Mark generated functions unused (applies to safestack, lhash, sparse_array)
[openssl.git] / ssl / statem /
2019-02-14 Matt CaswellDon't signal SSL_CB_HANDSHAKE_START for TLSv1.3 post...
2019-02-01 Michael TuexenFix end-point shared secret for DTLS/SCTP
2019-01-24 Matt CaswellRevert "Keep the DTLS timer running after the end of...
2019-01-08 Matt CaswellDon't artificially limit the size of the ClientHello
2019-01-07 Matt CaswellDon't complain if we receive the cryptopro extension...
2019-01-06 Dmitry BelyavskiyRestore compatibility with GOST2001 implementations.
2018-12-05 Matt CaswellFix some SSL_export_keying_material() issues
2018-11-27 Paul YangFix access zero memory if SSL_DEBUG is enabled
2018-11-14 Matt CaswellFix no-ec and no-tls1_2
2018-11-12 Matt CaswellSeparate ca_names handling for client and server
2018-11-12 Matt CaswellDon't negotiate TLSv1.3 if our EC cert isn't TLSv1...
2018-11-08 Matt CaswellIgnore disabled ciphers when deciding if we are using ECC
2018-11-04 Benjamin KadukRestore sensible "sess_accept" counter tracking
2018-10-30 Matt CaswellDon't call the client_cert_cb immediately in TLSv1.3
2018-10-29 Richard Levittessl/statem: Don't compare size_t with less than zero
2018-10-19 Matt CaswellFix a DTLS memory leak
2018-10-17 Mansour AhmadiAdd a missing check on s->s3->tmp.pkey
2018-09-21 Matt CaswellDelay setting the sig algs until after the cert_cb...
2018-09-12 Bernd EdlingerFix a possible recursion in SSLfatal handling
2018-09-07 Matt CaswellDo not reset SNI data in SSL_do_handshake()
2018-09-07 Ben KadukRestore historical SSL_get_servername() behavior
2018-09-07 Matt CaswellEnsure certificate callbacks work correctly in TLSv1.3
2018-09-07 Matt CaswellProcess KeyUpdate and NewSessionTicket messages after...
2018-09-04 Matt CaswellSend a NewSessionTicket after using an external PSK
2018-09-04 Matt CaswellIgnore EPIPE when sending NewSessionTickets in TLSv1.3
2018-08-22 Matt CaswellDon't detect a downgrade where the server has a protoco...
2018-08-22 Matt CaswellUse the same min-max version range on the client consis...
2018-08-20 Matt CaswellChange Post Handshake auth so that it is opt-in
2018-08-15 Matt CaswellTurn on TLSv1.3 downgrade protection by default
2018-08-15 Matt CaswellUpdate code for the final RFC version of TLSv1.3 (RFC8446)
2018-08-14 Dmitry YakovlevMove SSL_DEBUG md fprintf after assignment
2018-08-09 Matt CaswellImprove fallback protection
2018-08-08 Matt CaswellTolerate encrypted or plaintext alerts
2018-08-08 Matt CaswellEnsure that we write out alerts correctly after early_data
2018-08-08 Matt CaswellFix a missing call to SSLfatal
2018-08-07 Andy Polyakovssl/*: switch to switch to Thread-Sanitizer-friendly...
2018-08-06 Matt CaswellEnsure we send an alert on error when processing a...
2018-07-20 Benjamin KadukNormalize SNI hostname handling for SSL and SSL_SESSION
2018-07-20 Benjamin Kadukconst-ify some input SSL * arguments
2018-07-20 Matt CaswellValidate legacy_version
2018-07-19 Matt CaswellDon't skip over early_data if we sent an HRR
2018-07-17 Matt CaswellFix no-psk
2018-07-17 Matt CaswellAlways issue new tickets when using TLSv1.3 stateful...
2018-07-17 Matt CaswellDon't remove sessions from the cache during PHA in...
2018-07-13 Matt CaswellAs a server don't select TLSv1.3 if we're not capable...
2018-07-13 Matt CaswellUse ssl_version_supported() when choosing server version
2018-07-03 Matt CaswellRemove TLSv1.3 tickets from the client cache as we...
2018-07-03 Matt CaswellRestore behaviour from commit 36ff232cf that was incorr...
2018-07-02 Matt CaswellAdd setters to set the early_data callback
2018-07-02 Matt CaswellMake the anti-replay feature optional
2018-07-02 Matt CaswellFix a NULL ptr deref in error path in tls_process_cke_dhe()
2018-06-26 Matt CaswellUse stateful tickets if we are doing anti-replay
2018-06-26 Matt CaswellRespect SSL_OP_NO_TICKET in TLSv1.3
2018-06-26 Matt CaswellRestructure the ticket construction code
2018-06-25 Matt CaswellDon't change a session once its in the cache
2018-06-11 Matt CaswellDon't send a warning alert in TLSv1.3
2018-06-07 Matt CaswellReformulate the if condition in tls_process_new_session...
2018-06-07 Matt CaswellDon't store the ticket nonce in the session
2018-06-07 Matt CaswellFix TLSv1.3 ticket nonces
2018-05-31 Matt CaswellEVP_MD_size() can return an error
2018-05-22 Matt CaswellFix no-ec in combination with no-dh
2018-05-17 Matt CaswellChange the default number of NewSessionTickets we send...
2018-05-17 Matt CaswellEnable the ability to set the number of TLSv1.3 session...
2018-05-15 Matt CaswellSuport TLSv1.3 draft 28
2018-05-12 Matt CaswellDon't memcpy the contents of an empty fragment
2018-05-11 Matt CaswellRework the decrypt ticket callback
2018-05-11 Matt CaswellFix ticket callbacks in TLSv1.3
2018-05-08 Matt CaswellKeep the DTLS timer running after the end of the handsh...
2018-05-08 Matt CaswellDon't fail on an out-of-order CCS in DTLS
2018-04-24 Matt CaswellIn a reneg use the same client_version we used last...
2018-04-24 Matt CaswellRemove some logically dead code
2018-04-20 Matt CaswellMake sure SSL_in_init() returns 0 at SSL_CB_HANDSHAKE_DONE
2018-04-17 Matt CaswellCheck the return from EVP_PKEY_get0_DH()
2018-04-17 Matt CaswellMake sure info callback knows about all handshake start...
2018-04-17 Matt CaswellCall the info callback on all handshake done events
2018-04-17 Matt CaswellIgnore the status_request extension in a resumption...
2018-04-03 Rich SalzSet error code on alloc failures
2018-04-02 Kurt RoeckxUse the private RNG for data that is not public
2018-03-30 Matt CaswellRevert commit 4a56d9a2
2018-03-28 Rich SalzRewrite the X509->alert mapping code
2018-03-28 Matt CaswellTolerate a Certificate using a non-supported group...
2018-03-27 Philippe Antoinestatem/statem_clnt.c: omit redundant check in tls_const...
2018-03-27 Matt CaswellAssert that alpn_selected is NULL before we assign it
2018-03-21 Matt CaswellDon't wait for dry at the end of a handshake
2018-03-21 Matt CaswellCheck for alerts while waiting for a dry event
2018-03-21 Peter WuFix stack-use-after-scope
2018-03-19 Todd ShortPlace ticket keys into secure memory
2018-03-19 Matt CaswellFix no-psk
2018-03-19 Kurt RoeckxDon't use a ssl specific DRBG anymore
2018-03-19 Bernd EdlingerFix a crash in SSLfatal due to invalid enc_write_ctx
2018-03-19 Matt CaswellAdd an anti-replay mechanism
2018-03-19 Matt CaswellDon't update the session cache when processing a client...
2018-03-19 Matt CaswellAlways call the new_session_cb when issuing a NewSessio...
2018-03-15 Matt CaswellRename EVP_PKEY_new_private_key()/EVP_PKEY_new_public_key()
2018-03-15 Matt CaswellAdd support for setting raw private HMAC keys
2018-03-15 Matt CaswellOnly update the server session cache when the session...
2018-03-14 Matt CaswellOnly allow supported_versions in a TLSv1.3 ServerHello
2018-03-12 Benjamin SaundersIntroduce SSL_CTX_set_stateless_cookie_{generate,verify}_cb
2018-03-12 Todd ShortSession Ticket app data
2018-03-09 Benjamin KadukReuse extension_is_relevant() in should_add_extension()
next