 Matt Caswell
|
5235ef44b9
Fix SSL_check_chain()
|
5 лет назад |
 raja-ashok
|
84d4b9e31d
API to get negotiated key exchange algorithm in TLS1.3
|
5 лет назад |
 Pauli
|
dd6b270618
Remove tab characters from C source files.
|
5 лет назад |
 Benjamin Kaduk
|
29948ac80c
Move 'shared_sigalgs' from cert_st to ssl_st
|
5 лет назад |
|
Matt Caswell
|
cd0fb43cbe
Following the previous 2 commits also move ecpointformats out of session
|
5 лет назад |
|
Matt Caswell
|
65dc5c3cc1
Fix no-ec with no-dh
|
5 лет назад |
|
Matt Caswell
|
dbc6268f68
Allow TLSv1.3 in a no-ec build
|
5 лет назад |
|
raja-ashok
|
9aaecbfc98
TLS1.3 FFDHE Support
|
5 лет назад |
 Todd Short
|
555cbb328e
Collapse ssl3_state_st (s3) into ssl_st
|
6 лет назад |
 Kurt Roeckx
|
5c587fb6b9
Use (D)TLS_MAX_VERSION_INTERNAL internally
|
6 лет назад |
 Richard Levitte
|
2c18d164f5
Following the license change, modify the boilerplates in ssl/
|
6 лет назад |
|
Matt Caswell
|
65d2c16cbe
Fix no-ec and no-tls1_2
|
6 лет назад |
 Viktor Dukhovni
|
a51c9f637c
Added missing signature algorithm reflection functions
|
6 лет назад |
|
Matt Caswell
|
de4dc59802
Don't negotiate TLSv1.3 if our EC cert isn't TLSv1.3 capable
|
6 лет назад |
 David Woodhouse
|
ecbb2fca93
Add EVP_PKEY_supports_digest_nid()
|
6 лет назад |
|
David Woodhouse
|
2d263a4a73
Honour mandatory digest on private key in has_usable_cert()
|
6 лет назад |
|
Matt Caswell
|
680bd131b6
Give a better error if an attempt is made to set a zero length groups list
|
6 лет назад |
|
Matt Caswell
|
b8fef8ee92
Don't use an RSA-PSS cert for RSA key exchange
|
6 лет назад |
|
Matt Caswell
|
b5b993b229
Use the same min-max version range on the client consistently
|
6 лет назад |
|
Matt Caswell
|
11d2641f96
Check that the public key OID matches the sig alg
|
6 лет назад |
|
Matt Caswell
|
871980a9ad
Do not use GOST sig algs in TLSv1.3 where possible
|
6 лет назад |
|
Pauli
|
8eab767a71
Check return from BN_set_word.
|
6 лет назад |
|
Matt Caswell
|
309371d626
Fix EAP-FAST
|
6 лет назад |
 Dmitry Belyavskiy
|
41f10305d8
Send GOST SignatureAlgorithms when TLS 1.2 in use
|
6 лет назад |
|
Dmitry Belyavskiy
|
1f65c0459a
Bugfix: GOST2012 certificates for GOST ciphersuites were broken.
|
6 лет назад |
|
Kurt Roeckx
|
5f96a95e25
Set sess to NULL after freeing it.
|
6 лет назад |
|
Matt Caswell
|
61fb59238d
Rework the decrypt ticket callback
|
6 лет назад |
|
Matt Caswell
|
c0638adeec
Fix ticket callbacks in TLSv1.3
|
6 лет назад |
|
Matt Caswell
|
ca50cd911c
Fix the MAX_CURVELIST definition
|
6 лет назад |
|
Matt Caswell
|
7500bc337a
Allow TLSv1.3 EC certs to use compressed points
|
6 лет назад |
