summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2021-09-03Use SSL3_HM_HEADER_LENGTH instead of the magic number 4.Joel Sing
2021-09-03Ensure that a server hello does not have trailing data.Joel Sing
2021-09-03Ensure that a client hello does not have trailing data.Joel Sing
2021-09-03Set message_size correctly when switching to the legacy stack.Joel Sing
2021-09-02We need to allow for either a CERTIFICATE or CERTIFICATE_STATUS messageBob Beck
2021-09-02Call the ocsp callback if present and we get no response, instead ofBob Beck
2021-09-02Correct the is_server flag in the call to the debug callback to be correct.Bob Beck
2021-09-02RFC 6066 section 8 allows the server MAY choose not send the CertificateStatusBob Beck
2021-09-01comment out the detailed description of SSL_get_servername(3),Ingo Schwarze
2021-08-31Defragment DTLS.Joel Sing
2021-08-31Remove a nonsensical s->version == TLS1_VERSION from DTLS code.Joel Sing
2021-08-30Clean up and simplify info and msg callbacks.Joel Sing
2021-08-30Replace DTLS r_epoch with the read epoch from the TLSv1.2 record layer.Joel Sing
2021-08-30Move to an AEAD nonce allocated in the TLSv1.2 record layer.Joel Sing
2021-08-30sync with OpenSSL 1.1.1, which is still under a free license;Ingo Schwarze
2021-08-30Ignore warning alert returns from servername callback in TLSv1.3Theo Buehler
2021-08-28Clean up and simplify ssl3_dispatch_alert() and ssl3_send_alert().Joel Sing
2021-08-04SSL_CTX_remove_session() checks for a NULL session, avoid doing it twice.Joel Sing
2021-07-31We have defines for alert levels - use them instead of magic numbers.Joel Sing
2021-07-26Dedup dtls1_dispatch_alert()/ssl3_dispatch_alert().Joel Sing
2021-07-21Remove DTLS processed_rcds queue.Joel Sing
2021-07-21Silently discard invalid DTLS records.Joel Sing
2021-07-19Mop up dtls1_get_ccs_header() and struct ccs_header_st.Joel Sing
2021-07-19Inline DTLS1_CCS_HEADER_LENGTH rather than having a single use variable.Joel Sing
2021-07-03Do a first pass clean up of SSL_METHOD.Joel Sing
2021-07-01Merge SSL_METHOD_INTERNAL into SSL_METHOD.Joel Sing
2021-06-30Prepare to provide SSL_get_signature_nid() and friends.Joel Sing
2021-06-30Move some structs from public to private headers.Joel Sing
2021-06-30Correct sigalg hash usage when signing content for client verify.Joel Sing
2021-06-29Pull sigalg selection up into ssl3_send_client_verify().Joel Sing
2021-06-29Track sigalg used by ourselves and our peer in the legacy stack.Joel Sing
2021-06-29Pull up and dedup the TLS version check in ssl_sigalg_pkey_ok().Joel Sing
2021-06-29Simplify RSA PSS key size comment.Joel Sing
2021-06-29Use appropriate TLS version when building client sigalg extensions.Joel Sing
2021-06-29Change ssl_sigalg_from_value() to take SSL * instead of a TLS version.Joel Sing
2021-06-29Make various sigalg functions static now that they're only used internally.Joel Sing
2021-06-29Convert legacy stack server to ssl_sigalg_for_peer().Joel Sing
2021-06-29Convert legacy stack client to ssl_sigalg_for_peer().Joel Sing
2021-06-29Provide a ssl_sigalg_for_peer() function and use in the TLSv1.3 code.Joel Sing
2021-06-29Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok().Joel Sing
2021-06-29Factor out handling of legacy default signature algorithms.Joel Sing
2021-06-29Mop up now unused variables.Joel Sing
2021-06-29Require a ServerHello following a HelloRetryRequest to use the same cipher.Joel Sing
2021-06-29Reject zero-length non-application data fragments in the legacy stack.Joel Sing
2021-06-28Use the order action->sender == ctx->mode everywhere for consistency.Theo Buehler
2021-06-28ctx->alert is not a boolean, so compare it explicitly against 0.Theo Buehler
2021-06-28The state machine now takes care of setting the legacy state,Theo Buehler
2021-06-28Expand info callback support for TLSv1.3Theo Buehler
2021-06-27Track the sigalgs used by ourselves and our peer.Joel Sing
2021-06-27Have ssl3_send_client_verify() pass *pkey to called functions.Joel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-10 16:04:43 +0000