summaryrefslogtreecommitdiffstats
path: root/ssl/t1_lib.c
AgeCommit message (Expand)Author
2018-07-18Check that the public key OID matches the sig algMatt Caswell
2018-07-13Do not use GOST sig algs in TLSv1.3 where possibleMatt Caswell
2018-06-29Check return from BN_set_word.Pauli
2018-06-07Fix EAP-FASTMatt Caswell
2018-05-30Send GOST SignatureAlgorithms when TLS 1.2 in useDmitry Belyavskiy
2018-05-30Bugfix: GOST2012 certificates for GOST ciphersuites were broken.Dmitry Belyavskiy
2018-05-12Set sess to NULL after freeing it.Kurt Roeckx
2018-05-11Rework the decrypt ticket callbackMatt Caswell
2018-05-11Fix ticket callbacks in TLSv1.3Matt Caswell
2018-04-25Fix the MAX_CURVELIST definitionMatt Caswell
2018-04-24Allow TLSv1.3 EC certs to use compressed pointsMatt Caswell
2018-04-03Set error code on alloc failuresRich Salz
2018-03-28Tolerate a Certificate using a non-supported group on server sideMatt Caswell
2018-03-19Place ticket keys into secure memoryTodd Short
2018-03-19Always call the new_session_cb when issuing a NewSessionTicket in TLSv1.3Matt Caswell
2018-03-12Session Ticket app dataTodd Short
2018-03-05Add X448/Ed448 support to libsslMatt Caswell
2018-02-21Sanity check the ticket length before using key name/IVMatt Caswell
2018-02-12The function ssl_get_min_max_version() can failMatt Caswell
2018-01-25Fix uninitialized read in sigalg parsing codeBenjamin Kaduk
2018-01-25Add support for the TLS 1.3 signature_algorithms_cert extensionBenjamin Kaduk
2018-01-25Propagate TLS 1.3 sigalgs through tls1_set_sigalgs()Benjamin Kaduk
2018-01-25Add TLS 1.3 draft-23 PSS signature algorithmsBenjamin Kaduk
2018-01-09Update copyright years on all files merged since Jan 1st 2018Richard Levitte
2018-01-08Use the index that matches the key type (either SSL_PKEY_RSA_PSS_SIGN or SSL_...Noah Robbin
2018-01-08Use size of server key when selecting signature algorithm.Noah Robbin
2017-12-04Convert the state machine code to use SSLfatal()Matt Caswell
2017-11-13Resolve warnings in VC-WIN32 build, which allows to add /WX.Andy Polyakov
2017-11-05Implement Maximum Fragment Length TLS extension.FdaSilvaYY
2017-10-20Various clean-upsKaoruToda
2017-10-06Merge tls1_check_curve into tls1_check_group_idDr. Stephen Henson
2017-10-06Change curves to groups where relevantDr. Stephen Henson
2017-10-06Use separate functions for supported and peer groups listsDr. Stephen Henson
2017-09-26Add and use function tls1_in_list to avoid code duplication.Dr. Stephen Henson
2017-09-26Use tls1_group_id_lookup in tls1_curve_allowedDr. Stephen Henson
2017-09-26Rename tls1_get_curvelist.Dr. Stephen Henson
2017-09-26Rewrite compression and group checks.Dr. Stephen Henson
2017-09-26Replace tls1_ec_curve_id2nid.Dr. Stephen Henson
2017-09-26Rename tls_curve_info to TLS_GROUP_INFO, move to ssl_locl.hDr. Stephen Henson
2017-09-26Return group id in tls1_shared_groupDr. Stephen Henson
2017-09-26Return correct Suite B curve, fix comment.Dr. Stephen Henson
2017-09-23Use curve_id not the nidKurt Roeckx
2017-09-22Store groups as uint16_tDr. Stephen Henson
2017-09-21Fix strict-warnings buildPatrick Steuer
2017-09-20Allow RSA certificates to be used for RSA-PSSDr. Stephen Henson
2017-09-20Add RSA-PSS key certificate type.Dr. Stephen Henson
2017-08-30e_os.h removal from other headers and source files.Pauli
2017-07-13Use cert tables in ssl_set_sig_maskDr. Stephen Henson
2017-07-13Use certificate tables instead of ssl_cert_typeDr. Stephen Henson
2017-07-13Use certificate tables instead of ssl_cipher_get_cert_index.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-08 10:07:56 +0000