Allow the server to change the ciphersuite on resume
[openssl.git] / ssl / statem / statem_clnt.c
2017-06-16 Matt CaswellAllow the server to change the ciphersuite on resume
2017-06-06 Todd ShortFix #2400 Add NO_RENEGOTIATE option
2017-05-19 Matt CaswellTry to be more consistent about the alerts we send
2017-05-11 Bernd EdlingerFix gcc-7 warnings.
2017-05-11 Matt CaswellAdd some checks for trailing data after extension blocks
2017-05-11 Matt CaswellEnsure we fail with a decode error alert if the server...
2017-05-11 Matt CaswellFix more alert codes
2017-05-09 Matt CaswellVerify that if we have an HRR then something will change
2017-04-26 Tatsuhiro TsujikawaDon't treat PACKET_remaining() as boolean
2017-04-26 Tatsuhiro TsujikawaCall init and finalization functions per extension...
2017-04-26 Matt CaswellAlways duplicate the session on NewSessionTicket in...
2017-04-26 Matt CaswellAdd support for SSL_SESSION_is_resumable()
2017-04-26 Matt CaswellRemove TLS1.3 TODO around testing for session id length
2017-04-26 Matt CaswellAdd a ciphersuite config sanity check for clients
2017-04-25 Matt CaswellRemove special case code for SCTP reneg handling
2017-04-24 Matt CaswellDon't fail the connection in SSLv3 if server selects...
2017-04-24 Rich Salzif log fails, avoid pms getting double free
2017-04-07 Matt CaswellMove the extensions context codes into the public API
2017-03-29 FdaSilvaYYMore typo fixes
2017-03-28 FdaSilvaYYFix a few more typos
2017-03-24 Matt CaswellAdd client side support for TLSv1.3 downgrade mechanism
2017-03-24 Matt CaswellAdd server side support for TLSv1.3 downgrade mechanism
2017-03-17 Dr. Stephen HensonImplement certificate_authorities extension
2017-03-17 Dr. Stephen HensonSupport draft-19 TLS certificate request format
2017-03-17 Dr. Stephen HensonMove parsing and construction of CA names to separate...
2017-03-16 Matt CaswellHelloRetryRequest updates for draft-19
2017-03-16 Matt CaswellUpdate end of early data processing for draft-19
2017-03-07 Matt CaswellCheck TLSv1.3 ServerHello, Finished and KeyUpdates...
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellEnable the client to call SSL_read() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellRemove some TLSv1.3 TODOs that are no longer relevant
2017-03-02 Matt CaswellConstruct the server side early_data extension
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellChange the cipher state when sending early data
2017-03-02 Matt CaswellProvide functions to write early data
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-03-01 Emilia KasperRemove some obsolete/obscure internal define switches:
2017-02-28 Matt CaswellRemove some commented out code in libssl
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-24 Dr. Stephen HensonTidy up certificate type handling.
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-21 Dr. Stephen Hensonremove md array: it is not used any more.
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a client to send a KeyUpdate message
2017-02-17 Matt CaswellAdd the ability for a client to receive a KeyUpdate...
2017-02-16 Dr. Stephen HensonUse tls_choose_sigalg for client auth.
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-14 Matt CaswellVarious style fixes following review feedback
2017-02-14 Matt CaswellAdd client side support for parsing Hello Retry Request
2017-01-31 Dr. Stephen HensonRemove peer_md and use peer_sigalg instead.
2017-01-31 Dr. Stephen HensonDon't check certificate type against ciphersuite for...
2017-01-30 Matt CaswellFree up the memory for the NewSessionTicket extensions
2017-01-30 Dr. Stephen Hensonfix style issues
2017-01-30 Dr. Stephen HensonStore peer signature type.
2017-01-30 Dr. Stephen Hensonuse RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellExpand comment in tls_process_hello_req()
2017-01-30 Matt CaswellMiscellaneous style tweaks based on feedback received
2017-01-30 Matt CaswellEnsure the al variable is properly ininitialised in...
2017-01-30 Matt CaswellEnsure the age_add variable is properly initialised
2017-01-30 Matt CaswellAdd support for client side parsing of the PSK extension
2017-01-30 Matt CaswellAdd support for the age_add field
2017-01-30 Matt CaswellNever send a session id in TLS1.3
2017-01-30 Matt CaswellProcess incoming NewSessionTicket messages on the clien...
2017-01-30 Matt CaswellCreate the NewSessionTicket message in TLSv1.3
2017-01-30 Matt CaswellMove TLSv1.3 Session Ticket processing into the state...
2017-01-30 Matt CaswellMove state machine knowledge out of the record layer
2017-01-26 Richard LevitteBetter check of DH parameters in TLS data
2017-01-25 Matt CaswellFix memory leaks in the Certificate extensions code
2017-01-23 Cory BenfieldAdd support for key logging callbacks.
2017-01-10 Matt CaswellExtend PSS signature support to TLSv1.2
2017-01-10 Matt CaswellConvert Sigalgs processing to use ints
2017-01-10 Matt CaswellMake CertificateVerify TLS1.3 aware
2017-01-10 Matt CaswellMove Certificate Verify construction and processing...
2017-01-10 Rich SalzUse typedefs for PSK, NPN, ALPN callback functions
2017-01-10 Rich SalzMove extension data into sub-structs
2017-01-06 Matt CaswellFix various style issues following feedback
2017-01-06 Matt CaswellInitialise the al variable
2017-01-06 Matt CaswellImplement TLSv1.3 style CertificateStatus
2017-01-06 Matt CaswellCreate Certificate messages in TLS1.3 format
2017-01-06 Matt CaswellExtends extension parsing to take the Certificate
2017-01-06 Matt CaswellExtend tls_construct_extensions() to enable passing...
2016-12-19 Richard LevitteFix erroneous goto lable
2016-12-08 Kurt RoeckxOnly call memcpy when the length is larger than 0.
2016-12-08 Matt CaswellFix a travis failure
2016-12-08 Matt CaswellIntroduce TLSEXT_STATUSTYPE_nothing constant
2016-12-08 Matt CaswellVarious style updates following extensions refactor
2016-12-08 Matt CaswellFix a memory leak
2016-12-08 Matt CaswellSplit ServerHello extensions
2016-12-08 Matt CaswellMove ServerHello extension parsing into the new extensi...
2016-12-08 Matt CaswellMove client construction of ClientHello extensions...
2016-12-08 Matt CaswellAdd EncryptedExtensions message
2016-12-08 Matt CaswellSend and Receive a TLSv1.3 format ServerHello
2016-11-23 Matt CaswellFix missing NULL checks in CKE processing
2016-11-23 Matt CaswellUse ClientHello.legacy_version for the RSA pre-master...
2016-11-23 Matt CaswellFix some style issues with TLSv1.3 state machine PR
next