| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Add SSL_HANDSHAKE_TLS12 for TLSv1.2 specific handshake data. | jsing | 2021-03-24 | 1 | -7/+7 |
| * | Remove ssl_downgrade_max_version(). | jsing | 2021-03-11 | 1 | -7/+4 |
| * | Improve internal version handling. | jsing | 2021-03-10 | 1 | -3/+17 |
| * | Factor out/change some of the legacy client version handling code. | jsing | 2021-02-22 | 1 | -9/+4 |
| * | ugly whitespace | tb | 2021-02-20 | 1 | -8/+8 |
| * | Rename f_err into fatal_err. | tb | 2021-02-20 | 1 | -60/+60 |
| * | Rename the truncated label into decode_err. This describes its purpose | tb | 2021-02-20 | 1 | -46/+46 |
| * | Revise HelloVerifyRequest handling for DTLSv1.2. | jsing | 2021-02-20 | 1 | -2/+7 |
| * | Group HelloVerifyRequest decoding and add missing check for trailing data. | jsing | 2021-02-20 | 1 | -4/+5 |
| * | Absorb ssl3_get_algorithm2() into ssl_get_handshake_evp_md(). | jsing | 2021-02-07 | 1 | -2/+3 |
| * | Factor out the legacy stack version checks. | jsing | 2021-02-07 | 1 | -13/+5 |
| * | Replace SSL_IS_DTLS with SSL_is_dtls(). | jsing | 2020-10-14 | 1 | -25/+25 |
| * | Condense and simplify TLS methods. | jsing | 2020-10-11 | 1 | -2/+2 |
| * | Merge d1_{clnt,srvr}.c into ssl_{clnt,srvr}.c | jsing | 2020-10-03 | 1 | -2/+58 |
| * | Simplify the cleanup of init_buf via a ssl3_release_init_buffer() function. | jsing | 2020-09-24 | 1 | -5/+3 |
| * | Simplify SSL method lookups. | jsing | 2020-09-17 | 1 | -4/+2 |
| * | Remove cipher_list_by_id. | jsing | 2020-09-11 | 1 | -6/+3 |
| * | Improve argument order for the internal tlsext API | tb | 2020-07-03 | 1 | -3/+3 |
| * | Enable GOST_SIG_FORMAT_RS_LE when verifying certificate signatures. | jsing | 2020-06-05 | 1 | -1/+7 |
| * | Correct downgrade sentinels when a version pinned method is in use. | jsing | 2020-05-31 | 1 | -2/+2 |
| * | Replace SSL_PKEY_RSA_ENC/SSL_PKEY_RSA_SIGN with SSL_PKEY_RSA. | jsing | 2020-05-19 | 1 | -4/+4 |
| * | Use size_t for OCSP response length. | jsing | 2020-05-10 | 1 | -5/+2 |
| * | Drop a redundant test. It's effectively doing the same test twice | tb | 2020-05-09 | 1 | -3/+2 |
| * | RFC 8446, section 4.1.3: If a TLSv1.2 client receives a ServerHello for | tb | 2020-03-06 | 1 | -1/+27 |
| * | Factor out/rewrite the ECDHE EC point key exchange code. | jsing | 2020-01-30 | 1 | -94/+15 |
| * | Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL. | jsing | 2020-01-23 | 1 | -13/+11 |
| * | Clean up and simplify the client verify code: | jsing | 2019-03-31 | 1 | -50/+49 |
| * | Defer sigalgs selection until the certificate is known. | jsing | 2019-03-25 | 1 | -12/+18 |
| * | Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains. | jsing | 2019-03-25 | 1 | -2/+2 |
| * | Revert TLS1_get{,_client}_version simplification because DTLS. | jsing | 2019-03-19 | 1 | -2/+2 |
| * | Partially clean up the TLS1_get_{,client}_version macros. | jsing | 2019-03-17 | 1 | -2/+2 |
| * | Rename tls1_handshake_hash*() to tls1_transcript_hash*(). | jsing | 2019-02-09 | 1 | -4/+4 |
| * | Modify sigalgs extension processing to accomodate TLS 1.3. | beck | 2019-01-23 | 1 | -2/+3 |
| * | revert previous, accidentally contained another diff in addition | beck | 2019-01-23 | 1 | -3/+2 |
| * | Modify sigalgs extension processing for TLS 1.3. | beck | 2019-01-23 | 1 | -2/+3 |
| * | Rename TLS extension handling to use less "hello". | jsing | 2019-01-18 | 1 | -3/+3 |
| * | Refactor a tangle in ssl3_send_client_verify() into one function for each | tb | 2018-11-29 | 1 | -118/+213 |
| * | Fix DTLS transcript handling for HelloVerifyRequest. | jsing | 2018-11-21 | 1 | -10/+5 |
| * | Revert previous - DTLSv1 uses MD5+SHA1 for RSA signature verification. | jsing | 2018-11-19 | 1 | -5/+2 |
| * | Fix DTLS, because DTLS still remains a special flower, allows regress to pass | beck | 2018-11-17 | 1 | -2/+5 |
| * | revert previous | beck | 2018-11-16 | 1 | -5/+3 |
| * | Fix DTLS. Because the DTLS code is strange. I am really coming around to | beck | 2018-11-16 | 1 | -3/+5 |
| * | Unbreak legacy ciphers for prior to 1.1 by setting having a legacy | beck | 2018-11-16 | 1 | -2/+2 |
| * | Add check function to verify that pkey is usable with a sigalg. | beck | 2018-11-11 | 1 | -2/+2 |
| * | Add support for RSA PSS algorithims being used in sigalgs. | beck | 2018-11-11 | 1 | -1/+14 |
| * | Convert signatures and verifcation to use the EVP_DigestXXX api | beck | 2018-11-11 | 1 | -24/+52 |
| * | Stop keeping track of sigalgs by guessing it from digest and pkey, | beck | 2018-11-10 | 1 | -12/+12 |
| * | Ensure we free the handshake transcript upon session resumption. | jsing | 2018-11-09 | 1 | -1/+4 |
| * | Ensure we only choose sigalgs from our prefernce list, not the whole list | beck | 2018-11-09 | 1 | -2/+3 |
| * | Reimplement the sigalgs processing code into a new implementation | beck | 2018-11-09 | 1 | -18/+13 |
