summaryrefslogtreecommitdiffstats
path: root/ssl/statem
AgeCommit message (Expand)Author
2020-09-21Disallow certs with explicit curve in verification chainTomas Mraz
2020-09-07Coverity FixesShane Lontis
2020-07-22Avoid errors with a priori inapplicable protocol boundsViktor Dukhovni
2020-06-11Do not allow dropping Extended Master Secret extension on renegotiatonTomas Mraz
2020-03-17Update copyright yearMatt Caswell
2020-03-13Code to thread-safety in ChangeCipherStateBenjamin Kaduk
2020-03-13Don't write to the session when computing TLS 1.3 keysBenjamin Kaduk
2020-01-30Don't acknowledge a servername following warning alert in servername cbMatt Caswell
2020-01-30Fix SSL_get_servername() and SNI behaviourMatt Caswell
2019-12-14Parse large GOST ClientKeyExchange messagesDmitry Belyavskiy
2019-11-21Fix a race condition in SNI handlingBenjamin Kaduk
2019-11-11Fix misspelled resumption_label for CHARSET_EBCDICIdo Ben-Natan
2019-10-10ssl/statem/statem_lib.c: make servercontext/clientcontext arrays of chars ins...Artiom Vaskov
2019-10-03'init_buf' memory can be freed when DTLS is used over SCTP (not over UDP).NaveenShivanna86
2019-09-27Reorganize local header filesDr. Matthias St. Pierre
2019-09-06Don't send a status_request extension in a CertificateRequest messageMatt Caswell
2019-08-14Add missing EBCDIC stringsopensslonzos-github
2019-08-01Use allow_early_data_cb from SSL instead of SSL_CTXraja-ashok
2019-07-25Don't generate an unnecessary Diffie-Hellman key in TLS 1.3 clients.David Benjamin
2019-06-26Revert "Delay setting the sig algs until after the cert_cb has been called"Benjamin Kaduk
2019-06-18Following the previous 2 commits also move ecpointformats out of sessionMatt Caswell
2019-06-18Fix a race condition in ciphers handlingMatt Caswell
2019-06-18Fix a race condition in supported groups handlingMatt Caswell
2019-06-03Defer sending a KeyUpdate until after pending writes are completeMatt Caswell
2019-05-28Update copyright yearRichard Levitte
2019-03-28conn_is_closed should return 1 if get_last_sys_error is WSAECONNRESETPaul Monson
2019-03-05Don't write the tick_identity to the sessionMatt Caswell
2019-02-26Update copyright yearMatt Caswell
2019-02-22Don't restrict the number of KeyUpdate messages we can processMatt Caswell
2019-02-14Don't signal SSL_CB_HANDSHAKE_START for TLSv1.3 post-handshake messagesMatt Caswell
2019-02-01Fix end-point shared secret for DTLS/SCTPMichael Tuexen
2019-01-24Revert "Keep the DTLS timer running after the end of the handshake if appropr...Matt Caswell
2019-01-08Don't artificially limit the size of the ClientHelloMatt Caswell
2019-01-07Don't complain if we receive the cryptopro extension in the ClientHelloMatt Caswell
2019-01-06Restore compatibility with GOST2001 implementations.Dmitry Belyavskiy
2018-12-05Fix some SSL_export_keying_material() issuesMatt Caswell
2018-11-27Fix access zero memory if SSL_DEBUG is enabledPaul Yang
2018-11-14Fix no-ec and no-tls1_2Matt Caswell
2018-11-12Separate ca_names handling for client and serverMatt Caswell
2018-11-12Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capableMatt Caswell
2018-11-08Ignore disabled ciphers when deciding if we are using ECCMatt Caswell
2018-11-03Restore sensible "sess_accept" counter trackingBenjamin Kaduk
2018-10-30Don't call the client_cert_cb immediately in TLSv1.3Matt Caswell
2018-10-29ssl/statem: Don't compare size_t with less than zeroRichard Levitte
2018-10-19Fix a DTLS memory leakMatt Caswell
2018-10-17Add a missing check on s->s3->tmp.pkeyMansour Ahmadi
2018-09-21Delay setting the sig algs until after the cert_cb has been calledMatt Caswell
2018-09-12Fix a possible recursion in SSLfatal handlingBernd Edlinger
2018-09-07Do not reset SNI data in SSL_do_handshake()Matt Caswell
2018-09-07Restore historical SSL_get_servername() behaviorBen Kaduk
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-24 15:04:55 +0000