summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2020-04-21Fix NULL dereference in SSL_check_chain() for TLS 1.3Benjamin Kaduk
2020-03-25Partially revert "Detect EOF while reading in libssl"Tomas Mraz
2020-03-17Update copyright yearMatt Caswell
2020-03-13Code to thread-safety in ChangeCipherStateBenjamin Kaduk
2020-03-13Don't write to the session when computing TLS 1.3 keysBenjamin Kaduk
2020-03-13Fix whitespace nit in ssl_generate_master_secret()Benjamin Kaduk
2020-02-20Detect EOF while reading in libsslMatt Caswell
2020-02-19Handle max_fragment_length overflow for DTLSSimon Cornish
2020-02-16Check that ed25519 and ed448 are allowed by the security levelKurt Roeckx
2020-01-30Don't acknowledge a servername following warning alert in servername cbMatt Caswell
2020-01-30Fix SSL_get_servername() and SNI behaviourMatt Caswell
2020-01-25Check that the default signature type is allowedKurt Roeckx
2020-01-21Fix TLS not using aes_cbc_hmac_sha ciphersBernd Edlinger
2020-01-02Update tls13_enc.cdcruette
2019-12-14Parse large GOST ClientKeyExchange messagesDmitry Belyavskiy
2019-12-11Fix some typosVeres Lajos
2019-11-21Fix a race condition in SNI handlingBenjamin Kaduk
2019-11-12SSL: Document SSL_add_{file,dir}_cert_subjects_to_stack()Richard Levitte
2019-11-11Fix misspelled resumption_label for CHARSET_EBCDICIdo Ben-Natan
2019-11-10Workaround for Windows-based GOST implementationsDmitry Belyavskiy
2019-10-10ssl/statem/statem_lib.c: make servercontext/clientcontext arrays of chars ins...Artiom Vaskov
2019-10-07Send bad_record_mac instead of decryption_failedMatt Caswell
2019-10-03'init_buf' memory can be freed when DTLS is used over SCTP (not over UDP).NaveenShivanna86
2019-10-03Do not print extensions in Certificate message for TLS1.2 and lowerDaniil Zotkin
2019-09-27Fix header file include guard namesDr. Matthias St. Pierre
2019-09-27Reorganize local header filesDr. Matthias St. Pierre
2019-09-10Update copyright yearMatt Caswell
2019-09-06Don't send a status_request extension in a CertificateRequest messageMatt Caswell
2019-09-04Fix SSL_set_ciphersuites to set even if no call to SSL_set_cipher_listraja-ashok
2019-09-04Fix bogus check for EVP_PKEY mandatory digest in check_cert_usable()David Woodhouse
2019-08-14Fix SSL_check_chain()Matt Caswell
2019-08-14Add missing EBCDIC stringsopensslonzos-github
2019-08-05Fix SSL_MODE_RELEASE_BUFFERS functionalityMatt Caswell
2019-08-01Use allow_early_data_cb from SSL instead of SSL_CTXraja-ashok
2019-07-25Don't generate an unnecessary Diffie-Hellman key in TLS 1.3 clients.David Benjamin
2019-07-17Fix the return value for SSL_get0_chain_certs()Matt Caswell
2019-07-16Fix SSL_CTX_set_session_id_context() docsTodd Short
2019-07-16Remove DRBG from SSL structure.Pauli
2019-06-26Move 'shared_sigalgs' from cert_st to ssl_stBenjamin Kaduk
2019-06-26Revert "Delay setting the sig algs until after the cert_cb has been called"Benjamin Kaduk
2019-06-18Following the previous 2 commits also move ecpointformats out of sessionMatt Caswell
2019-06-18Fix a race condition in ciphers handlingMatt Caswell
2019-06-18Fix a race condition in supported groups handlingMatt Caswell
2019-06-03Defer sending a KeyUpdate until after pending writes are completeMatt Caswell
2019-05-30issue-8998: Ensure that the alert is generated and reaches the remoteagnosticdev
2019-05-28Update copyright yearRichard Levitte
2019-05-21Change SSL parameter SSL_session_reused constArne Schwabe
2019-04-19Check if num is 0 before trying to malloc memory. Otherwise for client hellos...dyrock
2019-04-10Fix typosJakub Wilk
2019-03-28conn_is_closed should return 1 if get_last_sys_error is WSAECONNRESETPaul Monson
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-13 17:01:28 +0000