summaryrefslogtreecommitdiffstats
path: root/ssl/statem
AgeCommit message (Expand)Author
2017-04-03Don't use client specific functions to retrieve CA listDr. Stephen Henson
2017-04-03New certificate_authorities functionsDr. Stephen Henson
2017-04-03Fix calls to SSL_get_server_tmp_key() in TLSv1.3Matt Caswell
2017-03-29Fix the build warning under OPENSSL_NO_GOSTQin Long
2017-03-29Further de-obfuscationBenjamin Kaduk
2017-03-29More typo fixesFdaSilvaYY
2017-03-28Fix a few more typosFdaSilvaYY
2017-03-24Move the downgrade sentinel declarations to a header fileMatt Caswell
2017-03-24Add client side support for TLSv1.3 downgrade mechanismMatt Caswell
2017-03-24Add server side support for TLSv1.3 downgrade mechanismMatt Caswell
2017-03-21Fix resumption after HRRMatt Caswell
2017-03-17Implement certificate_authorities extensionDr. Stephen Henson
2017-03-17Support draft-19 TLS certificate request formatDr. Stephen Henson
2017-03-17Allow signature algorithms in TLS 1.3 certificate request extensions.Dr. Stephen Henson
2017-03-17Move parsing and construction of CA names to separate functionsDr. Stephen Henson
2017-03-16Fix the Padding extensionMatt Caswell
2017-03-16Updates following review feedbackMatt Caswell
2017-03-16Fix ciphersuite handling during an HRRMatt Caswell
2017-03-16Ensure after an HRR any PSKs have the right hashMatt Caswell
2017-03-16HelloRetryRequest updates for draft-19Matt Caswell
2017-03-16Check ClientHello boundary as per draft-19Matt Caswell
2017-03-16Merge early_data_info extension into early_dataMatt Caswell
2017-03-16Update end of early data processing for draft-19Matt Caswell
2017-03-15Remove dead codeBenjamin Kaduk
2017-03-15Tighten up client status_request processingBenjamin Kaduk
2017-03-15Clear alpn_selected_len for clients, tooBenjamin Kaduk
2017-03-14De-obfuscateBenjamin Kaduk
2017-03-10Use the new TLSv1.3 certificate_required alert where appropriateMatt Caswell
2017-03-10Check that the PSK extension is lastMatt Caswell
2017-03-07Check TLSv1.3 ServerHello, Finished and KeyUpdates are on record boundaryMatt Caswell
2017-03-06Fix double free in cookie generation.Kurt Roeckx
2017-03-04Don't call memcmp with a NULL pointerMatt Caswell
2017-03-04Add basic TLSv1.3 cookie supportMatt Caswell
2017-03-04Fix a memory leak on an error pathMatt Caswell
2017-03-03Disallow zero length signature algorithmsDr. Stephen Henson
2017-03-02Silence some clang warningsMatt Caswell
2017-03-02Make SSL_write_early_finish() an internal only functionMatt Caswell
2017-03-02Various fixes required to allow SSL_write/SSL_read during early dataMatt Caswell
2017-03-02Enable the server to call SSL_write() without stopping the ability to call SS...Matt Caswell
2017-03-02Enable the client to call SSL_read() without stopping the ability to call SSL...Matt Caswell
2017-03-02Introduce a new early_data state in the state machineMatt Caswell
2017-03-02Only accept early_data if the negotiated ALPN is the sameMatt Caswell
2017-03-02Skip early_data if appropriate after a HelloRetryRequestMatt Caswell
2017-03-02Don't accept early_data if we are going to issue a HelloRetryRequestMatt Caswell
2017-03-02Add extra validation parsing the server-to-client early_data extensionMatt Caswell
2017-03-02Remove some TLSv1.3 TODOs that are no longer relevantMatt Caswell
2017-03-02Validate the ticket age for resumed sessionsMatt Caswell
2017-03-02Disallow handshake messages in the middle of early_dataMatt Caswell
2017-03-02Implement client side parsing of the early_data extensionMatt Caswell
2017-03-02Fix changing of the cipher state when dealing with early dataMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-27 14:56:06 +0000