index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
openssl-3.4
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
ssl
/
statem
Age
Commit message (
Expand
)
Author
2021-01-09
Fix for negative return value from `SSL_CTX_sess_accept()`
anupamam13
2020-12-10
Modify is_tls13_capable() to take account of the servername cb
Matt Caswell
2020-12-08
Update copyright year
Matt Caswell
2020-10-26
Ensure we raise SSLfatal on error
Matt Caswell
2020-10-20
Avoid potential doublefree on dh object assigned to EVP_PKEY
Tomas Mraz
2020-10-16
Pass an EVP_PKEY for SSL_SECOP_TMP_DH in the security callback
Matt Caswell
2020-09-21
Disallow certs with explicit curve in verification chain
Tomas Mraz
2020-09-07
Coverity Fixes
Shane Lontis
2020-07-22
Avoid errors with a priori inapplicable protocol bounds
Viktor Dukhovni
2020-06-11
Do not allow dropping Extended Master Secret extension on renegotiaton
Tomas Mraz
2020-03-17
Update copyright year
Matt Caswell
2020-03-13
Code to thread-safety in ChangeCipherState
Benjamin Kaduk
2020-03-13
Don't write to the session when computing TLS 1.3 keys
Benjamin Kaduk
2020-01-30
Don't acknowledge a servername following warning alert in servername cb
Matt Caswell
2020-01-30
Fix SSL_get_servername() and SNI behaviour
Matt Caswell
2019-12-14
Parse large GOST ClientKeyExchange messages
Dmitry Belyavskiy
2019-11-21
Fix a race condition in SNI handling
Benjamin Kaduk
2019-11-11
Fix misspelled resumption_label for CHARSET_EBCDIC
Ido Ben-Natan
2019-10-10
ssl/statem/statem_lib.c: make servercontext/clientcontext arrays of chars ins...
Artiom Vaskov
2019-10-03
'init_buf' memory can be freed when DTLS is used over SCTP (not over UDP).
NaveenShivanna86
2019-09-27
Reorganize local header files
Dr. Matthias St. Pierre
2019-09-06
Don't send a status_request extension in a CertificateRequest message
Matt Caswell
2019-08-14
Add missing EBCDIC strings
opensslonzos-github
2019-08-01
Use allow_early_data_cb from SSL instead of SSL_CTX
raja-ashok
2019-07-25
Don't generate an unnecessary Diffie-Hellman key in TLS 1.3 clients.
David Benjamin
2019-06-26
Revert "Delay setting the sig algs until after the cert_cb has been called"
Benjamin Kaduk
2019-06-18
Following the previous 2 commits also move ecpointformats out of session
Matt Caswell
2019-06-18
Fix a race condition in ciphers handling
Matt Caswell
2019-06-18
Fix a race condition in supported groups handling
Matt Caswell
2019-06-03
Defer sending a KeyUpdate until after pending writes are complete
Matt Caswell
2019-05-28
Update copyright year
Richard Levitte
2019-03-28
conn_is_closed should return 1 if get_last_sys_error is WSAECONNRESET
Paul Monson
2019-03-05
Don't write the tick_identity to the session
Matt Caswell
2019-02-26
Update copyright year
Matt Caswell
2019-02-22
Don't restrict the number of KeyUpdate messages we can process
Matt Caswell
2019-02-14
Don't signal SSL_CB_HANDSHAKE_START for TLSv1.3 post-handshake messages
Matt Caswell
2019-02-01
Fix end-point shared secret for DTLS/SCTP
Michael Tuexen
2019-01-24
Revert "Keep the DTLS timer running after the end of the handshake if appropr...
Matt Caswell
2019-01-08
Don't artificially limit the size of the ClientHello
Matt Caswell
2019-01-07
Don't complain if we receive the cryptopro extension in the ClientHello
Matt Caswell
2019-01-06
Restore compatibility with GOST2001 implementations.
Dmitry Belyavskiy
2018-12-05
Fix some SSL_export_keying_material() issues
Matt Caswell
2018-11-27
Fix access zero memory if SSL_DEBUG is enabled
Paul Yang
2018-11-14
Fix no-ec and no-tls1_2
Matt Caswell
2018-11-12
Separate ca_names handling for client and server
Matt Caswell
2018-11-12
Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capable
Matt Caswell
2018-11-08
Ignore disabled ciphers when deciding if we are using ECC
Matt Caswell
2018-11-03
Restore sensible "sess_accept" counter tracking
Benjamin Kaduk
2018-10-30
Don't call the client_cert_cb immediately in TLSv1.3
Matt Caswell
2018-10-29
ssl/statem: Don't compare size_t with less than zero
Richard Levitte
[next]