summaryrefslogtreecommitdiff
path: root/src/lib (follow)
Commit message (Expand)AuthorAgeFilesLines
...
* Simplify SSL method lookups.jsing2020-09-175-66/+44
* Add a comment saying that the public function NAME_CONSTRAINTS_check(3)schwarze2020-09-171-2/+5
* Install the new page SSL_set1_host(3), link to it from relevant places,schwarze2020-09-176-22/+31
* Import a manual page for SSL_set1_host(3), which we already have since 6.5,schwarze2020-09-171-0/+155
* revert my putting this on a diet. sadly the NAME_CONSTRAINTS_checkbeck2020-09-161-7/+1
* Group seal record functions together.jsing2020-09-161-11/+11
* noop NAME_CONSTRAINTS_check stubinoguchi2020-09-161-4/+5
* Let SSL_CTX_get_ciphers(NULL) return NULL rather than crashschwarze2020-09-162-6/+7
* Mark SSL_get_cipher_list(3) as deprecated; it is badly misnamed, and thereschwarze2020-09-161-4/+6
* Avoid memset() before memcpy() for CBB_add_bytes().jsing2020-09-161-2/+2
* Make check in x509_verify_ctx_set_max_signatures() consistent with others.jsing2020-09-161-4/+2
* Dedup code in x509_verify_ctx_new_from_xsc().jsing2020-09-161-14/+7
* The undocumented public function SSL_set_SSL_CTX(3) changes theschwarze2020-09-151-4/+4
* Split the tls12_record_layer_write_mac() function.jsing2020-09-151-10/+19
* Do not destroy an existing cipher list when ssl_parse_ciphersuites()schwarze2020-09-151-4/+2
* Correct a failure case in tls12_record_layer_seal_record_protected()jsing2020-09-151-2/+2
* Create the missing RETURN VALUES section and move the appropriateschwarze2020-09-151-57/+103
* set error_depth and current_cert to make more legacy callbacks that don't checkbeck2020-09-151-1/+3
* Deduplicate the time validation code between the legacy and newbeck2020-09-153-27/+8
* ifdef out code that is no longer used in here. once we are certainbeck2020-09-151-2/+5
* Cleanup/simplify SSL_set_ssl_method().jsing2020-09-151-18/+18
* Mop up the get_ssl_method function pointer.jsing2020-09-152-50/+2
* Move state initialisation from SSL_clear() to ssl3_clear().jsing2020-09-142-4/+4
* Cleanup and simplify SSL_set_session().jsing2020-09-141-36/+22
* Avoid NULL deref SSL_{,CTX_}set_ciphersuitestb2020-09-141-2/+2
* simplify RETURN VALUES for x509_verify(3) after beck@ made the rulesschwarze2020-09-141-7/+3
* Add initial man page for new x509_verify chain validatorbeck2020-09-141-0/+225
* Set error if we are given an NULL ctx in x509_verify, and set errorbeck2020-09-141-5/+3
* nuke a stray spacetb2020-09-141-2/+2
* Fix potential leak when tmpext fails to be added tobeck2020-09-141-2/+6
* remove unneeded variable "type".beck2020-09-141-6/+5
* Don't leak names on successbeck2020-09-141-1/+2
* remove unneded variable "time1"beck2020-09-141-6/+6
* remove unneded variable "time"beck2020-09-141-3/+2
* fix bug introduced on review where refactor made it possible tobeck2020-09-141-2/+2
* re-enable new x509 chain verifier as the defaultbeck2020-09-141-3/+1
* Correctly fix double free introduced on review.beck2020-09-142-3/+3
* Fix double free - review moved the pop_free of roots to x509_verify_ctx_freebeck2020-09-141-2/+1
* revert previous, need to fix a problembeck2020-09-141-1/+3
* Enable the use of the new x509 chain validator by default.beck2020-09-141-3/+1
* Implement SSL_{CTX_,}set_ciphersuites().jsing2020-09-135-13/+211
* Add new x509 certificate chain validator in x509_verify.cbeck2020-09-1310-59/+1191
* Improve handling of BIO_read()/BIO_write() failures in the TLSv1.3 stack.jsing2020-09-131-1/+9
* Use the correct type for tls1_set_ec_id()tb2020-09-121-3/+3
* Simplify tls1_set_ec_id() a bittb2020-09-121-24/+19
* Unindent a bit of code that performs a few too many checks totb2020-09-121-10/+8
* Avoid an out-of-bounds access in BN_rand()tb2020-09-121-3/+8
* Change over to use the new x509 name constraints verification.beck2020-09-121-28/+7
* Include machine/endian.h in gost2814789.cinoguchi2020-09-121-1/+3
* Add x509_constraints.c - a new implementation of x509 name constraints, withbeck2020-09-113-2/+1272
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-16 10:20:46 +0000