| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Update RFC reference for TLSEXT_TYPE_padding. | jsing | 2017-03-25 | 1 | -5/+2 |
| * | Check tls1_PRF() return value in tls1_generate_master_secret(). | jsing | 2017-03-25 | 1 | -4/+4 |
| * | More cleanup for tls1_PRF()/tls1_P_hash() - change the argument order of | jsing | 2017-03-25 | 1 | -46/+50 |
| * | Fewer magic numbers. | jsing | 2017-03-18 | 1 | -3/+3 |
| * | t1_enc.c | jsing | 2017-03-18 | 1 | -3/+2 |
| * | Currently tls1_PRF() requires that a temporary buffer be provided, that | jsing | 2017-03-18 | 1 | -50/+32 |
| * | Remove the handshake digests and related code, replacing remaining uses | jsing | 2017-03-10 | 7 | -166/+45 |
| * | Switch CBB to use recallocarray() - this ensures that we do not leak | jsing | 2017-03-10 | 1 | -2/+2 |
| * | First pass at cleaning up the tls1_P_hash() function - remove a pointless | jsing | 2017-03-10 | 1 | -20/+19 |
| * | Make tls1_PRF() non-static so it can be regress tested. | jsing | 2017-03-10 | 1 | -2/+7 |
| * | Correctly handle TLS PRF with MD5+SHA1 - the secret has to be partitioned | jsing | 2017-03-07 | 1 | -5/+26 |
| * | Clean up and simplify the tls1_PRF() implementation now that we have a | jsing | 2017-03-06 | 1 | -48/+19 |
| * | Correctly convert an SSLv2 challenge into an SSLv3/TLS client random by | jsing | 2017-03-05 | 1 | -9/+27 |
| * | Provide a rolling handshake hash that commences as soon as the cipher | jsing | 2017-03-05 | 8 | -54/+193 |
| * | Convert various handshake message generation functions to CBB. | jsing | 2017-03-05 | 4 | -56/+113 |
| * | Drop the second argument of dtls1_set_message_header() and make it a void | jsing | 2017-03-04 | 3 | -13/+10 |
| * | Call ssl3_handshake_write() instead of ssl3_do_write() - this was missed | jsing | 2017-03-04 | 1 | -2/+2 |
| * | Convert ssl3_{get,send}_server_key_exchange() to EVP_md5_sha1(). | jsing | 2017-03-01 | 3 | -44/+29 |
| * | Bump minors due to symbol addition. | jsing | 2017-02-28 | 1 | -1/+1 |
| * | Stop pretending that MD5 and SHA1 might not exist - rather than locating | jsing | 2017-02-28 | 4 | -20/+8 |
| * | Remove STREEBOG 512 as a TLS MAC since there are currently no cipher suites | jsing | 2017-02-21 | 2 | -26/+6 |
| * | Avoid dereferencing a pointer when reporting an error about the same | jsing | 2017-02-15 | 1 | -2/+2 |
| * | Change SSLerror() back to taking two args, with the first one being an SSL *. | beck | 2017-02-07 | 25 | -573/+841 |
| * | Define values for SSL_CTRL_SET_GROUPS{,_LIST} and wire them up to the | jsing | 2017-02-05 | 2 | -15/+19 |
| * | Provide an SSL_OP_NO_CLIENT_RENEGOTIATION option that disallows | jsing | 2017-01-31 | 2 | -2/+12 |
| * | Send the function codes from the error functions to the bit bucket, | beck | 2017-01-29 | 2 | -4/+4 |
| * | Put comment back in the right place. | jsing | 2017-01-29 | 1 | -9/+9 |
| * | Avoid clearing the mac_packet flag in the wrong place. | jsing | 2017-01-29 | 1 | -2/+1 |
| * | knf | beck | 2017-01-26 | 1 | -6/+11 |
| * | Convert ssl3_get_client_hello() to CBS. | jsing | 2017-01-26 | 1 | -76/+71 |
| * | Finish the fallout of the SSLerr->SSLerror cleanup to get rid of the ugly | beck | 2017-01-26 | 18 | -653/+335 |
| * | Send the error function codes to rot in the depths of hell where they belong | beck | 2017-01-26 | 24 | -798/+572 |
| * | Merge the single two line function from ssl_err2.c into ssl_err.c. | jsing | 2017-01-26 | 3 | -76/+12 |
| * | english is hard. | beck | 2017-01-26 | 1 | -2/+2 |
| * | Limit the number of sequential empty records that we will process | beck | 2017-01-26 | 4 | -7/+30 |
| * | Refactor the code to generate a WANT_READ into a function, as we are | beck | 2017-01-26 | 1 | -18/+20 |
| * | Remove most of SSL3_ENC_METHOD - we can just inline the function calls | jsing | 2017-01-26 | 11 | -135/+63 |
| * | Move relatively new version range code from ssl_lib.c into a separate | jsing | 2017-01-26 | 3 | -158/+175 |
| * | Rename s3_{both,clnt,pkt_srvr}.c to have an ssl_ prefix since they are no | jsing | 2017-01-26 | 5 | -6/+6 |
| * | Merge the client/server version negotiation into the existing (currently | jsing | 2017-01-26 | 16 | -1229/+395 |
| * | Remove ssl3_undef_enc_method - if we have internal bugs we want to segfault | jsing | 2017-01-26 | 5 | -36/+8 |
| * | Remove a sess_cert reference from a comment in the public header. | jsing | 2017-01-26 | 1 | -5/+2 |
| * | Limit enabled version range by the versions configured on the SSL_CTX/SSL, | jsing | 2017-01-25 | 3 | -23/+84 |
| * | Change the SSL_IS_DTLS() macro to check the version, rather than using a | jsing | 2017-01-25 | 2 | -7/+4 |
| * | Provide ssl3_packet_read() and ssl3_packet_extend() functions that improve | jsing | 2017-01-25 | 3 | -35/+59 |
| * | Provide defines for SSL_CTRL_SET_CURVES/SSL_CTRL_SET_CURVES_LIST for things | jsing | 2017-01-25 | 1 | -1/+15 |
| * | BUF_MEM_free(), X509_STORE_free() and X509_VERIFY_PARAM_free() all check | jsing | 2017-01-24 | 2 | -18/+10 |
| * | sk_free() checks for NULL so do not bother doing it from the callers. | jsing | 2017-01-24 | 4 | -10/+9 |
| * | sk_pop_free() checks for NULL so do not bother doing it from the callers. | jsing | 2017-01-24 | 7 | -50/+31 |
| * | Within libssl a SSL_CTX * is referred to as a ctx - fix this for | jsing | 2017-01-24 | 1 | -29/+29 |
