| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Call the ocsp callback if present and we get no response, instead of | beck | 2021-09-02 | 1 | -3/+2 |
| * | Correct the is_server flag in the call to the debug callback to be correct. | beck | 2021-09-02 | 1 | -2/+2 |
| * | RFC 6066 section 8 allows the server MAY choose not send the CertificateStatus | beck | 2021-09-02 | 1 | -3/+37 |
| * | comment out the detailed description of SSL_get_servername(3), | schwarze | 2021-09-01 | 1 | -7/+9 |
| * | Defragment DTLS. | jsing | 2021-08-31 | 2 | -123/+48 |
| * | Remove a nonsensical s->version == TLS1_VERSION from DTLS code. | jsing | 2021-08-31 | 1 | -6/+1 |
| * | Clean up and simplify info and msg callbacks. | jsing | 2021-08-30 | 8 | -127/+88 |
| * | Replace DTLS r_epoch with the read epoch from the TLSv1.2 record layer. | jsing | 2021-08-30 | 5 | -27/+26 |
| * | Move to an AEAD nonce allocated in the TLSv1.2 record layer. | jsing | 2021-08-30 | 1 | -45/+36 |
| * | sync with OpenSSL 1.1.1, which is still under a free license; | schwarze | 2021-08-30 | 1 | -15/+107 |
| * | Ignore warning alert returns from servername callback in TLSv1.3 | tb | 2021-08-30 | 1 | -3/+7 |
| * | Clean up and simplify ssl3_dispatch_alert() and ssl3_send_alert(). | jsing | 2021-08-28 | 1 | -30/+32 |
| * | SSL_CTX_remove_session() checks for a NULL session, avoid doing it twice. | jsing | 2021-08-04 | 1 | -2/+2 |
| * | We have defines for alert levels - use them instead of magic numbers. | jsing | 2021-07-31 | 2 | -7/+5 |
| * | Dedup dtls1_dispatch_alert()/ssl3_dispatch_alert(). | jsing | 2021-07-26 | 6 | -65/+26 |
| * | Remove DTLS processed_rcds queue. | jsing | 2021-07-21 | 3 | -50/+22 |
| * | Silently discard invalid DTLS records. | jsing | 2021-07-21 | 1 | -4/+11 |
| * | Mop up dtls1_get_ccs_header() and struct ccs_header_st. | jsing | 2021-07-19 | 3 | -21/+3 |
| * | Inline DTLS1_CCS_HEADER_LENGTH rather than having a single use variable. | jsing | 2021-07-19 | 1 | -3/+2 |
| * | Do a first pass clean up of SSL_METHOD. | jsing | 2021-07-03 | 4 | -103/+14 |
| * | Merge SSL_METHOD_INTERNAL into SSL_METHOD. | jsing | 2021-07-01 | 15 | -195/+126 |
| * | Prepare to provide SSL_get_signature_nid() and friends. | jsing | 2021-06-30 | 2 | -2/+81 |
| * | Move some structs from public to private headers. | jsing | 2021-06-30 | 3 | -125/+108 |
| * | Correct sigalg hash usage when signing content for client verify. | jsing | 2021-06-30 | 1 | -3/+2 |
| * | Pull sigalg selection up into ssl3_send_client_verify(). | jsing | 2021-06-29 | 1 | -14/+11 |
| * | Track sigalg used by ourselves and our peer in the legacy stack. | jsing | 2021-06-29 | 2 | -2/+6 |
| * | Pull up and dedup the TLS version check in ssl_sigalg_pkey_ok(). | jsing | 2021-06-29 | 1 | -5/+6 |
| * | Simplify RSA PSS key size comment. | jsing | 2021-06-29 | 1 | -5/+2 |
| * | Use appropriate TLS version when building client sigalg extensions. | jsing | 2021-06-29 | 1 | -2/+6 |
| * | Change ssl_sigalg_from_value() to take SSL * instead of a TLS version. | jsing | 2021-06-29 | 1 | -7/+6 |
| * | Make various sigalg functions static now that they're only used internally. | jsing | 2021-06-29 | 2 | -10/+5 |
| * | Convert legacy stack server to ssl_sigalg_for_peer(). | jsing | 2021-06-29 | 1 | -47/+29 |
| * | Convert legacy stack client to ssl_sigalg_for_peer(). | jsing | 2021-06-29 | 1 | -34/+12 |
| * | Provide a ssl_sigalg_for_peer() function and use in the TLSv1.3 code. | jsing | 2021-06-29 | 4 | -15/+33 |
| * | Move the RSA-PSS check for TLSv1.3 to ssl_sigalg_pkey_ok(). | jsing | 2021-06-29 | 6 | -34/+29 |
| * | Factor out handling of legacy default signature algorithms. | jsing | 2021-06-29 | 1 | -32/+27 |
| * | Mop up now unused variables. | jsing | 2021-06-29 | 1 | -7/+2 |
| * | Require a ServerHello following a HelloRetryRequest to use the same cipher. | jsing | 2021-06-29 | 1 | -2/+11 |
| * | Reject zero-length non-application data fragments in the legacy stack. | jsing | 2021-06-29 | 1 | -1/+11 |
| * | Use the order action->sender == ctx->mode everywhere for consistency. | tb | 2021-06-28 | 1 | -3/+3 |
| * | ctx->alert is not a boolean, so compare it explicitly against 0. | tb | 2021-06-28 | 1 | -3/+3 |
| * | The state machine now takes care of setting the legacy state, | tb | 2021-06-28 | 1 | -11/+1 |
| * | Expand info callback support for TLSv1.3 | tb | 2021-06-28 | 2 | -7/+187 |
| * | Track the sigalgs used by ourselves and our peer. | jsing | 2021-06-27 | 3 | -9/+14 |
| * | Have ssl3_send_client_verify() pass *pkey to called functions. | jsing | 2021-06-27 | 1 | -22/+11 |
| * | Change ssl_sigalgs_from_value() to perform sigalg list selection. | jsing | 2021-06-27 | 6 | -32/+31 |
| * | Rename ssl_sigalg() to ssl_sigalg_from_value(). | jsing | 2021-06-27 | 6 | -17/+18 |
| * | Change ssl_sigalgs_build() to perform sigalg list selection. | jsing | 2021-06-27 | 4 | -28/+29 |
| * | Tidy some comments and simplify some code. | jsing | 2021-06-27 | 1 | -15/+7 |
| * | Keep sigalg initialiser order consistent - key type, then hash. | jsing | 2021-06-27 | 2 | -20/+20 |
