summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2018-11-10Remove dead codeBob Beck
2018-11-10Tweak and improve the TLSv1.3 state machine.Joel Sing
2018-11-10Avoid a double allocation and memory leak.Joel Sing
2018-11-10Stop keeping track of sigalgs by guessing it from digest and pkey,Bob Beck
2018-11-10Use TLS13_HS_{CLIENT,SERVER} instead of using a redundant _SEND{,S}.Theo Buehler
2018-11-10Fix last of the empty hash nonsenseBob Beck
2018-11-09Fix the TLSv1.3 key schedule implementation.Joel Sing
2018-11-09Use "send" and "recv" consistently instead of mixing them with "read"Theo Buehler
2018-11-09Initialize priv_key and pub_key on first use instead of at the top.Theo Buehler
2018-11-09Initialize priv_key and pub_key on first use instead of at the top.Theo Buehler
2018-11-09Avoid dereferencing eckey before checking it for NULL.Theo Buehler
2018-11-09fix a typodenis
2018-11-09Remove ethers(5) YP support bits from libc as it makes it difficult toBryan Steele
2018-11-09Ensure we free the handshake transcript upon session resumption.Joel Sing
2018-11-09Ensure we only choose sigalgs from our prefernce list, not the whole listBob Beck
2018-11-09Add the ability to have a separate priority list for sigalgs.Bob Beck
2018-11-09Correct defines for writer tests in connect/accept loops.Joel Sing
2018-11-09Correct function naming for tls13_handshake_advance_state_machine().Joel Sing
2018-11-09Avoid leak: free existing SRTP connection profiles beforeTheo Buehler
2018-11-09Avoid leaking memory that was already allocated in ASN1_item_new().Theo Buehler
2018-11-09Fix a buffer overrun in asn1_parse2().Theo Buehler
2018-11-09Add const to the data argument of ASN1_set{,_int}_octetstring().Theo Buehler
2018-11-09Add header guards and hidden declarations.Joel Sing
2018-11-09Add header guards and hidden declarations.Joel Sing
2018-11-09Reimplement the sigalgs processing code into a new implementationBob Beck
2018-11-08First skeleton of the TLS 1.3 state machine. Based on RFC 8446 andTheo Buehler
2018-11-08KNFBob Beck
2018-11-08Clean up and simplify the handshake transcript code.Joel Sing
2018-11-08Stop pretending that a cert member in a SSL and SSL_CTX can be NULL.Joel Sing
2018-11-08Move #include <openssl/evp.h> to the header.Theo Buehler
2018-11-08Ensure the handshake transcript is cleaned up.Joel Sing
2018-11-08Remove some function prototypes that should have been removed in theJoel Sing
2018-11-08LibreSSL 2.9.0Brent Cook
2018-11-08zap last remains of malloc.conf; prompted by and ok jmc@Otto Moerbeek
2018-11-07Add initial TLS 1.3 key schedule support with basic regress testsBob Beck
2018-11-07Use memmove() instead of memcpy() to get rid of the need forTheo Buehler
2018-11-07Add TLSv1.3 cipher suites (with appropriate guards).Joel Sing
2018-11-06Add TLS extension type values for TLSv1.3 (under guards).Joel Sing
2018-11-06Define TLS_CA_CERT_FILE rather than having every application create theirJoel Sing
2018-11-06typo on fs.posix.setuid; from Piotr DurlejOtto Moerbeek
2018-11-06rm FILES section; prompted by Janne JohanssonOtto Moerbeek
2018-11-06Use the new vm.malloc_conf sysctl; ok millert@ deraadt@Otto Moerbeek
2018-11-06vm.malloc_conf, userland sysctl parts; ok millert@ deraadt@Otto Moerbeek
2018-11-06unrevert the use of bn_rand_interval().Theo Buehler
2018-11-06Unset Z_is_zero after applying coordinate blinding andTheo Buehler
2018-11-06Flip reversed test in bn_rand_interval().Theo Buehler
2018-11-06disable EC_POINT coordinate blinding due to failures in ECDHE and TLSTheo Buehler
2018-11-06revert use of bn_rand_interval due to failures with ECDHE and TLSTheo Buehler
2018-11-06Include TLSv1.3 in version handling code.Joel Sing
2018-11-06Add TLS1_3_VERSION and SSL_OP_NO_TLSv1_3 defines under guards.Joel Sing