| Commit message (Expand) | Author | Age | Files | Lines |
* | Pacify compiler warning about an unitialized variable which is obviously | deraadt | 2016-12-21 | 1 | -3/+3 |
* | Add support for ECDHE with X25519. | jsing | 2016-12-21 | 1 | -80/+180 |
* | Convert ssl3_get_server_hello() to CBS. | jsing | 2016-12-18 | 1 | -53/+61 |
* | Complete the CBB conversion and cleanup of send_client_key_exchange(). | jsing | 2016-12-13 | 1 | -42/+12 |
* | Convert ssl3_send_client_kex_gost() to CBB. | jsing | 2016-12-13 | 1 | -17/+19 |
* | Convert ssl3_send_client_kex_ecdhe() to CBB. Also check the return value of | jsing | 2016-12-13 | 1 | -34/+35 |
* | Convert ssl3_send_client_kex_dhe() to CBB. | jsing | 2016-12-07 | 1 | -14/+23 |
* | Convert ssl3_send_client_kex_rsa() to CBB. | jsing | 2016-12-06 | 1 | -14/+36 |
* | Convert certificate handshake message generation to CBB, with some clean | jsing | 2016-12-06 | 1 | -9/+22 |
* | Convert ssl_cipher_list_to_bytes() to CBB, changing the function to return | jsing | 2016-12-04 | 1 | -7/+10 |
* | Cleanup some of ssl3_send_client_kex_rsa() - tmp_buf is really the | jsing | 2016-12-04 | 1 | -10/+12 |
* | Address a potential leak in ssl3_get_server_kex_ecdhe() - if we allocate | jsing | 2016-12-03 | 1 | -3/+4 |
* | Avoid signed vs unsigned warnings from clang by adding two casts, | jsing | 2016-12-03 | 1 | -2/+2 |
* | remove unused variable | bcook | 2016-11-06 | 1 | -6/+3 |
* | Convert ssl3_get_server_kex_ecdhe() to CBS, simplifying tls1_check_curve() | jsing | 2016-11-05 | 1 | -42/+33 |
* | Rename ssl3_get_key_exchange() to ssl3_get_server_key_exchange(), since | jsing | 2016-11-04 | 1 | -3/+3 |
* | Tidy up the usage of peer_ecdh_tmp, following the fixed ECDH removal. | jsing | 2016-11-04 | 1 | -13/+5 |
* | Convert ssl3_get_server_kex_dhe() to CBS. | jsing | 2016-11-04 | 1 | -42/+19 |
* | Split ssl3_get_key_exchange() into separate functions for DHE/ECDHE. | jsing | 2016-11-03 | 1 | -205/+256 |
* | Remove support for fixed ECDH cipher suites - these is not widely supported | jsing | 2016-10-19 | 1 | -14/+5 |
* | Merge a memleak fix from BoringSSL 6b6e0b2: | mmcc | 2016-03-27 | 1 | -1/+3 |
* | X509_free(3) is NULL-safe, so remove NULL checks before its calls. | mmcc | 2016-03-11 | 1 | -7/+4 |
* | s/ssl3_client_kex/ssl3_send_client_kex/ for consistency with the caller. | jsing | 2015-10-02 | 1 | -9/+11 |
* | Stop generating private keys in a network buffer. | jsing | 2015-09-13 | 1 | -29/+29 |
* | Use ECDH_size() instead of rolling our own. | jsing | 2015-09-13 | 1 | -6/+5 |
* | Split ssl3_send_client_key_exchange() (387 lines of code) into five | jsing | 2015-09-12 | 1 | -327/+351 |
* | explicit_bzero() the GOST premaster secret. | jsing | 2015-09-12 | 1 | -2/+7 |
* | Remove most of the SSLv3 version checks and a few TLS v1.0. | doug | 2015-09-12 | 1 | -39/+21 |
* | Use explicit_bzero() instead of memset() when clearing private keys. | jsing | 2015-09-12 | 1 | -3/+4 |
* | Pull variable assignment out from function call, fix indentation and set | jsing | 2015-09-12 | 1 | -8/+7 |
* | style(9) and whitespace cleanups. | jsing | 2015-09-12 | 1 | -29/+25 |
* | Rename functions that moved to t1_enc.c, with a tls1_ prefix instead of a | jsing | 2015-09-11 | 1 | -7/+7 |
* | Correct spelling of OPENSSL_cleanse. | jsing | 2015-09-10 | 1 | -2/+2 |
* | Replace dtls1_client_hello() with ssl3_client_hello() - both are basically | jsing | 2015-09-02 | 1 | -5/+22 |
* | Remove the ssl_prepare_{client,server}hello_tlsext() functions, which are | jsing | 2015-09-01 | 1 | -6/+1 |
* | Remove SSLv3 method data structs and unlink s3_meth.c from the build. | doug | 2015-08-29 | 1 | -40/+1 |
* | Remove SSLv3 support from LibreSSL. | doug | 2015-08-27 | 1 | -15/+1 |
* | Add linker warnings in case SSLv3_{,client,server}_method are referenced. | miod | 2015-07-29 | 1 | -1/+7 |
* | Convert ssl3_get_certificate_request to CBS. | doug | 2015-07-19 | 1 | -31/+33 |
* | check n before cbs_init, coverity - ID 125063 | beck | 2015-07-15 | 1 | -3/+9 |
* | test for n<0 before use in CBS_init - mostly to shut up coverity. | beck | 2015-07-15 | 1 | -5/+16 |
* | Flense out dead code, we don't do ecdhe_clnt_cert. | beck | 2015-07-15 | 1 | -98/+40 |
* | Convert ssl3_get_cert_status to CBS. | doug | 2015-07-14 | 1 | -17/+26 |
* | Convert ssl3_get_server_certificate to CBS. | doug | 2015-07-14 | 1 | -17/+18 |
* | Stop using BUF_memdup() within the LibreSSL code base - it is correctly | jsing | 2015-06-24 | 1 | -3/+3 |
* | Convert ssl3_get_new_session_ticket to CBS. | doug | 2015-06-20 | 1 | -24/+24 |
* | Remove ancient SSL_OP_NETSCAPE_CA_DN_BUG from SSLeay days. | doug | 2015-06-15 | 1 | -18/+6 |
* | Nuke the OPENSSL_MAX_TLS1_2_CIPHER_LENGTH hack - this has to be enabled at | jsing | 2015-03-31 | 1 | -11/+1 |
* | Factor out the init_buf initialisation code, rather than duplicating it | jsing | 2015-03-27 | 1 | -19/+6 |
* | delay EVP_MD_CTX_init so we don't forget to clean it up. | tedu | 2015-03-11 | 1 | -3/+4 |