summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2020-09-14re-enable new x509 chain verifier as the defaultBob Beck
2020-09-14Correctly fix double free introduced on review.Bob Beck
2020-09-14Fix double free - review moved the pop_free of roots to x509_verify_ctx_freeBob Beck
2020-09-14revert previous, need to fix a problemBob Beck
2020-09-14Enable the use of the new x509 chain validator by default.Bob Beck
2020-09-13Implement SSL_{CTX_,}set_ciphersuites().Joel Sing
2020-09-13Add new x509 certificate chain validator in x509_verify.cBob Beck
2020-09-13Improve handling of BIO_read()/BIO_write() failures in the TLSv1.3 stack.Joel Sing
2020-09-13Spell out n as en for consistency with other parts of the page.Theo Buehler
2020-09-13%lln is percent ell ell n (not dee).Claudio Jeker
2020-09-12Use the correct type for tls1_set_ec_id()Theo Buehler
2020-09-12Simplify tls1_set_ec_id() a bitTheo Buehler
2020-09-12Unindent a bit of code that performs a few too many checks toTheo Buehler
2020-09-12Avoid an out-of-bounds access in BN_rand()Theo Buehler
2020-09-12Change over to use the new x509 name constraints verification.Bob Beck
2020-09-12Fix byte order handling for DLT_LOOP linkskn
2020-09-12Include machine/endian.h in gost2814789.cKinichiro Inoguchi
2020-09-11Add x509_constraints.c - a new implementation of x509 name constraints, withBob Beck
2020-09-11Remove cipher_list_by_id.Joel Sing
2020-09-11Simplify SSL_get_ciphers().Joel Sing
2020-09-11Rename ssl_cipher_is_permitted()Joel Sing
2020-09-11Some SSL_AD_* defines snuck into the TLSv1.3 code - replace them withJoel Sing
2020-09-11Add issuer cache, to be used by upcoming changes to validation code.Bob Beck
2020-09-11Various ciphers related clean up.Joel Sing
2020-09-09Set alpn_selected_len = 0 when alpn_selected is NULLKinichiro Inoguchi
2020-09-09Import latest OPENSSL_NO_* flags from OpenSSL 1.1.1gKinichiro Inoguchi
2020-09-08Mention that EC_KEY_get0_public_key returns a public key.Theo Buehler
2020-09-07Garbage collect renew_ticket in tls_decrypt_ticketTheo Buehler
2020-09-07sync a couple of minor fixes (no API/ABI change) to bring libfido2Damien Miller
2020-09-06For page-sized and larger allocations do not put the pages we'reOtto Moerbeek
2020-09-04Create ERRORS section for ober_read_elements.Martijn van Duren
2020-09-03Missed one case of errno not being set in previous.Martijn van Duren
2020-09-03Clean up asn1/x_info.cTheo Buehler
2020-09-03Remove unnecessary zeroing after recallocarray(3)Theo Buehler
2020-09-03Make sure ober_read_elements sets errno on every case where NULL isMartijn van Duren
2020-09-02KNF and comment tweaksTheo Buehler
2020-09-01Zero out data to avoid leaving stack garbage in the tail ofTheo Buehler
2020-09-01The bumping of sess_cb_hit stats can wait until handling ofTheo Buehler
2020-09-01In the explanatory comment of ssl_get_prev_session fix the spelling ofTheo Buehler
2020-09-01Split session retrieval out of ssl_get_prev_session()Theo Buehler
2020-09-01copy session id directly in ssl_get_prev_sessionTheo Buehler
2020-09-01indent the only other label in this fileTheo Buehler
2020-09-01Indent label and remove dangling elseTheo Buehler
2020-09-01Zap NULL check before SSL_SESSION_free()Theo Buehler
2020-09-01Rename the session pointer ret to sessTheo Buehler
2020-09-01Hoist ERR_clear_error() call into the derr: labelTheo Buehler
2020-09-01simplify tls1_process_ticket() exit pathTheo Buehler
2020-08-31Return code tweaks for session ticket handlersTheo Buehler
2020-08-31Send alert on ssl_get_prev_session failureTheo Buehler
2020-08-30Remove duplicate definition of _null_auth.mortimer
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-01 20:13:54 +0000