summaryrefslogtreecommitdiffstats
path: root/ssl/statem
AgeCommit message (Expand)Author
2019-03-28conn_is_closed should return 1 if get_last_sys_error is WSAECONNRESETPaul Monson
2019-03-06Adapt CIPHER_DEBUG to the new generic trace APIRichard Levitte
2019-03-06Adapt SSL_DEBUG to the new generic trace APIRichard Levitte
2019-03-05Don't write the tick_identity to the sessionMatt Caswell
2019-02-22Don't restrict the number of KeyUpdate messages we can processMatt Caswell
2019-02-15Add option to disable Extended Master SecretTodd Short
2019-02-14Don't signal SSL_CB_HANDSHAKE_START for TLSv1.3 post-handshake messagesMatt Caswell
2019-02-01Fix end-point shared secret for DTLS/SCTPMichael Tuexen
2019-01-24Revert "Keep the DTLS timer running after the end of the handshake if appropr...Matt Caswell
2019-01-08Don't artificially limit the size of the ClientHelloMatt Caswell
2019-01-07Don't complain if we receive the cryptopro extension in the ClientHelloMatt Caswell
2019-01-06Restore compatibility with GOST2001 implementations.Dmitry Belyavskiy
2018-12-15Use (D)TLS_MAX_VERSION_INTERNAL internallyKurt Roeckx
2018-12-06Following the license change, modify the boilerplates in ssl/Richard Levitte
2018-12-05Fix some SSL_export_keying_material() issuesMatt Caswell
2018-11-27Fix access zero memory if SSL_DEBUG is enabledPaul Yang
2018-11-14Fix no-ec and no-tls1_2Matt Caswell
2018-11-12Separate ca_names handling for client and serverMatt Caswell
2018-11-12Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capableMatt Caswell
2018-11-08Ignore disabled ciphers when deciding if we are using ECCMatt Caswell
2018-11-03Restore sensible "sess_accept" counter trackingBenjamin Kaduk
2018-10-30Don't call the client_cert_cb immediately in TLSv1.3Matt Caswell
2018-10-29ssl/statem: Don't compare size_t with less than zeroRichard Levitte
2018-10-19Fix a DTLS memory leakMatt Caswell
2018-10-17Add a missing check on s->s3->tmp.pkeyMansour Ahmadi
2018-09-21Delay setting the sig algs until after the cert_cb has been calledMatt Caswell
2018-09-12Fix a possible recursion in SSLfatal handlingBernd Edlinger
2018-09-07Do not reset SNI data in SSL_do_handshake()Matt Caswell
2018-09-07Restore historical SSL_get_servername() behaviorBen Kaduk
2018-09-07Ensure certificate callbacks work correctly in TLSv1.3Matt Caswell
2018-09-07Process KeyUpdate and NewSessionTicket messages after a close_notifyMatt Caswell
2018-09-04Send a NewSessionTicket after using an external PSKMatt Caswell
2018-09-04Ignore EPIPE when sending NewSessionTickets in TLSv1.3Matt Caswell
2018-08-22Don't detect a downgrade where the server has a protocol version holeMatt Caswell
2018-08-22Use the same min-max version range on the client consistentlyMatt Caswell
2018-08-20Change Post Handshake auth so that it is opt-inMatt Caswell
2018-08-15Turn on TLSv1.3 downgrade protection by defaultMatt Caswell
2018-08-15Update code for the final RFC version of TLSv1.3 (RFC8446)Matt Caswell
2018-08-14Move SSL_DEBUG md fprintf after assignmentDmitry Yakovlev
2018-08-09Improve fallback protectionMatt Caswell
2018-08-08Tolerate encrypted or plaintext alertsMatt Caswell
2018-08-08Ensure that we write out alerts correctly after early_dataMatt Caswell
2018-08-08Fix a missing call to SSLfatalMatt Caswell
2018-08-07ssl/*: switch to switch to Thread-Sanitizer-friendly primitives.Andy Polyakov
2018-08-06Ensure we send an alert on error when processing a ticketMatt Caswell
2018-07-20Normalize SNI hostname handling for SSL and SSL_SESSIONBenjamin Kaduk
2018-07-20const-ify some input SSL * argumentsBenjamin Kaduk
2018-07-20Validate legacy_versionMatt Caswell
2018-07-19Don't skip over early_data if we sent an HRRMatt Caswell
2018-07-17Fix no-pskMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-17 08:50:31 +0000