Remove special case code for SCTP reneg handling
[openssl.git] / ssl / statem / statem_srvr.c
2017-04-25 Matt CaswellRemove special case code for SCTP reneg handling
2017-04-07 Matt CaswellMove the extensions context codes into the public API
2017-03-29 FdaSilvaYYMore typo fixes
2017-03-24 Matt CaswellAdd server side support for TLSv1.3 downgrade mechanism
2017-03-17 Dr. Stephen HensonSupport draft-19 TLS certificate request format
2017-03-17 Dr. Stephen HensonMove parsing and construction of CA names to separate...
2017-03-16 Matt CaswellUpdates following review feedback
2017-03-16 Matt CaswellFix ciphersuite handling during an HRR
2017-03-16 Matt CaswellHelloRetryRequest updates for draft-19
2017-03-16 Matt CaswellCheck ClientHello boundary as per draft-19
2017-03-16 Matt CaswellUpdate end of early data processing for draft-19
2017-03-10 Matt CaswellUse the new TLSv1.3 certificate_required alert where...
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellOnly accept early_data if the negotiated ALPN is the...
2017-03-02 Matt CaswellValidate the ticket age for resumed sessions
2017-03-02 Matt CaswellDisallow handshake messages in the middle of early_data
2017-03-02 Matt CaswellFix changing of the cipher state when dealing with...
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-23 Benjamin KadukAdd SSL_CTX early callback
2017-02-23 Benjamin KadukRefactor SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukExport SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin KadukStore the number of extensions in CLIENTHELLO_MSG
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a server to receive a KeyUpdate...
2017-02-17 Matt CaswellProvide a function to send a KeyUpdate message
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
2017-02-15 Dr. Stephen HensonSimplify tls_construct_server_key_exchange
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-15 Dr. Stephen HensonChange tls_choose_sigalg so it can set errors and alerts.
2017-02-14 Matt CaswellRemove a double call to ssl3_send_alert()
2017-02-14 Matt CaswellImplement support for resumption with a HelloRetryRequest
2017-02-14 Matt CaswellAdd server side support for creating the Hello Retry...
2017-02-10 Dr. Stephen HensonReplace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
2017-02-02 Dr. Stephen HensonSet signature algorithm when choosing cipher
2017-02-02 Dr. Stephen HensonCosmetic change
2017-02-01 Todd ShortMajority rules, use session_ctx vs initial_ctx
2017-01-30 Dr. Stephen HensonUse uint16_t for signature scheme.
2017-01-30 Dr. Stephen Hensonuse RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellIf we have no suitable PSK kex modes then don't attempt...
2017-01-30 Matt CaswellMove session version consistency check
2017-01-30 Matt CaswellProvide a key_share extension finaliser
2017-01-30 Matt CaswellAdd support for the age_add field
2017-01-30 Matt CaswellConstruct the client side psk extension for TLSv1.3
2017-01-30 Matt CaswellCreate the NewSessionTicket message in TLSv1.3
2017-01-30 Matt CaswellMove state machine knowledge out of the record layer
2017-01-30 Matt CaswellRemove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS...
2017-01-28 Richard LevitteCorrect pointer to be freed
2017-01-26 Dr. Stephen HensonUse correct signature algorithm list when sending or...
2017-01-25 Matt CaswellFix memory leaks in the Certificate extensions code
2017-01-25 FdaSilvaYYFix a few double ;
2017-01-24 Benjamin KadukDo not overallocate for tmp.ciphers_raw
2017-01-24 Matt CaswellFix SSL_get0_raw_cipherlist()
2017-01-23 Matt CaswellFix SSL_VERIFY_CLIENT_ONCE
2017-01-10 Matt CaswellFix an uninit read picked up by Travis
2017-01-10 Matt CaswellExtend PSS signature support to TLSv1.2
2017-01-10 Matt CaswellUse NIDs instead of the old TLSv1.2 sigalgs hash and...
2017-01-10 Matt CaswellConvert Sigalgs processing to use ints
2017-01-10 Matt CaswellMake CertificateVerify TLS1.3 aware
2017-01-10 Matt CaswellMove Certificate Verify construction and processing...
2017-01-10 Rich SalzUse typedefs for PSK, NPN, ALPN callback functions
2017-01-10 Rich SalzMove extension data into sub-structs
2017-01-06 Matt CaswellFix various style issues following feedback
2017-01-06 Matt CaswellImplement TLSv1.3 style CertificateStatus
2017-01-06 Matt CaswellCreate Certificate messages in TLS1.3 format
2017-01-06 Matt CaswellExtends extension parsing to take the Certificate
2017-01-06 Matt CaswellExtend tls_construct_extensions() to enable passing...
2016-12-08 Matt CaswellIntroduce TLSEXT_STATUSTYPE_nothing constant
2016-12-08 Matt CaswellVarious style updates following extensions refactor
2016-12-08 Matt CaswellSplit ServerHello extensions
2016-12-08 Matt CaswellAvoid repeatedly scanning the list of extensions
2016-12-08 Matt CaswellSimplify ClientHello extension parsing
2016-12-08 Matt CaswellProvide server side extension init and finalisation...
2016-12-08 Matt CaswellMove client parsing of ServerHello extensions into...
2016-12-08 Matt CaswellMove ServerHello extension construction into the new...
2016-12-08 Matt CaswellAdd extensions construction support
2016-12-08 Matt CaswellRefactor ClientHello extension parsing
2016-12-08 Matt CaswellVerify that extensions are used in the correct context
2016-12-08 Matt CaswellAdd EncryptedExtensions message
2016-12-08 Matt CaswellSend and Receive a TLSv1.3 format ServerHello
2016-11-23 Matt CaswellFix some style issues identified during review
2016-11-23 Matt CaswellEnsure unexpected messages are handled consistently
2016-11-23 Matt CaswellUpdate state machine to be closer to TLS1.3
2016-11-23 Matt CaswellRemove old style NewSessionTicket from TLSv1.3
2016-11-17 Matt CaswellFix missing SSL_IS_TLS13(s) usage
2016-11-16 Matt CaswellFixed various style issues in the key_share code
2016-11-16 Matt CaswellValidate that the provided key_share is in supported_groups
2016-11-16 Matt CaswellStart using the key_share data to derive the PMS
2016-11-16 Matt CaswellAdd the key_share processing to the server side
2016-11-10 Matt CaswellRename the Elliptic Curves extension to supported_groups
2016-11-09 Matt CaswellAddress some supported_versions review comments
2016-11-09 Matt CaswellFix some missing checks for TLS1_3_VERSION_DRAFT
next