl_cert_type()Joel Sing
2022-01-11Remove peer_pkeys from SSL_SESSION.Joel Sing
2022-01-11Rename 'peer' to 'peer_cert' in SSL_SESSION.Joel Sing
2022-01-08Merge SESS_CERT into SSL_SESSION.Joel Sing
2022-01-08Rename CERT to SSL_CERT and CERT_PKEY to SSL_CERT_PKEY.Joel Sing
2022-01-05Rename tls13_key_share to tls_key_share.Joel Sing
2021-10-25Fold SSL_SESSION_INTERNAL back into SSL_SESSION.Joel Sing
2021-10-23Provide a way to determine our maximum legacy version.Joel Sing
2021-06-29Provide a ssl_sigalg_for_peer() function and use in the TLSv1.3 code.Joel Sing
2021-06-29Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok().Joel Sing
2021-06-29Require a ServerHello following a HelloRetryRequest to use the same cipher.Joel Sing
2021-06-27Track the sigalgs used by ourselves and our peer.Joel Sing
2021-06-27Change ssl_sigalgs_from_value() to perform sigalg list selection.Joel Sing
2021-06-27Rename ssl_sigalg() to ssl_sigalg_from_value().Joel Sing
2021-06-08Rewrap a comment to avoid an overlong lineTheo Buehler
2021-05-16Make local header inclusion consistent.Joel Sing
2021-05-16Avoid pulling ssl_sigalgs.h in via ssl_locl.h.Joel Sing
2021-03-29Move finished and peer finished to the handshake struct.Joel Sing
2021-03-24Rename new_cipher to cipher.Joel Sing
2021-03-21Move the TLSv1.3 handshake struct inside the shared handshake struct.Joel Sing
2021-03-10Improve internal version handling.Joel Sing
2021-02-25Only use TLS versions internally (rather than both TLS and DTLS versions).Joel Sing
2021-02-22Fix bizarre punctuation and capitalization in a comment.Theo Buehler
2021-02-22Simplify version checks in the TLSv1.3 clientTheo Buehler
2021-01-06Use tls13_secret_{init,cleanup}() for the finished_keyTheo Buehler
2021-01-05Use consistent names in tls13_{client,server}_finished_{recv,send}().Joel Sing
2020-12-14Fix SSL_get{,_peer}_finished() with TLSv1.3Theo Buehler
2020-09-11Remove cipher_list_by_id.Joel Sing
2020-07-03Improve argument order for the internal tlsext APITheo Buehler
2020-06-04Improve client certificate selection for TLSv1.3Theo Buehler
2020-05-23Wire up SSL_MODE_AUTO_RETRY mode to retrying after PHH messages.Joel Sing
2020-05-19Replace SSL_PKEY_RSA_ENC/SSL_PKEY_RSA_SIGN with SSL_PKEY_RSA.Joel Sing
2020-05-19Add support for TLS 1.3 server to send certificate statusBob Beck
2020-05-17Send a decode error alert if a server provides an empty certificate list.Joel Sing
2020-05-16Ensure that a TLSv1.3 server has provided a certificate.Joel Sing
2020-05-13Switch the legacy version to TLS1_2_VERSION when processing server hello.Joel Sing
2020-05-10Provide alert defines for TLSv1.3 and use in the TLSv1.3 code.Joel Sing
2020-05-09Send dummy ChangeCipherSpec messages from the TLSv1.3 client.Joel Sing
2020-05-09Add a middlebox_compat flag and condition session ID randomisation on it.Joel Sing
2020-05-09Add support for certificate status requests in TLS 1.3 clientBob Beck
2020-04-28Move legacy stack interfacing functions into tls13_legacy.c.Joel Sing
2020-04-28Rename tls13_client_synthetic_handshake_message() and move to tls13_lib.c.Joel Sing
2020-04-27Shuffle some functions around.Joel Sing
2020-04-22Improve TLSv1.3 state machine for HelloRetryRequest handling.Joel Sing
2020-04-21Consolidate TLSv1.3 constants.Joel Sing
2020-04-17Generate client key share using our preferred group.Joel Sing
2020-04-08Ensure legacy session ID is persistent during client TLS session.Joel Sing
2020-04-06Send a zero-length session identifier if TLSv1.3 is not enabled.Joel Sing
2020-03-10Use ctx->hs->secrets rather than the S3I(s) version.Joel Sing
2020-02-23According to RFC 8446, Section 4.4.4, recipients of incorrect FinishedTheo Buehler