| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Document the TLSv1.3 control word, update the description of the | schwarze | 2020-04-11 | 1 | -4/+30 |
| * | Include TLSv1.3 cipher suites unless cipher string references TLSv1.3. | jsing | 2020-04-09 | 1 | -6/+19 |
| * | Tidy line wrapping and remove an extra blank line. | jsing | 2020-04-09 | 1 | -4/+3 |
| * | ssl_aes_is_accelerated() returns a boolean - treat it as such, rather than | jsing | 2020-04-09 | 1 | -2/+2 |
| * | Ensure legacy session ID is persistent during client TLS session. | jsing | 2020-04-08 | 1 | -9/+14 |
| * | Send a zero-length session identifier if TLSv1.3 is not enabled. | jsing | 2020-04-06 | 1 | -4/+7 |
| * | Void functions obviously do not return values; no need to elaborate. | schwarze | 2020-03-30 | 5 | -31/+10 |
| * | Void functions obviously do not return values; no need to elaborate. | schwarze | 2020-03-29 | 1 | -5/+2 |
| * | Consistently spell 'unsigned' as 'unsigned int', as style(9) seems | tb | 2020-03-16 | 7 | -44/+45 |
| * | The RFC is clear (section 5.3) that sequence number should never wrap. | tb | 2020-03-16 | 1 | -5/+12 |
| * | Remove dtls1_enc(). | jsing | 2020-03-13 | 5 | -222/+11 |
| * | Correct TLSv1.3 sequence number increment and wrapping check. | jsing | 2020-03-13 | 1 | -3/+3 |
| * | Ensure that CBB_add_space() always provides zeroed memory. | jsing | 2020-03-13 | 1 | -1/+2 |
| * | Use calloc() rather than malloc() when allocating initial CBB buffer. | jsing | 2020-03-12 | 1 | -4/+3 |
| * | Use calloc() rather than malloc() when allocating buffers. | jsing | 2020-03-12 | 1 | -3/+3 |
| * | Stop overloading the record type for padding length. | jsing | 2020-03-12 | 5 | -13/+10 |
| * | Use internal versions of SSL3_BUFFER, SSL3_RECORD and DTLS1_RECORD_DATA. | jsing | 2020-03-12 | 9 | -53/+83 |
| * | Use ctx->hs->secrets rather than the S3I(s) version. | jsing | 2020-03-10 | 2 | -4/+4 |
| * | Remove some unnecessary handshake enums/functions. | jsing | 2020-03-10 | 4 | -26/+4 |
| * | Add a return value check to tls13_buffer_extend(). | jsing | 2020-03-10 | 1 | -1/+4 |
| * | Remove the enc function pointers. | jsing | 2020-03-10 | 6 | -22/+12 |
| * | RFC 8446, section 4.1.3: If a TLSv1.2 client receives a ServerHello for | tb | 2020-03-06 | 1 | -1/+27 |
| * | TLSv1.3 servers that intend to downgrade are required to set the last | tb | 2020-03-06 | 1 | -4/+8 |
| * | The decryption_failed alert must not be sent by compliant implementations. | tb | 2020-02-23 | 1 | -2/+2 |
| * | According to RFC 8446, Section 4.4.4, recipients of incorrect Finished | tb | 2020-02-23 | 2 | -4/+4 |
| * | Remove the s2n macro now that it is finally unused. | jsing | 2020-02-21 | 1 | -4/+1 |
| * | Convert the SSL/TLS record creation code to CBB. | jsing | 2020-02-21 | 1 | -18/+28 |
| * | Convert the DTLS header creation code to CBB. | jsing | 2020-02-21 | 1 | -20/+27 |
| * | Remove some commented code, remove some pointless comments and move some | jsing | 2020-02-21 | 1 | -17/+6 |
| * | Convert dtls1_build_sequence_number() to CBB. | jsing | 2020-02-21 | 1 | -7/+15 |
| * | Move l2n/l2n8 into s3_cbc.c, since this is the only code that uses it. | jsing | 2020-02-21 | 2 | -16/+16 |
| * | Remove prefix_len, since it is always zero. | jsing | 2020-02-21 | 1 | -4/+3 |
| * | Remove now unused variable. | jsing | 2020-02-21 | 1 | -3/+1 |
| * | Refactor do_ssl3_write(). | jsing | 2020-02-19 | 1 | -97/+98 |
| * | drop unused include <openssl/curve25519.h> | tb | 2020-02-18 | 4 | -10/+4 |
| * | Avoid potential NULL dereference when parsing a server keyshare extension. | jsing | 2020-02-16 | 1 | -1/+4 |
| * | Avoid leak for tmp.x25519 | inoguchi | 2020-02-16 | 2 | -5/+11 |
| * | Move the TLSv1.3 code that interfaces with the legacy APIs/stack into a | jsing | 2020-02-15 | 3 | -309/+330 |
| * | Remove #include that is not needed. | jsing | 2020-02-15 | 1 | -3/+1 |
| * | Re-enable the TLSv1.3 client since the known issues have been addressed. | jsing | 2020-02-06 | 1 | -3/+1 |
| * | Add a workaround to make SSL_set_session() work with TLSv1.3. | jsing | 2020-02-06 | 1 | -1/+9 |
| * | Add support for handling hello retry requests in the TLSv1.3 client. | jsing | 2020-02-06 | 1 | -5/+100 |
| * | Correctly handle key share extensions in a hello retry request. | jsing | 2020-02-06 | 2 | -4/+11 |
| * | Refactor the server hello processing code in the TLSv1.3 client. | jsing | 2020-02-05 | 2 | -22/+46 |
| * | Remove the hello retry request processing code that was previously added. | jsing | 2020-02-05 | 2 | -65/+16 |
| * | Provide tls1_transcript_unfreeze() to avoid the need for manual flags | jsing | 2020-02-05 | 2 | -3/+10 |
| * | Pull the handshake message transcript code into its own function. | jsing | 2020-02-05 | 2 | -7/+14 |
| * | Rework tls13_legacy_handshake_message_{recv,sent}_cb() to use | tb | 2020-02-05 | 3 | -16/+22 |
| * | Add support for TLSv1.3 key shares with secp256r1 and secp384r1 groups. | jsing | 2020-02-04 | 1 | -5/+98 |
| * | Free the transcript as soon as we initialise the transcript hash. | jsing | 2020-02-04 | 2 | -2/+4 |
