summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-06-12Fix a memleak in tls13_generate_secret.Bernd Edlinger
2017-06-12Put message strings in state filesRich Salz
2017-06-12Add SSL_early_get1_extensions_present()Benjamin Kaduk
2017-06-12drop some no-longer-relevant TODO(TLS1.3) entriesBenjamin Kaduk
2017-06-11If-guard to avoid null ptr deref in statem_srvr.cRich Salz
2017-06-09fix check of broken implementations of GOST ciphersuitesPichulin Dmitrii
2017-06-09Fix a bundle of trailing spaces in several filesPaul Yang
2017-06-08Ignore -named_curve auto value to improve backwards compatibilityTomas Mraz
2017-06-08Use memset to clear SRP_CTX instead of NULL and zero assignmentsDiego Santa Cruz
2017-06-08Make SRP_CTX.info ownership and lifetime be the same as SRP_CTX.login.Diego Santa Cruz
2017-06-08Add back support for SHA224 based sig algsMatt Caswell
2017-06-07make error tables const and separate header fileRich Salz
2017-06-06Fix #2400 Add NO_RENEGOTIATE optionTodd Short
2017-06-06Always flush the BIO when we send any alertTodd Short
2017-06-02Fix ex_data and session_dup issuesTodd Short
2017-05-26Fix inconsistent check of UNSAFE_LEGACY_RENEGOTIATIONTodd Short
2017-05-23Don't use one shot API for SSLv3.Dr. Stephen Henson
2017-05-22Add an error to the stack on failure in dtls1_write_bytes()Matt Caswell
2017-05-22Convert existing usage of assert() to ossl_assert() in libsslMatt Caswell
2017-05-22Fix some style issues in returnsMatt Caswell
2017-05-22Replace instances of OPENSSL_assert() with soft asserts in libsslMatt Caswell
2017-05-19Fix return code in tls1_macMatt Caswell
2017-05-19Make SSL_is_server() accept a const SSLMatt Caswell
2017-05-19Try to be more consistent about the alerts we sendMatt Caswell
2017-05-18Fix EXT_RETURN usage for add_key_share()Matt Caswell
2017-05-17Allow a missing sig algs extension if resumingMatt Caswell
2017-05-17Add a new unsolicited extension error code and add enum tagMatt Caswell
2017-05-17Fail if we receive a response to an extension that we didn't requestMatt Caswell
2017-05-17Don't allow fragmented alertsMatt Caswell
2017-05-11Fix gcc-7 warnings.Bernd Edlinger
2017-05-11Add some extra comments following alert changesMatt Caswell
2017-05-11Add some checks for trailing data after extension blocksMatt Caswell
2017-05-11Send a missing_extension alert if key_share/supported groups not presentMatt Caswell
2017-05-11TLSv1.3 alert and handshake messages can never be 0 lengthMatt Caswell
2017-05-11TLSv1.3 alerts cannot be fragmented and only one per recordMatt Caswell
2017-05-11Check that a TLSv1.3 encrypted message has an app data content typeMatt Caswell
2017-05-11Send an illegal parameter alert if the update type in a KeyUpdate is wrongMatt Caswell
2017-05-11Ensure we fail with a decode error alert if the server sends and empty CertMatt Caswell
2017-05-11Fix more alert codesMatt Caswell
2017-05-11Verify that there is no trailing data after the extensions blockMatt Caswell
2017-05-11Fix some alert codesMatt Caswell
2017-05-11Reject unknown warning alerts in TLSv1.3Matt Caswell
2017-05-11Add EVP_DigestSign and EVP_DigesVerifyDr. Stephen Henson
2017-05-10Copy custom extension flags in a call to SSL_set_SSL_CTX()Matt Caswell
2017-05-10Fix 'no-ec'Richard Levitte
2017-05-09Verify that if we have an HRR then something will changeMatt Caswell
2017-05-09Fix HRR bugMatt Caswell
2017-05-09Don't do the final key_share checks if we are in an HRRMatt Caswell
2017-05-09Verify that only NULL compression is sent in TLSv1.3 ClientHelloMatt Caswell
2017-05-08Add support to SSL_trace() for inner content typesMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-29 13:21:48 +0000