aboutsummaryrefslogtreecommitdiff
path: root/ssl/ssl_lib.cc
AgeCommit message (Expand)AuthorFilesLines
2024-06-21Make BoringSSL initialization-lessDavid Benjamin1-5/+1
2024-06-05Make SSL_select_next_proto more robust to invalid calls.David Benjamin1-22/+37
2024-04-22Make SSL_CTX_set_keylog_callback constant timeDavid Benjamin1-8/+14
2024-03-07Add an SSL_CREDENTIAL API for ECDSA/RSA and delegated credentialsDavid Benjamin1-12/+13
2024-03-07Rename CRYPTO_get_ex_new_index to CRYPTO_get_ex_new_index_exDavid Benjamin1-2/+3
2024-03-06Check ECDSA curves in TLS 1.2 serversDavid Benjamin1-1/+9
2024-03-06Check client certificate types in TLS <= 1.2David Benjamin1-1/+9
2024-03-05Align CRYPTO_get_ex_new_index with the public API's calling conventionDavid Benjamin1-12/+3
2024-02-23Deprecate and simplify SSL_CTX_check_private_keyDavid Benjamin1-4/+23
2024-02-22Remove some impossible null checksDavid Benjamin1-11/+3
2024-02-22Remove some indirection in SSL_certs_clearDavid Benjamin1-7/+0
2024-02-22Make an internal RefCounted base class for libsslDavid Benjamin1-8/+5
2023-09-12Add support for the new ALPS codepointVictor Tan1-1/+9
2023-07-24Reflect OPENSSL_NO_SOCK and OPENSSL_NO_POSIX_IO into headersDavid Benjamin1-0/+2
2023-06-26Make the curve compat APIs into real functionsDavid Benjamin1-0/+26
2023-05-31Align NIDs vs group IDs in TLS group APIsDavid Benjamin1-6/+42
2023-05-31Align remaining TLS ECDH APIs on "group" terminologyDavid Benjamin1-1/+1
2023-05-31Align on using the "group" over "curve" for ECDH in TLSDavid Benjamin1-28/+65
2023-04-28Support WPA 3.1 "enterprise" mode.Adam Langley1-5/+53
2023-04-17Default SSL_set_enforce_rsa_key_usage to enabled.David Benjamin1-1/+1
2023-04-12Add functions to allow the mocking of AES hw support for testing.Bob Beck1-5/+32
2023-02-13Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure.Bob Beck1-1/+0
2022-12-08Add SSL_was_key_usage_invalid.David Benjamin1-0/+4
2022-11-14More -Wshorten-64-to-32 fixes.David Benjamin1-7/+13
2022-10-26Revert "Default SSL_set_enforce_rsa_key_usage to enabled."David Benjamin1-1/+1
2022-10-03Default SSL_set_enforce_rsa_key_usage to enabled.David Benjamin1-1/+1
2022-09-28Maintain the sequence number as a uint64_t.David Benjamin1-4/+3
2022-09-08Replace even more ad-hoc bytes/integer conversions.David Benjamin1-9/+2
2022-09-06Add the "groups" variants of SSL_CTX_set1_curves_list.David Benjamin1-0/+16
2022-08-30Prefer established session properties mid renegotiation.David Benjamin1-4/+0
2022-08-25Track SSL_ERROR_ZERO_RETURN explicitly.David Benjamin1-2/+8
2022-07-30Replace OPENSSL_STATIC_ASSERT with static_assert.David Benjamin1-0/+4
2022-07-28Convert more of the SSL write path to size_t and Spans.David Benjamin1-5/+11
2022-07-25Fix up book-keeping between the write buffer and pending writes.David Benjamin1-1/+2
2022-07-21Add SSL_CTX_get_num_tickets.David Benjamin1-0/+2
2022-06-02Add SSL_[CTX_]_set_compliance_policy.Adam Langley1-1/+94
2022-05-10Implement SSL_CTX_set_num_tickets.David Benjamin1-0/+9
2021-11-18Add SSL_has_pending.David Benjamin1-0/+4
2021-08-13Fix some error returns from SSL_read and SSL_write.David Benjamin1-2/+2
2021-06-24Reduce bouncing on the cache lock in ssl_update_cache.David Benjamin1-44/+0
2021-06-23Only clear not_resumable after the handshake.David Benjamin1-6/+1
2021-06-16More reliably report handshake errors through SSL_write.David Benjamin1-5/+0
2021-06-14Add an option to permute ClientHello extension order.David Benjamin1-1/+15
2021-06-03Move ECH-related APIs to encrypted_client_hello.cc.David Benjamin1-67/+0
2021-06-03Remove the Channel ID callback.David Benjamin1-7/+0
2021-06-02Cite an RFC over 9000 (draft-ietf-quic-tls is now RFC 9001).David Benjamin1-1/+1
2021-05-19Add a missing case to SSL_error_description.David Benjamin1-0/+2
2021-05-19Remove draft tokbind implementation.David Benjamin1-21/+0
2021-05-13Check for resumption identifiers in SSL_SESSION_is_resumable.David Benjamin1-3/+1
2021-05-10Shift the KEM dependency in HPKE up a step.David Benjamin1-6/+9
generated by cgit v1.1 at 2024-08-03 23:54:24 +0000