summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-12-04Convert the state machine code to use SSLfatal()Matt Caswell
2017-12-04Replace some usage of SSLerr with SSLfatal()Matt Caswell
2017-12-04Provide an SSLfatal() macroMatt Caswell
2017-11-30Add sk_new_reserve supportTodd Short
2017-11-30Use ChaCha only if prioritized by clntTodd Short
2017-11-28Fix SSL_state_string() and SSL_state_string_long()Matt Caswell
2017-11-21If a server is not acknowledging SNI then don't reject early_dataMatt Caswell
2017-11-21Allow a client to send early_data with SNI if the session has no SNIMatt Caswell
2017-11-13Resolve warnings in VC-WIN32 build, which allows to add /WX.Andy Polyakov
2017-11-13ssl/ssl_asn1.c: resolve warnings in VC-WIN32 build, which allows to add /WX.Andy Polyakov
2017-11-11Many spelling fixes/typo's corrected.Josh Soref
2017-11-07style : fix some if(...FdaSilvaYY
2017-11-07Mark a zero length record as readMatt Caswell
2017-11-05Implement Maximum Fragment Length TLS extension.FdaSilvaYY
2017-10-30Provide SSL_CTX.stats.sess_accept for switched ctxsBenjamin Kaduk
2017-10-30Normalize on session_ctx for stats where possibleBenjamin Kaduk
2017-10-30Use atomics for SSL_CTX statisticsBenjamin Kaduk
2017-10-26Simplify the stack reservationPaul Yang
2017-10-25Fix error handling in SSL_newBernd Edlinger
2017-10-20Various clean-upsKaoruToda
2017-10-18Remove parentheses of return.KaoruToda
2017-10-18Add missing RAND_DRBG lockingBenjamin Kaduk
2017-10-18Fix reseeding issues of the public RAND_DRBGDr. Matthias St. Pierre
2017-10-16Tweak the comment regarding record version check with respect to TLSv1.3Matt Caswell
2017-10-16Sanity check the HRR version fieldMatt Caswell
2017-10-16Don't do version neg on an HRRMatt Caswell
2017-10-12Fix bug where early_data does not work if no SNI callback is presentMatt Caswell
2017-10-11Move supportedgroup ext-block fields out of NO_ECBenjamin Kaduk
2017-10-10crypto/x509v3/v3_utl.c, ssl/ssl_cert.c: fix Coverity problems.Andy Polyakov
2017-10-10Don't change client random in Client Hello in its second flightTatsuhiro Tsujikawa
2017-10-09Since return is inconsistent, I removed unnecessary parentheses andKaoruToda
2017-10-06Merge tls1_check_curve into tls1_check_group_idDr. Stephen Henson
2017-10-06Change curves to groups where relevantDr. Stephen Henson
2017-10-06Use separate functions for supported and peer groups listsDr. Stephen Henson
2017-10-04Remove an incorrect commentMatt Caswell
2017-10-04Session resume broken switching contextsTodd Short
2017-09-29Remove unnecessary #include <openssl/lhash.h> directives.Pauli
2017-09-28Use safestack.h exclusively internally.Pauli
2017-09-28Add stack space reservations.Pauli
2017-09-26Add and use function tls1_in_list to avoid code duplication.Dr. Stephen Henson
2017-09-26Use tls1_group_id_lookup in tls1_curve_allowedDr. Stephen Henson
2017-09-26Rename tls1_get_curvelist.Dr. Stephen Henson
2017-09-26Rewrite compression and group checks.Dr. Stephen Henson
2017-09-26New function ssl_generate_param_groupDr. Stephen Henson
2017-09-26Replace tls1_ec_curve_id2nid.Dr. Stephen Henson
2017-09-26Rename tls_curve_info to TLS_GROUP_INFO, move to ssl_locl.hDr. Stephen Henson
2017-09-26Return group id in tls1_shared_groupDr. Stephen Henson
2017-09-26Return correct Suite B curve, fix comment.Dr. Stephen Henson
2017-09-23Use size of entries, not size of the pointer.Kurt Roeckx
2017-09-23Use curve_id not the nidKurt Roeckx
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-05 07:17:06 +0000