summaryrefslogtreecommitdiffstats
path: root/ssl (follow)
Commit message (Expand)AuthorAgeFilesLines
* Only disabled what we need to in a no-dh buildMatt Caswell2020-11-185-19/+11
* Implement a replacement for SSL_set_tmp_dh()Matt Caswell2020-11-184-36/+62
* Disable the DHParameters config option in a no-deprecated buildMatt Caswell2020-11-181-2/+3
* Remove DH usage from tls_process_cke_dheMatt Caswell2020-11-181-12/+1
* Remove DH usage in tls_construct_server_key_exchange()Matt Caswell2020-11-181-18/+22
* Avoid the use of a DH object in tls_construct_cke_dhe()Matt Caswell2020-11-181-21/+27
* Deprecate SSL_CTRL_SET_TMP_DH and other related ctrlsMatt Caswell2020-11-184-28/+31
* Convert TLS ServerKeyExchange processing to use an EVP_PKEYMatt Caswell2020-11-181-39/+33
* Convert TLS auto DH parameters to use EVP_PKEYMatt Caswell2020-11-183-26/+34
* SSL: refactor all SSLfatal() callsRichard Levitte2020-11-1126-2179/+1054
* SSL: refactor ossl_statem_fatal() and SSLfatal()Richard Levitte2020-11-112-13/+16
* Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() callRichard Levitte2020-11-1127-370/+340
* Adjust error reason for ssl_get_min_max_version() failureBenjamin Kaduk2020-11-021-2/+2
* Clear error queue entries from bad DLTS recordsBenjamin Kaduk2020-11-021-0/+8
* Unify ssl3_get_cipher_by_std_name() implementationBenjamin Kaduk2020-10-291-13/+5
* Ensure we raise SSLfatal on errorMatt Caswell2020-10-261-1/+1
* Rename EVP_MAC_size() to EVP_MAC_CTX_get_mac_size().Shane Lontis2020-10-221-1/+1
* Rename EVP_PKEY_set1_tls_encodedpoint to EVP_PKEY_set1_encoded_public_keyMatt Caswell2020-10-204-14/+14
* Pass an EVP_PKEY for SSL_SECOP_TMP_DH in the security callbackMatt Caswell2020-10-161-1/+1
* Concentrate deprecated libssl API usage in one fileMatt Caswell2020-10-168-89/+179
* Update copyright yearMatt Caswell2020-10-151-1/+1
* Rename OPENSSL_CTX prefix to OSSL_LIB_CTXDr. Matthias St. Pierre2020-10-157-23/+23
* [ssl] Support ssl_encapsulate on server sideNicola Tuveri2020-10-143-26/+149
* [ssl] Support ssl_decapsulate on client sideNicola Tuveri2020-10-143-34/+123
* Define OSSL_CAPABILITY_TLS_GROUP_IS_KEMNicola Tuveri2020-10-142-0/+9
* Fixed typo in ssl_lib.cIkko Ashimine2020-10-131-1/+1
* Use size of target buffer for allocationBenny Baumann2020-10-071-1/+1
* TLS AEAD ciphers: more bytes for key_block than neededMaxim Masiutin2020-10-021-9/+15
* Run the withlibctx.pl scriptMatt Caswell2020-10-0110-81/+67
* optimise ssl3_get_cipher_by_std_name()hklaas2020-09-271-2/+1
* Fix ssl_hmac_new() so that it uses the propqShane Lontis2020-09-231-1/+1
* Support keys with RSA_METHOD_FLAG_NO_CHECK with OCSP signNorman Ashley2020-09-211-26/+0
* Increase PSK_MAX_PSK_LEN to 512Rutger Hendriks2020-09-211-1/+1
* Disallow certs with explicit curve in verification chainTomas Mraz2020-09-171-0/+1
* DTLS: free allocated memory on error pathsPauli2020-09-151-2/+6
* Ignore unused return values from some sk_*() macrosMatt Caswell2020-09-131-1/+1
* Fix safestack issues in ct.hMatt Caswell2020-09-131-2/+0
* Fix safestack issues in ocsp.hMatt Caswell2020-09-133-5/+0
* Fix safestack issues in x509.hMatt Caswell2020-09-1312-28/+0
* Fix safestack issues in ssl.hMatt Caswell2020-09-1310-17/+0
* NonStop port updates for 3.0.0.Randall S. Becker2020-09-121-0/+13
* TLS fixes for CBC mode and no-deprecatedPauli2020-09-093-24/+23
* TLS: remove legacy code path supporting special CBC modePauli2020-09-092-0/+8
* Convert ssl3_cbc_digest_record() to use EVP_MD_is_a()Matt Caswell2020-09-031-14/+7
* Make ssl3_cbc_digest_record() use the real data_sizeMatt Caswell2020-09-033-12/+9
* Start using the provider side TLS HMAC implementationMatt Caswell2020-09-031-24/+18
* Add an HMAC implementation that is TLS awareMatt Caswell2020-09-034-14/+50
* also zero pad DHE public key in ClientKeyExchange message for interopFelix Monninger2020-09-011-5/+9
* Move KTLS inline functions only used by libssl into ssl/ktls.c.John Baldwin2020-08-313-1/+241
* Support for KTLS TX on FreeBSD for TLS 1.3.John Baldwin2020-08-311-4/+0