summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_versions.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Replace ssl_max_server_version() with ssl_downgrade_max_version()jsing2020-05-311-25/+1
| | | | | | | Replace the only occurrence of ssl_max_server_version() with a call to ssl_downgrade_max_version() and remove ssl_max_server_version(). ok beck@ tb@
* Correct downgrade sentinels when a version pinned method is in use.jsing2020-05-311-1/+33
| | | | | | | | | Previously only the enabled protocol versions were considered, however we also have to consider the method in use which may be version pinned. Found the hard way by danj@ with haproxy and force-tlsv12. ok beck@ inoguchi@ tb@
* Include TLSv1.3 in version handling code.jsing2018-11-061-3/+9
| | | | | | | This is effectively a no-op, since most of the code clamps to the maximum version supported by the TLS method (which are still at TLSv1.2). ok beck@ bluhm@ tb@
* Provide SSL{,_CTX}_set_{min,max}_proto_version() functions.jsing2017-05-061-1/+47
| | | | | | Rides minor bump. ok beck@
* Add missing $OpenBSD$ tags.jsing2017-05-061-0/+1
|
* Move relatively new version range code from ssl_lib.c into a separatejsing2017-01-261-0/+172
ssl_versions.c file. ok beck@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-22 12:27:52 +0000