| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Enable GOST_SIG_FORMAT_RS_LE when verifying certificate signatures. |   jsing | 2020-06-05 | 1 | -1/+7 |
| * | Correct downgrade sentinels when a version pinned method is in use. | jsing | 2020-05-31 | 1 | -2/+2 |
| * | Replace SSL_PKEY_RSA_ENC/SSL_PKEY_RSA_SIGN with SSL_PKEY_RSA. | jsing | 2020-05-19 | 1 | -4/+4 |
| * | Use size_t for OCSP response length. | jsing | 2020-05-10 | 1 | -5/+2 |
| * | Drop a redundant test. It's effectively doing the same test twice |   tb | 2020-05-09 | 1 | -3/+2 |
| * | RFC 8446, section 4.1.3: If a TLSv1.2 client receives a ServerHello for | tb | 2020-03-06 | 1 | -1/+27 |
| * | Factor out/rewrite the ECDHE EC point key exchange code. | jsing | 2020-01-30 | 1 | -94/+15 |
| * | Remove the ssl_get_message function pointer from SSL_METHOD_INTERNAL. | jsing | 2020-01-23 | 1 | -13/+11 |
| * | Clean up and simplify the client verify code: | jsing | 2019-03-31 | 1 | -50/+49 |
| * | Defer sigalgs selection until the certificate is known. | jsing | 2019-03-25 | 1 | -12/+18 |
| * | Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains. | jsing | 2019-03-25 | 1 | -2/+2 |
| * | Revert TLS1_get{,_client}_version simplification because DTLS. | jsing | 2019-03-19 | 1 | -2/+2 |
| * | Partially clean up the TLS1_get_{,client}_version macros. | jsing | 2019-03-17 | 1 | -2/+2 |
| * | Rename tls1_handshake_hash*() to tls1_transcript_hash*(). | jsing | 2019-02-09 | 1 | -4/+4 |
| * | Modify sigalgs extension processing to accomodate TLS 1.3. |   beck | 2019-01-23 | 1 | -2/+3 |
| * | revert previous, accidentally contained another diff in addition | beck | 2019-01-23 | 1 | -3/+2 |
| * | Modify sigalgs extension processing for TLS 1.3. | beck | 2019-01-23 | 1 | -2/+3 |
| * | Rename TLS extension handling to use less "hello". | jsing | 2019-01-18 | 1 | -3/+3 |
| * | Refactor a tangle in ssl3_send_client_verify() into one function for each | tb | 2018-11-29 | 1 | -118/+213 |
| * | Fix DTLS transcript handling for HelloVerifyRequest. | jsing | 2018-11-21 | 1 | -10/+5 |
| * | Revert previous - DTLSv1 uses MD5+SHA1 for RSA signature verification. | jsing | 2018-11-19 | 1 | -5/+2 |
| * | Fix DTLS, because DTLS still remains a special flower, allows regress to pass | beck | 2018-11-17 | 1 | -2/+5 |
| * | revert previous | beck | 2018-11-16 | 1 | -5/+3 |
| * | Fix DTLS. Because the DTLS code is strange. I am really coming around to | beck | 2018-11-16 | 1 | -3/+5 |
| * | Unbreak legacy ciphers for prior to 1.1 by setting having a legacy | beck | 2018-11-16 | 1 | -2/+2 |
| * | Add check function to verify that pkey is usable with a sigalg. | beck | 2018-11-11 | 1 | -2/+2 |
| * | Add support for RSA PSS algorithims being used in sigalgs. | beck | 2018-11-11 | 1 | -1/+14 |
| * | Convert signatures and verifcation to use the EVP_DigestXXX api | beck | 2018-11-11 | 1 | -24/+52 |
| * | Stop keeping track of sigalgs by guessing it from digest and pkey, | beck | 2018-11-10 | 1 | -12/+12 |
| * | Ensure we free the handshake transcript upon session resumption. | jsing | 2018-11-09 | 1 | -1/+4 |
| * | Ensure we only choose sigalgs from our prefernce list, not the whole list | beck | 2018-11-09 | 1 | -2/+3 |
| * | Reimplement the sigalgs processing code into a new implementation | beck | 2018-11-09 | 1 | -18/+13 |
| * | Clean up and simplify the handshake transcript code. | jsing | 2018-11-08 | 1 | -30/+16 |
| * | Stop pretending that a cert member in a SSL and SSL_CTX can be NULL. | jsing | 2018-11-08 | 1 | -3/+3 |
| * | Ensure the handshake transcript is cleaned up. | jsing | 2018-11-08 | 1 | -2/+13 |
| * | Use the newer/more sensible names for EVP_MD_CTX_* functions. | jsing | 2018-09-05 | 1 | -3/+3 |
| * | Clean up handshake message start/finish functions. | jsing | 2018-08-24 | 1 | -9/+9 |
| * | Rename and collapse tls12_get_sigandhash_cbb(). | jsing | 2018-08-19 | 1 | -2/+2 |
| * | Convert ssl3_send_client_verify() to CBB. | jsing | 2018-08-17 | 1 | -43/+50 |
| * | Convert ssl3_get_server_key_exchange() to CBS. | jsing | 2018-08-16 | 1 | -69/+55 |
| * | Remove now unused variable, that got left behind from a previous change. | jsing | 2018-08-14 | 1 | -3/+1 |
| * | Actually check the return values for EVP_Sign* and EVP_Verify*. | jsing | 2018-08-14 | 1 | -8/+12 |
| * | Simplify server key exchange signature verification. | jsing | 2018-08-10 | 1 | -49/+18 |
| * | Check the return value from DH_size() in ssl3_send_client_kex_dhe(). | jsing | 2018-06-03 | 1 | -4/+6 |
| * | Fix a malloc() NULL check in ssl3_send_client_kex_ecdhe_ecp(), by adding | jsing | 2018-05-13 | 1 | -2/+3 |
| * | Nuke SSL3_FLAGS_DELAY_CLIENT_FINISHED and SSL3_FLAGS_POP_BUFFER. | jsing | 2018-04-07 | 1 | -15/+2 |
| * | Complete the TLS extension rewrite on the client-side. | jsing | 2018-02-08 | 1 | -10/+18 |
| * | Rename ssl3_client_hello() to ssl3_send_client_hello() for consistency. | jsing | 2017-10-12 | 1 | -3/+3 |
| * | Convert ssl3_client_hello() to CBB. | jsing | 2017-10-11 | 1 | -36/+45 |
| * | ((remove) (some) (unnecessary) (parentheses)) | jsing | 2017-10-10 | 1 | -4/+4 |
