summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_tlsext.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* Fix TLS key share check to not fire when using < TLS 1.3beck2024-07-091-7/+6
* remove psk_idx from tlsext_randomize_build_order()tb2024-06-261-3/+3
* tls_extension_find(): make output index optionaltb2024-06-261-2/+3
* Fix TLS extension shufflingtb2024-06-251-2/+2
* ssl_tlsext: fix uninitialized variable warning with gcctb2024-06-061-2/+3
* Fix key share negotiation in HRR casetb2024-04-161-1/+40
* Recommit a better version of the removal of the F5 workaroundtb2024-04-041-9/+12
* Backout previous commit (intending that libressl client rejects a supportedsthen2024-04-021-3/+17
* Stop pandering to the loadbalancer industrial complex.beck2024-03-281-17/+3
* Fix up server processing of key shares.beck2024-03-271-8/+77
* Do not allow duplicate groups in supported groups.beck2024-03-271-18/+39
* Add an indicator that an extension has been processed.beck2024-03-261-1/+15
* Process supported groups before key share.beck2024-03-261-15/+15
* Simplify TLS extension parsing and processing.jsing2024-03-251-155/+98
* Fix typo msg_types -> msg_typetb2024-03-251-2/+2
* Split TLS extension parsing from processing.jsing2024-03-251-55/+190
* Decouple TLS extension table order from tlsext_randomize_build_order()jsing2024-03-251-6/+7
* Too many stupid things whine about these being used uninitializedtb2023-04-281-2/+2
* ssl_tlsext.c: Add an accessor for the tls extension type.tb2023-04-271-1/+7
* Fix allocation sizetb2023-04-251-3/+3
* Free and calloc() the tlsext_build_order and remember its lengthtb2023-04-241-2/+14
* Use TLSEXT_TYPE_alpn instead of the stupid long onetb2023-04-241-2/+2
* Randomize the order of TLS extensionstb2023-04-231-2/+61
* Make internal header file names consistenttb2022-11-261-2/+2
* Get rid of SSL_CTX_INTERNAL and SSL_INTERNAL.jsing2022-10-021-66/+66
* Avoid shadowing the cbs function parameter in tlsext_alpn_server_parse()tb2022-08-151-6/+4
* Make tlsext_*_{build,needs,parse}() functions statictb2022-08-041-93/+92
* Rely on tlsext_parse() to set a decode_error alerttb2022-07-241-79/+47
* Remove redundant length checks in parse functionstb2022-07-221-21/+1
* Simplify tlsext_supported_groups_server_parsetb2022-07-201-45/+31
* Drop some unnecessary parentheses.tb2022-07-201-3/+2
* Copy alpn_selected using CBStb2022-07-201-6/+7
* Factor out ALPN extension format checktb2022-07-201-13/+25
* Correct handling of QUIC transport parameters extension.jsing2022-07-171-48/+16
* Correct TLSEXT_TYPE_quic_transport_parameters message types.jsing2022-07-171-2/+2
* Stop using ssl{_ctx,}_security() outside of ssl_seclevel.ctb2022-07-021-3/+3
* Rename uses 'curve' to 'group' and rework tls1 group API.tb2022-07-021-2/+2
* Check security level for supported groups.tb2022-06-301-1/+3
* Check whether the security level allows session tickets.tb2022-06-301-2/+6
* Add support for sending QUIC transport parametersbeck2022-06-291-1/+121
* Check the security level when building sigalgstb2022-06-291-3/+4
* The parse stubs need to skip over the extension data.tb2022-06-041-3/+3
* Add stubbed out handlers for the pre_shared_key extensiontb2022-06-031-1/+57
* Implement handlers for the psk_key_exchange_modes extensions.tb2022-06-031-2/+86
* Bye bye S3I.jsing2022-02-051-100/+100
* Avoid use of uninitialized in tlsext_sni_server_parse()tb2022-01-241-1/+3
* Plumb decode errors through key share parsing code.jsing2022-01-111-3/+11
* Use SSL_AD_INTERNAL_ERROR for non-decoding alerts when parsing keyshares.jsing2022-01-111-4/+10
* Simplify tlsext_keyshare_server_parse()jsing2022-01-111-9/+5
* Convert legacy TLS client to tls_key_share.jsing2022-01-061-12/+8