summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2019-04-25Use calloc/freezero when allocating and freeing the session ticket data.Joel Sing
2019-04-25Use EVP_CIPHER_CTX_{new,free}() and HMAC_CTX_{new,free}() instead ofJoel Sing
2019-04-25Rename some variables in tls_decrypt_ticket().Joel Sing
2019-04-23Convert tls_decrypt_ticket() to CBS.Joel Sing
2019-04-22Provide a derr label (decode/decrypt error) in tls1_decrypt_ticket().Joel Sing
2019-04-22Pass the session ID down to the session/ticket handling code as a CBS.Joel Sing
2019-04-22Inline and remove the tlsext_tick_md macro.Joel Sing
2019-04-21Clean up tls1_process_ticket().Joel Sing
2019-04-21Cleanup more of tls_decrypt_ticket().Joel Sing
2019-04-21Start cleaning up tls_decrypt_ticket().Joel Sing
2019-04-13Avoid leak in SSL_dup_CA_list()Theo Buehler
2019-04-09Recommend SSL_CTX_add1_chain_cert(3) rather thanIngo Schwarze
2019-04-09Document SSL_CTX_clear_mode(3) and SSL_clear_mode(3).Ingo Schwarze
2019-04-05By design, our state machine is a DAG contrary to the state machine inTheo Buehler
2019-04-05Import SSL_CTX_add1_chain_cert(3) from OpenSSL branch 1.1.1, which is stillIngo Schwarze
2019-04-05Zap two dead #defines that were unused since jsing deleted theTheo Buehler
2019-04-04Implement legacy fallback for the TLS 1.3 client.Joel Sing
2019-04-04Clean up the cipher/digest table mess.Joel Sing
2019-04-04Bump libssl/libtls minors due to symbol addition.Joel Sing
2019-04-04Provide SSL chain/cert chain APIs.Joel Sing
2019-04-04This case also needs to be fatal.Joel Sing
2019-04-01mark ERR_R_INTERNAL_ERROR instead of assert or _exit, sighTheo de Raadt
2019-04-01Correct subtle bug in sigalgs, only care about curve_nid if we areBob Beck
2019-03-31Clean up and simplify the client verify code:Joel Sing
2019-03-25Strip out all of the pkey to sigalg and sigalg to pkey linkages.Joel Sing
2019-03-25tls1_process_sigalgs() is no longer needed.Joel Sing
2019-03-25Defer sigalgs selection until the certificate is known.Joel Sing
2019-03-25Rework ssl_ctx_use_certificate_chain_bio() to use the CERT_PKEY chain.Joel Sing
2019-03-25Remove ssl_get_server_send_cert() which is now unused.Joel Sing
2019-03-25Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains.Joel Sing
2019-03-25Add a chain member to CERT_PKEY and provide functions for manipulating it.Joel Sing
2019-03-24If ssl_cipher_apply_rule() is given a specific cipher suite, match on it.Joel Sing
2019-03-24do not call assert(), which has a tendency to leave traces of stuff inTheo de Raadt
2019-03-19Avoid an internal 2 byte overread in ssl_sigalgs().Joel Sing
2019-03-19Revert TLS1_get{,_client}_version simplification because DTLS.Joel Sing
2019-03-18* note that the handshake must be completed firstIngo Schwarze
2019-03-18In ssl.h rev. 1.165, tb@ provided version agnostic DTLS methods.Ingo Schwarze
2019-03-17bump minors after symbol additionTheo Buehler
2019-03-17Provide version agnostic DTLS methods.Joel Sing
2019-03-17Correct return value handling in tls13_handshake_recv_action().Joel Sing
2019-03-17Partially clean up the TLS1_get_{,client}_version macros.Joel Sing
2019-03-17Remove the alert level from the TLSv1.3 alert callback.Joel Sing
2019-03-04Don't index a void pointer, fixes compilation with visual studio.Todd C. Miller
2019-02-28Implement non-SSL_MODE_ENABLE_PARTIAL_WRITE in tls13_legacy_write_bytes().Joel Sing
2019-02-28Automatically complete the handshake from tls13_legacy_{read,write}_bytes()Joel Sing
2019-02-28Set the SSL state as part of tls13_legacy_connect().Joel Sing
2019-02-28Add appropriate length checks to tls13_legacy_{read,write}_bytes()Joel Sing
2019-02-28Remove unused record_type from TLSv1.3 handshake actions.Joel Sing
2019-02-26Correct return values for non-fatal alerts.Joel Sing
2019-02-26Correctly propagate EOF from BIO in tls13_legacy_wire_read().Joel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-27 13:00:11 +0000