| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | According to RFC 8446, Section 4.4.4, recipients of incorrect Finished | tb | 2020-02-23 | 2 | -4/+4 |
| * | Remove the s2n macro now that it is finally unused. | jsing | 2020-02-21 | 1 | -4/+1 |
| * | Convert the SSL/TLS record creation code to CBB. | jsing | 2020-02-21 | 1 | -18/+28 |
| * | Convert the DTLS header creation code to CBB. | jsing | 2020-02-21 | 1 | -20/+27 |
| * | Remove some commented code, remove some pointless comments and move some | jsing | 2020-02-21 | 1 | -17/+6 |
| * | Convert dtls1_build_sequence_number() to CBB. | jsing | 2020-02-21 | 1 | -7/+15 |
| * | Move l2n/l2n8 into s3_cbc.c, since this is the only code that uses it. | jsing | 2020-02-21 | 2 | -16/+16 |
| * | Remove prefix_len, since it is always zero. | jsing | 2020-02-21 | 1 | -4/+3 |
| * | Remove now unused variable. | jsing | 2020-02-21 | 1 | -3/+1 |
| * | Refactor do_ssl3_write(). | jsing | 2020-02-19 | 1 | -97/+98 |
| * | drop unused include <openssl/curve25519.h> | tb | 2020-02-18 | 4 | -10/+4 |
| * | Avoid potential NULL dereference when parsing a server keyshare extension. | jsing | 2020-02-16 | 1 | -1/+4 |
| * | Avoid leak for tmp.x25519 | inoguchi | 2020-02-16 | 2 | -5/+11 |
| * | Move the TLSv1.3 code that interfaces with the legacy APIs/stack into a | jsing | 2020-02-15 | 3 | -309/+330 |
| * | Remove #include that is not needed. | jsing | 2020-02-15 | 1 | -3/+1 |
| * | Re-enable the TLSv1.3 client since the known issues have been addressed. | jsing | 2020-02-06 | 1 | -3/+1 |
| * | Add a workaround to make SSL_set_session() work with TLSv1.3. | jsing | 2020-02-06 | 1 | -1/+9 |
| * | Add support for handling hello retry requests in the TLSv1.3 client. | jsing | 2020-02-06 | 1 | -5/+100 |
| * | Correctly handle key share extensions in a hello retry request. | jsing | 2020-02-06 | 2 | -4/+11 |
| * | Refactor the server hello processing code in the TLSv1.3 client. | jsing | 2020-02-05 | 2 | -22/+46 |
| * | Remove the hello retry request processing code that was previously added. | jsing | 2020-02-05 | 2 | -65/+16 |
| * | Provide tls1_transcript_unfreeze() to avoid the need for manual flags | jsing | 2020-02-05 | 2 | -3/+10 |
| * | Pull the handshake message transcript code into its own function. | jsing | 2020-02-05 | 2 | -7/+14 |
| * | Rework tls13_legacy_handshake_message_{recv,sent}_cb() to use | tb | 2020-02-05 | 3 | -16/+22 |
| * | Add support for TLSv1.3 key shares with secp256r1 and secp384r1 groups. | jsing | 2020-02-04 | 1 | -5/+98 |
| * | Free the transcript as soon as we initialise the transcript hash. | jsing | 2020-02-04 | 2 | -2/+4 |
| * | Correctly unpack client key shares. | jsing | 2020-02-01 | 2 | -14/+11 |
| * | Disable TLSv1.3 client while some known issues are being addressed. | jsing | 2020-02-01 | 1 | -1/+3 |
| * | Provide struct/functions for handling TLSv1.3 key shares. | jsing | 2020-01-30 | 8 | -130/+299 |
| * | Factor out/rewrite the ECDHE EC point key exchange code. | jsing | 2020-01-30 | 5 | -173/+188 |
| * | Remove dead prototypes. | jsing | 2020-01-29 | 1 | -10/+1 |
| * | If the TLSv1.3 code has not recorded an error and something already exists | jsing | 2020-01-29 | 3 | -3/+9 |
| * | Remove unused stub implementation of tls13_accept(). The correct | tb | 2020-01-29 | 1 | -11/+1 |
| * | Fix SSL_CIPHER_description | inoguchi | 2020-01-26 | 1 | -2/+2 |
| * | When an SSL method is set, bump the max version back to that of the | jsing | 2020-01-26 | 1 | -1/+10 |
| * | When switching back to a legacy client or server, ensure we reset the | jsing | 2020-01-26 | 2 | -2/+4 |
| * | Fix basement bug where record layer would not correctly deal with | beck | 2020-01-26 | 1 | -1/+4 |
| * | Add server side support for requesting client certificates in tls 1.3 | beck | 2020-01-26 | 1 | -4/+173 |
| * | Add client certificate support for tls 1.3 | beck | 2020-01-26 | 2 | -15/+149 |
| * | Add sigalgs for server side to enable client certificate processing | beck | 2020-01-26 | 1 | -5/+34 |
| * | Move pad and verify context into tls13_lib.c | beck | 2020-01-26 | 4 | -68/+60 |
| * | Add an underbar for consistency. | tb | 2020-01-25 | 1 | -2/+2 |
| * | Revert change to certificate request check from r1.45. | jsing | 2020-01-25 | 1 | -3/+3 |
| * | Only perform the downgrade check if our max version is less than TLSv1.3. | jsing | 2020-01-25 | 1 | -15/+17 |
| * | Preserve the transcript hash for the client finished message, | beck | 2020-01-25 | 1 | -2/+3 |
| * | Support legacy message callbacks. First step for SSL_set_msg_callback(3) | tb | 2020-01-25 | 3 | -3/+40 |
| * | Correct value for SSL_TLSEXT_MSG_HRR. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Only discard the extension block for client hello and server hello | jsing | 2020-01-25 | 1 | -2/+3 |
| * | Only send an RI extension for pre-TLSv1.3 versions. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | It is possible to receive a pre-TLSv1.3 alert in response to a TLSv1.3 | jsing | 2020-01-25 | 3 | -4/+24 |
