oweals/openssl.git
2017-01-31 Dr. Stephen... Add digest and key indices to table.
2017-01-31 Dr. Stephen... Don't check certificate type against ciphersuite for...
2017-01-31 Dr. Stephen... Add TLS 1.3 signing curve check
2017-01-31 Dr. Stephen... Only allow PSS signatures with RSA keys and TLS 1.3
2017-01-31 Dr. Stephen... Store table entry to peer signature algorithm.
2017-01-30 Matt CaswellFree up the memory for the NewSessionTicket extensions
2017-01-30 Matt CaswellMake sure we free and cleanse the pms value in all...
2017-01-30 Dr. Stephen... Update macros.
2017-01-30 Dr. Stephen... fix style issues
2017-01-30 Dr. Stephen... Fix TLS 1.2 and no sigalgs.
2017-01-30 Dr. Stephen... Use PSS for simple test so TLS 1.3 handhake is successful.
2017-01-30 Dr. Stephen... Add tests for client and server signature type
2017-01-30 Dr. Stephen... Add test support for TLS signature types.
2017-01-30 Dr. Stephen... Update documentation
2017-01-30 Dr. Stephen... make update
2017-01-30 Dr. Stephen... Replace TLS_SIGALGS with SIGALG_LOOKUP
2017-01-30 Dr. Stephen... Support TLS 1.3 signature scheme names.
2017-01-30 Dr. Stephen... Extend TLS 1.3 signature table.
2017-01-30 Dr. Stephen... Use shared signature algorithm list to find type.
2017-01-30 Dr. Stephen... Add SSL_get_peer_signature_type_nid() function.
2017-01-30 Dr. Stephen... Store peer signature type.
2017-01-30 Dr. Stephen... More complete PSS support.
2017-01-30 Dr. Stephen... Use uint16_t for signature scheme.
2017-01-30 Dr. Stephen... use RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellExpand comment in tls_process_hello_req()
2017-01-30 Matt CaswellAdd a TODO around validating the ticket age
2017-01-30 Matt CaswellVarious style fixes following review feedback
2017-01-30 Matt CaswellRemove unneccessary comments
2017-01-30 Matt CaswellUse for loop in WPACKET_fill_lengths instead of do...
2017-01-30 Matt CaswellMove the SSL3_CK_CIPHERSUITE_FLAG out of public header
2017-01-30 Matt CaswellAdd a test for the PSK kex modes extension
2017-01-30 Matt CaswellIf we have no suitable PSK kex modes then don't attempt...
2017-01-30 Matt CaswellFix <= TLS1.2 break
2017-01-30 Matt CaswellAdd a test for WPACKET_fill_lengths()
2017-01-30 Matt CaswellEnable wpacket test on shared builds
2017-01-30 Matt CaswellMake calls to SSL_renegotiate() error out for TLSv1.3
2017-01-30 Matt CaswellMake the "ticket" function return codes clearer
2017-01-30 Matt CaswellMiscellaneous style tweaks based on feedback received
2017-01-30 Matt CaswellEnsure the al variable is properly ininitialised in...
2017-01-30 Matt CaswellEnsure the age_add variable is properly initialised
2017-01-30 Matt CaswellRe-enable resumption for TLS1.3 CT tests
2017-01-30 Matt CaswellAdd testing of TLSv1.3 resumption in test_tls13messages
2017-01-30 Matt CaswellAdd a capability for TLSProxy to wait for a session...
2017-01-30 Matt CaswellRe-enable test_ssl_new resumption tests for TLSv1.3
2017-01-30 Matt CaswellRemove a TLS1.3 TODO that is now completed
2017-01-30 Matt CaswellRe-enable TLSv1.3 session resumption related tests...
2017-01-30 Matt CaswellUpdate create_ssl_connection() to make sure its gets...
2017-01-30 Matt CaswellRe-enable ALPN resumption tests where we are using...
2017-01-30 Matt CaswellAlways ensure that session->cipher is set
2017-01-30 Matt CaswellTweak a comment
2017-01-30 Matt CaswellUse the correct session resumption mechanism
2017-01-30 Matt CaswellMove session version consistency check
2017-01-30 Matt CaswellSet the kex modes on the client too.
2017-01-30 Matt CaswellImplement server side of PSK extension construction
2017-01-30 Matt CaswellImplement Server side of PSK extension parsing
2017-01-30 Matt CaswellMake sure we also cleanse the finished key
2017-01-30 Matt CaswellProvide a key_share extension finaliser
2017-01-30 Matt CaswellAdd support for client side parsing of the PSK extension
2017-01-30 Matt CaswellAdd support for the age_add field
2017-01-30 Matt CaswellConstruct the client side psk extension for TLSv1.3
2017-01-30 Matt CaswellProvide a new WPACKET function for filling in all the...
2017-01-30 Matt CaswellUpdate the s_client -sess_out feature to work for TLSv1.3
2017-01-30 Matt CaswellNever send a session id in TLS1.3
2017-01-30 Matt CaswellAdd a TODO around handling of SSL_get_session() and...
2017-01-30 Matt CaswellProcess incoming NewSessionTicket messages on the clien...
2017-01-30 Matt CaswellCreate the NewSessionTicket message in TLSv1.3
2017-01-30 Matt CaswellAdd support for the psk_key_exchange_modes extension
2017-01-30 Matt CaswellMove TLSv1.3 Session Ticket processing into the state...
2017-01-30 Matt CaswellDisable requests for renegotiation in TLSv1.3
2017-01-30 Matt CaswellMove state machine knowledge out of the record layer
2017-01-30 Matt CaswellRemove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS...
2017-01-30 Matt CaswellChangeCipherSpec is not allowed in TLSv1.3
2017-01-29 Ben LaurieRemove annoying and pointless pause.
2017-01-29 Richard LevitteFix faulty free
2017-01-29 Richard Levittetest/evp_test.c: If no algorithm was specified, don...
2017-01-28 Kurt RoeckxUpdate client and server corpus
2017-01-28 Rich SalzDon't need the checkbox; the hook does it
2017-01-28 Richard LevitteAdd a couple of test to check CRL fingerprint
2017-01-28 Richard LevitteDocument what EXFLAG_SET is for in x509v3.h
2017-01-28 Richard LevitteX509_CRL_digest() - ensure precomputed sha1 hash before...
2017-01-28 Richard LevitteCorrect pointer to be freed
2017-01-26 Rich SalzAvoid over-long strings. Fix a mem leak.
2017-01-26 Dr. Stephen... Add server signature algorithm bug test.
2017-01-26 Dr. Stephen... Use correct signature algorithm list when sending or...
2017-01-26 Matt CaswellUpdate CHANGES and NEWS for new release
2017-01-26 Andy Polyakovbn/asm/x86_64-mont5.pl: fix carry bug in bn_sqr8x_internal.
2017-01-26 Andy Polyakovtest/bntest.c: regression test for carry bug in bn_sqr8...
2017-01-26 Richard LevitteDocument DH_check_params()
2017-01-26 Richard LevitteBetter check of DH parameters in TLS data
2017-01-26 Andy Polyakovcrypto/evp: harden AEAD ciphers.
2017-01-26 Andy Polyakovcrypto/evp: harden RC4_MD5 cipher.
2017-01-25 Cory BenfieldLimit the length of the encrypted premaster key.
2017-01-25 Richard LevitteFix small typo
2017-01-25 Matt CaswellFix a merge error
2017-01-25 Matt CaswellRemove assert from is_partially_overlapping()
2017-01-25 Matt CaswellAdjust in and in_len instead of donelen
2017-01-25 Matt CaswellFix the overlapping check for fragmented "Update" opera...
2017-01-25 Matt CaswellUpdate evp_test to make sure passing partial block...
2017-01-25 Matt CaswellProperly handle a partial block in OCB mode
2017-01-25 Matt CaswellDon't use magic numbers in aes_ocb_cipher()
next