summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2021-09-10Make SSL opaqueTheo Buehler
2021-09-10Remove struct tls_session_ticket_ext_st and TLS_SESSION_TICKET_EXTTheo Buehler
2021-09-10Do not ignore SSL_TLSEXT_ERR_FATAL from the ALPN callbackTheo Buehler
2021-09-10Prepare to provide SSL_CTX_get0_privatekey()Theo Buehler
2021-09-08Provide SSL_SESSION_is_resumable and SSL_set_psk_use_session_callback stubsTheo Buehler
2021-09-08Prepare to provide API stubs for PHATheo Buehler
2021-09-08Prepare to provide SSL_get_tlsext_status_type()Theo Buehler
2021-09-08Prepare to provide SSL_set0_rbio()Theo Buehler
2021-09-04Factor out the TLSv1.3 code that handles content from TLS records.Joel Sing
2021-09-04Refactor ssl_update_cache. This now matches the logic used for TLS 1.3Bob Beck
2021-09-04Improve DTLS hello request handling code.Joel Sing
2021-09-04Change dtls1_get_message_header() to take a CBS.Joel Sing
2021-09-04Improve DTLS record header parsing.Joel Sing
2021-09-03Use SSL3_HM_HEADER_LENGTH instead of the magic number 4.Joel Sing
2021-09-03Ensure that a server hello does not have trailing data.Joel Sing
2021-09-03Ensure that a client hello does not have trailing data.Joel Sing
2021-09-03Set message_size correctly when switching to the legacy stack.Joel Sing
2021-09-02We need to allow for either a CERTIFICATE or CERTIFICATE_STATUS messageBob Beck
2021-09-02Call the ocsp callback if present and we get no response, instead ofBob Beck
2021-09-02Correct the is_server flag in the call to the debug callback to be correct.Bob Beck
2021-09-02RFC 6066 section 8 allows the server MAY choose not send the CertificateStatusBob Beck
2021-09-01comment out the detailed description of SSL_get_servername(3),Ingo Schwarze
2021-08-31Defragment DTLS.Joel Sing
2021-08-31Remove a nonsensical s->version == TLS1_VERSION from DTLS code.Joel Sing
2021-08-30Clean up and simplify info and msg callbacks.Joel Sing
2021-08-30Replace DTLS r_epoch with the read epoch from the TLSv1.2 record layer.Joel Sing
2021-08-30Move to an AEAD nonce allocated in the TLSv1.2 record layer.Joel Sing
2021-08-30sync with OpenSSL 1.1.1, which is still under a free license;Ingo Schwarze
2021-08-30Ignore warning alert returns from servername callback in TLSv1.3Theo Buehler
2021-08-28Clean up and simplify ssl3_dispatch_alert() and ssl3_send_alert().Joel Sing
2021-08-04SSL_CTX_remove_session() checks for a NULL session, avoid doing it twice.Joel Sing
2021-07-31We have defines for alert levels - use them instead of magic numbers.Joel Sing
2021-07-26Dedup dtls1_dispatch_alert()/ssl3_dispatch_alert().Joel Sing
2021-07-21Remove DTLS processed_rcds queue.Joel Sing
2021-07-21Silently discard invalid DTLS records.Joel Sing
2021-07-19Mop up dtls1_get_ccs_header() and struct ccs_header_st.Joel Sing
2021-07-19Inline DTLS1_CCS_HEADER_LENGTH rather than having a single use variable.Joel Sing
2021-07-03Do a first pass clean up of SSL_METHOD.Joel Sing
2021-07-01Merge SSL_METHOD_INTERNAL into SSL_METHOD.Joel Sing
2021-06-30Prepare to provide SSL_get_signature_nid() and friends.Joel Sing
2021-06-30Move some structs from public to private headers.Joel Sing
2021-06-30Correct sigalg hash usage when signing content for client verify.Joel Sing
2021-06-29Pull sigalg selection up into ssl3_send_client_verify().Joel Sing
2021-06-29Track sigalg used by ourselves and our peer in the legacy stack.Joel Sing
2021-06-29Pull up and dedup the TLS version check in ssl_sigalg_pkey_ok().Joel Sing
2021-06-29Simplify RSA PSS key size comment.Joel Sing
2021-06-29Use appropriate TLS version when building client sigalg extensions.Joel Sing
2021-06-29Change ssl_sigalg_from_value() to take SSL * instead of a TLS version.Joel Sing
2021-06-29Make various sigalg functions static now that they're only used internally.Joel Sing
2021-06-29Convert legacy stack server to ssl_sigalg_for_peer().Joel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-29 01:54:50 +0000