| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Disable TLS 1.0 and TLS 1.1 in libssl | beck | 2023-07-02 | 1 | -34/+34 |
| | | | | | | | | | | | | | Their time has long since past, and they should not be used. This change restricts ssl to versions 1.2 and 1.3, and changes the regression tests to understand we no longer speak the legacy protocols. For the moment the magical "golden" byte for byte comparison tests of raw handshake values are disabled util jsing fixes them. ok jsing@ tb@ | ||||
| * | Make internal header file names consistent | tb | 2022-11-26 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook | ||||
| * | Revise for SSL_CTX_INTERNAL and SSL_INTERNAL removal. | jsing | 2022-10-02 | 1 | -5/+5 |
| | | |||||
| * | Plug leaks reported by Ilya Shipitsin | tb | 2022-02-08 | 1 | -1/+5 |
| | | |||||
| * | Plug memleaks | tb | 2021-12-29 | 1 | -3/+11 |
| | | | | | CID 345150 | ||||
| * | Improve test coverage for SSL_OP_NO_DTLSv1. | jsing | 2021-06-27 | 1 | -1/+9 |
| | | |||||
| * | Update for DTLSv1.2 being enabled. | jsing | 2021-03-17 | 1 | -4/+4 |
| | | |||||
| * | Update for DTLSv1.2 version handling. | jsing | 2021-03-17 | 1 | -6/+90 |
| | | |||||
| * | Update regress to match TLS versions change. | jsing | 2021-02-25 | 1 | -6/+6 |
| | | |||||
| * | Revise regress to match change in SSL{_CTX,}_get_{min,max}_proto_version(). | jsing | 2021-02-20 | 1 | -34/+45 |
| | | |||||
| * | whitespace | tb | 2021-01-09 | 1 | -5/+5 |
| | | |||||
| * | Update TLS versions to match TLSv1.3 being enabled for TLS_method(). | jsing | 2020-08-09 | 1 | -8/+8 |
| | | |||||
| * | Fix regress test so that it exits non-zero for failure cases. | jsing | 2020-08-09 | 1 | -1/+11 |
| | | |||||
| * | Use correct define. | jsing | 2019-04-04 | 1 | -2/+2 |
| | | |||||
| * | Add TLSv1.3 to version regress tests. | jsing | 2018-11-06 | 1 | -4/+80 |
| | | |||||
| * | Provide SSL_CTX_get_min_proto_version and SSL_CTX_get_max_proto_version | jca | 2018-03-15 | 1 | -13/+13 |
| | | | | | | | | | | We already provided the setters, so also provide the getters like OpenSSL does. Addition prompted by the use of those functions in recent openvpn releases. manpage diff from schwarze@ (thanks!) with input from jsing@, ok tb@ jsing@ | ||||
| * | Add regress coverage for SSL{,_CTX}_set_{min,max}_proto_version(). | jsing | 2017-05-06 | 1 | -12/+304 |
| | | |||||
| * | Update ssl versions regress to handle min/max configured versions and | jsing | 2017-01-25 | 1 | -47/+201 |
| | | | | | the cover the ssl_supported_version_range() function. | ||||
| * | Add regress tests for max shared version code. | jsing | 2017-01-03 | 1 | -2/+133 |
| | | |||||
| * | Add regress coverage for enabled protocol version range. | jsing | 2016-12-30 | 1 | -0/+144 |
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |