summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2020-01-22The length of the IV of EVP_chacha20 is currently 64 bits, not 96.Theo Buehler
2020-01-22Wire up the TLSv1.3 server.Joel Sing
2020-01-22Pass a handshake message content CBS to TLSv1.3 receive handlers.Joel Sing
2020-01-22Fix things so that `make -DTLS1_3` works again.Joel Sing
2020-01-22Send alerts on certificate verification failures of server certsBob Beck
2020-01-22Rename failure into alert_desc in tlsext_ocsp_server_parse().Theo Buehler
2020-01-22fix previous: alert_desc needs to be an int.Theo Buehler
2020-01-22Avoid modifying alert in the success path.Theo Buehler
2020-01-22Enable the TLSv1.3 client in libssl.Joel Sing
2020-01-22Correct includes check for libtls.Joel Sing
2020-01-22Add checks to ensure that lib{crypto,ssl,tls} public headers have actuallyJoel Sing
2020-01-22delete wasteful ;;Theo de Raadt
2020-01-22Move guards from public to internal headers, and fix not use values.Bob Beck
2020-01-22Simplify header installation by combining the HDRS and HDRS_GEN loops.Joel Sing
2020-01-22Note in the man page that the default protocols list includes 1.3Bob Beck
2020-01-22Enable TLS version 1.3 in the default protocols for libtls.Bob Beck
2020-01-22Implement support for SSL_peek() in the TLSv1.3 record layer.Joel Sing
2020-01-22After the ClientHello has been sent or received and before the peer'sTheo Buehler
2020-01-22Correctly set the legacy version when TLSv1.3 is building a client hello.Joel Sing
2020-01-22Don't add an extra unknown error if we got a fatal alertBob Beck
2020-01-22The legacy_record_version must be set to TLS1_2_VERSION exceptTheo Buehler
2020-01-22Hook up the TLSv1.3 legacy shutdown code.Joel Sing
2020-01-22Add minimal support for hello retry request for RFC conformance.Bob Beck
2020-01-22Split the TLSv1.3 guards into separate client and server guards.Joel Sing
2020-01-22Implement close-notify and SSL_shutdown() handling for the TLSv1.3 client.Joel Sing
2020-01-21Correct legacy fallback for TLSv1.3 client.Joel Sing
2020-01-21Remove redundant ASN1_INTEGER_set call in PKCS7_set_typeKinichiro Inoguchi
2020-01-21Provide SSL_R_UNKNOWN.Joel Sing
2020-01-21Clear and free the tls13_ctx that hangs off an SSL *s fromTheo Buehler
2020-01-21Add alert processing in tls client code, by adding alert to theBob Beck
2020-01-20Add alerts to the tls 1.3 record layer and handshake layerBob Beck
2020-01-20Provide an error framework for use with the TLSv1.3 code.Joel Sing
2020-01-20Add support for TLSv1.3 as a protocol to libtls.Joel Sing
2020-01-17Free pss in RSA_freeKinichiro Inoguchi
2020-01-14bump to 3.1.0Brent Cook
2020-01-13Document how to make getopt_long(3) process arguments in order and stopStefan Sperling
2020-01-12Avoid leak in error path of PKCS5_PBE_keyivgenKinichiro Inoguchi
2020-01-09Avoid leak in error path of asn1_parse2Kinichiro Inoguchi
2020-01-04Avoid leak in error path of dh_priv_decodeKinichiro Inoguchi
2020-01-02In ssl.h rev. 1.167 and s3_lib.c rev. 1.188, jsing@ providedIngo Schwarze
2020-01-02Revise SSL_CTX_get_extra_chain_certs() to match OpenSSL behaviour.Joel Sing
2020-01-02Provide TLSEXT_TYPE_* aliases for TLS 1.3.Joel Sing
2019-12-31Increase BER_MAX_OID_LEN from 32 to 64. Not every snmp OID found in theMartijn van Duren
2019-12-26It is believed that an implementation of madvise was available inJonathan Gray
2019-12-21a few depend:-related thingies that were still in.Marc Espie
2019-12-21Warn that auth_call(3) users should include a "--" argument beforeJonathan Gray
2019-12-21In "4.2BSD System Manual" (/usr/doc/sysman in 4.2BSD source)Jonathan Gray
2019-12-20drand48(3) returns values in [0.0, 1.0).Theo Buehler
2019-12-20The mcount.po target is special cased here since mcount.c should not beTheo Buehler
2019-12-19spelling; from bryan stensonJason McIntyre
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-01 06:48:11 +0000