Frederik Wedel-Heinen
|
35306a2929
Disable middlebox for dtls
|
6 miesięcy temu |
Frederik Wedel-Heinen
|
be225d0093
Remove obsolete TODO and guards for post handshake authentication in DTLS 1.3
|
11 miesięcy temu |
Frederik Wedel-Heinen
|
3a9148e0cd
Update dtls max version
|
1 rok temu |
Frederik Wedel-Heinen
|
49c1e660d7
Sanity tests of inputs to ssl_version_cmp
|
6 miesięcy temu |
Frederik Wedel-Heinen
|
1bd689ab65
Do DTLS13 and TLS13 connection version check in one macro
|
7 miesięcy temu |
Frederik Wedel-Heinen
|
2496f91d4e
Fix sending session ids in DTLS-1.3
|
10 miesięcy temu |
Frederik Wedel-Heinen
|
e758f33cb0
Update tls state machine logic to support dtls1.3 alongside tls1.3
|
1 rok temu |
Tim Perry
|
972ee925b1
Use empty renegotiate extension instead of SCSV for TLS > 1.0
|
7 miesięcy temu |
Richard Levitte
|
b646179229
Copyright year updates
|
8 miesięcy temu |
Frederik Wedel-Heinen
|
4897bd2022
Move increment of dtls epoch to change cipher state function
|
10 miesięcy temu |
Frederik Wedel-Heinen
|
6fd3794814
Simplify ssl protocol version comparisons.
|
10 miesięcy temu |
Hugo Landau
|
c30aee71f9
Make scsv read-only
|
11 miesięcy temu |
Alexey Fofanov
|
9890cc42da
set_client_ciphersuite(): Fix for potential UB if session->cipher is NULL
|
1 rok temu |
Dimitri Papadopoulos
|
23def9d371
Fix typos found by codespell
|
1 rok temu |
Dimitri Papadopoulos
|
bbaeadb068
"foo * bar" should be "foo *bar"
|
1 rok temu |
Matt Caswell
|
84a149254f
Change the TLS handshake keys early if we're not doing early data
|
1 rok temu |
Matt Caswell
|
50a0af2e41
TLS KeyUpdate messages are not allowed in QUIC
|
1 rok temu |
Jairus Christensen
|
cee0628e0d
[feat] SSL RTT in both client and server statem. SSL_get_handshake_rtt makes it available
|
1 rok temu |
Tomas Mraz
|
1eef26bd89
Do not send the empty renegotiation info SCSV in QUIC
|
1 rok temu |
Todd Short
|
3c95ef22df
RFC7250 (RPK) support
|
3 lat temu |
VeronikaNguyen
|
c6d14bfd5f
Added `CERTIFICATE_VERIFY_MAX_LENGTH` constant
|
1 rok temu |
Michael Baentsch
|
ee58915cfd
first cut at sigalg loading
|
2 lat temu |
Matt Caswell
|
3f9175c7a4
Extend the new_record_layer function
|
2 lat temu |
Tomas Mraz
|
97b8db1af2
Make error reason for disallowed legacy sigalg more specific
|
1 rok temu |
Matt Caswell
|
f471f60a8a
Remove remaining refs to enc_(write|read)_ctx/(read|write)_hash
|
2 lat temu |
Todd Short
|
3840271e98
Add zlib oneshot compression
|
2 lat temu |
Todd Short
|
d06d5d6b68
Fix coverity 1516094 uninit
|
2 lat temu |
Matt Caswell
|
b92fc4ae18
Remove some redundant code
|
2 lat temu |
Todd Short
|
72620ac791
Add `for_comp` flag when retrieving certs for compression
|
2 lat temu |
Todd Short
|
7e3cacac94
Update COMP_METHOD
|
2 lat temu |