summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2022-06-03Fix strict client chain check with TLS-1.3Tomas Mraz
2022-06-03Enable setting SSL_CERT_FLAG_TLS_STRICT with ssl configTomas Mraz
2022-06-03Add a test_ssl_new testcaseTomas Mraz
2022-06-03First working empty protocol testTomas Mraz
2022-06-03Add empty implementations of quic method functionsTomas Mraz
2022-06-02Fix the erroneous checks of EVP_PKEY_CTX_set_group_namePeiwei Hu
2022-05-27The -no_legacy_server_connect option applies to clientTomas Mraz
2022-05-27Actually implement UnsafeLegacyServerConnect as documentedTomas Mraz
2022-05-27QUIC wire format supportHugo Landau
2022-05-26Fix check of dtls1_process_recordPeiwei Hu
2022-05-24Use safe pattern for buffer size determining in case of GOST key exchangeDmitry Belyavskiy
2022-05-24Fix a crash in ssl_security_cert_chainBernd Edlinger
2022-05-24Fix check of EVP_CIPHER_CTX_ctrlPeiwei Hu
2022-05-23Add more SRTP protection profilesKijin Kim
2022-05-19Fix coverity 1504433: unchecked return valuePauli
2022-05-16Add return value check of EVP_PKEY_copy_parameters () in ssl_set_cert_and_key()Zhou Qingyang
2022-05-10err: get rid of err_free_strings_int()Dr. Matthias St. Pierre
2022-05-09Fix leakage when the cacheline is 32-bytes in CBC_MAC_ROTATE_IN_PLACEbasavesh
2022-05-08tls: ban SSL3, TLS1, TLS1.1 and DTLS1.0 at security level one and abovePauli
2022-05-04Remove duplicated #include headersJHH20
2022-05-03Update copyright yearMatt Caswell
2022-04-22str[n]casecmp => OPENSSL_strncasecmpDmitry Belyavskiy
2022-04-14Fix an assertion in the DTLS server codeBernd Edlinger
2022-04-12SSL_conf_cmd: Allow DH Parameters at any position.Daniel Fiala
2022-04-06Add SSL_(CTX_)?get0_(verify|chain)_cert_store functionsHugo Landau
2022-04-06KTLS: Enable KTLS for receiving as well in TLS 1.3Daiki Ueno
2022-04-06KTLS: Handle TLS 1.3 in ssl3_get_record.Daiki Ueno
2022-04-06KTLS: Add using_ktls helper variable in ssl3_get_record().John Baldwin
2022-04-06KTLS: Check for unprocessed receive records in ktls_configure_crypto.John Baldwin
2022-03-30tls_process_server_hello: Disallow repeated HRRTomas Mraz
2022-03-25ticket_lifetime_hint may exceed 1 week in TLSv1.3Todd Short
2022-03-23Fix Coverity 1498611 & 1498608: uninitialised readPauli
2022-03-18print SSL session, fix build warnings on OpenBSD.David Carlier
2022-03-14Replace handling of negative verification result with SSL_set_retry_verify()Tomas Mraz
2022-03-01[ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3Nicola Tuveri
2022-03-01[ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH aliasNicola Tuveri
2022-02-17Add back check for the DH public key sizeTomas Mraz
2022-02-11Cleanup record length checks for KTLSBernd Edlinger
2022-02-05Move e_os.h to include/internalRichard Levitte
2022-02-04Add support for Chacha20-Poly1305 to kernel TLS on FreeBSD.John Baldwin
2022-02-03add SSL_get0_iana_groups() & SSL_client_hello_get_extension_order()Phus Lu
2022-02-01Update the comment on ssl3_write_pending()yangyangtiantianlonglong
2022-02-01Revert dropped usage of var thiswr in do_ssl3_write()yangyangtiantianlonglong
2022-01-28apps: Add option -no_ems to s_client/s_server appsyangyangtiantianlonglong
2022-01-19ssl: better support TSAN operationsPauli
2022-01-18ssl: replace ;; with ; as statement separatorPauli
2022-01-17ssl/t1_enc: Fix kTLS RX offload pathDmytro Podgornyi
2022-01-09Delete unused param about get_construct_message_fyangyangtiantianlonglong
2022-01-08Update alert to common protocolKan
2022-01-07Fix: some patches related to error exitingPeiwei Hu
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-03 01:05:17 +0000