summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2020-08-11Send an unexpected message alert if no valid content type is found.Joel Sing
2020-08-11Increment the epoch in the same place for both read and write.Joel Sing
2020-08-11Use 0 instead of 0x00 for memset() calls.Joel Sing
2020-08-11Use SSL3_SEQUENCE_SIZE for last_write_sequence[] rather than hardcoding.Joel Sing
2020-08-11In SSL_new() just 'goto err' on allocation failure.Joel Sing
2020-08-10Avoid passing -1 to freezero.Theo Buehler
2020-08-09Fix some wrapping/indent.Joel Sing
2020-08-09Add P-521 to the list of curves supported by default in the client.Joel Sing
2020-08-09Use CBB more correctly when writing SSL3/DTLS records.Joel Sing
2020-08-09Make the explicit IV length handling in DTLS the same as SSL3/TLS.Joel Sing
2020-08-04Cleanup aead_ctxKinichiro Inoguchi
2020-08-03Only parse a client's status_request in the CHTheo Buehler
2020-08-03Ensure clients only send a status_request in the CHTheo Buehler
2020-08-03Correctly handle server requests for an OCSP responseTheo Buehler
2020-08-02Check the return value of tls1_enc() in the write path.Joel Sing
2020-08-01Clean up/simplify more of the dtls1/ssl3 record writing code:Joel Sing
2020-08-01Pull record version selection code up and pass it as an argument toJoel Sing
2020-07-30Have ssl_init_wbio_buffer() push the buffering BIO rather than doing itJoel Sing
2020-07-30Clean up and simplify some of the SSL3/DTLS1 record writing code.Joel Sing
2020-07-30Add minimal info callback support for TLSv1.3Theo Buehler
2020-07-25Handle SSL_MODE_AUTO_RETRY being changed during a TLSv1.3 session.Joel Sing
2020-07-14Dedup the use legacy stack code.Joel Sing
2020-07-14Revert the TLSv1.3 version switching fix/hack.Joel Sing
2020-07-07Remove some unnecessary function pointers from SSL_METHOD_INTERNAL.Joel Sing
2020-07-07Enable TLSv1.3 for the generic TLS_method().Joel Sing
2020-07-03zap trailing whitespace on one lineTheo Buehler
2020-07-03Make the message type available to the extension functionsTheo Buehler
2020-07-03Improve argument order for the internal tlsext APITheo Buehler
2020-06-25Switch the order of the two tests in tls13_client_hello_required_extensionsTheo Buehler
2020-06-24Make tls13_legacy_shutdown() match ssl3_shutdown() semantics.Joel Sing
2020-06-24Enforce restrictions for ClientHello extensionsTheo Buehler
2020-06-19We inherited the constant time CBC padding removal from BoringSSL, butTheo Buehler
2020-06-09The check_includes step is incorrect dependency management model forTheo de Raadt
2020-06-06Implement a rolling hash of the ClientHello message, Enforce RFC 8446Bob Beck
2020-06-05Use IANA allocated GOST ClientCertificateTypes.Joel Sing
2020-06-05Stop sending GOST R 34.10-94 as a CertificateType.Joel Sing
2020-06-05Handle GOST in ssl_cert_dup().Joel Sing
2020-06-05Enable GOST_SIG_FORMAT_RS_LE when verifying certificate signatures.Joel Sing
2020-06-04Align tls13_server_select_certificate() withTheo Buehler
2020-06-04Improve client certificate selection for TLSv1.3Theo Buehler
2020-06-04mention that TLS_method(3) also supports TLSv1.3;Ingo Schwarze
2020-06-02Remove const modifier in return type of tls13_handshake_active_state()Theo Buehler
2020-06-02distracting whitespaceTheo Buehler
2020-06-01Split the handling of post handshake handshake messages into itsTheo Buehler
2020-06-01Send an illegal_parameter alert if a client sends us invalid DH keyTheo Buehler
2020-06-01Add a mechanism to set an alert in those parts of the read half ofTheo Buehler
2020-05-31Replace ssl_max_server_version() with ssl_downgrade_max_version()Joel Sing
2020-05-31Correct downgrade sentinels when a version pinned method is in use.Joel Sing
2020-05-29Improve server certificate selection for TLSv1.3.Joel Sing
2020-05-29Handle the case where we receive a valid 0 byte application data record.Joel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-19 13:49:54 +0000