summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2017-02-21Check validity, not just signing for all certificatesDr. Stephen Henson
2017-02-21Set default validity flags.Dr. Stephen Henson
2017-02-21remove md array: it is not used any more.Dr. Stephen Henson
2017-02-21fix spelling of Camellia in commentPauli
2017-02-21Implementation of the ARIA cipher as described in RFC 5794.Pauli
2017-02-17Explicitly disallow DSA for TLS 1.3Dr. Stephen Henson
2017-02-17Updates following review feedbackMatt Caswell
2017-02-17Don't use an enum in the return type for a public API functionMatt Caswell
2017-02-17Fix a shadowed global variable warningMatt Caswell
2017-02-17Updates following review feedbackMatt Caswell
2017-02-17Limit the number of KeyUpdate messages we can processMatt Caswell
2017-02-17Actually update the keys when a KeyUpdate message is sent or receivedMatt Caswell
2017-02-17If we receive an "update_requested" KeyUpdate then respond with a KeyUpdateMatt Caswell
2017-02-17Add the ability for a server to receive a KeyUpdate messageMatt Caswell
2017-02-17Add a SSL_get_key_update_type() functionMatt Caswell
2017-02-17Add the ability for a client to send a KeyUpdate messageMatt Caswell
2017-02-17Add the ability for a client to receive a KeyUpdate messageMatt Caswell
2017-02-17Add SSL_trace() support for KeyUpdate messagesMatt Caswell
2017-02-17Provide a function to send a KeyUpdate messageMatt Caswell
2017-02-16Use tls_choose_sigalg for client auth.Dr. Stephen Henson
2017-02-16Add client side support to tls_choose_sigalg.Dr. Stephen Henson
2017-02-16Remove an OPENSSL_assert() and replace with a soft assert and checkMatt Caswell
2017-02-16Don't change the state of the ETM flags until CCS processingMatt Caswell
2017-02-16Fix warningDr. Stephen Henson
2017-02-15Set current certificate to selected certificate.Dr. Stephen Henson
2017-02-15Rework error handling of custom_ext_meth_add towards strong exception safety.Bernd Edlinger
2017-02-15Skip curve check if sigalg doesn't specify a curve.Dr. Stephen Henson
2017-02-15Use CERT_PKEY pointer instead of indexDr. Stephen Henson
2017-02-15Simplify tls_construct_server_key_exchangeDr. Stephen Henson
2017-02-15Use cert_index and sigalgDr. Stephen Henson
2017-02-15Add sigalg for earlier TLS versionsDr. Stephen Henson
2017-02-15Change tls_choose_sigalg so it can set errors and alerts.Dr. Stephen Henson
2017-02-15add ssl_has_certDr. Stephen Henson
2017-02-14Use TLSEXT_KEYNAME_LENGTH in tls_decrypt_ticket.Bernd Edlinger
2017-02-14Fix no-ec compilationMatt Caswell
2017-02-14Remove a double call to ssl3_send_alert()Matt Caswell
2017-02-14Fix a bogus uninit variable warningMatt Caswell
2017-02-14Add a bytestogroup macroMatt Caswell
2017-02-14Various style fixes following review feedbackMatt Caswell
2017-02-14Add trace support for HelloRetryRequestMatt Caswell
2017-02-14Implement support for resumption with a HelloRetryRequestMatt Caswell
2017-02-14Add client side support for parsing Hello Retry RequestMatt Caswell
2017-02-14Add server side support for creating the Hello Retry Request messageMatt Caswell
2017-02-14Make the context available to the extensions parse and construction funcsMatt Caswell
2017-02-14mem leak on error path and error propagation fixYuchi
2017-02-10Replace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGNDr. Stephen Henson
2017-02-10Check index >= 0 as 0 is a valid index.Dr. Stephen Henson
2017-02-09Don't read uninitialised data for short session IDs.David Benjamin
2017-02-09SSL_get_shared_sigalgs: handle negative idx parameterPeter Wu
2017-02-08Fix crash in tls13_encMatt Caswell
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-17 08:38:24 +0000