projects
/
oweals
/
openssl.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Improve fallback protection
[oweals/openssl.git]
/
ssl
/
statem
/
statem_lib.c
2018-08-09
Matt Caswell
Improve fallback protection
blob
|
commitdiff
|
raw
2018-08-08
Matt Caswell
Tolerate encrypted or plaintext alerts
blob
|
commitdiff
|
raw
|
diff to current
2018-08-07
Andy Polyakov
ssl/*: switch to switch to Thread-Sanitizer-friendly...
blob
|
commitdiff
|
raw
|
diff to current
2018-07-20
Matt Caswell
Validate legacy_version
blob
|
commitdiff
|
raw
|
diff to current
2018-07-17
Matt Caswell
Fix no-psk
blob
|
commitdiff
|
raw
|
diff to current
2018-07-13
Matt Caswell
As a server don't select TLSv1.3 if we're not capable...
blob
|
commitdiff
|
raw
|
diff to current
2018-07-13
Matt Caswell
Use ssl_version_supported() when choosing server version
blob
|
commitdiff
|
raw
|
diff to current
2018-07-03
Matt Caswell
Remove TLSv1.3 tickets from the client cache as we...
blob
|
commitdiff
|
raw
|
diff to current
2018-05-15
Matt Caswell
Suport TLSv1.3 draft 28
blob
|
commitdiff
|
raw
|
diff to current
2018-05-11
Matt Caswell
Fix ticket callbacks in TLSv1.3
blob
|
commitdiff
|
raw
|
diff to current
2018-05-08
Matt Caswell
Keep the DTLS timer running after the end of the handsh...
blob
|
commitdiff
|
raw
|
diff to current
2018-04-24
Matt Caswell
In a reneg use the same client_version we used last...
blob
|
commitdiff
|
raw
|
diff to current
2018-04-24
Matt Caswell
Remove some logically dead code
blob
|
commitdiff
|
raw
|
diff to current
2018-04-20
Matt Caswell
Make sure SSL_in_init() returns 0 at SSL_CB_HANDSHAKE_DONE
blob
|
commitdiff
|
raw
|
diff to current
2018-04-17
Matt Caswell
Call the info callback on all handshake done events
blob
|
commitdiff
|
raw
|
diff to current
2018-03-28
Rich Salz
Rewrite the X509->alert mapping code
blob
|
commitdiff
|
raw
|
diff to current
2018-03-21
Matt Caswell
Don't wait for dry at the end of a handshake
blob
|
commitdiff
|
raw
|
diff to current
2018-03-15
Matt Caswell
Only update the server session cache when the session...
blob
|
commitdiff
|
raw
|
diff to current
2018-02-09
Matt Caswell
Don't calculate the Finished MAC twice
blob
|
commitdiff
|
raw
|
diff to current
2018-02-01
Todd Short
Add TLSv1.3 post-handshake authentication (PHA)
blob
|
commitdiff
|
raw
|
diff to current
2018-01-30
Matt Caswell
Move decisions about whether to accept reneg into the...
blob
|
commitdiff
|
raw
|
diff to current
2018-01-24
Matt Caswell
Don't send unexpected_message if we receive CCS while...
blob
|
commitdiff
|
raw
|
diff to current
2018-01-24
Matt Caswell
Add support for sending TLSv1.3 cookies
blob
|
commitdiff
|
raw
|
diff to current
2017-12-28
Matt Caswell
Don't flush the ClientHello if we're going to send...
blob
|
commitdiff
|
raw
|
diff to current
2017-12-14
Matt Caswell
Update state machine to send CCS based on whether we...
blob
|
commitdiff
|
raw
|
diff to current
2017-12-14
Matt Caswell
Fix an HRR bug
blob
|
commitdiff
|
raw
|
diff to current
2017-12-14
Matt Caswell
Merge HRR into ServerHello
blob
|
commitdiff
|
raw
|
diff to current
2017-12-14
Matt Caswell
Update ServerHello to new draft-22 format
blob
|
commitdiff
|
raw
|
diff to current
2017-12-04
Matt Caswell
Add some more cleanups
blob
|
commitdiff
|
raw
|
diff to current
2017-12-04
Matt Caswell
Convert more functions in ssl/statem/statem.c to use...
blob
|
commitdiff
|
raw
|
diff to current
2017-12-04
Matt Caswell
Convert remaining functions in statem_clnt.c to use...
blob
|
commitdiff
|
raw
|
diff to current
2017-12-04
Matt Caswell
Convert the state machine code to use SSLfatal()
blob
|
commitdiff
|
raw
|
diff to current
2017-12-04
Matt Caswell
Replace some usage of SSLerr with SSLfatal()
blob
|
commitdiff
|
raw
|
diff to current
2017-11-13
Andy Polyakov
Resolve warnings in VC-WIN32 build, which allows to...
blob
|
commitdiff
|
raw
|
diff to current
2017-10-30
Benjamin Kaduk
Normalize on session_ctx for stats where possible
blob
|
commitdiff
|
raw
|
diff to current
2017-10-30
Benjamin Kaduk
Use atomics for SSL_CTX statistics
blob
|
commitdiff
|
raw
|
diff to current
2017-10-18
KaoruToda
Remove parentheses of return.
blob
|
commitdiff
|
raw
|
diff to current
2017-10-09
KaoruToda
Since return is inconsistent, I removed unnecessary...
blob
|
commitdiff
|
raw
|
diff to current
2017-09-22
Dr. Stephen Henson
Store groups as uint16_t
blob
|
commitdiff
|
raw
|
diff to current
2017-09-01
Andy Polyakov
ssl/statem/*.c: address "enum mixed with another type...
blob
|
commitdiff
|
raw
|
diff to current
2017-08-03
Matt Caswell
Move ossl_assert
blob
|
commitdiff
|
raw
|
diff to current
2017-08-01
Matt Caswell
Fix new_session_cb calls in TLSv1.3
blob
|
commitdiff
|
raw
|
diff to current
2017-07-13
Dr. Stephen Henson
Use cert tables instead of X509_certificate_type
blob
|
commitdiff
|
raw
|
diff to current
2017-07-13
Dr. Stephen Henson
Use certificate tables instead of ssl_cert_type
blob
|
commitdiff
|
raw
|
diff to current
2017-07-03
Bernd Edlinger
Fix potential crash in tls_construct_finished.
blob
|
commitdiff
|
raw
|
diff to current
2017-06-23
Matt Caswell
Fix another EVP_DigestVerify() instance
blob
|
commitdiff
|
raw
|
diff to current
2017-06-21
Dr. Stephen Henson
Use EVP_PKEY_X25519, EVP_PKEY_ED25519 instead of NIDs...
blob
|
commitdiff
|
raw
|
diff to current
2017-06-21
Dr. Stephen Henson
Convert key exchange to one shot call
blob
|
commitdiff
|
raw
|
diff to current
2017-06-21
Dr. Stephen Henson
Handle signature algorithms with no associated digest
blob
|
commitdiff
|
raw
|
diff to current
2017-06-21
Dr. Stephen Henson
Add index for ED25519
blob
|
commitdiff
|
raw
|
diff to current
2017-06-20
Rich Salz
Modify Sun copyright to follow OpenSSL style
blob
|
commitdiff
|
raw
|
diff to current
2017-06-09
Pichulin Dmitrii
fix check of broken implementations of GOST ciphersuites
blob
|
commitdiff
|
raw
|
diff to current
2017-06-06
Todd Short
Fix #2400 Add NO_RENEGOTIATE option
blob
|
commitdiff
|
raw
|
diff to current
2017-05-23
Dr. Stephen Henson
Don't use one shot API for SSLv3.
blob
|
commitdiff
|
raw
|
diff to current
2017-05-22
Matt Caswell
Convert existing usage of assert() to ossl_assert(...
blob
|
commitdiff
|
raw
|
diff to current
2017-05-22
Matt Caswell
Replace instances of OPENSSL_assert() with soft asserts...
blob
|
commitdiff
|
raw
|
diff to current
2017-05-19
Matt Caswell
Try to be more consistent about the alerts we send
blob
|
commitdiff
|
raw
|
diff to current
2017-05-17
Matt Caswell
Fail if we receive a response to an extension that...
blob
|
commitdiff
|
raw
|
diff to current
2017-05-11
Bernd Edlinger
Fix gcc-7 warnings.
blob
|
commitdiff
|
raw
|
diff to current
2017-05-11
Matt Caswell
Add some extra comments following alert changes
blob
|
commitdiff
|
raw
|
diff to current
2017-05-11
Matt Caswell
Send an illegal parameter alert if the update type...
blob
|
commitdiff
|
raw
|
diff to current
2017-05-11
Dr. Stephen Henson
Add EVP_DigestSign and EVP_DigesVerify
blob
|
commitdiff
|
raw
|
diff to current
2017-05-08
Matt Caswell
Send the supported_groups extension in EE where applicable
blob
|
commitdiff
|
raw
|
diff to current
2017-04-26
Matt Caswell
Add a ciphersuite config sanity check for servers
blob
|
commitdiff
|
raw
|
diff to current
2017-04-25
Matt Caswell
Remove special case code for SCTP reneg handling
blob
|
commitdiff
|
raw
|
diff to current
2017-04-07
Matt Caswell
Move the extensions context codes into the public API
blob
|
commitdiff
|
raw
|
diff to current
2017-04-03
Dr. Stephen Henson
Don't use client specific functions to retrieve CA...
blob
|
commitdiff
|
raw
|
diff to current
2017-04-03
Dr. Stephen Henson
New certificate_authorities functions
blob
|
commitdiff
|
raw
|
diff to current
2017-03-29
Qin Long
Fix the build warning under OPENSSL_NO_GOST
blob
|
commitdiff
|
raw
|
diff to current
2017-03-29
Benjamin Kaduk
Further de-obfuscation
blob
|
commitdiff
|
raw
|
diff to current
2017-03-28
FdaSilvaYY
Fix a few more typos
blob
|
commitdiff
|
raw
|
diff to current
2017-03-24
Matt Caswell
Move the downgrade sentinel declarations to a header...
blob
|
commitdiff
|
raw
|
diff to current
2017-03-24
Matt Caswell
Add client side support for TLSv1.3 downgrade mechanism
blob
|
commitdiff
|
raw
|
diff to current
2017-03-24
Matt Caswell
Add server side support for TLSv1.3 downgrade mechanism
blob
|
commitdiff
|
raw
|
diff to current
2017-03-17
Dr. Stephen Henson
Move parsing and construction of CA names to separate...
blob
|
commitdiff
|
raw
|
diff to current
2017-03-16
Matt Caswell
Updates following review feedback
blob
|
commitdiff
|
raw
|
diff to current
2017-03-16
Matt Caswell
HelloRetryRequest updates for draft-19
blob
|
commitdiff
|
raw
|
diff to current
2017-03-16
Matt Caswell
Update end of early data processing for draft-19
blob
|
commitdiff
|
raw
|
diff to current
2017-03-07
Matt Caswell
Check TLSv1.3 ServerHello, Finished and KeyUpdates...
blob
|
commitdiff
|
raw
|
diff to current
2017-03-02
Matt Caswell
Various fixes required to allow SSL_write/SSL_read...
blob
|
commitdiff
|
raw
|
diff to current
2017-03-02
Matt Caswell
Introduce a new early_data state in the state machine
blob
|
commitdiff
|
raw
|
diff to current
2017-03-02
Matt Caswell
Provide an SSL_read_early() function for reading early...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-28
Emilia Kasper
Clean up references to FIPS
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Updates following review feedback
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Limit the number of KeyUpdate messages we can process
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Actually update the keys when a KeyUpdate message is...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
If we receive an "update_requested" KeyUpdate then...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Add the ability for a client to send a KeyUpdate message
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Add the ability for a client to receive a KeyUpdate...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-17
Matt Caswell
Provide a function to send a KeyUpdate message
blob
|
commitdiff
|
raw
|
diff to current
2017-02-16
Dr. Stephen Henson
Use tls_choose_sigalg for client auth.
blob
|
commitdiff
|
raw
|
diff to current
2017-02-15
Dr. Stephen Henson
Use cert_index and sigalg
blob
|
commitdiff
|
raw
|
diff to current
2017-02-14
Matt Caswell
Fix no-ec compilation
blob
|
commitdiff
|
raw
|
diff to current
2017-02-14
Matt Caswell
Implement support for resumption with a HelloRetryRequest
blob
|
commitdiff
|
raw
|
diff to current
2017-02-14
Matt Caswell
Add client side support for parsing Hello Retry Request
blob
|
commitdiff
|
raw
|
diff to current
2017-02-14
Matt Caswell
Add server side support for creating the Hello Retry...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-10
Dr. Stephen Henson
Replace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
blob
|
commitdiff
|
raw
|
diff to current
2017-02-03
Bernd Edlinger
Combined patch against master branch for the following...
blob
|
commitdiff
|
raw
|
diff to current
2017-02-02
Dr. Stephen Henson
Remove special case for TLS 1.3.
blob
|
commitdiff
|
raw
|
diff to current
2017-02-02
Cory Benfield
Add support for logging out TLSv1.3 secrets
blob
|
commitdiff
|
raw
|
diff to current
next