| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Bump libcrypto, libssl and libtls minors due to symbol additions. | jsing | 2019-11-02 | 1 | -1/+1 |
| * | Bump libcrypto, libssl and libtls majors due to changes in struct sizes | jsing | 2019-10-24 | 1 | -2/+2 |
| * | Use a valid curve when constructing an EC_KEY that looks like X25519. | jsing | 2019-10-04 | 1 | -2/+3 |
| * | Further improve the documentation of library initialization and configuration. | schwarze | 2019-06-14 | 3 | -37/+37 |
| * | add missing backlinks to ssl(3) | schwarze | 2019-06-12 | 31 | -64/+100 |
| * | List all 17 SSL pages that were missing. | schwarze | 2019-06-12 | 1 | -51/+89 |
| * | remove pointless NOTES section header lines | schwarze | 2019-06-08 | 9 | -27/+27 |
| * | provide getters and setters for the RSA_METHOD interface | gilles | 2019-06-05 | 1 | -1/+1 |
| * | Relax parsing of TLS key share extensions on the server. | jsing | 2019-05-29 | 1 | -5/+2 |
| * | Do not send an SNI extension when resuming a session that contains a server | jsing | 2019-05-29 | 1 | -1/+4 |
| * | Fix typo and label indent. | jsing | 2019-05-28 | 1 | -3/+3 |
| * | Tidy up some names/structures following the renaming of TLS extension | jsing | 2019-05-28 | 1 | -35/+35 |
| * | *an* RSA; | jmc | 2019-05-20 | 2 | -6/+6 |
| * | s3 is never NULL since s2 (formerly used for SSLv2) does not exist, so there is | bcook | 2019-05-15 | 3 | -29/+20 |
| * | Remove unused pad check, which is handled by tls1_cbc_remove_padding() now. | bcook | 2019-05-13 | 1 | -4/+2 |
| * | In DTLS, use_srtp is part of the extended server hello while in TLSv1.3, | tb | 2019-05-08 | 1 | -2/+3 |
| * | Use calloc/freezero when allocating and freeing the session ticket data. | jsing | 2019-04-25 | 1 | -4/+6 |
| * | Use EVP_CIPHER_CTX_{new,free}() and HMAC_CTX_{new,free}() instead of | jsing | 2019-04-25 | 1 | -24/+29 |
| * | Rename some variables in tls_decrypt_ticket(). | jsing | 2019-04-25 | 1 | -18/+18 |
| * | Convert tls_decrypt_ticket() to CBS. | jsing | 2019-04-23 | 1 | -44/+72 |
| * | Provide a derr label (decode/decrypt error) in tls1_decrypt_ticket(). | jsing | 2019-04-22 | 1 | -41/+29 |
| * | Pass the session ID down to the session/ticket handling code as a CBS. | jsing | 2019-04-22 | 4 | -35/+36 |
| * | Inline and remove the tlsext_tick_md macro. | jsing | 2019-04-22 | 3 | -6/+5 |
| * | Clean up tls1_process_ticket(). | jsing | 2019-04-21 | 1 | -39/+43 |
| * | Cleanup more of tls_decrypt_ticket(). | jsing | 2019-04-21 | 1 | -5/+9 |
| * | Start cleaning up tls_decrypt_ticket(). | jsing | 2019-04-21 | 1 | -58/+63 |
| * | Avoid leak in SSL_dup_CA_list() | tb | 2019-04-13 | 1 | -8/+14 |
| * | Recommend SSL_CTX_add1_chain_cert(3) rather than | schwarze | 2019-04-09 | 1 | -12/+11 |
| * | Document SSL_CTX_clear_mode(3) and SSL_clear_mode(3). | schwarze | 2019-04-09 | 1 | -22/+48 |
| * | By design, our state machine is a DAG contrary to the state machine in | tb | 2019-04-05 | 4 | -7/+29 |
| * | Import SSL_CTX_add1_chain_cert(3) from OpenSSL branch 1.1.1, which is still | schwarze | 2019-04-05 | 5 | -17/+264 |
| * | Zap two dead #defines that were unused since jsing deleted the | tb | 2019-04-05 | 1 | -5/+1 |
| * | Implement legacy fallback for the TLS 1.3 client. | jsing | 2019-04-04 | 3 | -8/+87 |
| * | Clean up the cipher/digest table mess. | jsing | 2019-04-04 | 3 | -179/+45 |
| * | Bump libssl/libtls minors due to symbol addition. | jsing | 2019-04-04 | 1 | -1/+1 |
| * | Provide SSL chain/cert chain APIs. | jsing | 2019-04-04 | 3 | -2/+161 |
| * | This case also needs to be fatal. | jsing | 2019-04-04 | 1 | -1/+2 |
| * | mark ERR_R_INTERNAL_ERROR instead of assert or _exit, sigh | deraadt | 2019-04-01 | 1 | -3/+3 |
| * | Correct subtle bug in sigalgs, only care about curve_nid if we are | beck | 2019-04-01 | 1 | -4/+4 |
| * | Clean up and simplify the client verify code: | jsing | 2019-03-31 | 1 | -50/+49 |
| * | Strip out all of the pkey to sigalg and sigalg to pkey linkages. | jsing | 2019-03-25 | 5 | -59/+8 |
| * | tls1_process_sigalgs() is no longer needed. | jsing | 2019-03-25 | 2 | -57/+2 |
| * | Defer sigalgs selection until the certificate is known. | jsing | 2019-03-25 | 9 | -48/+124 |
| * | Rework ssl_ctx_use_certificate_chain_bio() to use the CERT_PKEY chain. | jsing | 2019-03-25 | 1 | -46/+26 |
| * | Remove ssl_get_server_send_cert() which is now unused. | jsing | 2019-03-25 | 2 | -14/+2 |
| * | Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains. | jsing | 2019-03-25 | 4 | -40/+36 |
| * | Add a chain member to CERT_PKEY and provide functions for manipulating it. | jsing | 2019-03-25 | 2 | -3/+74 |
| * | If ssl_cipher_apply_rule() is given a specific cipher suite, match on it. | jsing | 2019-03-24 | 1 | -3/+4 |
| * | do not call assert(), which has a tendency to leave traces of stuff in | deraadt | 2019-03-24 | 1 | -2/+3 |
| * | Avoid an internal 2 byte overread in ssl_sigalgs(). | jsing | 2019-03-19 | 1 | -7/+2 |
