aboutsummaryrefslogtreecommitdiff
path: root/ssl/statem/statem_srvr.c
AgeCommit message (Expand)AuthorFilesLines
2017-02-23output number of exts from tls_collect_extensions()Benjamin Kaduk1-2/+2
2017-02-17Updates following review feedbackMatt Caswell1-1/+0
2017-02-17Actually update the keys when a KeyUpdate message is sent or receivedMatt Caswell1-0/+7
2017-02-17If we receive an "update_requested" KeyUpdate then respond with a KeyUpdateMatt Caswell1-0/+6
2017-02-17Add the ability for a server to receive a KeyUpdate messageMatt Caswell1-1/+17
2017-02-17Provide a function to send a KeyUpdate messageMatt Caswell1-5/+14
2017-02-15Use CERT_PKEY pointer instead of indexDr. Stephen Henson1-6/+5
2017-02-15Simplify tls_construct_server_key_exchangeDr. Stephen Henson1-72/+58
2017-02-15Use cert_index and sigalgDr. Stephen Henson1-7/+7
2017-02-15Change tls_choose_sigalg so it can set errors and alerts.Dr. Stephen Henson1-5/+1
2017-02-14Remove a double call to ssl3_send_alert()Matt Caswell1-2/+1
2017-02-14Implement support for resumption with a HelloRetryRequestMatt Caswell1-7/+6
2017-02-14Add server side support for creating the Hello Retry Request messageMatt Caswell1-7/+61
2017-02-10Replace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGNDr. Stephen Henson1-1/+1
2017-02-02Set signature algorithm when choosing cipherDr. Stephen Henson1-0/+6
2017-02-02Cosmetic changeDr. Stephen Henson1-6/+3
2017-01-31Majority rules, use session_ctx vs initial_ctxTodd Short1-1/+1
2017-01-30Use uint16_t for signature scheme.Dr. Stephen Henson1-1/+1
2017-01-30use RSA_PSS_SALTLEN_DIGEST constantDr. Stephen Henson1-2/+1
2017-01-30If we have no suitable PSK kex modes then don't attempt to resumeMatt Caswell1-2/+2
2017-01-30Move session version consistency checkMatt Caswell1-10/+1
2017-01-30Provide a key_share extension finaliserMatt Caswell1-9/+0
2017-01-30Add support for the age_add fieldMatt Caswell1-4/+6
2017-01-30Construct the client side psk extension for TLSv1.3Matt Caswell1-1/+1
2017-01-30Create the NewSessionTicket message in TLSv1.3Matt Caswell1-4/+42
2017-01-30Move state machine knowledge out of the record layerMatt Caswell1-1/+14
2017-01-30Remove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS flagMatt Caswell1-5/+10
2017-01-28Correct pointer to be freedRichard Levitte1-1/+1
2017-01-26Use correct signature algorithm list when sending or checking.Dr. Stephen Henson1-1/+1
2017-01-25Fix memory leaks in the Certificate extensions codeMatt Caswell1-1/+4
2017-01-25Fix a few double ;FdaSilvaYY1-1/+1
2017-01-24Do not overallocate for tmp.ciphers_rawBenjamin Kaduk1-1/+2
2017-01-24Fix SSL_get0_raw_cipherlist()Matt Caswell1-17/+46
2017-01-23Fix SSL_VERIFY_CLIENT_ONCEMatt Caswell1-1/+1
2017-01-10Fix an uninit read picked up by TravisMatt Caswell1-2/+2
2017-01-10Extend PSS signature support to TLSv1.2Matt Caswell1-10/+27
2017-01-10Use NIDs instead of the old TLSv1.2 sigalgs hash and sig idsMatt Caswell1-1/+1
2017-01-10Convert Sigalgs processing to use intsMatt Caswell1-1/+2
2017-01-10Make CertificateVerify TLS1.3 awareMatt Caswell1-0/+21
2017-01-10Move Certificate Verify construction and processing into statem_lib.cMatt Caswell1-157/+0
2017-01-09Use typedefs for PSK, NPN, ALPN callback functionsRich Salz1-10/+3
2017-01-09Move extension data into sub-structsRich Salz1-25/+32
2017-01-06Fix various style issues following feedbackMatt Caswell1-4/+4
2017-01-06Implement TLSv1.3 style CertificateStatusMatt Caswell1-8/+16
2017-01-06Create Certificate messages in TLS1.3 formatMatt Caswell1-13/+34
2017-01-06Extends extension parsing to take the CertificateMatt Caswell1-2/+2
2017-01-06Extend tls_construct_extensions() to enable passing of a certificateMatt Caswell1-2/+4
2016-12-08Introduce TLSEXT_STATUSTYPE_nothing constantMatt Caswell1-1/+1
2016-12-08Various style updates following extensions refactorMatt Caswell1-11/+10
2016-12-08Split ServerHello extensionsMatt Caswell1-11/+14
generated by cgit v1.1 at 2024-07-12 14:30:33 +0000