summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2021-12-07Don't free the EVP_PKEY on error in set0_tmp_dh_pkey() functionsMatt Caswell
2021-11-29No EtM for GOST ciphers in TLS 1.2Dmitry Belyavskiy
2021-11-29Don't include any TLSv1.3 ciphersuites that are disabledolszomal
2021-11-26Enable brainpool curves for TLS1.3Bernd Edlinger
2021-11-17Move more general parts of internal/cryptlib.h to new internal/common.hDr. David von Oheimb
2021-11-17Add and use HAS_PREFIX() and CHECK_AND_SKIP_PREFIX() for checking if string h...Dr. David von Oheimb
2021-11-16BIO_read_filename: fix return checkPeiwei Hu
2021-11-16RAND_bytes_ex: fix return checkPeiwei Hu
2021-11-15Reset the rwstate before calling ASYNC_start_job()Matt Caswell
2021-11-12Add return value NULL checks that were missingPauli
2021-11-08KTLS: use EVP_CIPHER_is_a instead of nidTianjia Zhang
2021-11-04Fix a memory leak in ssl_create_cipher_listBernd Edlinger
2021-11-04Fix a memory leak in tls_parse_stoc_key_shareBernd Edlinger
2021-10-28fix some code with obvious wrong coding stylex2018
2021-10-27free the Post-Handshake Auth digest when there is an error saving the digestx2018
2021-10-11New extensions can be sent in a certificate requestMatt Caswell
2021-10-06Replace the AES-128-CBC-HMAC-SHA1 cipher in e_ossltest.cBernd Edlinger
2021-10-04Fix ssl_free() and thus BIO_free() to respect BIO_NOCLOSEDr. David von Oheimb
2021-09-30Allow cipher strings to be given using its standard nameErik Lax
2021-09-28ssl: Correct comment for ssl3_read_bytes()Tianjia Zhang
2021-09-27ssl: Correct filename in READMETianjia Zhang
2021-09-24tls/ccm8: reduce the cipher strength for CCM8 ciphers to 64 bitsPauli
2021-09-24doc: document the change to the security level of CCM8 cipher suitesPauli
2021-09-24tls: reduce the strength of CCM_8 ciphers due to their short IV.Pauli
2021-09-23Change TLS RC4 cipher strength check to be data driven.slontis
2021-09-07Update copyright yearRichard Levitte
2021-09-03Fix indentation of tls13_hkdf_expand parametersDaniel Bevenius
2021-08-31Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass testsTomas Mraz
2021-08-25Fix the array size of dtlsseq in tls1_encBernd Edlinger
2021-08-19Fix state name abbreviationTodd Short
2021-08-16Fix potential double-freeTodd Short
2021-08-11Omitted signature_algorithms extension alerts updatedDmitry Belyavskiy
2021-08-05tls/prov: move the TLS 1.3 KDF code to providersPauli
2021-07-29Fix dtls timeout dead codeyangyangtiantianlonglong
2021-07-29Update copyright yearMatt Caswell
2021-07-28Add missing session timeout calcTodd Short
2021-07-27KTLS: AES-CCM in TLS-1.3 is broken on 5.x kernels, disable itTomas Mraz
2021-07-21tls_process_{client,server}_certificate(): allow verify_callback return > 1Dr. David von Oheimb
2021-07-17Fix some minor record layer issuesMatt Caswell
2021-07-16Disallow SSL_key_update() if there are writes pendingMatt Caswell
2021-07-16Don't reset the packet pointer in ssl3_setup_read_bufferMatt Caswell
2021-07-06Avoid "excessive message size" for session ticketsMatt Caswell
2021-07-06fips module header inclusion fine-tunningTomas Mraz
2021-06-23Adapt other parts of the source to the changed EVP_Q_digest() and EVP_Q_mac()Richard Levitte
2021-06-23cross-reference the DH and RSA SECLEVEL to level of security mappingsHubert Kario
2021-06-19ssl: fix indentationPauli
2021-06-19ssl: fix indentationPauli
2021-06-19ssl: replace tabs with spacesPauli
2021-06-19ssl: do not choose auto DH groups that are weaker than the security levelPauli
2021-06-17Update copyright yearMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-26 18:46:39 +0000