index
:
openbsd
OPENBSD_2_0
OPENBSD_2_1
OPENBSD_2_2
OPENBSD_2_3
OPENBSD_2_4
OPENBSD_2_5
OPENBSD_2_6
OPENBSD_2_7
OPENBSD_2_8
OPENBSD_2_9
OPENBSD_3_0
OPENBSD_3_1
OPENBSD_3_2
OPENBSD_3_3
OPENBSD_3_4
OPENBSD_3_5
OPENBSD_3_6
OPENBSD_3_7
OPENBSD_3_8
OPENBSD_3_9
OPENBSD_4_0
OPENBSD_4_1
OPENBSD_4_2
OPENBSD_4_3
OPENBSD_4_4
OPENBSD_4_5
OPENBSD_4_6
OPENBSD_4_7
OPENBSD_4_8
OPENBSD_4_9
OPENBSD_5_0
OPENBSD_5_1
OPENBSD_5_2
OPENBSD_5_3
OPENBSD_5_4
OPENBSD_5_5
OPENBSD_5_6
OPENBSD_5_7
OPENBSD_5_8
OPENBSD_5_9
OPENBSD_6_0
OPENBSD_6_1
OPENBSD_6_2
OPENBSD_6_3
OPENBSD_6_4
OPENBSD_6_5
OPENBSD_6_6
OPENBSD_6_7
OPENBSD_6_8
OPENBSD_6_9
OPENBSD_7_0
OPENBSD_7_1
OPENBSD_7_2
OPENBSD_7_3
OPENBSD_7_4
OPENBSD_7_5
OPENBSD_7_6
master
A mirror of https://github.com/libressl/openbsd.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
lib
/
libssl
/
tls13_client.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
*
Remove cipher_list_by_id.
jsing
2020-09-11
1
-3
/
+2
*
Improve argument order for the internal tlsext API
tb
2020-07-03
1
-7
/
+7
*
Improve client certificate selection for TLSv1.3
tb
2020-06-04
1
-16
/
+80
*
Wire up SSL_MODE_AUTO_RETRY mode to retrying after PHH messages.
jsing
2020-05-23
1
-1
/
+4
*
Replace SSL_PKEY_RSA_ENC/SSL_PKEY_RSA_SIGN with SSL_PKEY_RSA.
jsing
2020-05-19
1
-3
/
+3
*
Add support for TLS 1.3 server to send certificate status
beck
2020-05-19
1
-3
/
+3
*
Send a decode error alert if a server provides an empty certificate list.
jsing
2020-05-17
1
-2
/
+2
*
Ensure that a TLSv1.3 server has provided a certificate.
jsing
2020-05-16
1
-1
/
+9
*
Switch the legacy version to TLS1_2_VERSION when processing server hello.
jsing
2020-05-13
1
-2
/
+2
*
Provide alert defines for TLSv1.3 and use in the TLSv1.3 code.
jsing
2020-05-10
1
-17
/
+17
*
Send dummy ChangeCipherSpec messages from the TLSv1.3 client.
jsing
2020-05-09
1
-1
/
+5
*
Add a middlebox_compat flag and condition session ID randomisation on it.
jsing
2020-05-09
1
-2
/
+2
*
Add support for certificate status requests in TLS 1.3 client
beck
2020-05-09
1
-4
/
+12
*
Move legacy stack interfacing functions into tls13_legacy.c.
jsing
2020-04-28
1
-102
/
+4
*
Rename tls13_client_synthetic_handshake_message() and move to tls13_lib.c.
jsing
2020-04-28
1
-45
/
+2
*
Shuffle some functions around.
jsing
2020-04-27
1
-101
/
+107
*
Improve TLSv1.3 state machine for HelloRetryRequest handling.
jsing
2020-04-22
1
-37
/
+73
*
Consolidate TLSv1.3 constants.
jsing
2020-04-21
1
-11
/
+1
*
Generate client key share using our preferred group.
jsing
2020-04-17
1
-12
/
+15
*
Ensure legacy session ID is persistent during client TLS session.
jsing
2020-04-08
1
-9
/
+14
*
Send a zero-length session identifier if TLSv1.3 is not enabled.
jsing
2020-04-06
1
-4
/
+7
*
Use ctx->hs->secrets rather than the S3I(s) version.
jsing
2020-03-10
1
-2
/
+2
*
According to RFC 8446, Section 4.4.4, recipients of incorrect Finished
tb
2020-02-23
1
-2
/
+2
*
drop unused include <openssl/curve25519.h>
tb
2020-02-18
1
-2
/
+1
*
Add support for handling hello retry requests in the TLSv1.3 client.
jsing
2020-02-06
1
-5
/
+100
*
Refactor the server hello processing code in the TLSv1.3 client.
jsing
2020-02-05
1
-21
/
+42
*
Remove the hello retry request processing code that was previously added.
jsing
2020-02-05
1
-57
/
+14
*
Free the transcript as soon as we initialise the transcript hash.
jsing
2020-02-04
1
-1
/
+2
*
Provide struct/functions for handling TLSv1.3 key shares.
jsing
2020-01-30
1
-8
/
+13
*
If the TLSv1.3 code has not recorded an error and something already exists
jsing
2020-01-29
1
-1
/
+2
*
When switching back to a legacy client or server, ensure we reset the
jsing
2020-01-26
1
-1
/
+2
*
Add client certificate support for tls 1.3
beck
2020-01-26
1
-2
/
+148
*
Move pad and verify context into tls13_lib.c
beck
2020-01-26
1
-20
/
+5
*
Only perform the downgrade check if our max version is less than TLSv1.3.
jsing
2020-01-25
1
-15
/
+17
*
It is possible to receive a pre-TLSv1.3 alert in response to a TLSv1.3
jsing
2020-01-25
1
-1
/
+7
*
When certificate validation fails, we must send a DECRYPT_ERROR alert
beck
2020-01-23
1
-3
/
+6
*
Add checking int the client to check the magic values which are
beck
2020-01-23
1
-1
/
+17
*
Save the legacy session id in the client, and enforce that it is returned
beck
2020-01-23
1
-6
/
+13
*
Pass a CBB to TLSv1.3 send handlers.
jsing
2020-01-23
1
-16
/
+5
*
Pass a handshake message content CBS to TLSv1.3 receive handlers.
jsing
2020-01-22
1
-55
/
+26
*
Send alerts on certificate verification failures of server certs
beck
2020-01-22
1
-2
/
+2
*
After the ClientHello has been sent or received and before the peer's
tb
2020-01-22
1
-1
/
+4
*
Correctly set the legacy version when TLSv1.3 is building a client hello.
jsing
2020-01-22
1
-4
/
+11
*
The legacy_record_version must be set to TLS1_2_VERSION except
tb
2020-01-22
1
-1
/
+12
*
Add minimal support for hello retry request for RFC conformance.
beck
2020-01-22
1
-1
/
+64
*
Correct legacy fallback for TLSv1.3 client.
jsing
2020-01-21
1
-7
/
+21
*
Add alert processing in tls client code, by adding alert to the
beck
2020-01-21
1
-16
/
+21
*
Provide an error framework for use with the TLSv1.3 code.
jsing
2020-01-20
1
-1
/
+3
*
tls13_connect() should be static.
jsing
2019-11-17
1
-2
/
+2
*
Fix backoff to legacy when in client auth mode.
beck
2019-11-17
1
-2
/
+2
[next]
