| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Recommend SSL_CTX_add1_chain_cert(3) rather than | schwarze | 2019-04-09 | 1 | -12/+11 |
| * | Document SSL_CTX_clear_mode(3) and SSL_clear_mode(3). | schwarze | 2019-04-09 | 1 | -22/+48 |
| * | By design, our state machine is a DAG contrary to the state machine in | tb | 2019-04-05 | 4 | -7/+29 |
| * | Import SSL_CTX_add1_chain_cert(3) from OpenSSL branch 1.1.1, which is still | schwarze | 2019-04-05 | 5 | -17/+264 |
| * | Zap two dead #defines that were unused since jsing deleted the | tb | 2019-04-05 | 1 | -5/+1 |
| * | Implement legacy fallback for the TLS 1.3 client. | jsing | 2019-04-04 | 3 | -8/+87 |
| * | Clean up the cipher/digest table mess. | jsing | 2019-04-04 | 3 | -179/+45 |
| * | Bump libssl/libtls minors due to symbol addition. | jsing | 2019-04-04 | 1 | -1/+1 |
| * | Provide SSL chain/cert chain APIs. | jsing | 2019-04-04 | 3 | -2/+161 |
| * | This case also needs to be fatal. | jsing | 2019-04-04 | 1 | -1/+2 |
| * | mark ERR_R_INTERNAL_ERROR instead of assert or _exit, sigh | deraadt | 2019-04-01 | 1 | -3/+3 |
| * | Correct subtle bug in sigalgs, only care about curve_nid if we are | beck | 2019-04-01 | 1 | -4/+4 |
| * | Clean up and simplify the client verify code: | jsing | 2019-03-31 | 1 | -50/+49 |
| * | Strip out all of the pkey to sigalg and sigalg to pkey linkages. | jsing | 2019-03-25 | 5 | -59/+8 |
| * | tls1_process_sigalgs() is no longer needed. | jsing | 2019-03-25 | 2 | -57/+2 |
| * | Defer sigalgs selection until the certificate is known. | jsing | 2019-03-25 | 9 | -48/+124 |
| * | Rework ssl_ctx_use_certificate_chain_bio() to use the CERT_PKEY chain. | jsing | 2019-03-25 | 1 | -46/+26 |
| * | Remove ssl_get_server_send_cert() which is now unused. | jsing | 2019-03-25 | 2 | -14/+2 |
| * | Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains. | jsing | 2019-03-25 | 4 | -40/+36 |
| * | Add a chain member to CERT_PKEY and provide functions for manipulating it. | jsing | 2019-03-25 | 2 | -3/+74 |
| * | If ssl_cipher_apply_rule() is given a specific cipher suite, match on it. | jsing | 2019-03-24 | 1 | -3/+4 |
| * | do not call assert(), which has a tendency to leave traces of stuff in | deraadt | 2019-03-24 | 1 | -2/+3 |
| * | Avoid an internal 2 byte overread in ssl_sigalgs(). | jsing | 2019-03-19 | 1 | -7/+2 |
| * | Revert TLS1_get{,_client}_version simplification because DTLS. | jsing | 2019-03-19 | 4 | -14/+15 |
| * | * note that the handshake must be completed first | schwarze | 2019-03-18 | 1 | -4/+15 |
| * | In ssl.h rev. 1.165, tb@ provided version agnostic DTLS methods. | schwarze | 2019-03-18 | 1 | -3/+26 |
| * | bump minors after symbol addition | tb | 2019-03-17 | 1 | -1/+1 |
| * | Provide version agnostic DTLS methods. | jsing | 2019-03-17 | 3 | -2/+27 |
| * | Correct return value handling in tls13_handshake_recv_action(). | jsing | 2019-03-17 | 1 | -2/+4 |
| * | Partially clean up the TLS1_get_{,client}_version macros. | jsing | 2019-03-17 | 4 | -15/+14 |
| * | Remove the alert level from the TLSv1.3 alert callback. | jsing | 2019-03-17 | 3 | -7/+6 |
| * | Don't index a void pointer, fixes compilation with visual studio. | millert | 2019-03-04 | 1 | -2/+3 |
| * | Implement non-SSL_MODE_ENABLE_PARTIAL_WRITE in tls13_legacy_write_bytes(). | jsing | 2019-02-28 | 1 | -3/+34 |
| * | Automatically complete the handshake from tls13_legacy_{read,write}_bytes() | jsing | 2019-02-28 | 3 | -3/+17 |
| * | Set the SSL state as part of tls13_legacy_connect(). | jsing | 2019-02-28 | 1 | -2/+5 |
| * | Add appropriate length checks to tls13_legacy_{read,write}_bytes() | jsing | 2019-02-28 | 1 | -3/+9 |
| * | Remove unused record_type from TLSv1.3 handshake actions. | jsing | 2019-02-28 | 1 | -16/+1 |
| * | Correct return values for non-fatal alerts. | jsing | 2019-02-26 | 1 | -3/+3 |
| * | Correctly propagate EOF from BIO in tls13_legacy_wire_read(). | jsing | 2019-02-26 | 1 | -1/+3 |
| * | Fix gcc3 compilation error by using a forward declaration instead of a | tb | 2019-02-25 | 1 | -3/+3 |
| * | revert "Move struct ssl_handshake_tls13_st definition", i.e., move | tb | 2019-02-25 | 2 | -24/+26 |
| * | Correctly handle oversize writes. | jsing | 2019-02-25 | 1 | -2/+4 |
| * | Add a handshake action sent handler and use it for client finished. | jsing | 2019-02-25 | 3 | -11/+22 |
| * | Correct a few error returns. | jsing | 2019-02-25 | 1 | -4/+4 |
| * | Move struct ssl_handshake_tls13_st definition | inoguchi | 2019-02-25 | 2 | -26/+24 |
| * | Remove temporary gotos. | jsing | 2019-02-23 | 1 | -7/+3 |
| * | Set BIO retry on TLS13_IO_WANT_POLLIN/TLS13_IO_WANT_POLLOUT. | jsing | 2019-02-23 | 1 | -1/+3 |
| * | Wire up alert handling for TLSv1.3. | jsing | 2019-02-21 | 2 | -9/+78 |
| * | Change the alert callback return type from int to void. | jsing | 2019-02-21 | 2 | -9/+11 |
| * | Fix a few cases where int was used instead of ssize_t. | jsing | 2019-02-21 | 1 | -3/+3 |
