Enable the ability to set the number of TLSv1.3 session tickets sent
[openssl.git] / ssl / statem / statem_srvr.c
2018-05-17 Matt CaswellEnable the ability to set the number of TLSv1.3 session...
2018-05-11 Matt CaswellRework the decrypt ticket callback
2018-05-11 Matt CaswellFix ticket callbacks in TLSv1.3
2018-05-08 Matt CaswellDon't fail on an out-of-order CCS in DTLS
2018-04-17 Matt CaswellCheck the return from EVP_PKEY_get0_DH()
2018-04-17 Matt CaswellMake sure info callback knows about all handshake start...
2018-04-02 Kurt RoeckxUse the private RNG for data that is not public
2018-03-30 Matt CaswellRevert commit 4a56d9a2
2018-03-28 Rich SalzRewrite the X509->alert mapping code
2018-03-27 Matt CaswellAssert that alpn_selected is NULL before we assign it
2018-03-19 Todd ShortPlace ticket keys into secure memory
2018-03-19 Kurt RoeckxDon't use a ssl specific DRBG anymore
2018-03-19 Matt CaswellDon't update the session cache when processing a client...
2018-03-19 Matt CaswellAlways call the new_session_cb when issuing a NewSessio...
2018-03-15 Matt CaswellOnly update the server session cache when the session...
2018-03-12 Todd ShortSession Ticket app data
2018-02-28 Kurt RoeckxTell the ciphers which DRBG to use for generating rando...
2018-02-23 PauliRemove unreachable statement.
2018-02-01 Todd ShortAdd TLSv1.3 post-handshake authentication (PHA)
2018-01-30 Matt CaswellMove decisions about whether to accept reneg into the...
2018-01-24 Matt CaswellFix logic around when to send an HRR based on cookies
2018-01-24 Matt CaswellAdd support for sending TLSv1.3 cookies
2017-12-28 Matt CaswellDon't flush the ClientHello if we're going to send...
2017-12-26 Paul YangRemove outdated comments
2017-12-17 Paul YangRemove spaces at end of line in ssl/statem
2017-12-14 Matt CaswellFix server side HRR flushing
2017-12-14 Matt CaswellSend supported_versions in an HRR
2017-12-14 Matt CaswellUpdate state machine to send CCS based on whether we...
2017-12-14 Matt CaswellMerge HRR into ServerHello
2017-12-14 Matt CaswellSend a CCS after ServerHello in TLSv1.3 if using middle...
2017-12-14 Matt CaswellImplement session id TLSv1.3 middlebox compatibility...
2017-12-14 Matt CaswellUpdate ServerHello to new draft-22 format
2017-12-04 Matt CaswellFix some formatting nits
2017-12-04 Matt CaswellAdd some more cleanups
2017-12-04 Matt CaswellConvert remaining functions in statem_srvr.c to use...
2017-12-04 Matt CaswellConvert the state machine code to use SSLfatal()
2017-09-26 Dr. Stephen HensonReplace tls1_ec_curve_id2nid.
2017-09-26 Dr. Stephen HensonReturn group id in tls1_shared_group
2017-09-08 David BenjaminIntroduce named constants for the ClientHello callback.
2017-09-08 David BenjaminRename SSL_CTX_set_early_cb to SSL_CTX_set_client_hello_cb.
2017-09-01 Andy Polyakovssl/statem/*.c: address "enum mixed with another type...
2017-08-31 Matt CaswellClient side sanity check of ALPN after server has accep...
2017-08-31 Matt CaswellAdd server side sanity checks of SNI/ALPN for use with...
2017-08-15 Benjamin KadukMove ALPN handling from finalizer to delayed call
2017-08-03 Rich SalzAdd a DRBG to each SSL object
2017-07-18 Matt CaswellFix early_data with an HRR
2017-07-07 Matt CaswellUpdates following review feedback of TLSv1.3 draft...
2017-07-07 Matt CaswellSend and receive the ticket_nonce field in a NewSession...
2017-06-21 Dr. Stephen HensonAllow Ed25519 in TLS 1.2
2017-06-21 Dr. Stephen HensonConvert key exchange to one shot call
2017-06-21 Rich SalzMerge Nokia copyright notice into standard
2017-06-20 Rich SalzModify Sun copyright to follow OpenSSL style
2017-06-16 Matt CaswellTweak the check that a ciphersuite has not changed...
2017-06-16 Matt CaswellFix an uninitialised variable warning
2017-06-16 Matt CaswellMove ciphersuite selection before session resumption...
2017-06-16 Matt CaswellAllow the server to change the ciphersuite on resume
2017-06-11 Rich SalzIf-guard to avoid null ptr deref in statem_srvr.c
2017-06-06 Todd ShortFix #2400 Add NO_RENEGOTIATE option
2017-05-19 Matt CaswellTry to be more consistent about the alerts we send
2017-05-11 Matt CaswellVerify that there is no trailing data after the extensi...
2017-05-09 Matt CaswellVerify that only NULL compression is sent in TLSv1...
2017-05-02 Matt CaswellFix comment around safari fingerprint check
2017-04-26 Tatsuhiro TsujikawaDon't treat PACKET_remaining() as boolean
2017-04-26 Tatsuhiro TsujikawaCall init and finalization functions per extension...
2017-04-26 Matt CaswellDon't overwrite the alert value if there is no alert...
2017-04-25 Matt CaswellRemove special case code for SCTP reneg handling
2017-04-07 Matt CaswellMove the extensions context codes into the public API
2017-03-29 FdaSilvaYYMore typo fixes
2017-03-24 Matt CaswellAdd server side support for TLSv1.3 downgrade mechanism
2017-03-17 Dr. Stephen HensonSupport draft-19 TLS certificate request format
2017-03-17 Dr. Stephen HensonMove parsing and construction of CA names to separate...
2017-03-16 Matt CaswellUpdates following review feedback
2017-03-16 Matt CaswellFix ciphersuite handling during an HRR
2017-03-16 Matt CaswellHelloRetryRequest updates for draft-19
2017-03-16 Matt CaswellCheck ClientHello boundary as per draft-19
2017-03-16 Matt CaswellUpdate end of early data processing for draft-19
2017-03-10 Matt CaswellUse the new TLSv1.3 certificate_required alert where...
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellOnly accept early_data if the negotiated ALPN is the...
2017-03-02 Matt CaswellValidate the ticket age for resumed sessions
2017-03-02 Matt CaswellDisallow handshake messages in the middle of early_data
2017-03-02 Matt CaswellFix changing of the cipher state when dealing with...
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-23 Benjamin KadukAdd SSL_CTX early callback
2017-02-23 Benjamin KadukRefactor SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukExport SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin KadukStore the number of extensions in CLIENTHELLO_MSG
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a server to receive a KeyUpdate...
2017-02-17 Matt CaswellProvide a function to send a KeyUpdate message
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
next