index
:
openbsd
OPENBSD_2_0
OPENBSD_2_1
OPENBSD_2_2
OPENBSD_2_3
OPENBSD_2_4
OPENBSD_2_5
OPENBSD_2_6
OPENBSD_2_7
OPENBSD_2_8
OPENBSD_2_9
OPENBSD_3_0
OPENBSD_3_1
OPENBSD_3_2
OPENBSD_3_3
OPENBSD_3_4
OPENBSD_3_5
OPENBSD_3_6
OPENBSD_3_7
OPENBSD_3_8
OPENBSD_3_9
OPENBSD_4_0
OPENBSD_4_1
OPENBSD_4_2
OPENBSD_4_3
OPENBSD_4_4
OPENBSD_4_5
OPENBSD_4_6
OPENBSD_4_7
OPENBSD_4_8
OPENBSD_4_9
OPENBSD_5_0
OPENBSD_5_1
OPENBSD_5_2
OPENBSD_5_3
OPENBSD_5_4
OPENBSD_5_5
OPENBSD_5_6
OPENBSD_5_7
OPENBSD_5_8
OPENBSD_5_9
OPENBSD_6_0
OPENBSD_6_1
OPENBSD_6_2
OPENBSD_6_3
OPENBSD_6_4
OPENBSD_6_5
OPENBSD_6_6
OPENBSD_6_7
OPENBSD_6_8
OPENBSD_6_9
OPENBSD_7_0
OPENBSD_7_1
OPENBSD_7_2
OPENBSD_7_3
OPENBSD_7_4
OPENBSD_7_5
OPENBSD_7_6
master
A mirror of https://github.com/libressl/openbsd.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
lib
/
libssl
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
...
*
Refactor ssl_update_cache. This now matches the logic used for TLS 1.3
beck
2021-09-04
1
-22
/
+106
*
Improve DTLS hello request handling code.
jsing
2021-09-04
1
-2
/
+8
*
Change dtls1_get_message_header() to take a CBS.
jsing
2021-09-04
3
-22
/
+21
*
Improve DTLS record header parsing.
jsing
2021-09-04
1
-7
/
+7
*
Use SSL3_HM_HEADER_LENGTH instead of the magic number 4.
jsing
2021-09-03
1
-13
/
+14
*
Ensure that a server hello does not have trailing data.
jsing
2021-09-03
1
-1
/
+4
*
Ensure that a client hello does not have trailing data.
jsing
2021-09-03
1
-1
/
+4
*
Set message_size correctly when switching to the legacy stack.
jsing
2021-09-03
1
-2
/
+2
*
We need to allow for either a CERTIFICATE or CERTIFICATE_STATUS message
beck
2021-09-02
1
-2
/
+3
*
Call the ocsp callback if present and we get no response, instead of
beck
2021-09-02
1
-3
/
+2
*
Correct the is_server flag in the call to the debug callback to be correct.
beck
2021-09-02
1
-2
/
+2
*
RFC 6066 section 8 allows the server MAY choose not send the CertificateStatus
beck
2021-09-02
1
-3
/
+37
*
comment out the detailed description of SSL_get_servername(3),
schwarze
2021-09-01
1
-7
/
+9
*
Defragment DTLS.
jsing
2021-08-31
2
-123
/
+48
*
Remove a nonsensical s->version == TLS1_VERSION from DTLS code.
jsing
2021-08-31
1
-6
/
+1
*
Clean up and simplify info and msg callbacks.
jsing
2021-08-30
8
-127
/
+88
*
Replace DTLS r_epoch with the read epoch from the TLSv1.2 record layer.
jsing
2021-08-30
5
-27
/
+26
*
Move to an AEAD nonce allocated in the TLSv1.2 record layer.
jsing
2021-08-30
1
-45
/
+36
*
sync with OpenSSL 1.1.1, which is still under a free license;
schwarze
2021-08-30
1
-15
/
+107
*
Ignore warning alert returns from servername callback in TLSv1.3
tb
2021-08-30
1
-3
/
+7
*
Clean up and simplify ssl3_dispatch_alert() and ssl3_send_alert().
jsing
2021-08-28
1
-30
/
+32
*
SSL_CTX_remove_session() checks for a NULL session, avoid doing it twice.
jsing
2021-08-04
1
-2
/
+2
*
We have defines for alert levels - use them instead of magic numbers.
jsing
2021-07-31
2
-7
/
+5
*
Dedup dtls1_dispatch_alert()/ssl3_dispatch_alert().
jsing
2021-07-26
6
-65
/
+26
*
Remove DTLS processed_rcds queue.
jsing
2021-07-21
3
-50
/
+22
*
Silently discard invalid DTLS records.
jsing
2021-07-21
1
-4
/
+11
*
Mop up dtls1_get_ccs_header() and struct ccs_header_st.
jsing
2021-07-19
3
-21
/
+3
*
Inline DTLS1_CCS_HEADER_LENGTH rather than having a single use variable.
jsing
2021-07-19
1
-3
/
+2
*
Do a first pass clean up of SSL_METHOD.
jsing
2021-07-03
4
-103
/
+14
*
Merge SSL_METHOD_INTERNAL into SSL_METHOD.
jsing
2021-07-01
15
-195
/
+126
*
Prepare to provide SSL_get_signature_nid() and friends.
jsing
2021-06-30
2
-2
/
+81
*
Move some structs from public to private headers.
jsing
2021-06-30
3
-125
/
+108
*
Correct sigalg hash usage when signing content for client verify.
jsing
2021-06-30
1
-3
/
+2
*
Pull sigalg selection up into ssl3_send_client_verify().
jsing
2021-06-29
1
-14
/
+11
*
Track sigalg used by ourselves and our peer in the legacy stack.
jsing
2021-06-29
2
-2
/
+6
*
Pull up and dedup the TLS version check in ssl_sigalg_pkey_ok().
jsing
2021-06-29
1
-5
/
+6
*
Simplify RSA PSS key size comment.
jsing
2021-06-29
1
-5
/
+2
*
Use appropriate TLS version when building client sigalg extensions.
jsing
2021-06-29
1
-2
/
+6
*
Change ssl_sigalg_from_value() to take SSL * instead of a TLS version.
jsing
2021-06-29
1
-7
/
+6
*
Make various sigalg functions static now that they're only used internally.
jsing
2021-06-29
2
-10
/
+5
*
Convert legacy stack server to ssl_sigalg_for_peer().
jsing
2021-06-29
1
-47
/
+29
*
Convert legacy stack client to ssl_sigalg_for_peer().
jsing
2021-06-29
1
-34
/
+12
*
Provide a ssl_sigalg_for_peer() function and use in the TLSv1.3 code.
jsing
2021-06-29
4
-15
/
+33
*
Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok().
jsing
2021-06-29
6
-34
/
+29
*
Factor out handling of legacy default signature algorithms.
jsing
2021-06-29
1
-32
/
+27
*
Mop up now unused variables.
jsing
2021-06-29
1
-7
/
+2
*
Require a ServerHello following a HelloRetryRequest to use the same cipher.
jsing
2021-06-29
1
-2
/
+11
*
Reject zero-length non-application data fragments in the legacy stack.
jsing
2021-06-29
1
-1
/
+11
*
Use the order action->sender == ctx->mode everywhere for consistency.
tb
2021-06-28
1
-3
/
+3
*
ctx->alert is not a boolean, so compare it explicitly against 0.
tb
2021-06-28
1
-3
/
+3
[prev]
[next]
