summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2018-02-26Export keying material using early exporter master secretTatsuhiro Tsujikawa
2018-02-23Remove OSSLzu, and fix the one place that used it.Rich Salz
2018-02-23Remove unreachable statement.Pauli
2018-02-21Sanity check the ticket length before using key name/IVMatt Caswell
2018-02-19The record version for ClientHello2 should be TLS1.2Matt Caswell
2018-02-15If s->ctx is NULL then this is an internal errorMatt Caswell
2018-02-14Ignore an s_client psk in TLSv1.3 if not TLSv1.3 suitableMatt Caswell
2018-02-13DRBG: make the derivation function the default for ctr_drbgDr. Matthias St. Pierre
2018-02-13Update copyright yearMatt Caswell
2018-02-12The function ssl_get_min_max_version() can failMatt Caswell
2018-02-12Don't overestimate the ticket ageMatt Caswell
2018-02-09Swap the check in ssl3_write_pending to avoid usingBernd Edlinger
2018-02-09Don't calculate the Finished MAC twiceMatt Caswell
2018-02-02Make sure that exporting keying material is allowedTatsuhiro Tsujikawa
2018-02-02Remove generation of exporter master secret on client application trafficTatsuhiro Tsujikawa
2018-02-02Generate exporter_master_secret after server FinishedTatsuhiro Tsujikawa
2018-02-01Fix some minor code nitsTodd Short
2018-02-01Free pha_dgst in SSL_clear()Todd Short
2018-02-01Add TLSv1.3 post-handshake authentication (PHA)Todd Short
2018-02-01Fix some instances of the wrong alert type being sentMatt Caswell
2018-01-30Move decisions about whether to accept reneg into the state machineMatt Caswell
2018-01-29Add RAND_DRBG_bytesKurt Roeckx
2018-01-26Fix ssl-trace with TLS 1.3 draft-23 PSS sigalgsBenjamin Kaduk
2018-01-25Fix uninitialized read in sigalg parsing codeBenjamin Kaduk
2018-01-25Add support for the TLS 1.3 signature_algorithms_cert extensionBenjamin Kaduk
2018-01-25Propagate TLS 1.3 sigalgs through tls1_set_sigalgs()Benjamin Kaduk
2018-01-25Add TLS 1.3 draft-23 PSS signature algorithmsBenjamin Kaduk
2018-01-24Updates following review of SSL_stateless() codeMatt Caswell
2018-01-24Add a timestamp to the cookieMatt Caswell
2018-01-24Don't send unexpected_message if we receive CCS while statelessMatt Caswell
2018-01-24Fix the cookie/key_share extensions for use with SSL_stateless()Matt Caswell
2018-01-24Fix the SSL_stateless() return codeMatt Caswell
2018-01-24Fix interaction between SSL_stateless() and SSL_clear()Matt Caswell
2018-01-24Fix logic around when to send an HRR based on cookiesMatt Caswell
2018-01-24Add the SSL_stateless() functionMatt Caswell
2018-01-24Add support for sending TLSv1.3 cookiesMatt Caswell
2018-01-22Move fprintf after assignment to avoid crash.Rich Salz
2018-01-19Copyright update of more files that have changed this yearRichard Levitte
2018-01-10Make data argument const in SSL_dane_tlsa_addPatrick Schlangen
2018-01-09Tolerate DTLS alerts with an incorrect version numberMatt Caswell
2018-01-09Update copyright years on all files merged since Jan 1st 2018Richard Levitte
2018-01-08Avoid only exact duplicates when creating the accepted CA names listTomas Mraz
2018-01-08Use the index that matches the key type (either SSL_PKEY_RSA_PSS_SIGN or SSL_...Noah Robbin
2018-01-08Use size of server key when selecting signature algorithm.Noah Robbin
2018-01-06Stop using unimplemented cipher classes.Bernd Edlinger
2018-01-03Permit the "supported_groups" extension in ServerHellosBenjamin Kaduk
2018-01-02Fix trace of TLSv1.3 Certificate Request messageMatt Caswell
2018-01-02Fix minor 'the the' typosDaniel Bevenius
2017-12-28Disable partial writes for early dataMatt Caswell
2017-12-28Don't flush the ClientHello if we're going to send early dataMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-21 01:34:27 +0000