summaryrefslogtreecommitdiff
path: root/src (unfollow)
Commit message (Expand)AuthorFilesLines
2020-01-24Switch to encrypted records in the TLSv1.3 server.jsing3-4/+78
2020-01-24Enable SSL_ENC_FLAG_SIGALGS on TLSv1_3_enc_data.jsing1-2/+2
2020-01-24Add strings for SSL_aTLS1_3 and SSL_kTLS1_3 to SSL_CIPHER_description().jsing1-1/+7
2020-01-24Fix breakage in SSL_connect, SSL_accept, etc. by not propagatingbeck3-13/+42
2020-01-23Implement client hello processing in the TLSv1.3 server.jsing3-10/+58
2020-01-23Correct several issues in the current TLSv1.3 server code.jsing1-6/+15
2020-01-23When certificate validation fails, we must send a DECRYPT_ERROR alertbeck1-3/+6
2020-01-23Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL.jsing6-47/+27
2020-01-23Implement sending client certificate requests for 1.3 serverbeck1-1/+13
2020-01-23Correctly handle TLSv1.3 ciphers suites in ssl3_choose_cipher().jsing4-5/+30
2020-01-23Build the encrypted extensions for the 1.3 serverbeck1-2/+8
2020-01-23If we are building a legacy server hello, check to see if we arebeck1-1/+20
2020-01-23Add checking int the client to check the magic values which arebeck3-3/+30
2020-01-23Add code to build and send a server hello for tls 1.3beck1-3/+40
2020-01-23Save the legacy session id in the client, and enforce that it is returnedbeck2-7/+18
2020-01-23Implement pending for TLSv1.3.jsing4-6/+42
2020-01-23The X509_LOOKUP code tries to grope around in /etc/ssl/cert/ to findtb1-30/+67
2020-01-23Remove lies from the SSL_pending man page, Our implementation neverbeck1-22/+3
2020-01-23Make -peekaboo mode also use SSL_pending after peeking, to ensurebeck1-2/+9
2020-01-23Switch back to a function pointer for ssl_pending.jsing3-14/+24
2020-01-23Add a TLS13_IO_ALERT return value so that we can explicitly signal whenjsing3-11/+22
2020-01-23Pass a CBB to TLSv1.3 send handlers.jsing4-50/+44
2020-01-22The length of the IV of EVP_chacha20 is currently 64 bits, not 96.tb1-3/+3
2020-01-22Wire up the TLSv1.3 server.jsing3-6/+182
2020-01-22Pass a handshake message content CBS to TLSv1.3 receive handlers.jsing5-85/+70
2020-01-22Fix things so that `make -DTLS1_3` works again.jsing1-1/+3
2020-01-22Send alerts on certificate verification failures of server certsbeck1-2/+2
2020-01-22Rename failure into alert_desc in tlsext_ocsp_server_parse().tb1-5/+5
2020-01-22fix previous: alert_desc needs to be an int.tb1-2/+2
2020-01-22Avoid modifying alert in the success path.tb1-11/+17
2020-01-22Enable the TLSv1.3 client in libssl.jsing1-2/+3
2020-01-22Correct includes check for libtls.jsing1-2/+2
2020-01-22Add checks to ensure that lib{crypto,ssl,tls} public headers have actuallyjsing3-3/+33
2020-01-22delete wasteful ;;deraadt1-2/+2
2020-01-22Move guards from public to internal headers, and fix not use values.beck2-8/+7
2020-01-22Simplify header installation by combining the HDRS and HDRS_GEN loops.jsing1-9/+2
2020-01-22Note in the man page that the default protocols list includes 1.3beck1-4/+4
2020-01-22Enable TLS version 1.3 in the default protocols for libtls.beck1-2/+2
2020-01-22Simplify the peekaboo code.jsing1-35/+6
2020-01-22Implement support for SSL_peek() in the TLSv1.3 record layer.jsing3-14/+39
2020-01-22After the ClientHello has been sent or received and before the peer'stb4-8/+22
2020-01-22Add -peekaboo option to s_client, to test SSL_peekbeck1-4/+66
2020-01-22Correctly set the legacy version when TLSv1.3 is building a client hello.jsing1-4/+11
2020-01-22Don't add an extra unknown error if we got a fatal alertbeck1-2/+3
2020-01-22The legacy_record_version must be set to TLS1_2_VERSION excepttb4-9/+30
2020-01-22Hook up the TLSv1.3 legacy shutdown code.jsing1-2/+2
2020-01-22Add minimal support for hello retry request for RFC conformance.beck4-11/+71
2020-01-22Split the TLSv1.3 guards into separate client and server guards.jsing3-6/+13
2020-01-22Implement close-notify and SSL_shutdown() handling for the TLSv1.3 client.jsing3-9/+76
2020-01-21Correct legacy fallback for TLSv1.3 client.jsing3-9/+30
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-27 12:28:59 +0000