summaryrefslogtreecommitdiff
path: root/src (unfollow)
Commit message (Expand)AuthorFilesLines
2020-03-13Correct TLSv1.3 sequence number increment and wrapping check.jsing1-3/+3
2020-03-13Add missing $OpenBSD$ tag.jsing1-0/+1
2020-03-13Add regress for CBB_add_space().jsing1-1/+41
2020-03-13Ensure that CBB_add_space() always provides zeroed memory.jsing1-1/+2
2020-03-12Use calloc() rather than malloc() when allocating initial CBB buffer.jsing1-4/+3
2020-03-12Use calloc() rather than malloc() when allocating buffers.jsing1-3/+3
2020-03-12Stop overloading the record type for padding length.jsing5-13/+10
2020-03-12Use internal versions of SSL3_BUFFER, SSL3_RECORD and DTLS1_RECORD_DATA.jsing9-53/+83
2020-03-10Use ctx->hs->secrets rather than the S3I(s) version.jsing2-4/+4
2020-03-10Update to follow handshake enum removal.jsing1-7/+1
2020-03-10Remove some unnecessary handshake enums/functions.jsing4-26/+4
2020-03-10Add a return value check to tls13_buffer_extend().jsing1-1/+4
2020-03-10Remove the enc function pointers.jsing6-22/+12
2020-03-10Import openssl-1.1.1d test data to base64test.cinoguchi1-1/+97
2020-03-10Modify regress base64test.cinoguchi1-11/+14
2020-03-09cstyle in illumos noticed some weird syntax, which this fixes.dlg1-4/+4
2020-03-06RFC 8446, section 4.1.3: If a TLSv1.2 client receives a ServerHello fortb1-1/+27
2020-03-06TLSv1.3 servers that intend to downgrade are required to set the lasttb1-4/+8
2020-03-04Check high bit for base64 decodeinoguchi1-2/+10
2020-03-03Fix base64 processing of long linesinoguchi1-99/+66
2020-02-23The decryption_failed alert must not be sent by compliant implementations.tb1-2/+2
2020-02-23According to RFC 8446, Section 4.4.4, recipients of incorrect Finishedtb2-4/+4
2020-02-21Remove the s2n macro now that it is finally unused.jsing1-4/+1
2020-02-21Convert the SSL/TLS record creation code to CBB.jsing1-18/+28
2020-02-21Convert the DTLS header creation code to CBB.jsing1-20/+27
2020-02-21Remove some commented code, remove some pointless comments and move somejsing1-17/+6
2020-02-21Convert dtls1_build_sequence_number() to CBB.jsing1-7/+15
2020-02-21Move l2n/l2n8 into s3_cbc.c, since this is the only code that uses it.jsing2-16/+16
2020-02-21Remove prefix_len, since it is always zero.jsing1-4/+3
2020-02-21Remove now unused variable.jsing1-3/+1
2020-02-19Tag subcommand sectionskn1-2/+44
2020-02-19Refactor do_ssl3_write().jsing1-97/+98
2020-02-18drop unused include <openssl/curve25519.h>tb4-10/+4
2020-02-17Describe the restriction for length of openssl conf value stringinoguchi1-2/+4
2020-02-17Restrict the length of openssl conf value stringinoguchi3-5/+14
2020-02-16Update protocol version test to include TLSv1.3.jsing2-0/+3
2020-02-16Add -tls1_3 and -notls1_3 options to openssl(1) s_client.jsing2-23/+37
2020-02-16Avoid potential NULL dereference when parsing a server keyshare extension.jsing1-1/+4
2020-02-16Avoid leak for tmp.x25519inoguchi2-5/+11
2020-02-15Move the TLSv1.3 code that interfaces with the legacy APIs/stack into ajsing3-309/+330
2020-02-15Remove #include that is not needed.jsing1-3/+1
2020-02-14no need to declare "extern optarg" and "extern optind"schwarze3-9/+3
2020-02-12Standardize argument naming for "sourceaddr" and unify the wording a bit,schwarze2-10/+9
2020-02-08correct Research Unix edition "appeared in" use in HISTORYjsg1-3/+3
2020-02-06Re-enable the TLSv1.3 client since the known issues have been addressed.jsing1-3/+1
2020-02-06Add a workaround to make SSL_set_session() work with TLSv1.3.jsing1-1/+9
2020-02-06Add support for handling hello retry requests in the TLSv1.3 client.jsing1-5/+100
2020-02-06Correctly handle key share extensions in a hello retry request.jsing2-4/+11
2020-02-05Reset the key share so that we do not have an existing peer public key.jsing1-1/+7
2020-02-05Refactor the server hello processing code in the TLSv1.3 client.jsing2-22/+46
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-31 00:55:21 +0000