 Matt Caswell
|
cffafb5f57
Move some fields out of the SSL object and into the record layer object
|
vor 2 Jahren |
|
Matt Caswell
|
9cd9e0978b
Remove some use of SSL object from record layer
|
vor 2 Jahren |
 Tomas Mraz
|
38b051a1fe
SSL object refactoring using SSL_CONNECTION object
|
vor 2 Jahren |
 slontis
|
b740012f77
Check for EVP_MD being NULL inside ssl.
|
vor 2 Jahren |
 Dmitry Belyavskiy
|
2b5e89992e
Use safe pattern for buffer size determining in case of GOST key exchange
|
vor 2 Jahren |
|
Matt Caswell
|
fecb3aae22
Update copyright year
|
vor 2 Jahren |
|
Tomas Mraz
|
d204a50b89
tls_process_server_hello: Disallow repeated HRR
|
vor 2 Jahren |
|
Tomas Mraz
|
dfb39f7313
Replace handling of negative verification result with SSL_set_retry_verify()
|
vor 2 Jahren |
 Pauli
|
acce055778
ssl: better support TSAN operations
|
vor 2 Jahren |
 yangyangtiantianlonglong
|
e1c122711e
Delete unused param about get_construct_message_f
|
vor 2 Jahren |
 Peiwei Hu
|
10481d3384
Fix: some patches related to error exiting
|
vor 2 Jahren |
 xkernel
|
7b1264baab
fix the return check of EVP_PKEY_CTX_ctrl() in 5 spots
|
vor 2 Jahren |
|
xkernel
|
1b87116a0c
properly free the resource from CRYPTO_malloc
|
vor 2 Jahren |
 Dr. David von Oheimb
|
79b2a2f2ee
add OSSL_STACK_OF_X509_free() for commonly used pattern
|
vor 2 Jahren |
|
Matt Caswell
|
c1c1bb7c5e
Fix invalid handling of verify errors in libssl
|
vor 2 Jahren |
|
x2018
|
1287dabd0b
fix some code with obvious wrong coding style
|
vor 2 Jahren |
 Dr. David von Oheimb
|
4672e5de9e
tls_process_{client,server}_certificate(): allow verify_callback return > 1
|
vor 3 Jahren |
|
Matt Caswell
|
e54f0c9b2f
Avoid "excessive message size" for session tickets
|
vor 3 Jahren |
 Todd Short
|
25959e04c3
Optimize session cache flushing
|
vor 5 Jahren |
 Pauli
|
407820c0e3
tls: remove TODOs
|
vor 3 Jahren |
|
Tomas Mraz
|
ed576acdf5
Rename all getters to use get/get0 in name
|
vor 3 Jahren |
|
Pauli
|
dfefa4c164
ssl: ass size_t to RAND_bytes_ex()
|
vor 3 Jahren |
|
Pauli
|
0f8815aace
ssl: add zero strenght arguments to BN and RAND RNG calls
|
vor 3 Jahren |
 Rich Salz
|
449bdf3746
Use "" for include internal/xxx
|
vor 3 Jahren |
 Benjamin Kaduk
|
aa6bd216dd
Promote SSL_get_negotiated_group() for non-TLSv1.3
|
vor 3 Jahren |
|
Dmitry Belyavskiy
|
c0f4400c40
Use OCSP-specific error code for clarity
|
vor 3 Jahren |
|
Shane Lontis
|
3f883c7c83
Replace OSSL_PARAM_BLD_free_params() with OSSL_PARAM_free().
|
vor 3 Jahren |
 Nan Xiao
|
3201abeb46
Fix typo in statem_clnt.c
|
vor 3 Jahren |
|
Matt Caswell
|
39a140597d
Ensure buffer/length pairs are always in sync
|
vor 3 Jahren |
|
Pauli
|
3de7f014a9
ssl: fix coverity 1451515: out of bounds memory access
|
vor 3 Jahren |
