projects
/
oweals
/
openssl.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Fix reseeding issues of the public RAND_DRBG
[oweals/openssl.git]
/
ssl
/
statem
/
2017-10-16
Matt Caswell
Sanity check the HRR version field
tree
|
commitdiff
2017-10-16
Matt Caswell
Don't do version neg on an HRR
tree
|
commitdiff
2017-10-12
Matt Caswell
Fix bug where early_data does not work if no SNI callba...
tree
|
commitdiff
2017-10-10
Tatsuhiro Tsujikawa
Don't change client random in Client Hello in its secon...
tree
|
commitdiff
2017-10-09
KaoruToda
Since return is inconsistent, I removed unnecessary...
tree
|
commitdiff
2017-10-06
Dr. Stephen Henson
Merge tls1_check_curve into tls1_check_group_id
tree
|
commitdiff
2017-10-06
Dr. Stephen Henson
Change curves to groups where relevant
tree
|
commitdiff
2017-10-06
Dr. Stephen Henson
Use separate functions for supported and peer groups...
tree
|
commitdiff
2017-10-04
Matt Caswell
Remove an incorrect comment
tree
|
commitdiff
2017-10-04
Todd Short
Session resume broken switching contexts
tree
|
commitdiff
2017-09-26
Dr. Stephen Henson
Rename tls1_get_curvelist.
tree
|
commitdiff
2017-09-26
Dr. Stephen Henson
New function ssl_generate_param_group
tree
|
commitdiff
2017-09-26
Dr. Stephen Henson
Replace tls1_ec_curve_id2nid.
tree
|
commitdiff
2017-09-26
Dr. Stephen Henson
Return group id in tls1_shared_group
tree
|
commitdiff
2017-09-22
Dr. Stephen Henson
Store groups as uint16_t
tree
|
commitdiff
2017-09-14
Benjamin Kaduk
Fix no-ec no-dh build
tree
|
commitdiff
2017-09-08
David Benjamin
Introduce named constants for the ClientHello callback.
tree
|
commitdiff
2017-09-08
David Benjamin
Rename SSL_CTX_set_early_cb to SSL_CTX_set_client_hello_cb.
tree
|
commitdiff
2017-09-07
Benjamin Kaduk
Restore historical behavior for absent ServerHello...
tree
|
commitdiff
2017-09-04
Matt Caswell
Don't attempt to add a zero length padding extension
tree
|
commitdiff
2017-09-01
Andy Polyakov
ssl/statem/extensions_clnt.c: fix return code buglet.
tree
|
commitdiff
2017-09-01
Andy Polyakov
ssl/statem/*.c: address "enum mixed with another type...
tree
|
commitdiff
2017-08-31
Rich Salz
Avoid possible uninitialized variable.
tree
|
commitdiff
2017-08-31
Matt Caswell
Various review fixes for PSK early_data support
tree
|
commitdiff
2017-08-31
Matt Caswell
Client side sanity check of ALPN after server has accep...
tree
|
commitdiff
2017-08-31
Matt Caswell
Add some fixes for Travis failures
tree
|
commitdiff
2017-08-31
Matt Caswell
Add server side sanity checks of SNI/ALPN for use with...
tree
|
commitdiff
2017-08-31
Matt Caswell
Make sure we save ALPN data in the session
tree
|
commitdiff
2017-08-31
Matt Caswell
Complain if we are writing early data but SNI or ALPN...
tree
|
commitdiff
2017-08-31
Matt Caswell
Enable the ability to use an external PSK for sending...
tree
|
commitdiff
2017-08-29
Pauli
Move OPENSSL_CONF from e_os.h to cryptlib.h
tree
|
commitdiff
2017-08-29
Pauli
Move e_os.h to be the very first include.
tree
|
commitdiff
2017-08-29
Pauli
e_os.h removal from other headers and source files.
tree
|
commitdiff
2017-08-18
Todd Short
Reorder extensions to put SigAlgs last
tree
|
commitdiff
2017-08-15
Benjamin Kaduk
Move ALPN handling from finalizer to delayed call
tree
|
commitdiff
2017-08-11
FdaSilvaYY
Fix some Typos and indents
tree
|
commitdiff
2017-08-09
Benjamin Kaduk
Don't modify resumed session objects
tree
|
commitdiff
2017-08-03
Rich Salz
Add a DRBG to each SSL object
tree
|
commitdiff
2017-08-03
Rich Salz
Switch from ossl_rand to DRBG rand
tree
|
commitdiff
2017-08-03
Matt Caswell
Move ossl_assert
tree
|
commitdiff
2017-08-01
Matt Caswell
Fix new_session_cb calls in TLSv1.3
tree
|
commitdiff
2017-07-31
Todd Short
Fix SSL_set_tlsext_debug_callback/-tlsextdebug
tree
|
commitdiff
2017-07-20
Paul Yang
Support converting cipher name to RFC name and vice...
tree
|
commitdiff
2017-07-18
Matt Caswell
Tolerate a zero length ticket nonce
tree
|
commitdiff
2017-07-18
Matt Caswell
Fix early_data with an HRR
tree
|
commitdiff
2017-07-13
Dr. Stephen Henson
Use cert tables instead of X509_certificate_type
tree
|
commitdiff
2017-07-13
Dr. Stephen Henson
Use certificate tables instead of ssl_cert_type
tree
|
commitdiff
2017-07-13
Dr. Stephen Henson
Use certificate tables instead of ssl_cipher_get_cert_i...
tree
|
commitdiff
2017-07-07
Matt Caswell
Do not allow non-dhe kex_modes by default
tree
|
commitdiff
2017-07-07
Matt Caswell
Updates following review feedback of TLSv1.3 draft...
tree
|
commitdiff
2017-07-07
Matt Caswell
Update the early_secret generation to use the new ticke...
tree
|
commitdiff
2017-07-07
Matt Caswell
Update tls13_hkdf_expand() to take the length of the...
tree
|
commitdiff
2017-07-07
Matt Caswell
Send and receive the ticket_nonce field in a NewSession...
tree
|
commitdiff
2017-07-03
Bernd Edlinger
Fix potential crash in tls_construct_finished.
tree
|
commitdiff
2017-07-03
Bernd Edlinger
Fix a crash in tls_construct_client_certificate.
tree
|
commitdiff
2017-06-23
Matt Caswell
Fix another EVP_DigestVerify() instance
tree
|
commitdiff
2017-06-23
Matt Caswell
Treat all failures from EVP_DigestVerify() as a bad...
tree
|
commitdiff
2017-06-21
Paul Yang
Avoid compiler complaining
tree
|
commitdiff
2017-06-21
Matt Caswell
Fix DTLS failure when used in a build which has SCTP...
tree
|
commitdiff
2017-06-21
Matt Caswell
PSK related tweaks based on review feedback
tree
|
commitdiff
2017-06-21
Matt Caswell
Fix some bugs in the TLSv1.3 PSK code
tree
|
commitdiff
2017-06-21
Matt Caswell
Add TLSv1.3 client side external PSK support
tree
|
commitdiff
2017-06-21
Matt Caswell
Add TLSv1.3 server side external PSK support
tree
|
commitdiff
2017-06-21
Dr. Stephen Henson
Use EVP_PKEY_X25519, EVP_PKEY_ED25519 instead of NIDs...
tree
|
commitdiff
2017-06-21
Dr. Stephen Henson
Allow Ed25519 in TLS 1.2
tree
|
commitdiff
2017-06-21
Dr. Stephen Henson
Convert key exchange to one shot call
tree
|
commitdiff
2017-06-21
Dr. Stephen Henson
Handle signature algorithms with no associated digest
tree
|
commitdiff
2017-06-21
Dr. Stephen Henson
Add index for ED25519
tree
|
commitdiff
2017-06-21
Rich Salz
Merge Nokia copyright notice into standard
tree
|
commitdiff
2017-06-20
Rich Salz
Modify Sun copyright to follow OpenSSL style
tree
|
commitdiff
2017-06-16
Matt Caswell
Tweak the check that a ciphersuite has not changed...
tree
|
commitdiff
2017-06-16
Matt Caswell
Fix an uninitialised variable warning
tree
|
commitdiff
2017-06-16
Matt Caswell
Move ciphersuite selection before session resumption...
tree
|
commitdiff
2017-06-16
Matt Caswell
Allow the server to change the ciphersuite on resume
tree
|
commitdiff
2017-06-12
Benjamin Kaduk
Add SSL_early_get1_extensions_present()
tree
|
commitdiff
2017-06-11
Rich Salz
If-guard to avoid null ptr deref in statem_srvr.c
tree
|
commitdiff
2017-06-09
Pichulin Dmitrii
fix check of broken implementations of GOST ciphersuites
tree
|
commitdiff
2017-06-09
Paul Yang
Fix a bundle of trailing spaces in several files
tree
|
commitdiff
2017-06-06
Todd Short
Fix #2400 Add NO_RENEGOTIATE option
tree
|
commitdiff
2017-05-23
Dr. Stephen Henson
Don't use one shot API for SSLv3.
tree
|
commitdiff
2017-05-22
Matt Caswell
Convert existing usage of assert() to ossl_assert(...
tree
|
commitdiff
2017-05-22
Matt Caswell
Replace instances of OPENSSL_assert() with soft asserts...
tree
|
commitdiff
2017-05-19
Matt Caswell
Try to be more consistent about the alerts we send
tree
|
commitdiff
2017-05-18
Matt Caswell
Fix EXT_RETURN usage for add_key_share()
tree
|
commitdiff
2017-05-17
Matt Caswell
Allow a missing sig algs extension if resuming
tree
|
commitdiff
2017-05-17
Matt Caswell
Add a new unsolicited extension error code and add...
tree
|
commitdiff
2017-05-17
Matt Caswell
Fail if we receive a response to an extension that...
tree
|
commitdiff
2017-05-11
Bernd Edlinger
Fix gcc-7 warnings.
tree
|
commitdiff
2017-05-11
Matt Caswell
Add some extra comments following alert changes
tree
|
commitdiff
2017-05-11
Matt Caswell
Add some checks for trailing data after extension blocks
tree
|
commitdiff
2017-05-11
Matt Caswell
Send a missing_extension alert if key_share/supported...
tree
|
commitdiff
2017-05-11
Matt Caswell
Send an illegal parameter alert if the update type...
tree
|
commitdiff
2017-05-11
Matt Caswell
Ensure we fail with a decode error alert if the server...
tree
|
commitdiff
2017-05-11
Matt Caswell
Fix more alert codes
tree
|
commitdiff
2017-05-11
Matt Caswell
Verify that there is no trailing data after the extensi...
tree
|
commitdiff
2017-05-11
Matt Caswell
Fix some alert codes
tree
|
commitdiff
2017-05-11
Dr. Stephen Henson
Add EVP_DigestSign and EVP_DigesVerify
tree
|
commitdiff
2017-05-10
Matt Caswell
Copy custom extension flags in a call to SSL_set_SSL_CTX()
tree
|
commitdiff
2017-05-10
Richard Levitte
Fix 'no-ec'
tree
|
commitdiff
2017-05-09
Matt Caswell
Verify that if we have an HRR then something will change
tree
|
commitdiff
next