summaryrefslogtreecommitdiff
path: root/src (follow)
Commit message (Expand)AuthorAgeFilesLines
* Group seal record functions together.jsing2020-09-161-11/+11
* Add cipher set tests with empty SSL_set_ciphersuites().jsing2020-09-161-0/+22
* Correct cipher_set_test() when run on a machine without AES acceleration.jsing2020-09-161-1/+19
* Make cipher_set_test() log failures and continue, rather than aborting.jsing2020-09-161-11/+3
* noop NAME_CONSTRAINTS_check stubinoguchi2020-09-161-4/+5
* Let SSL_CTX_get_ciphers(NULL) return NULL rather than crashschwarze2020-09-162-6/+7
* Mark SSL_get_cipher_list(3) as deprecated; it is badly misnamed, and thereschwarze2020-09-161-4/+6
* Avoid memset() before memcpy() for CBB_add_bytes().jsing2020-09-161-2/+2
* Make check in x509_verify_ctx_set_max_signatures() consistent with others.jsing2020-09-161-4/+2
* Dedup code in x509_verify_ctx_new_from_xsc().jsing2020-09-161-14/+7
* The undocumented public function SSL_set_SSL_CTX(3) changes theschwarze2020-09-151-4/+4
* Split the tls12_record_layer_write_mac() function.jsing2020-09-151-10/+19
* Do not destroy an existing cipher list when ssl_parse_ciphersuites()schwarze2020-09-151-4/+2
* Correct a failure case in tls12_record_layer_seal_record_protected()jsing2020-09-151-2/+2
* Create the missing RETURN VALUES section and move the appropriateschwarze2020-09-151-57/+103
* set error_depth and current_cert to make more legacy callbacks that don't checkbeck2020-09-151-1/+3
* Deduplicate the time validation code between the legacy and newbeck2020-09-153-27/+8
* ifdef out code that is no longer used in here. once we are certainbeck2020-09-151-2/+5
* Cleanup/simplify SSL_set_ssl_method().jsing2020-09-151-18/+18
* Mop up the get_ssl_method function pointer.jsing2020-09-152-50/+2
* Test botan TLS client with libressl, openssl, openssl11 server.bluhm2020-09-154-6/+305
* Move state initialisation from SSL_clear() to ssl3_clear().jsing2020-09-142-4/+4
* Cleanup and simplify SSL_set_session().jsing2020-09-141-36/+22
* Avoid NULL deref SSL_{,CTX_}set_ciphersuitestb2020-09-141-2/+2
* simplify RETURN VALUES for x509_verify(3) after beck@ made the rulesschwarze2020-09-141-7/+3
* Add initial man page for new x509_verify chain validatorbeck2020-09-141-0/+225
* Set error if we are given an NULL ctx in x509_verify, and set errorbeck2020-09-141-5/+3
* nuke a stray spacetb2020-09-141-2/+2
* Fix potential leak when tmpext fails to be added tobeck2020-09-141-2/+6
* Change the known output to be the expected output, so that webeck2020-09-141-1421/+1421
* Use a fixed validation time in these tests so we neverbeck2020-09-141-2/+4
* remove unneeded variable "type".beck2020-09-141-6/+5
* Don't leak names on successbeck2020-09-141-1/+2
* remove unneded variable "time1"beck2020-09-141-6/+6
* remove unneded variable "time"beck2020-09-141-3/+2
* fix bug introduced on review where refactor made it possible tobeck2020-09-141-2/+2
* re-enable new x509 chain verifier as the defaultbeck2020-09-141-3/+1
* Correctly fix double free introduced on review.beck2020-09-142-3/+3
* Fix double free - review moved the pop_free of roots to x509_verify_ctx_freebeck2020-09-141-2/+1
* revert previous, need to fix a problembeck2020-09-141-1/+3
* Enable the use of the new x509 chain validator by default.beck2020-09-141-3/+1
* Connect a client to a server. Both can be current libressl, orbluhm2020-09-145-10/+193
* Add regress for SSL_{CTX_,}set_ciphersuites().jsing2020-09-132-7/+318
* Implement SSL_{CTX_,}set_ciphersuites().jsing2020-09-135-13/+211
* Add new x509 certificate chain validator in x509_verify.cbeck2020-09-1311-68/+1281
* Improve handling of BIO_read()/BIO_write() failures in the TLSv1.3 stack.jsing2020-09-131-1/+9
* Use the correct type for tls1_set_ec_id()tb2020-09-121-3/+3
* Simplify tls1_set_ec_id() a bittb2020-09-121-24/+19
* Unindent a bit of code that performs a few too many checks totb2020-09-121-10/+8
* If CPU does not support AES-NI, LibreSSL TLS 1.3 client prefersbluhm2020-09-121-9/+18
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-22 17:40:45 +0000