summaryrefslogtreecommitdiff
path: root/ssl/statem/statem_lib.c
Commit message (Expand)AuthorAgeFilesLines
* Ensure certificate callbacks work correctly in TLSv1.3Matt Caswell2018-09-071-2/+3
* Process KeyUpdate and NewSessionTicket messages after a close_notifyMatt Caswell2018-09-071-2/+5
* Don't detect a downgrade where the server has a protocol version holeMatt Caswell2018-08-221-3/+10
* Use the same min-max version range on the client consistentlyMatt Caswell2018-08-221-59/+75
* Turn on TLSv1.3 downgrade protection by defaultMatt Caswell2018-08-151-2/+0
* Update code for the final RFC version of TLSv1.3 (RFC8446)Matt Caswell2018-08-151-23/+0
* Move SSL_DEBUG md fprintf after assignmentDmitry Yakovlev2018-08-141-3/+5
* Improve fallback protectionMatt Caswell2018-08-091-0/+3
* Tolerate encrypted or plaintext alertsMatt Caswell2018-08-081-0/+6
* ssl/*: switch to switch to Thread-Sanitizer-friendly primitives.Andy Polyakov2018-08-071-16/+7
* Validate legacy_versionMatt Caswell2018-07-201-0/+12
* Fix no-pskMatt Caswell2018-07-171-1/+6
* As a server don't select TLSv1.3 if we're not capable of itMatt Caswell2018-07-131-3/+35
* Use ssl_version_supported() when choosing server versionMatt Caswell2018-07-131-17/+8
* Remove TLSv1.3 tickets from the client cache as we use themMatt Caswell2018-07-031-5/+14
* Suport TLSv1.3 draft 28Matt Caswell2018-05-151-1/+16
* Fix ticket callbacks in TLSv1.3Matt Caswell2018-05-111-0/+1
* Keep the DTLS timer running after the end of the handshake if appropriateMatt Caswell2018-05-081-0/+18
* In a reneg use the same client_version we used last timeMatt Caswell2018-04-241-0/+7
* Remove some logically dead codeMatt Caswell2018-04-241-3/+0
* Make sure SSL_in_init() returns 0 at SSL_CB_HANDSHAKE_DONEMatt Caswell2018-04-201-2/+7
* Call the info callback on all handshake done eventsMatt Caswell2018-04-171-5/+12
* Rewrite the X509->alert mapping codeRich Salz2018-03-281-65/+59
* Don't wait for dry at the end of a handshakeMatt Caswell2018-03-211-9/+0
* Only update the server session cache when the session is readyMatt Caswell2018-03-151-1/+6
* Don't calculate the Finished MAC twiceMatt Caswell2018-02-091-17/+17
* Add TLSv1.3 post-handshake authentication (PHA)Todd Short2018-02-011-20/+91
* Move decisions about whether to accept reneg into the state machineMatt Caswell2018-01-301-14/+0
* Don't send unexpected_message if we receive CCS while statelessMatt Caswell2018-01-241-0/+11
* Add support for sending TLSv1.3 cookiesMatt Caswell2018-01-241-8/+28
* Don't flush the ClientHello if we're going to send early dataMatt Caswell2017-12-281-6/+2
* Update state machine to send CCS based on whether we did an HRRMatt Caswell2017-12-141-3/+4
* Fix an HRR bugMatt Caswell2017-12-141-3/+7
* Merge HRR into ServerHelloMatt Caswell2017-12-141-6/+19
* Update ServerHello to new draft-22 formatMatt Caswell2017-12-141-34/+46
* Add some more cleanupsMatt Caswell2017-12-041-17/+25
* Convert more functions in ssl/statem/statem.c to use SSLfatal()Matt Caswell2017-12-041-56/+54
* Convert remaining functions in statem_clnt.c to use SSLfatal()Matt Caswell2017-12-041-1/+4
* Convert the state machine code to use SSLfatal()Matt Caswell2017-12-041-181/+196
* Replace some usage of SSLerr with SSLfatal()Matt Caswell2017-12-041-7/+6
* Resolve warnings in VC-WIN32 build, which allows to add /WX.Andy Polyakov2017-11-131-1/+1
* Normalize on session_ctx for stats where possibleBenjamin Kaduk2017-10-301-9/+13
* Use atomics for SSL_CTX statisticsBenjamin Kaduk2017-10-301-7/+15
* Remove parentheses of return.KaoruToda2017-10-181-3/+3
* Since return is inconsistent, I removed unnecessary parentheses andKaoruToda2017-10-091-1/+1
* Store groups as uint16_tDr. Stephen Henson2017-09-221-4/+6
* ssl/statem/*.c: address "enum mixed with another type" warnings.Andy Polyakov2017-09-011-1/+2
* Move ossl_assertMatt Caswell2017-08-031-0/+1
* Fix new_session_cb calls in TLSv1.3Matt Caswell2017-08-011-1/+6
* Use cert tables instead of X509_certificate_typeDr. Stephen Henson2017-07-131-4/+2
View Lorry Controller Status