summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2018-02-12Don't overestimate the ticket ageMatt Caswell
2018-02-09Swap the check in ssl3_write_pending to avoid usingBernd Edlinger
2018-02-09Don't calculate the Finished MAC twiceMatt Caswell
2018-02-02Make sure that exporting keying material is allowedTatsuhiro Tsujikawa
2018-02-02Remove generation of exporter master secret on client application trafficTatsuhiro Tsujikawa
2018-02-02Generate exporter_master_secret after server FinishedTatsuhiro Tsujikawa
2018-02-01Fix some minor code nitsTodd Short
2018-02-01Free pha_dgst in SSL_clear()Todd Short
2018-02-01Add TLSv1.3 post-handshake authentication (PHA)Todd Short
2018-02-01Fix some instances of the wrong alert type being sentMatt Caswell
2018-01-30Move decisions about whether to accept reneg into the state machineMatt Caswell
2018-01-29Add RAND_DRBG_bytesKurt Roeckx
2018-01-26Fix ssl-trace with TLS 1.3 draft-23 PSS sigalgsBenjamin Kaduk
2018-01-25Fix uninitialized read in sigalg parsing codeBenjamin Kaduk
2018-01-25Add support for the TLS 1.3 signature_algorithms_cert extensionBenjamin Kaduk
2018-01-25Propagate TLS 1.3 sigalgs through tls1_set_sigalgs()Benjamin Kaduk
2018-01-25Add TLS 1.3 draft-23 PSS signature algorithmsBenjamin Kaduk
2018-01-24Updates following review of SSL_stateless() codeMatt Caswell
2018-01-24Add a timestamp to the cookieMatt Caswell
2018-01-24Don't send unexpected_message if we receive CCS while statelessMatt Caswell
2018-01-24Fix the cookie/key_share extensions for use with SSL_stateless()Matt Caswell
2018-01-24Fix the SSL_stateless() return codeMatt Caswell
2018-01-24Fix interaction between SSL_stateless() and SSL_clear()Matt Caswell
2018-01-24Fix logic around when to send an HRR based on cookiesMatt Caswell
2018-01-24Add the SSL_stateless() functionMatt Caswell
2018-01-24Add support for sending TLSv1.3 cookiesMatt Caswell
2018-01-22Move fprintf after assignment to avoid crash.Rich Salz
2018-01-19Copyright update of more files that have changed this yearRichard Levitte
2018-01-10Make data argument const in SSL_dane_tlsa_addPatrick Schlangen
2018-01-09Tolerate DTLS alerts with an incorrect version numberMatt Caswell
2018-01-09Update copyright years on all files merged since Jan 1st 2018Richard Levitte
2018-01-08Avoid only exact duplicates when creating the accepted CA names listTomas Mraz
2018-01-08Use the index that matches the key type (either SSL_PKEY_RSA_PSS_SIGN or SSL_...Noah Robbin
2018-01-08Use size of server key when selecting signature algorithm.Noah Robbin
2018-01-06Stop using unimplemented cipher classes.Bernd Edlinger
2018-01-03Permit the "supported_groups" extension in ServerHellosBenjamin Kaduk
2018-01-02Fix trace of TLSv1.3 Certificate Request messageMatt Caswell
2018-01-02Fix minor 'the the' typosDaniel Bevenius
2017-12-28Disable partial writes for early dataMatt Caswell
2017-12-28Don't flush the ClientHello if we're going to send early dataMatt Caswell
2017-12-27Alternate fix for ../test/recipes/80-test_ssl_old.t with no-ecBernd Edlinger
2017-12-26Remove outdated commentsPaul Yang
2017-12-17Add master DRBG for reseedingDr. Matthias St. Pierre
2017-12-17Remove spaces at end of line in ssl/statemPaul Yang
2017-12-18Add comments to NULL func ptrs in bio_method_stDaniel Bevenius
2017-12-15Fix invalid function type casts.Bernd Edlinger
2017-12-14Make sure we treat records written after HRR as TLSv1.3Matt Caswell
2017-12-14Issue a CCS from the client if we received an HRRMatt Caswell
2017-12-14Fix server side HRR flushingMatt Caswell
2017-12-14Delay flush until after CCS with early_dataMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-02 18:55:21 +0000