| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Add support to enforce restrictions on where extensions can appear | beck | 2019-01-17 | 2 | -12/+38 |
| * | Add a direct copy of the exension parsing code to be modified for tls13. | beck | 2019-01-17 | 3 | -2/+1596 |
| * | Remove an ugly hack in the client certificate verification code that works | tb | 2018-12-07 | 1 | -48/+44 |
| * | Send SSL_AD_DECODE alerts in the case of a bad hello request or an | tb | 2018-12-03 | 1 | -7/+7 |
| * | Refactor a tangle in ssl3_send_client_verify() into one function for each | tb | 2018-11-29 | 1 | -118/+213 |
| * | Fix DTLS transcript handling for HelloVerifyRequest. | jsing | 2018-11-21 | 4 | -18/+26 |
| * | Revert previous - DTLSv1 uses MD5+SHA1 for RSA signature verification. | jsing | 2018-11-19 | 2 | -10/+4 |
| * | Revert previous - the default sigalg for RSA key exchange is {sha1,rsa}. | jsing | 2018-11-19 | 1 | -4/+4 |
| * | Fix DTLS, because DTLS still remains a special flower, allows regress to pass | beck | 2018-11-17 | 2 | -4/+10 |
| * | revert previous | beck | 2018-11-16 | 1 | -5/+3 |
| * | Fix DTLS. Because the DTLS code is strange. I am really coming around to | beck | 2018-11-16 | 1 | -3/+5 |
| * | Unbreak legacy ciphers for prior to 1.1 by setting having a legacy | beck | 2018-11-16 | 4 | -10/+22 |
| * | Fix wrong sizeof argument by using 'uint16_t *', with minor nit from tb@, | mestre | 2018-11-14 | 1 | -2/+2 |
| * | In TLS1.2 we use evp_sha1 if we fall back this far, not evp_md5_sha1 as in 1.1 | beck | 2018-11-14 | 1 | -2/+2 |
| * | Temporary workaround for breakage seen in www.videolan.org with curve mismatch | beck | 2018-11-13 | 1 | -3/+4 |
| * | NULL out mdctx to prevent possible double free introduced in version 1.4 | beck | 2018-11-13 | 1 | -1/+2 |
| * | Fix pkey_ok to be less strange, and add cuve checks required for the EC ones | beck | 2018-11-13 | 1 | -9/+26 |
| * | Add check function to verify that pkey is usable with a sigalg. | beck | 2018-11-11 | 4 | -7/+24 |
| * | quiet warning on other compilers | bcook | 2018-11-11 | 1 | -3/+3 |
| * | bump minors after symbol addition. | tb | 2018-11-11 | 1 | -1/+1 |
| * | Add SSL_set1_host(), a thin wrapper around X509_VERIFY_PARAM_set1_host(). | tb | 2018-11-11 | 3 | -2/+10 |
| * | Nuke trailing whitespace | beck | 2018-11-11 | 1 | -6/+6 |
| * | Free the server tls transcript in case session reuse did not work. | bluhm | 2018-11-11 | 1 | -3/+4 |
| * | Add support for RSA PSS algorithims being used in sigalgs. | beck | 2018-11-11 | 2 | -2/+29 |
| * | Convert signatures and verifcation to use the EVP_DigestXXX api | beck | 2018-11-11 | 3 | -45/+93 |
| * | Remove dead code | beck | 2018-11-10 | 2 | -16/+2 |
| * | Tweak and improve the TLSv1.3 state machine. | jsing | 2018-11-10 | 1 | -24/+46 |
| * | Avoid a double allocation and memory leak. | jsing | 2018-11-10 | 1 | -4/+2 |
| * | Stop keeping track of sigalgs by guessing it from digest and pkey, | beck | 2018-11-10 | 8 | -92/+102 |
| * | Use TLS13_HS_{CLIENT,SERVER} instead of using a redundant _SEND{,S}. | tb | 2018-11-10 | 1 | -30/+28 |
| * | Fix last of the empty hash nonsense | beck | 2018-11-10 | 1 | -26/+3 |
| * | Fix the TLSv1.3 key schedule implementation. | jsing | 2018-11-09 | 2 | -66/+95 |
| * | Use "send" and "recv" consistently instead of mixing them with "read" | tb | 2018-11-09 | 1 | -98/+108 |
| * | Ensure we free the handshake transcript upon session resumption. | jsing | 2018-11-09 | 1 | -1/+4 |
| * | Ensure we only choose sigalgs from our prefernce list, not the whole list | beck | 2018-11-09 | 4 | -10/+19 |
| * | Add the ability to have a separate priority list for sigalgs. | beck | 2018-11-09 | 4 | -12/+43 |
| * | Correct defines for writer tests in connect/accept loops. | jsing | 2018-11-09 | 1 | -3/+3 |
| * | Correct function naming for tls13_handshake_advance_state_machine(). | jsing | 2018-11-09 | 1 | -4/+2 |
| * | Avoid leak: free existing SRTP connection profiles before | tb | 2018-11-09 | 1 | -1/+2 |
| * | Add header guards and hidden declarations. | jsing | 2018-11-09 | 2 | -2/+19 |
| * | Add header guards and hidden declarations. | jsing | 2018-11-09 | 1 | -1/+10 |
| * | Reimplement the sigalgs processing code into a new implementation | beck | 2018-11-09 | 9 | -253/+340 |
| * | First skeleton of the TLS 1.3 state machine. Based on RFC 8446 and | tb | 2018-11-08 | 3 | -4/+607 |
| * | KNF | beck | 2018-11-08 | 1 | -3/+4 |
| * | Clean up and simplify the handshake transcript code. | jsing | 2018-11-08 | 10 | -166/+144 |
| * | Stop pretending that a cert member in a SSL and SSL_CTX can be NULL. | jsing | 2018-11-08 | 8 | -121/+18 |
| * | Move #include <openssl/evp.h> to the header. | tb | 2018-11-08 | 2 | -3/+4 |
| * | Ensure the handshake transcript is cleaned up. | jsing | 2018-11-08 | 2 | -3/+20 |
| * | Add initial TLS 1.3 key schedule support with basic regress tests | beck | 2018-11-07 | 3 | -2/+436 |
| * | Add TLSv1.3 cipher suites (with appropriate guards). | jsing | 2018-11-07 | 6 | -9/+100 |
