summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-05-11Fix gcc-7 warnings.Bernd Edlinger
2017-05-11Add some extra comments following alert changesMatt Caswell
2017-05-11Add some checks for trailing data after extension blocksMatt Caswell
2017-05-11Send a missing_extension alert if key_share/supported groups not presentMatt Caswell
2017-05-11TLSv1.3 alert and handshake messages can never be 0 lengthMatt Caswell
2017-05-11TLSv1.3 alerts cannot be fragmented and only one per recordMatt Caswell
2017-05-11Check that a TLSv1.3 encrypted message has an app data content typeMatt Caswell
2017-05-11Send an illegal parameter alert if the update type in a KeyUpdate is wrongMatt Caswell
2017-05-11Ensure we fail with a decode error alert if the server sends and empty CertMatt Caswell
2017-05-11Fix more alert codesMatt Caswell
2017-05-11Verify that there is no trailing data after the extensions blockMatt Caswell
2017-05-11Fix some alert codesMatt Caswell
2017-05-11Reject unknown warning alerts in TLSv1.3Matt Caswell
2017-05-11Add EVP_DigestSign and EVP_DigesVerifyDr. Stephen Henson
2017-05-10Copy custom extension flags in a call to SSL_set_SSL_CTX()Matt Caswell
2017-05-10Fix 'no-ec'Richard Levitte
2017-05-09Verify that if we have an HRR then something will changeMatt Caswell
2017-05-09Fix HRR bugMatt Caswell
2017-05-09Don't do the final key_share checks if we are in an HRRMatt Caswell
2017-05-09Verify that only NULL compression is sent in TLSv1.3 ClientHelloMatt Caswell
2017-05-08Add support to SSL_trace() for inner content typesMatt Caswell
2017-05-08Remove support for OPENSSL_SSL_TRACE_CRYPTOMatt Caswell
2017-05-08Updates to supported_groups following review feedbackMatt Caswell
2017-05-08Send the supported_groups extension in EE where applicableMatt Caswell
2017-05-04Updates to serverinfo fix based on review feedbackMatt Caswell
2017-05-04Fix SSL_CTX_use_serverinfo_ex() et al to properly handle V1 dataMatt Caswell
2017-05-04Revert "Fix clang compile time error"Matt Caswell
2017-05-04Fix clang compile time errorTodd Short
2017-05-03Update the HKDF labels for draft-20Matt Caswell
2017-05-03Limit padded record to max plaintextTodd Short
2017-05-03Clarify serverinfo usage with Certificate messagesMatt Caswell
2017-05-03Add an SSL_ prefix to SERVERINFOV2 and SERVERINFOV1Matt Caswell
2017-05-03Only send custom extensions where we have received one in the ClientHelloMatt Caswell
2017-05-03Extend the SERVERINFO file format to include an extensions contextMatt Caswell
2017-05-02Fix comment around safari fingerprint checkMatt Caswell
2017-05-02TLS1.3 PaddingTodd Short
2017-04-26Return success in custom_ext_parse_old_cb_wrap if parse_cb is NULLGraham Edgecombe
2017-04-26Don't treat PACKET_remaining() as booleanTatsuhiro Tsujikawa
2017-04-26Break before && operatorTatsuhiro Tsujikawa
2017-04-26Call init and finalization functions per extension messageTatsuhiro Tsujikawa
2017-04-26Always duplicate the session on NewSessionTicket in TLSv1.3Matt Caswell
2017-04-26Add support for SSL_SESSION_is_resumable()Matt Caswell
2017-04-26Remove TLS1.3 TODO around testing for session id lengthMatt Caswell
2017-04-26Add a ciphersuite config sanity check for serversMatt Caswell
2017-04-26Add a ciphersuite config sanity check for clientsMatt Caswell
2017-04-26Don't overwrite the alert value if there is no alert to sendMatt Caswell
2017-04-25Don't attempt to send fragments > max_send_fragment in DTLSMatt Caswell
2017-04-25Remove special case code for SCTP reneg handlingMatt Caswell
2017-04-24Don't fail the connection in SSLv3 if server selects ECDHEMatt Caswell
2017-04-24if log fails, avoid pms getting double freeRich Salz
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-26 19:24:14 +0000