Hugo Landau
|
d6e7ebba33
Minor fixes
|
1 year ago |
Hugo Landau
|
d0638fd5f0
QUIC SSL: Prohibit readahead-related functions
|
1 year ago |
Hugo Landau
|
09d56d20a2
QUIC: Forbid non-QUIC ciphers
|
1 year ago |
Matt Caswell
|
e609a4565f
Fix supported_groups handing in TLSv1.2
|
1 year ago |
Alex Bozarth
|
68668243b1
Add SSL_get0_group_name() to get name of the group used for KEX
|
1 year ago |
Todd Short
|
3c95ef22df
RFC7250 (RPK) support
|
3 years ago |
Michael Baentsch
|
a2a543e0e3
Update the EVP_PKEY_get_id documentation
|
1 year ago |
Peter Kaestle
|
62ea5ffa7c
tls1_set_groups_list: freeing *pext before overwriting
|
1 year ago |
Michael Baentsch
|
ee58915cfd
first cut at sigalg loading
|
2 years ago |
Matt Caswell
|
b92fc4ae18
Remove some redundant code
|
2 years ago |
Matt Caswell
|
c9ee6e3646
Reimplement brainpool TLSv1.3 support group support
|
2 years ago |
Matt Caswell
|
16f0e91cf8
Partial revert and reimplement "Enable brainpool curves for TLS1.3"
|
2 years ago |
Richard Levitte
|
e077455e9e
Stop raising ERR_R_MALLOC_FAILURE in most places
|
2 years ago |
Pauli
|
f0131dc04a
ssl: modify libssl so that it uses OSSL_TIME
|
2 years ago |
Matt Caswell
|
aedbb71b63
Move the TLS1.0/1.1/1.2 record crypto code into the new record layer
|
2 years ago |
Dmitry Belyavskiy
|
83ab43da0c
Check that IV length is not less than zero
|
2 years ago |
Tomas Mraz
|
38b051a1fe
SSL object refactoring using SSL_CONNECTION object
|
2 years ago |
Dmitry Belyavskiy
|
ce8822b7e5
Improve diagnostics on setting groups
|
2 years ago |
Tomas Mraz
|
a7863f9949
add_provider_groups: Clean up algorithm pointer on failure
|
2 years ago |
Tomas Mraz
|
89dd854307
Fix strict client chain check with TLS-1.3
|
2 years ago |
Bernd Edlinger
|
dc0ef292f7
Fix a crash in ssl_security_cert_chain
|
2 years ago |
Matt Caswell
|
fecb3aae22
Update copyright year
|
2 years ago |
Tomas Mraz
|
d5530efada
Add back check for the DH public key size
|
2 years ago |
Pauli
|
1e3317278e
ssl: replace ;; with ; as statement separator
|
2 years ago |
Bernd Edlinger
|
0a10825a00
Enable brainpool curves for TLS1.3
|
6 years ago |
Pauli
|
ed5b26ce0b
Add return value NULL checks that were missing
|
3 years ago |
Dmitry Belyavskiy
|
b4f1b7b658
Omitted signature_algorithms extension alerts updated
|
3 years ago |
Pauli
|
5ea4d7648c
ssl: replace tabs with spaces
|
3 years ago |
Pauli
|
d7b5c648d6
ssl: do not choose auto DH groups that are weaker than the security level
|
3 years ago |
Pauli
|
407820c0e3
tls: remove TODOs
|
3 years ago |