summaryrefslogtreecommitdiff
path: root/src/lib (follow)
Commit message (Expand)AuthorAgeFilesLines
* Set is_trusted in x509_verify_ctx_add_chain()tb2021-02-261-2/+2
* Fix two bugs in the legacy verifiertb2021-02-251-6/+10
* Only use TLS versions internally (rather than both TLS and DTLS versions).jsing2021-02-259-128/+132
* Rename depth to num_untrusted so it identifies what it actually represents.jsing2021-02-251-6/+6
* Avoid passing last and depth to x509_verify_cert_error() on ENOMEM.jsing2021-02-251-3/+2
* - Make use of the fact that we know how the chunks are aligned, andotto2021-02-252-49/+83
* Fix comment explaining last_untrusted. This should really be calledtb2021-02-241-2/+2
* Make the new validator check for EXFLAG_CRITICALtb2021-02-241-8/+15
* Fix bizarre punctuation and capitalization in a comment.tb2021-02-221-2/+2
* Simplify version checks in the TLSv1.3 clienttb2021-02-221-22/+10
* Factor out/change some of the legacy client version handling code.jsing2021-02-223-12/+36
* ugly whitespacetb2021-02-202-14/+14
* Rename f_err into fatal_err.tb2021-02-207-183/+183
* Rename the truncated label into decode_err. This describes its purposetb2021-02-202-73/+73
* Return a min/max version of zero if set to zero.jsing2021-02-203-17/+41
* Add DTLSv1.2 methods.jsing2021-02-202-3/+159
* Handle DTLS1_2_VERSION in various places.jsing2021-02-203-6/+9
* Revise HelloVerifyRequest handling for DTLSv1.2.jsing2021-02-202-4/+14
* Group HelloVerifyRequest decoding and add missing check for trailing data.jsing2021-02-201-4/+5
* Add various public DTLS related defines.jsing2021-02-202-2/+14
* Clean up/simplify dtls1_get_cipher().jsing2021-02-201-7/+8
* Pull in fix for EVP_CipherUpdate() overflow from OpenSSL.tb2021-02-181-1/+23
* Some people still argue that rand(3) and random(3) have suitable deterministicderaadt2021-02-122-4/+10
* Sync cert.pem with Mozilla NSS root CAs, except "GeoTrust Global CA", ok tb@sthen2021-02-121-659/+417
* KNFtb2021-02-111-4/+7
* Remove bogus DTLS checks to disable ECC and OCSP.jsing2021-02-082-10/+3
* Enforce read ahead with DTLS.jsing2021-02-081-5/+5
* Use dtls1_retrieve_buffered_record() to load buffered application data.jsing2021-02-081-11/+3
* Absorb ssl3_get_algorithm2() into ssl_get_handshake_evp_md().jsing2021-02-074-22/+19
* Correct handshake MAC/PRF for various TLSv1.2 cipher suites.jsing2021-02-071-8/+8
* Factor out the legacy stack version checks.jsing2021-02-074-28/+24
* Fail early in legacy exporter if master secret is not availabletb2021-02-031-1/+6
* Add OID for draft-ietf-opsawg-finding-geofeedsjob2021-02-032-0/+2
* Add a bunch of RPKI OIDsjob2021-02-022-1/+26
* Use "EC/RSA key setup failure" to align error with otherstb2021-02-011-3/+3
* missing word in commenttb2021-01-301-3/+3
* Remove direct assignment of aead_ctx.jsing2021-01-281-13/+7
* Move AEAD handling into the new TLSv1.2 record layer.jsing2021-01-284-134/+102
* Link SSL_get_finished.3 to build.tb2021-01-271-1/+2
* Write SSL_get_finished() documentation from scratch.tb2021-01-271-0/+77
* Merge SSL_set_hostflags documentation from OpenSSL 1.1.1i andtb2021-01-271-3/+20
* Rewrap a comment line to fit into 80 columns.tb2021-01-261-3/+3
* zap a tabtb2021-01-261-2/+2
* Prepare to provide SSL_set_hostflags()tb2021-01-262-2/+9
* Move sequence numbers into the new TLSv1.2 record layer.jsing2021-01-267-84/+38
* Move private key setup to a helper function with proper erroreric2021-01-261-10/+47
* when using fake keys, skip the private key checkeric2021-01-211-1/+2
* return -1 on error for consistencyeric2021-01-211-2/+2
* minor bump after symbol additioneric2021-01-211-1/+1
* Allow setting a keypair on a tls context without specifying the privateeric2021-01-214-26/+77
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-28 22:58:40 +0000