summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-05-26Fix inconsistent check of UNSAFE_LEGACY_RENEGOTIATIONTodd Short
2017-05-23Don't use one shot API for SSLv3.Dr. Stephen Henson
2017-05-22Add an error to the stack on failure in dtls1_write_bytes()Matt Caswell
2017-05-22Convert existing usage of assert() to ossl_assert() in libsslMatt Caswell
2017-05-22Fix some style issues in returnsMatt Caswell
2017-05-22Replace instances of OPENSSL_assert() with soft asserts in libsslMatt Caswell
2017-05-19Fix return code in tls1_macMatt Caswell
2017-05-19Make SSL_is_server() accept a const SSLMatt Caswell
2017-05-19Try to be more consistent about the alerts we sendMatt Caswell
2017-05-18Fix EXT_RETURN usage for add_key_share()Matt Caswell
2017-05-17Allow a missing sig algs extension if resumingMatt Caswell
2017-05-17Add a new unsolicited extension error code and add enum tagMatt Caswell
2017-05-17Fail if we receive a response to an extension that we didn't requestMatt Caswell
2017-05-17Don't allow fragmented alertsMatt Caswell
2017-05-11Fix gcc-7 warnings.Bernd Edlinger
2017-05-11Add some extra comments following alert changesMatt Caswell
2017-05-11Add some checks for trailing data after extension blocksMatt Caswell
2017-05-11Send a missing_extension alert if key_share/supported groups not presentMatt Caswell
2017-05-11TLSv1.3 alert and handshake messages can never be 0 lengthMatt Caswell
2017-05-11TLSv1.3 alerts cannot be fragmented and only one per recordMatt Caswell
2017-05-11Check that a TLSv1.3 encrypted message has an app data content typeMatt Caswell
2017-05-11Send an illegal parameter alert if the update type in a KeyUpdate is wrongMatt Caswell
2017-05-11Ensure we fail with a decode error alert if the server sends and empty CertMatt Caswell
2017-05-11Fix more alert codesMatt Caswell
2017-05-11Verify that there is no trailing data after the extensions blockMatt Caswell
2017-05-11Fix some alert codesMatt Caswell
2017-05-11Reject unknown warning alerts in TLSv1.3Matt Caswell
2017-05-11Add EVP_DigestSign and EVP_DigesVerifyDr. Stephen Henson
2017-05-10Copy custom extension flags in a call to SSL_set_SSL_CTX()Matt Caswell
2017-05-10Fix 'no-ec'Richard Levitte
2017-05-09Verify that if we have an HRR then something will changeMatt Caswell
2017-05-09Fix HRR bugMatt Caswell
2017-05-09Don't do the final key_share checks if we are in an HRRMatt Caswell
2017-05-09Verify that only NULL compression is sent in TLSv1.3 ClientHelloMatt Caswell
2017-05-08Add support to SSL_trace() for inner content typesMatt Caswell
2017-05-08Remove support for OPENSSL_SSL_TRACE_CRYPTOMatt Caswell
2017-05-08Updates to supported_groups following review feedbackMatt Caswell
2017-05-08Send the supported_groups extension in EE where applicableMatt Caswell
2017-05-04Updates to serverinfo fix based on review feedbackMatt Caswell
2017-05-04Fix SSL_CTX_use_serverinfo_ex() et al to properly handle V1 dataMatt Caswell
2017-05-04Revert "Fix clang compile time error"Matt Caswell
2017-05-04Fix clang compile time errorTodd Short
2017-05-03Update the HKDF labels for draft-20Matt Caswell
2017-05-03Limit padded record to max plaintextTodd Short
2017-05-03Clarify serverinfo usage with Certificate messagesMatt Caswell
2017-05-03Add an SSL_ prefix to SERVERINFOV2 and SERVERINFOV1Matt Caswell
2017-05-03Only send custom extensions where we have received one in the ClientHelloMatt Caswell
2017-05-03Extend the SERVERINFO file format to include an extensions contextMatt Caswell
2017-05-02Fix comment around safari fingerprint checkMatt Caswell
2017-05-02TLS1.3 PaddingTodd Short
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-09 05:25:00 +0000