Convert key exchange to one shot call
[openssl.git] / ssl / statem / statem_srvr.c
2017-06-21 Dr. Stephen HensonConvert key exchange to one shot call
2017-06-21 Rich SalzMerge Nokia copyright notice into standard
2017-06-20 Rich SalzModify Sun copyright to follow OpenSSL style
2017-06-16 Matt CaswellTweak the check that a ciphersuite has not changed...
2017-06-16 Matt CaswellFix an uninitialised variable warning
2017-06-16 Matt CaswellMove ciphersuite selection before session resumption...
2017-06-16 Matt CaswellAllow the server to change the ciphersuite on resume
2017-06-11 Rich SalzIf-guard to avoid null ptr deref in statem_srvr.c
2017-06-06 Todd ShortFix #2400 Add NO_RENEGOTIATE option
2017-05-19 Matt CaswellTry to be more consistent about the alerts we send
2017-05-11 Matt CaswellVerify that there is no trailing data after the extensi...
2017-05-09 Matt CaswellVerify that only NULL compression is sent in TLSv1...
2017-05-02 Matt CaswellFix comment around safari fingerprint check
2017-04-26 Tatsuhiro TsujikawaDon't treat PACKET_remaining() as boolean
2017-04-26 Tatsuhiro TsujikawaCall init and finalization functions per extension...
2017-04-26 Matt CaswellDon't overwrite the alert value if there is no alert...
2017-04-25 Matt CaswellRemove special case code for SCTP reneg handling
2017-04-07 Matt CaswellMove the extensions context codes into the public API
2017-03-29 FdaSilvaYYMore typo fixes
2017-03-24 Matt CaswellAdd server side support for TLSv1.3 downgrade mechanism
2017-03-17 Dr. Stephen HensonSupport draft-19 TLS certificate request format
2017-03-17 Dr. Stephen HensonMove parsing and construction of CA names to separate...
2017-03-16 Matt CaswellUpdates following review feedback
2017-03-16 Matt CaswellFix ciphersuite handling during an HRR
2017-03-16 Matt CaswellHelloRetryRequest updates for draft-19
2017-03-16 Matt CaswellCheck ClientHello boundary as per draft-19
2017-03-16 Matt CaswellUpdate end of early data processing for draft-19
2017-03-10 Matt CaswellUse the new TLSv1.3 certificate_required alert where...
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellOnly accept early_data if the negotiated ALPN is the...
2017-03-02 Matt CaswellValidate the ticket age for resumed sessions
2017-03-02 Matt CaswellDisallow handshake messages in the middle of early_data
2017-03-02 Matt CaswellFix changing of the cipher state when dealing with...
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-23 Benjamin KadukAdd SSL_CTX early callback
2017-02-23 Benjamin KadukRefactor SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukExport SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin KadukStore the number of extensions in CLIENTHELLO_MSG
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a server to receive a KeyUpdate...
2017-02-17 Matt CaswellProvide a function to send a KeyUpdate message
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
2017-02-15 Dr. Stephen HensonSimplify tls_construct_server_key_exchange
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-15 Dr. Stephen HensonChange tls_choose_sigalg so it can set errors and alerts.
2017-02-14 Matt CaswellRemove a double call to ssl3_send_alert()
2017-02-14 Matt CaswellImplement support for resumption with a HelloRetryRequest
2017-02-14 Matt CaswellAdd server side support for creating the Hello Retry...
2017-02-10 Dr. Stephen HensonReplace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
2017-02-02 Dr. Stephen HensonSet signature algorithm when choosing cipher
2017-02-02 Dr. Stephen HensonCosmetic change
2017-02-01 Todd ShortMajority rules, use session_ctx vs initial_ctx
2017-01-30 Dr. Stephen HensonUse uint16_t for signature scheme.
2017-01-30 Dr. Stephen Hensonuse RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellIf we have no suitable PSK kex modes then don't attempt...
2017-01-30 Matt CaswellMove session version consistency check
2017-01-30 Matt CaswellProvide a key_share extension finaliser
2017-01-30 Matt CaswellAdd support for the age_add field
2017-01-30 Matt CaswellConstruct the client side psk extension for TLSv1.3
2017-01-30 Matt CaswellCreate the NewSessionTicket message in TLSv1.3
2017-01-30 Matt CaswellMove state machine knowledge out of the record layer
2017-01-30 Matt CaswellRemove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS...
2017-01-28 Richard LevitteCorrect pointer to be freed
2017-01-26 Dr. Stephen HensonUse correct signature algorithm list when sending or...
2017-01-25 Matt CaswellFix memory leaks in the Certificate extensions code
2017-01-25 FdaSilvaYYFix a few double ;
2017-01-24 Benjamin KadukDo not overallocate for tmp.ciphers_raw
2017-01-24 Matt CaswellFix SSL_get0_raw_cipherlist()
2017-01-23 Matt CaswellFix SSL_VERIFY_CLIENT_ONCE
2017-01-10 Matt CaswellFix an uninit read picked up by Travis
2017-01-10 Matt CaswellExtend PSS signature support to TLSv1.2
2017-01-10 Matt CaswellUse NIDs instead of the old TLSv1.2 sigalgs hash and...
2017-01-10 Matt CaswellConvert Sigalgs processing to use ints
2017-01-10 Matt CaswellMake CertificateVerify TLS1.3 aware
2017-01-10 Matt CaswellMove Certificate Verify construction and processing...
2017-01-10 Rich SalzUse typedefs for PSK, NPN, ALPN callback functions
2017-01-10 Rich SalzMove extension data into sub-structs
2017-01-06 Matt CaswellFix various style issues following feedback
2017-01-06 Matt CaswellImplement TLSv1.3 style CertificateStatus
2017-01-06 Matt CaswellCreate Certificate messages in TLS1.3 format
2017-01-06 Matt CaswellExtends extension parsing to take the Certificate
2017-01-06 Matt CaswellExtend tls_construct_extensions() to enable passing...
2016-12-08 Matt CaswellIntroduce TLSEXT_STATUSTYPE_nothing constant
2016-12-08 Matt CaswellVarious style updates following extensions refactor
2016-12-08 Matt CaswellSplit ServerHello extensions
2016-12-08 Matt CaswellAvoid repeatedly scanning the list of extensions
2016-12-08 Matt CaswellSimplify ClientHello extension parsing
2016-12-08 Matt CaswellProvide server side extension init and finalisation...
2016-12-08 Matt CaswellMove client parsing of ServerHello extensions into...
2016-12-08 Matt CaswellMove ServerHello extension construction into the new...
2016-12-08 Matt CaswellAdd extensions construction support
next