summaryrefslogtreecommitdiff
path: root/ssl/statem
Commit message (Expand)AuthorAgeFilesLines
* Be more accurate about what we accept as a valid DTLS versionMatt Caswell2023-05-051-2/+4
* Do not send the empty renegotiation info SCSV in QUICTomas Mraz2023-05-021-1/+3
* Make the data field for get_record() constMatt Caswell2023-04-121-1/+2
* RFC7250 (RPK) supportTodd Short2023-03-288-51/+940
* Added `CERTIFICATE_VERIFY_MAX_LENGTH` constantVeronikaNguyen2023-03-213-2/+5
* Fix early_data age calculationMatt Caswell2023-03-011-7/+9
* first cut at sigalg loadingMichael Baentsch2023-02-242-9/+16
* Add the ability to mutate TLS handshake messages before they are writtenMatt Caswell2023-02-222-146/+44
* fuzz: fix coverity warningsPhilippe Antoine2023-02-202-2/+2
* fuzz: make post handshake reachablePhilippe Antoine2023-02-082-4/+22
* Add the ability to add a custom extension on an SSL objectMatt Caswell2023-01-241-18/+22
* Extend the new_record_layer functionMatt Caswell2023-01-241-4/+5
* Create the SSL object for QUIC-TLSMatt Caswell2023-01-241-5/+5
* Make error reason for disallowed legacy sigalg more specificTomas Mraz2022-12-132-2/+4
* Remove references to read_mac_secret and write_mac_secretMatt Caswell2022-11-141-2/+0
* Remove remaining refs to enc_(write|read)_ctx/(read|write)_hashMatt Caswell2022-11-141-4/+14
* Fix CertificateCompressionAlgorithm to be read as 2-octet-wideAlexander Sosedkin2022-11-081-1/+1
* Assert that we do not exceed the DTLS MTUMatt Caswell2022-11-071-0/+11
* Add zlib oneshot compressionTodd Short2022-11-072-2/+2
* stack: Do not add error if pop/shift/value accesses outside of the stackTomas Mraz2022-10-211-1/+1
* Fix coverity 1516094 uninitTodd Short2022-10-211-1/+4
* Remove some redundant codeMatt Caswell2022-10-203-3/+3
* Remove the old buffer management codeMatt Caswell2022-10-202-10/+0
* Ensure the record layer is responsible for calculating record overheadsMatt Caswell2022-10-201-21/+5
* Convert dtls_write_records to use standard record layer functionsMatt Caswell2022-10-201-26/+21
* Add `for_comp` flag when retrieving certs for compressionTodd Short2022-10-187-39/+47
* Update COMP_METHODTodd Short2022-10-182-5/+5
* Add support for compressed certificates (RFC8879)Todd Short2022-10-188-9/+503
* Fix sctp compile errorsslontis2022-10-183-1/+7
* Ensure that the key share group is allowed for our protocol versionMatt Caswell2022-10-122-2/+15
* Use the configured max_send_fragment value in the write record layerMatt Caswell2022-10-121-4/+8
* Remove enc_write_stateMatt Caswell2022-10-122-12/+1
* Convert the TLSv1.3 crypto code to the new write record layerMatt Caswell2022-10-121-9/+16
* Partial revert and reimplement "Enable brainpool curves for TLS1.3"Matt Caswell2022-10-074-32/+4
* Stop raising ERR_R_MALLOC_FAILURE in most placesRichard Levitte2022-10-057-55/+52
* Test TLS extension orderingTodd Short2022-09-282-1/+20
* Move logic for figuring out the record version out of record layerMatt Caswell2022-09-233-11/+14
* Correctly handle a retransmitted ClientHelloMatt Caswell2022-09-221-10/+85
* Use an enum for the return value from a construction functionMatt Caswell2022-09-207-133/+162
* If a ticket key callback returns 0 in TLSv1.3 don't send a ticketMatt Caswell2022-09-202-22/+64
* stack.c: add missing direct error reporting and improve coding styleDr. David von Oheimb2022-09-161-1/+1
* ssl: modify libssl so that it uses OSSL_TIMEPauli2022-09-134-20/+23
* Cleanup EBCDIC string defintionsTodd Short2022-09-092-20/+10
* Coverity: misuses of time_tPauli2022-08-192-13/+11
* Remove redefinition of SSL_AD_NO_ALERTMatt Caswell2022-08-181-1/+0
* Remove some redundant codeMatt Caswell2022-08-181-1/+0
* Move some fields out of the SSL object and into the record layer objectMatt Caswell2022-08-185-17/+21
* Remove some remaining SSL object references from DTLS record layerMatt Caswell2022-08-181-4/+6
* Remove reliance on the SSL object from the DTLS read record layer codeMatt Caswell2022-08-181-2/+14
* Move some DTLS read code into the read record layerMatt Caswell2022-08-181-1/+1
View Lorry Controller Status