19330 Commits (d192a3aaeb76fc89f8285b4dc938c2bc0c37d0d4)
 

Author SHA1 Message Date
  Richard Levitte d192a3aaeb Add a platform specific configuration checker 5 years ago
  Rich Salz 697958313b Fix an endless loop in rsa_builtin_keygen. 5 years ago
  Matt Caswell e498d95454 Fix no-ec 5 years ago
  Matt Caswell 548d0153cc Fix a test failure with no-tls1_1 5 years ago
  Matt Caswell 593a2aa3eb Fix no-psk 5 years ago
  Matt Caswell e6941c7814 Don't call memcmp with a NULL pointer 5 years ago
  Matt Caswell ee7002266c Add a test for TLSv1.3 cookies 5 years ago
  Matt Caswell cfef5027bf Add basic TLSv1.3 cookie support 5 years ago
  Andy Polyakov 6356716ac0 appveyor.yml: call upon cmd to redirect stderr. 5 years ago
  Andy Polyakov 8b0d424240 apps/s_client.c: harden ldap_ExtendedResponse_parse. 5 years ago
  Matt Caswell 312e9387fd Fix a memory leak on an error path 5 years ago
  Matt Caswell d08086645f Ensure we don't call memcpy with a NULL pointer 5 years ago
  Dr. Stephen Henson 8336ca13b1 Update and add test 5 years ago
  Dr. Stephen Henson 5528d68f6d Set specific error is we have no valid signature algorithms set 5 years ago
  Dr. Stephen Henson b0e9ab95dd Signature algorithm enhancement. 5 years ago
  Dr. Stephen Henson 8f12296e23 Disallow zero length signature algorithms 5 years ago
  Dr. Stephen Henson 224b4e37c0 Don't allow DSA for TLS 1.3 5 years ago
  edelangh dbaa069a5e use OSSLzu instead of lu format for size_t display 5 years ago
  Bernd Edlinger d734582275 Reset executable bits on files where not needed. 5 years ago
  Pauli f2bcff43bc Update the cipher(1) documentation to explicitly state that the RSA cipher 5 years ago
  Rich Salz 332dc4fa5e sh_malloc & sh_free prototype change to match POSIX 5 years ago
  Matt Caswell 42f50fdf8a Silence some more clang warnings 5 years ago
  Matt Caswell 30d1bab146 Silence some clang warnings 5 years ago
  Matt Caswell 83750d9b2b More early data documentation updates following feedback 5 years ago
  Matt Caswell cd9f7f624e Update the API documentation for the latest early data changes 5 years ago
  Matt Caswell 09f2887482 Update early data API for writing to unauthenticated clients 5 years ago
  Matt Caswell 0665b4edae Rename SSL_write_early() to SSL_write_early_data() 5 years ago
  Matt Caswell f533fbd44a Rename SSL_read_early() to SSL_read_early_data() 5 years ago
  Matt Caswell ef466accdc Updates to the early data documentation 5 years ago
  Matt Caswell ade1e88806 Updates to s_server and s_client for the latest early_data API changes 5 years ago
  Matt Caswell 3eaa417095 Make SSL_write_early_finish() an internal only function 5 years ago
  Matt Caswell 5f9820380f Add early_data tests 5 years ago
  Matt Caswell f7e393be47 Various fixes required to allow SSL_write/SSL_read during early data 5 years ago
  Matt Caswell d7f8783ff9 Enable the server to call SSL_write() without stopping the ability to call SSL_read_early() 5 years ago
  Matt Caswell 564547e482 Enable the client to call SSL_read() without stopping the ability to call SSL_write_early() 5 years ago
  Matt Caswell 4004ce5f6c Introduce a new early_data state in the state machine 5 years ago
  Matt Caswell bc908c679b Improve the early data sanity check in SSL_do_handshake() 5 years ago
  Matt Caswell 6437b802f1 Add documentation for the new s_client and s_server early_data options 5 years ago
  Matt Caswell 0a5ece5bd2 Tighten sanity checks when calling early data functions 5 years ago
  Matt Caswell fd6c102520 Add documentation for the early data functions 5 years ago
  Matt Caswell f5b519c416 Make SSL_get_early_data_status() take a const 5 years ago
  Matt Caswell 46dcb9457e Make SSL_get_max_early_data() and SSL_CTX_get_max_early_data() take a const 5 years ago
  Matt Caswell fcc4757823 Add a SSL_SESSION_get_max_early_data() function 5 years ago
  Matt Caswell 7daf7156d8 Don't attempt to write more early_data than we know the server will accept 5 years ago
  Matt Caswell f637004037 Only accept early_data if the negotiated ALPN is the same 5 years ago
  Matt Caswell a832b5ef7a Skip early_data if appropriate after a HelloRetryRequest 5 years ago
  Matt Caswell 38df5a4527 Don't accept early_data if we are going to issue a HelloRetryRequest 5 years ago
  Matt Caswell 538bea6c81 Add extra validation parsing the server-to-client early_data extension 5 years ago
  Matt Caswell 329114f91f Remove some TLSv1.3 TODOs that are no longer relevant 5 years ago
  Matt Caswell 2c604cb9af Validate the ticket age for resumed sessions 5 years ago