summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2022-01-11Simplify SSL_get_peer_certificate()Joel Sing
2022-01-11Rename 'peer' to 'peer_cert' in SSL_SESSION.Joel Sing
2022-01-11Plumb decode errors through key share parsing code.Joel Sing
2022-01-11Use SSL_AD_INTERNAL_ERROR for non-decoding alerts when parsing keyshares.Joel Sing
2022-01-11Simplify tlsext_keyshare_server_parse()Joel Sing
2022-01-09ssl_check_srvr_ecc_cert_and_alg() only returns 0/1 - test accordingly.Joel Sing
2022-01-09Swap arguments to ssl_check_srvr_ecc_cert_and_alg()Joel Sing
2022-01-09Clean up ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Return 0/1 from ssl3_{send,get}_client_kex_gost()Joel Sing
2022-01-09Remove a comment from Captain Obvious.Joel Sing
2022-01-09Fix GOST skip certificate verify handling.Joel Sing
2022-01-09Clean up pkey handling in ssl3_get_server_key_exchange()Joel Sing
2022-01-08Merge SESS_CERT into SSL_SESSION.Joel Sing
2022-01-08Remove commented out CERT_* defines.Joel Sing
2022-01-08Rename CERT to SSL_CERT and CERT_PKEY to SSL_CERT_PKEY.Joel Sing
2022-01-07Rename dh_tmp to dhe_params.Joel Sing
2022-01-07Stop attempting to duplicate the public and private key of dh_tmp.Joel Sing
2022-01-07Convert legacy server to tls_key_share.Joel Sing
2022-01-06Convert legacy TLS client to tls_key_share.Joel Sing
2022-01-06Allocate and free the EVP_AEAD_CTX struct in tls13_record_protection.Joel Sing
2022-01-06Provide CBB_add_u64()Joel Sing
2022-01-05Rename tls13_key_share to tls_key_share.Joel Sing
2022-01-04Return 0 on failure from send/get kex functions in the legacy stack.Joel Sing
2022-01-04Use normal result testing for tls1_check_curve().Joel Sing
2022-01-04Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.Joel Sing
2022-01-04Pull key share group/length CBB code up from tls13_key_share_public()Joel Sing
2022-01-04Only allow zero length key shares when we know we're doing HRR.Joel Sing
2021-12-26Hoist memset of CBB above EVP_MD_CTX_new() and HMAC_CTX_new() to avoidTheo Buehler
2021-12-26Correct SSL_get_peer_cert_chain() when used with the TLSv1.3 stack.Joel Sing
2021-12-16unifdef TLS13_USE_LEGACY_CLIENT_AUTHTheo Buehler
2021-12-15Use CBS_get_last_u8() to find the content type in TLSv1.3 records.Joel Sing
2021-12-15Provide various CBS_peek_* functions.Joel Sing
2021-12-15Provide CBS_get_u64().Joel Sing
2021-12-15Provide CBS_get_last_u8().Joel Sing
2021-12-09Convert t1_enc.c to opaque EVP_MD_CTX.Theo Buehler
2021-12-09Convert ssl_srvr.c to opaque EVP_MD_CTX.Theo Buehler
2021-12-09Convert ssl_clnt.c to opaque EVP_MD_CTXTheo Buehler
2021-12-09Convert s3_cbc.c to opaque EVP_MD_CTX.Theo Buehler
2021-12-04Clean up and refactor server side DHE key exchange.Joel Sing
2021-12-04Move the minimum DHE key size check into ssl_kex_peer_params_dhe()Joel Sing
2021-12-04Check DH public key in ssl_kex_peer_public_dhe().Joel Sing
2021-11-30Align ssl_kex_derive_ecdhe_ecp() with ssl_kex_derive_dhe()Theo Buehler
2021-11-30s/ECDHE/ECDH/Joel Sing
2021-11-29First pass of converting ssl_kex.c to opaque DH.Theo Buehler
2021-11-29Stop using BIO_s_file_inernal() in libssl.Theo Buehler
2021-11-29Convert server serialisation of DHE parameters/public key to new functions.Joel Sing
2021-11-29Factor out/rewrite DHE key exchange.Joel Sing
2021-11-26Stop reaching into EVP_PKEY in the rest of libssl.Theo Buehler
2021-11-26Simplify two weirdly formatted pieces of code in ssl_rsa.c and stopTheo Buehler
2021-11-26spellingJonathan Gray