summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Expand)Author
2020-02-23The decryption_failed alert must not be sent by compliant implementations.Theo Buehler
2020-02-23According to RFC 8446, Section 4.4.4, recipients of incorrect FinishedTheo Buehler
2020-02-21Remove the s2n macro now that it is finally unused.Joel Sing
2020-02-21Convert the SSL/TLS record creation code to CBB.Joel Sing
2020-02-21Convert the DTLS header creation code to CBB.Joel Sing
2020-02-21Remove some commented code, remove some pointless comments and move someJoel Sing
2020-02-21Convert dtls1_build_sequence_number() to CBB.Joel Sing
2020-02-21Move l2n/l2n8 into s3_cbc.c, since this is the only code that uses it.Joel Sing
2020-02-21Remove prefix_len, since it is always zero.Joel Sing
2020-02-21Remove now unused variable.Joel Sing
2020-02-19Refactor do_ssl3_write().Joel Sing
2020-02-18drop unused include <openssl/curve25519.h>Theo Buehler
2020-02-18Now that the kernel skips the two instructions immediately followingMark Kettenis
2020-02-17Describe the restriction for length of openssl conf value stringKinichiro Inoguchi
2020-02-17Restrict the length of openssl conf value stringKinichiro Inoguchi
2020-02-16Avoid potential NULL dereference when parsing a server keyshare extension.Joel Sing
2020-02-16Avoid leak for tmp.x25519Kinichiro Inoguchi
2020-02-15Move the TLSv1.3 code that interfaces with the legacy APIs/stack into aJoel Sing
2020-02-15Remove #include that is not needed.Joel Sing
2020-02-11Some system calls can fail due to an open-ended variety of causesIngo Schwarze
2020-02-09A getlogin() function which used utmp(5) appeared in v7.Jonathan Gray
2020-02-08correct Research Unix edition "appeared in" use in HISTORYJonathan Gray
2020-02-07It appears we have come full-circle, where source code starts to useTheo de Raadt
2020-02-07update to upstream libfido2 780ad3c25 (20120123)Damien Miller
2020-02-06Re-enable the TLSv1.3 client since the known issues have been addressed.Joel Sing
2020-02-06Add a workaround to make SSL_set_session() work with TLSv1.3.Joel Sing
2020-02-06Add support for handling hello retry requests in the TLSv1.3 client.Joel Sing
2020-02-06Correctly handle key share extensions in a hello retry request.Joel Sing
2020-02-06Instead of opting in to futexes on archs with atomics opt out on archsJonathan Gray
2020-02-05Refactor the server hello processing code in the TLSv1.3 client.Joel Sing
2020-02-05Remove the hello retry request processing code that was previously added.Joel Sing
2020-02-05Provide tls1_transcript_unfreeze() to avoid the need for manual flagsJoel Sing
2020-02-05Pull the handshake message transcript code into its own function.Joel Sing
2020-02-05More precision regarding the openlog(3) *ident argument;Ingo Schwarze
2020-02-05Mention AUDIO_MIXER_{DEVINFO,READ,WRITE} in the "audio" sectionAlexandre Ratchov
2020-02-05Rework tls13_legacy_handshake_message_{recv,sent}_cb() to useTheo Buehler
2020-02-04Add support for TLSv1.3 key shares with secp256r1 and secp384r1 groups.Joel Sing
2020-02-04Free the transcript as soon as we initialise the transcript hash.Joel Sing
2020-02-01Correctly unpack client key shares.Joel Sing
2020-02-01Disable TLSv1.3 client while some known issues are being addressed.Joel Sing
2020-01-30Provide struct/functions for handling TLSv1.3 key shares.Joel Sing
2020-01-30Factor out/rewrite the ECDHE EC point key exchange code.Joel Sing
2020-01-29Remove dead prototypes.Joel Sing
2020-01-29If the TLSv1.3 code has not recorded an error and something already existsJoel Sing
2020-01-29Remove unused stub implementation of tls13_accept(). The correctTheo Buehler
2020-01-26Fix SSL_CIPHER_descriptionKinichiro Inoguchi
2020-01-26Avoid 32 bit right shift with unsigned int in crypto/cast/cast_lcl.hKinichiro Inoguchi
2020-01-26tweak previous; ok tbJason McIntyre
2020-01-26typoTheo Buehler
2020-01-26Document the change in EVP_chacha20(3).Theo Buehler