| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Actually disable cipher interop tests. | jsing | 2020-01-25 | 1 | -3/+3 |
| * | Disable the cipher interop tests. | jsing | 2020-01-25 | 1 | -3/+4 |
| * | Accept both TLSv1.2 and TLSv1.3 protocols for netcat. | jsing | 2020-01-25 | 1 | -4/+3 |
| * | Disable session regress for libressl client talking to openssl11 server. | jsing | 2020-01-25 | 1 | -1/+2 |
| * | Revert change to certificate request check from r1.45. | jsing | 2020-01-25 | 1 | -3/+3 |
| * | Only perform the downgrade check if our max version is less than TLSv1.3. | jsing | 2020-01-25 | 1 | -15/+17 |
| * | Preserve the transcript hash for the client finished message, | beck | 2020-01-25 | 1 | -2/+3 |
| * | Support legacy message callbacks. First step for SSL_set_msg_callback(3) | tb | 2020-01-25 | 3 | -3/+40 |
| * | Correct value for SSL_TLSEXT_MSG_HRR. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Only discard the extension block for client hello and server hello | jsing | 2020-01-25 | 1 | -2/+3 |
| * | Only send an RI extension for pre-TLSv1.3 versions. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | It is possible to receive a pre-TLSv1.3 alert in response to a TLSv1.3 | jsing | 2020-01-25 | 3 | -4/+24 |
| * | Correct backwards test so that we may accept a certificate requst | beck | 2020-01-25 | 1 | -3/+3 |
| * | add a couple of XXX for future cleanup | tb | 2020-01-25 | 1 | -1/+4 |
| * | Disable the client hello message regress test for now. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Ensure that TLSv1.0 and TLSv1.1 are enabled before running SSLv2 client | jsing | 2020-01-25 | 1 | -5/+10 |
| * | Teach openssl s_client a bit about TLSv1.3. | tb | 2020-01-24 | 1 | -2/+17 |
| * | Complete the initial TLSv1.3 implementation. | jsing | 2020-01-24 | 3 | -14/+300 |
| * | Preserve the TLS transcript at additional points. | jsing | 2020-01-24 | 1 | -9/+23 |
| * | Permit 0 length writes, because openssl s_client is special | beck | 2020-01-24 | 1 | -2/+2 |
| * | Store the legacy session identifier from the ClientHello so we can actually | jsing | 2020-01-24 | 1 | -1/+10 |
| * | Switch to encrypted records in the TLSv1.3 server. | jsing | 2020-01-24 | 3 | -4/+78 |
| * | Enable SSL_ENC_FLAG_SIGALGS on TLSv1_3_enc_data. | jsing | 2020-01-24 | 1 | -2/+2 |
| * | Add strings for SSL_aTLS1_3 and SSL_kTLS1_3 to SSL_CIPHER_description(). | jsing | 2020-01-24 | 1 | -1/+7 |
| * | Fix breakage in SSL_connect, SSL_accept, etc. by not propagating | beck | 2020-01-24 | 3 | -13/+42 |
| * | Implement client hello processing in the TLSv1.3 server. | jsing | 2020-01-23 | 3 | -10/+58 |
| * | Correct several issues in the current TLSv1.3 server code. | jsing | 2020-01-23 | 1 | -6/+15 |
| * | When certificate validation fails, we must send a DECRYPT_ERROR alert | beck | 2020-01-23 | 1 | -3/+6 |
| * | Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL. | jsing | 2020-01-23 | 6 | -47/+27 |
| * | Implement sending client certificate requests for 1.3 server | beck | 2020-01-23 | 1 | -1/+13 |
| * | Correctly handle TLSv1.3 ciphers suites in ssl3_choose_cipher(). | jsing | 2020-01-23 | 4 | -5/+30 |
| * | Build the encrypted extensions for the 1.3 server | beck | 2020-01-23 | 1 | -2/+8 |
| * | If we are building a legacy server hello, check to see if we are | beck | 2020-01-23 | 1 | -1/+20 |
| * | Add checking int the client to check the magic values which are | beck | 2020-01-23 | 3 | -3/+30 |
| * | Add code to build and send a server hello for tls 1.3 | beck | 2020-01-23 | 1 | -3/+40 |
| * | Save the legacy session id in the client, and enforce that it is returned | beck | 2020-01-23 | 2 | -7/+18 |
| * | Implement pending for TLSv1.3. | jsing | 2020-01-23 | 4 | -6/+42 |
| * | The X509_LOOKUP code tries to grope around in /etc/ssl/cert/ to find | tb | 2020-01-23 | 1 | -30/+67 |
| * | Remove lies from the SSL_pending man page, Our implementation never | beck | 2020-01-23 | 1 | -22/+3 |
| * | Make -peekaboo mode also use SSL_pending after peeking, to ensure | beck | 2020-01-23 | 1 | -2/+9 |
| * | Switch back to a function pointer for ssl_pending. | jsing | 2020-01-23 | 3 | -14/+24 |
| * | Add a TLS13_IO_ALERT return value so that we can explicitly signal when | jsing | 2020-01-23 | 3 | -11/+22 |
| * | Pass a CBB to TLSv1.3 send handlers. | jsing | 2020-01-23 | 4 | -50/+44 |
| * | The length of the IV of EVP_chacha20 is currently 64 bits, not 96. | tb | 2020-01-22 | 1 | -3/+3 |
| * | Wire up the TLSv1.3 server. | jsing | 2020-01-22 | 3 | -6/+182 |
| * | Pass a handshake message content CBS to TLSv1.3 receive handlers. | jsing | 2020-01-22 | 5 | -85/+70 |
| * | Fix things so that `make -DTLS1_3` works again. | jsing | 2020-01-22 | 1 | -1/+3 |
| * | Send alerts on certificate verification failures of server certs | beck | 2020-01-22 | 1 | -2/+2 |
| * | Rename failure into alert_desc in tlsext_ocsp_server_parse(). | tb | 2020-01-22 | 1 | -5/+5 |
| * | fix previous: alert_desc needs to be an int. | tb | 2020-01-22 | 1 | -2/+2 |
