aboutsummaryrefslogtreecommitdiffstats
path: root/ssl/statem
Commit message (Expand)AuthorAgeFilesLines
* When selecting a method ensure we use the correct client/server versionMatt Caswell2024-01-311-3/+6
* Move increment of dtls epoch to change cipher state functionFrederik Wedel-Heinen2024-01-183-17/+8
* Simplify ssl protocol version comparisons.Frederik Wedel-Heinen2024-01-032-52/+45
* Fix new typos found by codespellDimitri Papadopoulos2023-12-291-1/+1
* Remove redundant logic for DTLS server version selectionFrederik Wedel-Heinen2023-12-181-10/+3
* Handle tls and dtls server version selection similarlyFrederik Wedel-Heinen2023-12-181-15/+5
* Fix implementation of `PreferNoDHEKEX` option.Markus Minichmayr2023-11-302-29/+25
* Make scsv read-onlyHugo Landau2023-11-271-2/+2
* Make bitmask table read onlyHugo Landau2023-11-271-2/+2
* Add option `SSL_OP_PREFER_NO_DHE_KEX`, allowing the server to prefer non-dhe ...Markus Minichmayr2023-11-242-8/+30
* Fix a possible use-after-free in custom_exts_freeBernd Edlinger2023-11-221-0/+2
* Move freeing of an old record layer to dtls1_clear_sent_bufferMatt Caswell2023-11-211-8/+1
* zero data in hm_fragment on allocNeil Horman2023-11-211-1/+1
* set_client_ciphersuite(): Fix for potential UB if session->cipher is NULLAlexey Fofanov2023-11-131-0/+4
* Fix a possible memory leak in custom_ext_addBernd Edlinger2023-11-081-0/+6
* TLS: Fix use of an uninitialized valueHugo Landau2023-11-021-1/+1
* Ignore a bad signature in a CertificateVerify message while fuzzingMatt Caswell2023-10-231-0/+5
* Fix typos found by codespellDimitri Papadopoulos2023-09-131-1/+1
* "foo * bar" should be "foo *bar"Dimitri Papadopoulos2023-09-111-1/+1
* Remove repeated wordsDimitri Papadopoulos2023-09-111-1/+1
* Copyright year updatesMatt Caswell2023-09-071-1/+1
* Always use uint8_t for TLS record typeTomas Mraz2023-08-252-4/+6
* Change the TLS handshake keys early if we're not doing early dataMatt Caswell2023-08-242-7/+42
* ssl_get_min_max_version(): Remove unused variable singleshub-al2023-08-201-9/+6
* TLS KeyUpdate messages are not allowed in QUICMatt Caswell2023-08-152-2/+2
* NewSessionTickets with an early_data extension must have a valid max valueMatt Caswell2023-08-151-0/+16
* Resolves some magic values that has a hello_retry_request enum type.Frederik Wedel-Heinen2023-08-041-1/+1
* Fix ssl3_do_write() to correctly handle retriesMatt Caswell2023-07-171-1/+1
* Don't ask for an invalid group in an HRRMatt Caswell2023-06-231-1/+5
* Fix typos found by codespellDimitri Papadopoulos2023-06-152-2/+2
* [feat] SSL RTT in both client and server statem. SSL_get_handshake_rtt makes ...Jairus Christensen2023-06-022-0/+9
* ssl/statem_srvr.c: clean up handling of EVP_PKEY_decrypt() outlenDr. David von Oheimb2023-05-301-8/+5
* Be more accurate about what we accept as a valid DTLS versionMatt Caswell2023-05-051-2/+4
* Do not send the empty renegotiation info SCSV in QUICTomas Mraz2023-05-021-1/+3
* Make the data field for get_record() constMatt Caswell2023-04-121-1/+2
* RFC7250 (RPK) supportTodd Short2023-03-288-51/+940
* Added `CERTIFICATE_VERIFY_MAX_LENGTH` constantVeronikaNguyen2023-03-213-2/+5
* Fix early_data age calculationMatt Caswell2023-03-011-7/+9
* first cut at sigalg loadingMichael Baentsch2023-02-242-9/+16
* Add the ability to mutate TLS handshake messages before they are writtenMatt Caswell2023-02-222-146/+44
* fuzz: fix coverity warningsPhilippe Antoine2023-02-202-2/+2
* fuzz: make post handshake reachablePhilippe Antoine2023-02-082-4/+22
* Add the ability to add a custom extension on an SSL objectMatt Caswell2023-01-241-18/+22
* Extend the new_record_layer functionMatt Caswell2023-01-241-4/+5
* Create the SSL object for QUIC-TLSMatt Caswell2023-01-241-5/+5
* Make error reason for disallowed legacy sigalg more specificTomas Mraz2022-12-132-2/+4
* Remove references to read_mac_secret and write_mac_secretMatt Caswell2022-11-141-2/+0
* Remove remaining refs to enc_(write|read)_ctx/(read|write)_hashMatt Caswell2022-11-141-4/+14
* Fix CertificateCompressionAlgorithm to be read as 2-octet-wideAlexander Sosedkin2022-11-081-1/+1
* Assert that we do not exceed the DTLS MTUMatt Caswell2022-11-071-0/+11
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-23 11:12:47 +0000