summaryrefslogtreecommitdiffstats
path: root/ssl/statem
AgeCommit message (Expand)Author
2021-01-12Clean away extraneous library specific FETCH_FAILED reason codesRichard Levitte
2021-01-09Fix for negative return value from `SSL_CTX_sess_accept()`anupamam13
2020-12-20Drop OPENSSL_NO_RSA everywhereRichard Levitte
2020-12-09Modify is_tls13_capable() to take account of the servername cbMatt Caswell
2020-12-08TLS: Use EVP_PKEY_get_group_name() to get the group nameRichard Levitte
2020-12-03tag unused function arguments as ossl_unusedPauli
2020-11-26Update copyright yearMatt Caswell
2020-11-18Deprecate RSA harderRichard Levitte
2020-11-18Only disabled what we need to in a no-dh buildMatt Caswell
2020-11-18Remove DH usage from tls_process_cke_dheMatt Caswell
2020-11-18Remove DH usage in tls_construct_server_key_exchange()Matt Caswell
2020-11-18Avoid the use of a DH object in tls_construct_cke_dhe()Matt Caswell
2020-11-18Deprecate SSL_CTRL_SET_TMP_DH and other related ctrlsMatt Caswell
2020-11-18Convert TLS ServerKeyExchange processing to use an EVP_PKEYMatt Caswell
2020-11-18Convert TLS auto DH parameters to use EVP_PKEYMatt Caswell
2020-11-11SSL: refactor all SSLfatal() callsRichard Levitte
2020-11-11SSL: refactor ossl_statem_fatal() and SSLfatal()Richard Levitte
2020-11-11Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() callRichard Levitte
2020-11-02Adjust error reason for ssl_get_min_max_version() failureBenjamin Kaduk
2020-10-26Ensure we raise SSLfatal on errorMatt Caswell
2020-10-20Rename EVP_PKEY_set1_tls_encodedpoint to EVP_PKEY_set1_encoded_public_keyMatt Caswell
2020-10-16Pass an EVP_PKEY for SSL_SECOP_TMP_DH in the security callbackMatt Caswell
2020-10-16Concentrate deprecated libssl API usage in one fileMatt Caswell
2020-10-15Update copyright yearMatt Caswell
2020-10-14[ssl] Support ssl_encapsulate on server sideNicola Tuveri
2020-10-14[ssl] Support ssl_decapsulate on client sideNicola Tuveri
2020-10-01Run the withlibctx.pl scriptMatt Caswell
2020-09-17Disallow certs with explicit curve in verification chainTomas Mraz
2020-09-16DTLS: free allocated memory on error pathsPauli
2020-09-13Fix safestack issues in ocsp.hMatt Caswell
2020-09-13Fix safestack issues in x509.hMatt Caswell
2020-09-13Fix safestack issues in ssl.hMatt Caswell
2020-09-01also zero pad DHE public key in ClientKeyExchange message for interopFelix Monninger
2020-08-29Check whether we have MD5-SHA1 and whether we need itMatt Caswell
2020-08-29Improve some error messages if a digest is not availableMatt Caswell
2020-08-29Ensure libssl creates libctx aware MAC keysMatt Caswell
2020-08-09Add EVP signature with libctx methods.Shane Lontis
2020-07-24Add X509 related libctx changes.Shane Lontis
2020-07-21Avoid errors with a priori inapplicable protocol boundsViktor Dukhovni
2020-07-16deprecate engines in SSLPauli
2020-07-16Add SSL_get[01]_peer_certificate()Todd Short
2020-07-05Fix many MarkDown issues in {NOTES*,README*,HACKING,LICENSE}.md filesDr. David von Oheimb
2020-07-05Rename NOTES*, README*, VERSION, HACKING, LICENSE to .md or .txtDr. David von Oheimb
2020-06-19Fix the DTLS1_COOKIE_LENGTH valueMatt Caswell
2020-06-19Don't send supported groups if no-ec and we're doing DTLSMatt Caswell
2020-06-19Provider a better error message if we fail to copy parametersMatt Caswell
2020-06-19Modify libssl to discover supported groups based on available providersMatt Caswell
2020-06-09Do not allow dropping Extended Master Secret extension on renegotiatonTomas Mraz
2020-06-05Don't downgrade keys in libsslMatt Caswell
2020-06-04Update copyright yearMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-25 00:30:56 +0000