 rilysh
|
0f644b96d2
replace strstr() with strchr() for single characters
|
9 maanden geleden |
 Tomas Mraz
|
430dcbd046
Consolidate raising errors in SSL_CONF_cmd()
|
11 maanden geleden |
 Markus Minichmayr
|
b8590b2f36
Add option `SSL_OP_PREFER_NO_DHE_KEX`, allowing the server to prefer non-dhe psk key exchange over psk with dhe (config file option `PreferNoDHEKEX`, server option `prefer_no_dhe_kex`).
|
11 maanden geleden |
 Dimitri Papadopoulos
|
bbaeadb068
"foo * bar" should be "foo *bar"
|
1 jaar geleden |
 Matt Caswell
|
da1c088f59
Copyright year updates
|
1 jaar geleden |
 Steffen Nurpmeso
|
51cf034433
SSL_conf_cmd: add support for IgnoreUnexpectedEOF
|
1 jaar geleden |
|
Matt Caswell
|
a7f41885b3
Create the SSL object for QUIC-TLS
|
2 jaren geleden |
 Maxim Mikityanskiy
|
cd715b7e7f
Add support for KTLS zerocopy sendfile on Linux
|
2 jaren geleden |
 Todd Short
|
b67cb09f8d
Add support for compressed certificates (RFC8879)
|
3 jaren geleden |
|
Tomas Mraz
|
38b051a1fe
SSL object refactoring using SSL_CONNECTION object
|
2 jaren geleden |
|
Tomas Mraz
|
336d92eb20
Enable setting SSL_CERT_FLAG_TLS_STRICT with ssl config
|
2 jaren geleden |
|
Tomas Mraz
|
d1b3b67413
The -no_legacy_server_connect option applies to client
|
2 jaren geleden |
|
Tomas Mraz
|
65b2bb9ca0
Actually implement UnsafeLegacyServerConnect as documented
|
2 jaren geleden |
|
Matt Caswell
|
fecb3aae22
Update copyright year
|
2 jaren geleden |
 Dmitry Belyavskiy
|
fba140c735
str[n]casecmp => OPENSSL_strncasecmp
|
2 jaren geleden |
 Daniel Fiala
|
b2b8d1883a
SSL_conf_cmd: Allow DH Parameters at any position.
|
2 jaren geleden |
 yangyangtiantianlonglong
|
a829d53a14
apps: Add option -no_ems to s_client/s_server apps
|
2 jaren geleden |
|
Dmitry Belyavskiy
|
4832560be3
Disabling Encrypt-then-MAC extension in s_client/s_server
|
3 jaren geleden |
 Rich Salz
|
55373bfd41
Add SSL_OP_ALLOW_CLIENT_RENEGOTIATION
|
3 jaren geleden |
|
Rich Salz
|
f04bb0bce4
Slightly reformat ssl.h.in
|
3 jaren geleden |
|
Rich Salz
|
56bd17830f
Convert SSL_{CTX}_[gs]et_options to 64
|
3 jaren geleden |
 Benjamin Kaduk
|
cbbbc8fce4
Correct ssl_conf logic for "legacy_server_connect"
|
3 jaren geleden |
|
Matt Caswell
|
a3a54179b6
Only enable KTLS if it is explicitly configured
|
3 jaren geleden |
|
Matt Caswell
|
a28d06f3e9
Update copyright year
|
3 jaren geleden |
|
Tomas Mraz
|
fe75766c9c
Rename OSSL_ENCODER_CTX_new_by_EVP_PKEY and OSSL_DECODER_CTX_new_by_EVP_PKEY
|
3 jaren geleden |
|
Matt Caswell
|
462f4f4bc0
Remove OPENSSL_NO_EC guards from libssl
|
3 jaren geleden |
|
Matt Caswell
|
306b8e7e19
Add the nist group names as aliases for the normal TLS group names
|
3 jaren geleden |
|
Matt Caswell
|
163f6dc1f7
Implement a replacement for SSL_set_tmp_dh()
|
4 jaren geleden |
|
Matt Caswell
|
8b7df247b7
Disable the DHParameters config option in a no-deprecated build
|
4 jaren geleden |
 Richard Levitte
|
c48ffbcca1
SSL: refactor all SSLfatal() calls
|
4 jaren geleden |
