summaryrefslogtreecommitdiffstats
path: root/ssl/t1_lib.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* Use (D)TLS_MAX_VERSION_INTERNAL internallyKurt Roeckx2018-12-151-1/+1
* Following the license change, modify the boilerplates in ssl/Richard Levitte2018-12-061-1/+1
* Fix no-ec and no-tls1_2Matt Caswell2018-11-141-0/+2
* Added missing signature algorithm reflection functionsViktor Dukhovni2018-11-121-0/+8
* Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capableMatt Caswell2018-11-121-0/+31
* Add EVP_PKEY_supports_digest_nid()David Woodhouse2018-11-101-25/+30
* Honour mandatory digest on private key in has_usable_cert()David Woodhouse2018-11-101-3/+18
* Give a better error if an attempt is made to set a zero length groups listMatt Caswell2018-11-081-0/+4
* Don't use an RSA-PSS cert for RSA key exchangeMatt Caswell2018-09-041-3/+7
* Use the same min-max version range on the client consistentlyMatt Caswell2018-08-221-1/+1
* Check that the public key OID matches the sig algMatt Caswell2018-07-181-1/+9
* Do not use GOST sig algs in TLSv1.3 where possibleMatt Caswell2018-07-131-0/+41
* Check return from BN_set_word.Pauli2018-06-291-3/+6
* Fix EAP-FASTMatt Caswell2018-06-071-5/+7
* Send GOST SignatureAlgorithms when TLS 1.2 in useDmitry Belyavskiy2018-05-301-1/+6
* Bugfix: GOST2012 certificates for GOST ciphersuites were broken.Dmitry Belyavskiy2018-05-301-0/+15
* Set sess to NULL after freeing it.Kurt Roeckx2018-05-121-0/+1
* Rework the decrypt ticket callbackMatt Caswell2018-05-111-46/+84
* Fix ticket callbacks in TLSv1.3Matt Caswell2018-05-111-77/+66
* Fix the MAX_CURVELIST definitionMatt Caswell2018-04-251-1/+1
* Allow TLSv1.3 EC certs to use compressed pointsMatt Caswell2018-04-241-7/+7
* Set error code on alloc failuresRich Salz2018-04-031-10/+16
* Tolerate a Certificate using a non-supported group on server sideMatt Caswell2018-03-281-9/+15
* Place ticket keys into secure memoryTodd Short2018-03-191-3/+3
* Always call the new_session_cb when issuing a NewSessionTicket in TLSv1.3Matt Caswell2018-03-191-3/+4
* Session Ticket app dataTodd Short2018-03-121-30/+54
* Add X448/Ed448 support to libsslMatt Caswell2018-03-051-1/+9
* Sanity check the ticket length before using key name/IVMatt Caswell2018-02-211-6/+12
* The function ssl_get_min_max_version() can failMatt Caswell2018-02-121-2/+5
* Fix uninitialized read in sigalg parsing codeBenjamin Kaduk2018-01-261-1/+1
* Add support for the TLS 1.3 signature_algorithms_cert extensionBenjamin Kaduk2018-01-251-45/+63
* Propagate TLS 1.3 sigalgs through tls1_set_sigalgs()Benjamin Kaduk2018-01-251-14/+55
* Add TLS 1.3 draft-23 PSS signature algorithmsBenjamin Kaduk2018-01-251-6/+18
* Update copyright years on all files merged since Jan 1st 2018Richard Levitte2018-01-091-1/+1
* Use the index that matches the key type (either SSL_PKEY_RSA_PSS_SIGN or SSL_...Noah Robbin2018-01-081-4/+23
* Use size of server key when selecting signature algorithm.Noah Robbin2018-01-081-0/+34
* Convert the state machine code to use SSLfatal()Matt Caswell2017-12-041-40/+49
* Resolve warnings in VC-WIN32 build, which allows to add /WX.Andy Polyakov2017-11-131-1/+1
* Implement Maximum Fragment Length TLS extension.FdaSilvaYY2017-11-051-0/+31
* Various clean-upsKaoruToda2017-10-211-2/+4
* Merge tls1_check_curve into tls1_check_group_idDr. Stephen Henson2017-10-061-31/+19
* Change curves to groups where relevantDr. Stephen Henson2017-10-061-3/+3
* Use separate functions for supported and peer groups listsDr. Stephen Henson2017-10-061-35/+26
* Add and use function tls1_in_list to avoid code duplication.Dr. Stephen Henson2017-09-261-30/+30
* Use tls1_group_id_lookup in tls1_curve_allowedDr. Stephen Henson2017-09-261-5/+3
* Rename tls1_get_curvelist.Dr. Stephen Henson2017-09-261-41/+35
* Rewrite compression and group checks.Dr. Stephen Henson2017-09-261-134/+122
* Replace tls1_ec_curve_id2nid.Dr. Stephen Henson2017-09-261-7/+3
* Rename tls_curve_info to TLS_GROUP_INFO, move to ssl_locl.hDr. Stephen Henson2017-09-261-9/+3
* Return group id in tls1_shared_groupDr. Stephen Henson2017-09-261-17/+14