| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | LibreSSL 3.1.4 - Interoperability and bug fixes for the TLSv1.3 client: | tb | 2020-08-10 | 1 | -6/+43 |
| * | Handle TLSv1.3 key shares other than X25519 on the server side. | jsing | 2020-04-21 | 1 | -5/+19 |
| * | drop unused include <openssl/curve25519.h> | tb | 2020-02-18 | 1 | -2/+1 |
| * | Avoid potential NULL dereference when parsing a server keyshare extension. | jsing | 2020-02-16 | 1 | -1/+4 |
| * | Correctly handle key share extensions in a hello retry request. | jsing | 2020-02-06 | 1 | -3/+9 |
| * | Correctly unpack client key shares. | jsing | 2020-02-01 | 1 | -4/+9 |
| * | Provide struct/functions for handling TLSv1.3 key shares. | jsing | 2020-01-30 | 1 | -92/+17 |
| * | Add sigalgs for server side to enable client certificate processing | beck | 2020-01-26 | 1 | -5/+34 |
| * | Only discard the extension block for client hello and server hello | jsing | 2020-01-25 | 1 | -2/+3 |
| * | Only send an RI extension for pre-TLSv1.3 versions. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Rename failure into alert_desc in tlsext_ocsp_server_parse(). | tb | 2020-01-22 | 1 | -5/+5 |
| * | fix previous: alert_desc needs to be an int. | tb | 2020-01-22 | 1 | -2/+2 |
| * | Avoid modifying alert in the success path. | tb | 2020-01-22 | 1 | -11/+17 |
| * | Revert previous deduplication diff, I broke portable in a strange way. | beck | 2019-11-16 | 1 | -47/+58 |
| * | Deduplicate some extension processing code. | beck | 2019-11-15 | 1 | -58/+47 |
| * | Relax parsing of TLS key share extensions on the server. | jsing | 2019-05-29 | 1 | -5/+2 |
| * | Do not send an SNI extension when resuming a session that contains a server | jsing | 2019-05-29 | 1 | -1/+4 |
| * | Fix typo and label indent. | jsing | 2019-05-28 | 1 | -3/+3 |
| * | Tidy up some names/structures following the renaming of TLS extension | jsing | 2019-05-28 | 1 | -35/+35 |
| * | In DTLS, use_srtp is part of the extended server hello while in TLSv1.3, | tb | 2019-05-08 | 1 | -2/+3 |
| * | Defer sigalgs selection until the certificate is known. | jsing | 2019-03-25 | 1 | -9/+6 |
| * | Revert TLS1_get{,_client}_version simplification because DTLS. | jsing | 2019-03-19 | 1 | -5/+5 |
| * | Partially clean up the TLS1_get_{,client}_version macros. | jsing | 2019-03-17 | 1 | -5/+5 |
| * | Revert r1.38 as it introduces use of a stack value post function return. | jsing | 2019-02-03 | 1 | -50/+86 |
| * | unwrap a line introduced in previous. | tb | 2019-01-31 | 1 | -3/+2 |
| * | Correct handling of TLS sigalgs extension for TLSv1.0/TLSv1.1. | jsing | 2019-01-30 | 1 | -33/+19 |
| * | Deduplicate a bunch of replicated code in the extension handling | beck | 2019-01-28 | 1 | -86/+50 |
| * | Add tls_extension_seen(), a utility to know if a particular extension | beck | 2019-01-28 | 1 | -8/+13 |
| * | Add server side of versions, keyshare, and client and server of cookie | beck | 2019-01-24 | 1 | -19/+289 |
| * | move the extensions_seen into the handshake struct | beck | 2019-01-24 | 1 | -4/+5 |
| * | Modify sigalgs extension processing to accomodate TLS 1.3. | beck | 2019-01-23 | 1 | -3/+33 |
| * | revert previous, accidentally contained another diff in addition | beck | 2019-01-23 | 1 | -326/+22 |
| * | Modify sigalgs extension processing for TLS 1.3. | beck | 2019-01-23 | 1 | -22/+326 |
| * | TLS 1.3 clients always need to send the supported groups extension. | jsing | 2019-01-20 | 1 | -4/+5 |
| * | bump copyright years appopriately | beck | 2019-01-18 | 1 | -3/+3 |
| * | Add client side of supported versions and keyshare extensions with basic regress | beck | 2019-01-18 | 1 | -1/+222 |
| * | Add support for RFC 8446 section 4.2 enforcing which extensions may | beck | 2019-01-18 | 1 | -8/+43 |
| * | Rename TLS extension handling to use less "hello". | jsing | 2019-01-18 | 1 | -148/+147 |
| * | Add the ability to have a separate priority list for sigalgs. | beck | 2018-11-09 | 1 | -2/+2 |
| * | Reimplement the sigalgs processing code into a new implementation | beck | 2018-11-09 | 1 | -6/+5 |
| * | Rename the TLS Supported Elliptic Curves extension to Supported Groups. | jsing | 2018-11-05 | 1 | -39/+38 |
| * | Rework the TLS extension handling code to improve readability/flexibility, | jsing | 2018-11-05 | 1 | -89/+112 |
| * | If we fail to decode an EC point format extension, send a decode_error | jsing | 2018-05-12 | 1 | -4/+6 |
| * | Complete the TLS extension rewrite on the client-side. | jsing | 2018-02-08 | 1 | -69/+72 |
| * | Complete the TLS extension handling rewrite for the server-side. | jsing | 2018-01-27 | 1 | -13/+69 |
| * | Clarify the comment re the F5 EC curves extension bug. | jsing | 2018-01-27 | 1 | -5/+6 |
| * | Correct TLS extensions handling when no extensions are present. | jsing | 2017-11-28 | 1 | -1/+13 |
| * | Fix various issues in the OCSP extension parsing code: | jsing | 2017-09-25 | 1 | -20/+14 |
| * | When building the OCSP extension, only add the length prefixed extensions | jsing | 2017-09-25 | 1 | -6/+6 |
| * | Move the full extension building into tlsext_{client,server}hello_build(), | jsing | 2017-08-30 | 1 | -13/+17 |
