aboutsummaryrefslogtreecommitdiff
path: root/ssl/handshake_server.cc
AgeCommit message (Expand)AuthorFilesLines
2024-06-17Send a consistent alert when the peer sends a bad signature algorithmDavid Benjamin1-1/+2
2024-04-17Switch some pointer arithmetic to spansDavid Benjamin1-4/+2
2024-03-07Only negotiate ECDHE curves and sigalgs onceDavid Benjamin1-88/+90
2024-03-07Add an SSL_CREDENTIAL API for ECDSA/RSA and delegated credentialsDavid Benjamin1-63/+63
2024-03-06Check ECDSA curves in TLS 1.2 serversDavid Benjamin1-16/+42
2024-03-05Fold ssl_add_cert_chain into its callerDavid Benjamin1-1/+1
2024-02-21Integrate TLS 1.2 sigalg and cipher suite selectionDavid Benjamin1-1/+5
2023-05-31Align remaining TLS ECDH APIs on "group" terminologyDavid Benjamin1-1/+1
2023-03-01Use KEM terminology in TLS ECDHE and key_share abstractionsDavid Benjamin1-5/+5
2023-02-13Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure.Bob Beck1-4/+0
2022-07-27Support handshake hints for TLS 1.2 full handshakes.David Benjamin1-19/+62
2022-07-18Align with OpenSSL on TLS 1.3 cipher suite constants.David Benjamin1-1/+1
2022-03-23Remove VS 2015 support.David Benjamin1-1/+1
2022-01-28Fold ssl_decode_client_hello_inner into ssl_client_hello_decrypt.David Benjamin1-14/+7
2022-01-24LSC: Apply clang-tidy's modernize-use-bool-literals to boringsslAnton Bikineev1-1/+1
2021-09-01Update to draft-ietf-tls-esni-13.David Benjamin1-95/+95
2021-08-16Add Span::first() and Span::last().David Benjamin1-2/+1
2021-06-24Implement ClientHelloOuter handshakes.David Benjamin1-5/+8
2021-06-24Reduce bouncing on the cache lock in ssl_update_cache.David Benjamin1-5/+8
2021-06-23Only clear not_resumable after the handshake.David Benjamin1-1/+3
2021-06-11Add most of an ECH client implementation.David Benjamin1-4/+4
2021-06-10Rename SSL_ECH_SERVER_CONFIG_LIST to SSL_ECH_KEYS.David Benjamin1-3/+3
2021-06-03Add SSL_ech_accepted API and ech_is_required alerts.David Benjamin1-5/+5
2021-06-03Manage Channel ID handshake state better.David Benjamin1-5/+5
2021-05-27Don't copy client's session ID into server's session.Adam Langley1-6/+14
2021-05-13Move session ID assignment out of ssl_get_new_session.David Benjamin1-5/+8
2021-05-10Export the HPKE implementation.David Benjamin1-1/+0
2021-05-10Shift the KEM dependency in HPKE up a step.David Benjamin1-5/+4
2021-05-10Add SSL_can_release_private_key.David Benjamin1-0/+3
2021-05-06Introduce EVP_HPKE_{AEAD,KDF} types.David Benjamin1-28/+3
2021-05-03Implement ECH draft 10 and update HPKE to draft 08.Steven Valdez1-3/+5
2021-04-15Add experimental handshake hints API.David Benjamin1-0/+6
2021-04-08Add ECH server (draft-ietf-tls-esni-09).Daniel McArdle1-8/+143
2021-01-12Send ECH acceptance signal from backend server.Dan McArdle1-0/+6
2020-11-19Rename the master_key field in SSL_SESSION to secret.David Benjamin1-5/+4
2020-09-21Add SSL_CIPHER_get_protocol_id.David Benjamin1-1/+1
2020-06-15Enforce the keyUsage extension in TLS 1.2 client certs.David Benjamin1-0/+9
2020-02-13Require handshake flights end at record boundaries.David Benjamin1-0/+8
2020-02-11Rename ssl3_choose_cipher.David Benjamin1-2/+2
2020-02-05Switch verify sigalg pref functions to SSL_HANDSHAKE.David Benjamin1-2/+2
2020-01-16Remove SSL_CTX_set_rsa_pss_rsae_certs_enabled.David Benjamin1-4/+1
2019-10-21Rename a number of BUF_* functions to OPENSSL_*.David Benjamin1-1/+0
2019-07-20Make SSL_get_servername work in the early callback.David Benjamin1-1/+54
2019-07-19Only bypass the signature verification itself in fuzzer mode.David Benjamin1-8/+2
2019-05-06Add SSL_get_early_data_reason.David Benjamin1-0/+2
2019-04-15Output a ClientHello during handoff.Adam Langley1-4/+4
2019-01-23Update comments around JDK11 workaround.David Benjamin1-2/+1
2019-01-04Use handshake parameters to decide if cert/key are availableChristopher Patton1-3/+3
2018-12-18Add start of infrastructure for checking constant-time properties.Adam Langley1-0/+4
2018-12-12Add initial HRSS support.Adam Langley1-5/+6
generated by cgit v1.1 at 2024-07-10 00:33:34 +0000