| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Only send an RI extension for pre-TLSv1.3 versions. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | It is possible to receive a pre-TLSv1.3 alert in response to a TLSv1.3 | jsing | 2020-01-25 | 3 | -4/+24 |
| * | Correct backwards test so that we may accept a certificate requst | beck | 2020-01-25 | 1 | -3/+3 |
| * | add a couple of XXX for future cleanup | tb | 2020-01-25 | 1 | -1/+4 |
| * | Disable the client hello message regress test for now. | jsing | 2020-01-25 | 1 | -2/+2 |
| * | Ensure that TLSv1.0 and TLSv1.1 are enabled before running SSLv2 client | jsing | 2020-01-25 | 1 | -5/+10 |
| * | Teach openssl s_client a bit about TLSv1.3. | tb | 2020-01-24 | 1 | -2/+17 |
| * | Complete the initial TLSv1.3 implementation. | jsing | 2020-01-24 | 3 | -14/+300 |
| * | Preserve the TLS transcript at additional points. | jsing | 2020-01-24 | 1 | -9/+23 |
| * | Permit 0 length writes, because openssl s_client is special | beck | 2020-01-24 | 1 | -2/+2 |
| * | Store the legacy session identifier from the ClientHello so we can actually | jsing | 2020-01-24 | 1 | -1/+10 |
| * | Switch to encrypted records in the TLSv1.3 server. | jsing | 2020-01-24 | 3 | -4/+78 |
| * | Enable SSL_ENC_FLAG_SIGALGS on TLSv1_3_enc_data. | jsing | 2020-01-24 | 1 | -2/+2 |
| * | Add strings for SSL_aTLS1_3 and SSL_kTLS1_3 to SSL_CIPHER_description(). | jsing | 2020-01-24 | 1 | -1/+7 |
| * | Fix breakage in SSL_connect, SSL_accept, etc. by not propagating | beck | 2020-01-24 | 3 | -13/+42 |
| * | Implement client hello processing in the TLSv1.3 server. | jsing | 2020-01-23 | 3 | -10/+58 |
| * | Correct several issues in the current TLSv1.3 server code. | jsing | 2020-01-23 | 1 | -6/+15 |
| * | When certificate validation fails, we must send a DECRYPT_ERROR alert | beck | 2020-01-23 | 1 | -3/+6 |
| * | Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL. | jsing | 2020-01-23 | 6 | -47/+27 |
| * | Implement sending client certificate requests for 1.3 server | beck | 2020-01-23 | 1 | -1/+13 |
| * | Correctly handle TLSv1.3 ciphers suites in ssl3_choose_cipher(). | jsing | 2020-01-23 | 4 | -5/+30 |
| * | Build the encrypted extensions for the 1.3 server | beck | 2020-01-23 | 1 | -2/+8 |
| * | If we are building a legacy server hello, check to see if we are | beck | 2020-01-23 | 1 | -1/+20 |
| * | Add checking int the client to check the magic values which are | beck | 2020-01-23 | 3 | -3/+30 |
| * | Add code to build and send a server hello for tls 1.3 | beck | 2020-01-23 | 1 | -3/+40 |
| * | Save the legacy session id in the client, and enforce that it is returned | beck | 2020-01-23 | 2 | -7/+18 |
| * | Implement pending for TLSv1.3. | jsing | 2020-01-23 | 4 | -6/+42 |
| * | The X509_LOOKUP code tries to grope around in /etc/ssl/cert/ to find | tb | 2020-01-23 | 1 | -30/+67 |
| * | Remove lies from the SSL_pending man page, Our implementation never | beck | 2020-01-23 | 1 | -22/+3 |
| * | Make -peekaboo mode also use SSL_pending after peeking, to ensure | beck | 2020-01-23 | 1 | -2/+9 |
| * | Switch back to a function pointer for ssl_pending. | jsing | 2020-01-23 | 3 | -14/+24 |
| * | Add a TLS13_IO_ALERT return value so that we can explicitly signal when | jsing | 2020-01-23 | 3 | -11/+22 |
| * | Pass a CBB to TLSv1.3 send handlers. | jsing | 2020-01-23 | 4 | -50/+44 |
| * | The length of the IV of EVP_chacha20 is currently 64 bits, not 96. | tb | 2020-01-22 | 1 | -3/+3 |
| * | Wire up the TLSv1.3 server. | jsing | 2020-01-22 | 3 | -6/+182 |
| * | Pass a handshake message content CBS to TLSv1.3 receive handlers. | jsing | 2020-01-22 | 5 | -85/+70 |
| * | Fix things so that `make -DTLS1_3` works again. | jsing | 2020-01-22 | 1 | -1/+3 |
| * | Send alerts on certificate verification failures of server certs | beck | 2020-01-22 | 1 | -2/+2 |
| * | Rename failure into alert_desc in tlsext_ocsp_server_parse(). | tb | 2020-01-22 | 1 | -5/+5 |
| * | fix previous: alert_desc needs to be an int. | tb | 2020-01-22 | 1 | -2/+2 |
| * | Avoid modifying alert in the success path. | tb | 2020-01-22 | 1 | -11/+17 |
| * | Enable the TLSv1.3 client in libssl. | jsing | 2020-01-22 | 1 | -2/+3 |
| * | Correct includes check for libtls. | jsing | 2020-01-22 | 1 | -2/+2 |
| * | Add checks to ensure that lib{crypto,ssl,tls} public headers have actually | jsing | 2020-01-22 | 3 | -3/+33 |
| * | delete wasteful ;; | deraadt | 2020-01-22 | 1 | -2/+2 |
| * | Move guards from public to internal headers, and fix not use values. | beck | 2020-01-22 | 2 | -8/+7 |
| * | Simplify header installation by combining the HDRS and HDRS_GEN loops. | jsing | 2020-01-22 | 1 | -9/+2 |
| * | Note in the man page that the default protocols list includes 1.3 | beck | 2020-01-22 | 1 | -4/+4 |
| * | Enable TLS version 1.3 in the default protocols for libtls. | beck | 2020-01-22 | 1 | -2/+2 |
| * | Simplify the peekaboo code. | jsing | 2020-01-22 | 1 | -35/+6 |
