| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Remove unused stub implementation of tls13_accept(). The correct | tb | 2020-01-29 | 1 | -11/+1 |
| * | Fix SSL_CIPHER_description | inoguchi | 2020-01-26 | 1 | -2/+2 |
| * | Avoid 32 bit right shift with unsigned int in crypto/cast/cast_lcl.h | inoguchi | 2020-01-26 | 1 | -2/+2 |
| * | tweak previous; ok tb | jmc | 2020-01-26 | 1 | -3/+3 |
| * | typo | tb | 2020-01-26 | 1 | -2/+2 |
| * | Document the change in EVP_chacha20(3). | tb | 2020-01-26 | 1 | -3/+5 |
| * | Improve the comment explaining why the previous change matches OpenSSL's | tb | 2020-01-26 | 1 | -8/+15 |
| * | When an SSL method is set, bump the max version back to that of the | jsing | 2020-01-26 | 1 | -1/+10 |
| * | When switching back to a legacy client or server, ensure we reset the | jsing | 2020-01-26 | 2 | -2/+4 |
| * | Fix basement bug where record layer would not correctly deal with | beck | 2020-01-26 | 1 | -1/+4 |
| * | Add server side support for requesting client certificates in tls 1.3 | beck | 2020-01-26 | 1 | -4/+173 |
| * | Add client certificate support for tls 1.3 | beck | 2020-01-26 | 2 | -15/+149 |
| * | Add sigalgs for server side to enable client certificate processing | beck | 2020-01-26 | 1 | -5/+34 |
| * | Move pad and verify context into tls13_lib.c | beck | 2020-01-26 | 4 | -68/+60 |
| * | Adjust EVP_chacha20()'s behavior to match OpenSSL's semantics: | tb | 2020-01-26 | 1 | -7/+14 |
| * | Add an underbar for consistency. | tb | 2020-01-25 | 1 | -2/+2 |
| * | Revert change to certificate request check from r1.45. | jsing | 2020-01-25 | 1 | -3/+3 |
| * | Only perform the downgrade check if our max version is less than TLSv1.3. | jsing | 2020-01-25 | 1 | -15/+17 |
| * | Preserve the transcript hash for the client finished message, | beck | 2020-01-25 | 1 | -2/+3 |
| * | Support legacy message callbacks. First step for SSL_set_msg_callback(3) | tb | 2020-01-25 | 3 | -3/+40 |
| * | Correct value for SSL_TLSEXT_MSG_HRR. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Only discard the extension block for client hello and server hello | jsing | 2020-01-25 | 1 | -2/+3 |
| * | Only send an RI extension for pre-TLSv1.3 versions. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | It is possible to receive a pre-TLSv1.3 alert in response to a TLSv1.3 | jsing | 2020-01-25 | 3 | -4/+24 |
| * | Correct backwards test so that we may accept a certificate requst | beck | 2020-01-25 | 1 | -3/+3 |
| * | Complete the initial TLSv1.3 implementation. | jsing | 2020-01-24 | 3 | -14/+300 |
| * | Preserve the TLS transcript at additional points. | jsing | 2020-01-24 | 1 | -9/+23 |
| * | Permit 0 length writes, because openssl s_client is special | beck | 2020-01-24 | 1 | -2/+2 |
| * | Store the legacy session identifier from the ClientHello so we can actually | jsing | 2020-01-24 | 1 | -1/+10 |
| * | Switch to encrypted records in the TLSv1.3 server. | jsing | 2020-01-24 | 3 | -4/+78 |
| * | Enable SSL_ENC_FLAG_SIGALGS on TLSv1_3_enc_data. | jsing | 2020-01-24 | 1 | -2/+2 |
| * | Add strings for SSL_aTLS1_3 and SSL_kTLS1_3 to SSL_CIPHER_description(). | jsing | 2020-01-24 | 1 | -1/+7 |
| * | Fix breakage in SSL_connect, SSL_accept, etc. by not propagating | beck | 2020-01-24 | 3 | -13/+42 |
| * | Implement client hello processing in the TLSv1.3 server. | jsing | 2020-01-23 | 3 | -10/+58 |
| * | Correct several issues in the current TLSv1.3 server code. | jsing | 2020-01-23 | 1 | -6/+15 |
| * | When certificate validation fails, we must send a DECRYPT_ERROR alert | beck | 2020-01-23 | 1 | -3/+6 |
| * | Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL. | jsing | 2020-01-23 | 6 | -47/+27 |
| * | Implement sending client certificate requests for 1.3 server | beck | 2020-01-23 | 1 | -1/+13 |
| * | Correctly handle TLSv1.3 ciphers suites in ssl3_choose_cipher(). | jsing | 2020-01-23 | 4 | -5/+30 |
| * | Build the encrypted extensions for the 1.3 server | beck | 2020-01-23 | 1 | -2/+8 |
| * | If we are building a legacy server hello, check to see if we are | beck | 2020-01-23 | 1 | -1/+20 |
| * | Add checking int the client to check the magic values which are | beck | 2020-01-23 | 3 | -3/+30 |
| * | Add code to build and send a server hello for tls 1.3 | beck | 2020-01-23 | 1 | -3/+40 |
| * | Save the legacy session id in the client, and enforce that it is returned | beck | 2020-01-23 | 2 | -7/+18 |
| * | Implement pending for TLSv1.3. | jsing | 2020-01-23 | 4 | -6/+42 |
| * | Remove lies from the SSL_pending man page, Our implementation never | beck | 2020-01-23 | 1 | -22/+3 |
| * | Switch back to a function pointer for ssl_pending. | jsing | 2020-01-23 | 3 | -14/+24 |
| * | Add a TLS13_IO_ALERT return value so that we can explicitly signal when | jsing | 2020-01-23 | 3 | -11/+22 |
| * | Pass a CBB to TLSv1.3 send handlers. | jsing | 2020-01-23 | 4 | -50/+44 |
| * | The length of the IV of EVP_chacha20 is currently 64 bits, not 96. | tb | 2020-01-22 | 1 | -3/+3 |
