Commit History

Author SHA1 Message Date
  Matt Caswell 247b8e5252 Ensure that the key share group is allowed for our protocol version 2 years ago
  Matt Caswell 16f0e91cf8 Partial revert and reimplement "Enable brainpool curves for TLS1.3" 2 years ago
  Richard Levitte e077455e9e Stop raising ERR_R_MALLOC_FAILURE in most places 2 years ago
  Matt Caswell 1d3676778c Move logic for figuring out the record version out of record layer 2 years ago
  Pauli f0131dc04a ssl: modify libssl so that it uses OSSL_TIME 2 years ago
  Pauli e8a557dc3c Coverity: misuses of time_t 2 years ago
  Matt Caswell cffafb5f57 Move some fields out of the SSL object and into the record layer object 2 years ago
  Matt Caswell 9cd9e0978b Remove some use of SSL object from record layer 2 years ago
  Tomas Mraz 38b051a1fe SSL object refactoring using SSL_CONNECTION object 2 years ago
  Matt Caswell fecb3aae22 Update copyright year 2 years ago
  Tomas Mraz d5530efada Add back check for the DH public key size 2 years ago
  Dmitry Belyavskiy d724da6938 No EtM for GOST ciphers in TLS 1.2 3 years ago
  Bernd Edlinger 0a10825a00 Enable brainpool curves for TLS1.3 6 years ago
  Bernd Edlinger b3c34401c0 Fix a memory leak in tls_parse_stoc_key_share 3 years ago
  Pauli 407820c0e3 tls: remove TODOs 3 years ago
  Tomas Mraz ed576acdf5 Rename all getters to use get/get0 in name 3 years ago
  Benjamin Kaduk aa6bd216dd Promote SSL_get_negotiated_group() for non-TLSv1.3 3 years ago
  Matt Caswell 39a140597d Ensure buffer/length pairs are always in sync 3 years ago
  Matt Caswell 9afc6c5431 Fix the check for suitable groups and TLSv1.3 3 years ago
  Matt Caswell a28d06f3e9 Update copyright year 3 years ago
  Matt Caswell 462f4f4bc0 Remove OPENSSL_NO_EC guards from libssl 3 years ago
  Matt Caswell 8b1db5d329 Make supported_groups code independent of EC and DH 3 years ago
  Matt Caswell ddf8f1ce63 Ensure default supported groups works even with no-ec and no-dh 3 years ago
  Pauli a7e6a3d8ef tag unused function arguments as ossl_unused 4 years ago
  Richard Levitte c48ffbcca1 SSL: refactor all SSLfatal() calls 4 years ago
  Matt Caswell 5ac8fb584a Rename EVP_PKEY_set1_tls_encodedpoint to EVP_PKEY_set1_encoded_public_key 4 years ago
  Nicola Tuveri a011b5861b [ssl] Support ssl_decapsulate on client side 4 years ago
  Matt Caswell fd3ed85c67 Fix safestack issues in ocsp.h 4 years ago
  Matt Caswell 6ac1cd10ba Fix safestack issues in ssl.h 4 years ago
  Matt Caswell e09f8d256f Don't send supported groups if no-ec and we're doing DTLS 4 years ago