aboutsummaryrefslogtreecommitdiff
path: root/ssl/t1_lib.c
AgeCommit message (Expand)AuthorFilesLines
2020-06-27Reduce the security bits for MD5 and SHA1 based signatures in TLSKurt Roeckx1-0/+18
2020-06-19Create defines for TLS Group IdsMatt Caswell1-35/+36
2020-06-19Update the various SSL group getting and setting functionsMatt Caswell1-33/+68
2020-06-19Modify libssl to discover supported groups based on available providersMatt Caswell1-81/+268
2020-06-11The EVP_MAC functions have been renamed for consistency. The EVP_MAC_CTX_*Pauli1-4/+4
2020-06-09use safe primes in ssl_get_auto_dh()Hubert Kario1-36/+38
2020-06-05Don't downgrade keys in libsslMatt Caswell1-11/+0
2020-06-05Check that Signature Algorithms are available before using themMatt Caswell1-47/+102
2020-06-02Move EC_METHOD to internal-onlyBilly Brumley1-1/+1
2020-05-19New Russian TLS 1.2 implementationDmitry Belyavskiy1-1/+16
2020-04-28Fix GOST curve sec bitsNikolay Morozov1-7/+7
2020-04-24In OpenSSL builds, declare STACK for datatypes ...Rich Salz1-0/+4
2020-04-23Update copyright yearMatt Caswell1-1/+1
2020-04-22GOST2012 TLS Supported Groups Identifiers SupportNikolay Morozov1-0/+18
2020-04-21Fix NULL dereference in SSL_check_chain() for TLS 1.3Benjamin Kaduk1-1/+1
2020-04-19Use the libctx for all EVP_PKEY_CTX operationsMatt Caswell1-35/+35
2020-04-16TLSEXT_SIGALG_gostr34102012 0x0840 and 0x0841 supportNikolay Morozov1-2/+12
2020-04-08EVP & TLS: Add necessary EC_KEY data extraction functions, and use themRichard Levitte1-29/+32
2020-03-30Give a better error if we can't find a sig algMatt Caswell1-2/+2
2020-03-26Use a fetched cipher when decrypting a ticket in libsslMatt Caswell1-4/+12
2020-03-23Constify various mostly X509-related parameter types in crypto/ and apps/Dr. David von Oheimb1-1/+1
2020-02-20Deprecate the low level RSA functions.Pauli1-7/+5
2020-02-11Check that ed25519 and ed448 are allowed by the security levelKurt Roeckx1-18/+41
2020-02-06Explicitly fetch ciphers and digests in libsslMatt Caswell1-11/+14
2020-01-29TLS: use EVP for HMAC throughout libssl.Pauli1-12/+148
2020-01-25Check that the default signature type is allowedKurt Roeckx1-4/+12
2019-11-10Workaround for Windows-based GOST implementationsDmitry Belyavskiy1-0/+20
2019-09-28Reorganize local header filesDr. Matthias St. Pierre1-1/+1
2019-08-27Fix bogus check for EVP_PKEY_supports_digest_nid() in check_cert_usable()David Woodhouse1-28/+26
2019-08-09Fix SSL_check_chain()Matt Caswell1-71/+152
2019-08-06API to get negotiated key exchange algorithm in TLS1.3raja-ashok1-0/+7
2019-07-16Remove tab characters from C source files.Pauli1-2/+2
2019-06-26Move 'shared_sigalgs' from cert_st to ssl_stBenjamin Kaduk1-31/+29
2019-06-18Following the previous 2 commits also move ecpointformats out of sessionMatt Caswell1-3/+3
2019-06-17Fix no-ec with no-dhMatt Caswell1-15/+37
2019-06-17Allow TLSv1.3 in a no-ec buildMatt Caswell1-81/+97
2019-06-12TLS1.3 FFDHE Supportraja-ashok1-51/+85
2019-04-29Collapse ssl3_state_st (s3) into ssl_stTodd Short1-68/+68
2018-12-15Use (D)TLS_MAX_VERSION_INTERNAL internallyKurt Roeckx1-1/+1
2018-12-06Following the license change, modify the boilerplates in ssl/Richard Levitte1-1/+1
2018-11-14Fix no-ec and no-tls1_2Matt Caswell1-0/+2
2018-11-12Added missing signature algorithm reflection functionsViktor Dukhovni1-0/+8
2018-11-12Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capableMatt Caswell1-0/+31
2018-11-10Add EVP_PKEY_supports_digest_nid()David Woodhouse1-25/+30
2018-11-10Honour mandatory digest on private key in has_usable_cert()David Woodhouse1-3/+18
2018-11-08Give a better error if an attempt is made to set a zero length groups listMatt Caswell1-0/+4
2018-09-04Don't use an RSA-PSS cert for RSA key exchangeMatt Caswell1-3/+7
2018-08-22Use the same min-max version range on the client consistentlyMatt Caswell1-1/+1
2018-07-18Check that the public key OID matches the sig algMatt Caswell1-1/+9
2018-07-13Do not use GOST sig algs in TLSv1.3 where possibleMatt Caswell1-0/+41
generated by cgit v1.1 at 2024-09-13 09:39:22 +0000