Merge early_data_info extension into early_data
[openssl.git] / ssl / statem /
2017-03-16 Matt CaswellMerge early_data_info extension into early_data
2017-03-16 Matt CaswellUpdate end of early data processing for draft-19
2017-03-15 Benjamin KadukRemove dead code
2017-03-15 Benjamin KadukTighten up client status_request processing
2017-03-15 Benjamin KadukClear alpn_selected_len for clients, too
2017-03-14 Benjamin KadukDe-obfuscate
2017-03-10 Matt CaswellUse the new TLSv1.3 certificate_required alert where...
2017-03-10 Matt CaswellCheck that the PSK extension is last
2017-03-07 Matt CaswellCheck TLSv1.3 ServerHello, Finished and KeyUpdates...
2017-03-06 Kurt RoeckxFix double free in cookie generation.
2017-03-04 Matt CaswellDon't call memcmp with a NULL pointer
2017-03-04 Matt CaswellAdd basic TLSv1.3 cookie support
2017-03-04 Matt CaswellFix a memory leak on an error path
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-02 Matt CaswellSilence some clang warnings
2017-03-02 Matt CaswellMake SSL_write_early_finish() an internal only function
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellEnable the client to call SSL_read() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellOnly accept early_data if the negotiated ALPN is the...
2017-03-02 Matt CaswellSkip early_data if appropriate after a HelloRetryRequest
2017-03-02 Matt CaswellDon't accept early_data if we are going to issue a...
2017-03-02 Matt CaswellAdd extra validation parsing the server-to-client early...
2017-03-02 Matt CaswellRemove some TLSv1.3 TODOs that are no longer relevant
2017-03-02 Matt CaswellValidate the ticket age for resumed sessions
2017-03-02 Matt CaswellDisallow handshake messages in the middle of early_data
2017-03-02 Matt CaswellImplement client side parsing of the early_data extension
2017-03-02 Matt CaswellFix changing of the cipher state when dealing with...
2017-03-02 Matt CaswellConstruct the server side early_data extension
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellChange the cipher state when sending early data
2017-03-02 Matt CaswellParse the early_data extension
2017-03-02 Matt CaswellConstruct the early_data extension
2017-03-02 Matt CaswellProvide functions to write early data
2017-03-02 Matt CaswellParse the ticket_early_data_info extension
2017-03-02 Matt CaswellConstruct the ticket_early_data_info extension
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-03-01 Emilia KasperRemove some obsolete/obscure internal define switches:
2017-02-28 Matt CaswellRemove some commented out code in libssl
2017-02-28 Emilia KasperClean up references to FIPS
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-24 Dr. Stephen HensonTidy up certificate type handling.
2017-02-23 Benjamin KadukAdd SSL_CTX early callback
2017-02-23 Benjamin KadukPrepare for WORK_MORE_C
2017-02-23 Benjamin KadukRefactor SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukExport SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin KadukStore the number of extensions in CLIENTHELLO_MSG
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-21 Dr. Stephen Hensonremove md array: it is not used any more.
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellLimit the number of KeyUpdate messages we can process
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a server to receive a KeyUpdate...
2017-02-17 Matt CaswellAdd the ability for a client to send a KeyUpdate message
2017-02-17 Matt CaswellAdd the ability for a client to receive a KeyUpdate...
2017-02-17 Matt CaswellProvide a function to send a KeyUpdate message
2017-02-16 Dr. Stephen HensonUse tls_choose_sigalg for client auth.
2017-02-16 Matt CaswellDon't change the state of the ETM flags until CCS proce...
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
2017-02-15 Dr. Stephen HensonSimplify tls_construct_server_key_exchange
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-15 Dr. Stephen HensonChange tls_choose_sigalg so it can set errors and alerts.
2017-02-14 Matt CaswellFix no-ec compilation
2017-02-14 Matt CaswellRemove a double call to ssl3_send_alert()
2017-02-14 Matt CaswellFix a bogus uninit variable warning
2017-02-14 Matt CaswellAdd a bytestogroup macro
2017-02-14 Matt CaswellVarious style fixes following review feedback
2017-02-14 Matt CaswellImplement support for resumption with a HelloRetryRequest
2017-02-14 Matt CaswellAdd client side support for parsing Hello Retry Request
2017-02-14 Matt CaswellAdd server side support for creating the Hello Retry...
2017-02-14 Matt CaswellMake the context available to the extensions parse...
2017-02-10 Dr. Stephen HensonReplace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
2017-02-03 Bernd EdlingerCombined patch against master branch for the following...
2017-02-02 Dr. Stephen HensonRemove special case for TLS 1.3.
2017-02-02 Dr. Stephen HensonSet signature algorithm when choosing cipher
2017-02-02 Dr. Stephen HensonCosmetic change
2017-02-02 Cory BenfieldAdd support for logging out TLSv1.3 secrets
2017-02-01 Todd ShortMajority rules, use session_ctx vs initial_ctx
2017-01-31 Dr. Stephen HensonRemove peer_md and use peer_sigalg instead.
2017-01-31 Dr. Stephen HensonDon't check certificate type against ciphersuite for...
2017-01-30 Matt CaswellFree up the memory for the NewSessionTicket extensions
2017-01-30 Dr. Stephen Hensonfix style issues
2017-01-30 Dr. Stephen HensonStore peer signature type.
2017-01-30 Dr. Stephen HensonUse uint16_t for signature scheme.
2017-01-30 Dr. Stephen Hensonuse RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellExpand comment in tls_process_hello_req()
2017-01-30 Matt CaswellAdd a TODO around validating the ticket age
2017-01-30 Matt CaswellVarious style fixes following review feedback
2017-01-30 Matt CaswellIf we have no suitable PSK kex modes then don't attempt...
2017-01-30 Matt CaswellMiscellaneous style tweaks based on feedback received
2017-01-30 Matt CaswellEnsure the al variable is properly ininitialised in...
2017-01-30 Matt CaswellEnsure the age_add variable is properly initialised
2017-01-30 Matt CaswellAlways ensure that session->cipher is set
2017-01-30 Matt CaswellUse the correct session resumption mechanism
2017-01-30 Matt CaswellMove session version consistency check
2017-01-30 Matt CaswellSet the kex modes on the client too.
next