aboutsummaryrefslogtreecommitdiff
path: root/ssl
AgeCommit message (Expand)AuthorFilesLines
2018-05-15Reject if the ALPN callback returned an empty protocol.David Benjamin5-1/+28
2018-05-15The legacy client OCSP callback should run without server OCSP.David Benjamin2-3/+6
2018-05-14Add APIs to query authentication properties of SSL_SESSIONs.David Benjamin1-0/+23
2018-05-11Implement legacy OCSP APIs for libssl.David Benjamin9-117/+320
2018-05-11Const-correct some functions.David Benjamin3-4/+4
2018-05-10Allow enabling all TLS 1.3 variants by setting |tls13_default|.Steven Valdez3-25/+45
2018-05-09Use the right alert for bad CA lists.David Benjamin1-1/+1
2018-05-08Add some more accessors to SSL_SESSION.David Benjamin3-4/+52
2018-05-08Fix build with GCC 4.9.2 and -Wtype-limits.Adam Langley2-3/+17
2018-05-07Enforce supported_versions in the second ServerHello.David Benjamin6-13/+68
2018-05-05Fuzz SSL_serialize_handoff() and SSL_serialize_handback().Matthew Braithwaite4-14/+141
2018-05-05SSL_apply_handback: check session is where it's expected to be.Matthew Braithwaite1-0/+3
2018-05-04SSL_apply_handback: check that SSL version is valid.Matthew Braithwaite3-5/+15
2018-05-03Avoid compiler errors for Android ARMv7.Adam Langley2-2/+2
2018-05-03Temporarily restore SHA256 and SHA384 cipher suite aliases.David Benjamin1-0/+5
2018-05-03Move srtp_profiles to SSL_CONFIG.David Benjamin3-17/+16
2018-05-02Consistently use session_ctx for session caching.David Benjamin6-44/+43
2018-05-02Remove legacy SHA-2 CBC ciphers.David Benjamin4-141/+22
2018-05-01Allow renego and config shedding to coexist more smoothly.David Benjamin5-51/+81
2018-05-01SSL_CONFIG: new struct for sheddable handshake configuration.Matthew Braithwaite22-607/+923
2018-05-01Defer writing the shim settings.Matthew Braithwaite2-62/+101
2018-04-27Add an accessor for session->certs.David Benjamin1-0/+5
2018-04-25Simplify shim timeout logic.David Benjamin1-10/+0
2018-04-24Give ssl_cipher_preference_list_st a destructor.David Benjamin5-147/+129
2018-04-23Fix typo in ssl_cert_cache_chain_certs.Adam Langley1-1/+1
2018-04-19Test the high-order bit in X25519.David Benjamin3-1/+25
2018-04-16Give CERT a destructor.David Benjamin9-187/+150
2018-04-16Move srtp_profile to ssl->s3.David Benjamin3-10/+10
2018-04-16Add an API to disable RSA-PSS for certificates.David Benjamin13-48/+390
2018-04-16Pretty-print TicketAEADMethod tests.David Benjamin1-9/+45
2018-04-16Rename SSL_SIGN_RSA_PSS_SHA* constants.David Benjamin4-59/+29
2018-04-16Remove legacy SSL_CTX_sess_set_get_cb overload.David Benjamin2-18/+3
2018-04-13Move TB state to ssl->s3.David Benjamin8-24/+25
2018-04-13Add SSL_SESSION_get0_cipher.David Benjamin1-0/+4
2018-04-12Avoid modifying stack in sk_find.Steven Valdez2-1/+3
2018-04-12SSL_serialize_handoff: serialize fewer things.Matthew Braithwaite1-44/+5
2018-04-11SSL_apply_handback: check that |max_send_fragment| is nonzero.Matthew Braithwaite1-0/+3
2018-04-10Check for nullptr result of SSLKeyShare::Create().Matthew Braithwaite1-3/+3
2018-04-10Use the actual record header, rather than reassembling it.David Benjamin4-90/+108
2018-04-05Implement TLS 1.3 draft28.Steven Valdez7-29/+72
2018-04-04Hand back ECDHE split handshakes after the first server message.Matthew Braithwaite9-217/+411
2018-03-19Send the fake session ID in the test suite.David Benjamin2-1/+16
2018-03-15Add |SSL_COMP_get[0_name|_id]|.Adam Langley1-0/+4
2018-03-13Remove remnants of the HRR message.David Benjamin1-64/+36
2018-03-07Don't test |initial_handshake_complete| for dummy PQ padding status.Adam Langley1-1/+1
2018-02-28Record whether dummy PQ padding was used.Adam Langley8-8/+48
2018-02-27Update dummy PQ extension for round two.Adam Langley6-17/+82
2018-02-26Remove trailing whitespace from ssl/.Adam Langley6-31/+31
2018-02-15Remove SSLv3_method and friends.David Benjamin3-56/+2
2018-02-15Reject compressed ECDH coordinates in TLS.David Benjamin6-71/+122
generated by cgit v1.1 at 2024-09-27 12:53:18 +0000