index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
ssl
Age
Commit message (
Expand
)
Author
2018-09-07
Do not reset SNI data in SSL_do_handshake()
Matt Caswell
2018-09-07
Simplify SSL_get_servername() to avoid session references
Ben Kaduk
2018-09-07
Restore historical SSL_get_servername() behavior
Ben Kaduk
2018-09-07
Ensure certificate callbacks work correctly in TLSv1.3
Matt Caswell
2018-09-07
Process KeyUpdate and NewSessionTicket messages after a close_notify
Matt Caswell
2018-09-05
key zeroization fix for a branch path of tls13_final_finish_mac
Shane Lontis
2018-09-04
Don't use an RSA-PSS cert for RSA key exchange
Matt Caswell
2018-09-04
Send a NewSessionTicket after using an external PSK
Matt Caswell
2018-09-04
Ignore EPIPE when sending NewSessionTickets in TLSv1.3
Matt Caswell
2018-09-03
Rename SSL[_CTX]_add1_CA_list -> SSL[_CTX]_add1_to_CA_list
Richard Levitte
2018-09-01
Fix ssl/t1_trce.c to parse certificate chains
Erik Forsberg
2018-08-30
Fix a mem leak on error in the PSK code
Matt Caswell
2018-08-22
Don't detect a downgrade where the server has a protocol version hole
Matt Caswell
2018-08-22
Use the same min-max version range on the client consistently
Matt Caswell
2018-08-22
Allow TLS-1.3 ciphersuites in @SECLEVEL=3 and above
Tomas Mraz
2018-08-20
Add support for SSL_CTX_set_post_handshake_auth()
Matt Caswell
2018-08-20
Change Post Handshake auth so that it is opt-in
Matt Caswell
2018-08-15
Turn on TLSv1.3 downgrade protection by default
Matt Caswell
2018-08-15
Update code for the final RFC version of TLSv1.3 (RFC8446)
Matt Caswell
2018-08-14
Move SSL_DEBUG md fprintf after assignment
Dmitry Yakovlev
2018-08-09
Improve fallback protection
Matt Caswell
2018-08-08
Tolerate encrypted or plaintext alerts
Matt Caswell
2018-08-08
Ensure that we write out alerts correctly after early_data
Matt Caswell
2018-08-08
Fix a missing call to SSLfatal
Matt Caswell
2018-08-07
Fix setting of ssl_strings_inited.
Rich Salz
2018-08-07
ssl/*: switch to switch to Thread-Sanitizer-friendly primitives.
Andy Polyakov
2018-08-07
Harmonize use of sk_TYPE_find's return value.
Andy Polyakov
2018-08-06
Ensure we send an alert on error when processing a ticket
Matt Caswell
2018-07-31
Fix some TLSv1.3 alert issues
Matt Caswell
2018-07-26
Improve backwards compat for SSL_get_servername()
Benjamin Kaduk
2018-07-20
Add TODO comment for a nonsensical public API
Benjamin Kaduk
2018-07-20
Normalize SNI hostname handling for SSL and SSL_SESSION
Benjamin Kaduk
2018-07-20
const-ify some input SSL * arguments
Benjamin Kaduk
2018-07-20
Validate legacy_version
Matt Caswell
2018-07-19
Don't skip over early_data if we sent an HRR
Matt Caswell
2018-07-18
Check that the public key OID matches the sig alg
Matt Caswell
2018-07-17
Fix no-psk
Matt Caswell
2018-07-17
Always issue new tickets when using TLSv1.3 stateful tickets
Matt Caswell
2018-07-17
Don't remove sessions from the cache during PHA in TLSv1.3
Matt Caswell
2018-07-13
As a server don't select TLSv1.3 if we're not capable of it
Matt Caswell
2018-07-13
Use ssl_version_supported() when choosing server version
Matt Caswell
2018-07-13
Do not use GOST sig algs in TLSv1.3 where possible
Matt Caswell
2018-07-06
Introduce the recv_max_early_data setting
Matt Caswell
2018-07-03
Remove TLSv1.3 tickets from the client cache as we use them
Matt Caswell
2018-07-03
Restore behaviour from commit 36ff232cf that was incorrectly removed
Matt Caswell
2018-07-02
Add the ability to configure anti-replay via SSL_CONF
Matt Caswell
2018-07-02
Add setters to set the early_data callback
Matt Caswell
2018-07-02
Make the anti-replay feature optional
Matt Caswell
2018-07-02
Fix a NULL ptr deref in error path in tls_process_cke_dhe()
Matt Caswell
2018-07-01
Address coverity-reported NULL dereference in SSL_SESSION_print()
Benjamin Kaduk
[next]