Clear outputs in PKCS12_parse error handling.
[openssl.git] / ssl / t1_lib.c
2017-07-13 Dr. Stephen HensonUse cert tables in ssl_set_sig_mask
2017-07-13 Dr. Stephen HensonUse certificate tables instead of ssl_cert_type
2017-07-13 Dr. Stephen HensonUse certificate tables instead of ssl_cipher_get_cert_i...
2017-07-13 Dr. Stephen HensonReplace tls12_get_pkey_idx
2017-06-29 Matt CaswellUpdate SSL_export_keying_material() for TLSv1.3
2017-06-25 Benjamin KadukDisallow DSA/SHA1/etc. for pure TLS 1.3 ClientHellos
2017-06-21 Dr. Stephen HensonUse EVP_PKEY_X25519, EVP_PKEY_ED25519 instead of NIDs...
2017-06-21 Dr. Stephen HensonAllow Ed25519 in TLS 1.2
2017-06-21 Dr. Stephen HensonHandle signature algorithms with no associated digest
2017-06-21 Dr. Stephen HensonAdd Ed25519 signature algorithm
2017-06-21 Dr. Stephen HensonAdd Ed25519 to signature algorithm table
2017-06-21 Dr. Stephen HensonAdd index for ED25519
2017-06-21 Dr. Stephen HensonUse X509_get_signature_info to get signature strength.
2017-06-15 Benjamin KadukFix no-ec
2017-06-08 Matt CaswellAdd back support for SHA224 based sig algs
2017-05-22 Matt CaswellConvert existing usage of assert() to ossl_assert(...
2017-05-19 Matt CaswellTry to be more consistent about the alerts we send
2017-04-26 Matt CaswellAdd a ciphersuite config sanity check for servers
2017-04-24 Matt CaswellDon't fail the connection in SSLv3 if server selects...
2017-04-03 Dr. Stephen HensonNew certificate_authorities functions
2017-03-29 FdaSilvaYYMore typo fixes
2017-03-10 Bernd EdlingerAvoid questionable use of the value of a pointer
2017-03-10 Bernd EdlingerFixup previous merge.
2017-03-03 Dr. Stephen HensonSet specific error is we have no valid signature algori...
2017-03-03 Dr. Stephen HensonSignature algorithm enhancement.
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-03 Dr. Stephen HensonDon't allow DSA for TLS 1.3
2017-02-25 Dr. Stephen HensonFor TLS 1.3 reject SHA1 TLS signatures
2017-02-24 Dr. Stephen HensonReject compressed point format with TLS 1.3
2017-02-24 Dr. Stephen HensonAdd SuiteB support to tls_choose_sigalg()
2017-02-24 Dr. Stephen HensonTidy up certificate type handling.
2017-02-22 Bernd EdlingerAdd some more consistency checks in tls_decrypt_ticket.
2017-02-21 Dr. Stephen HensonSet default validity flags.
2017-02-21 Dr. Stephen Hensonremove md array: it is not used any more.
2017-02-17 Dr. Stephen HensonExplicitly disallow DSA for TLS 1.3
2017-02-16 Dr. Stephen HensonUse tls_choose_sigalg for client auth.
2017-02-16 Dr. Stephen HensonAdd client side support to tls_choose_sigalg.
2017-02-16 Dr. Stephen HensonFix warning
2017-02-15 Dr. Stephen HensonSet current certificate to selected certificate.
2017-02-15 Dr. Stephen HensonSkip curve check if sigalg doesn't specify a curve.
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-15 Dr. Stephen HensonAdd sigalg for earlier TLS versions
2017-02-15 Dr. Stephen HensonChange tls_choose_sigalg so it can set errors and alerts.
2017-02-14 Bernd EdlingerUse TLSEXT_KEYNAME_LENGTH in tls_decrypt_ticket.
2017-02-10 Dr. Stephen HensonReplace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
2017-02-10 Dr. Stephen HensonCheck index >= 0 as 0 is a valid index.
2017-02-09 Peter WuSSL_get_shared_sigalgs: handle negative idx parameter
2017-02-03 Richard LevitteFix "no-ec"
2017-02-02 Dr. Stephen HensonAdd function tls_choose_sigalg().
2017-02-01 Todd ShortMajority rules, use session_ctx vs initial_ctx
2017-01-31 Dr. Stephen HensonTidy up Suite B logic
2017-01-31 Dr. Stephen HensonRemove peer_md and use peer_sigalg instead.
2017-01-31 Dr. Stephen HensonSimplify sigalgs code.
2017-01-31 Dr. Stephen HensonAdd digest and key indices to table.
2017-01-31 Dr. Stephen HensonAdd TLS 1.3 signing curve check
2017-01-31 Dr. Stephen HensonOnly allow PSS signatures with RSA keys and TLS 1.3
2017-01-31 Dr. Stephen HensonStore table entry to peer signature algorithm.
2017-01-30 Dr. Stephen HensonUpdate macros.
2017-01-30 Dr. Stephen HensonFix TLS 1.2 and no sigalgs.
2017-01-30 Dr. Stephen HensonReplace TLS_SIGALGS with SIGALG_LOOKUP
2017-01-30 Dr. Stephen HensonSupport TLS 1.3 signature scheme names.
2017-01-30 Dr. Stephen HensonExtend TLS 1.3 signature table.
2017-01-30 Dr. Stephen HensonUse shared signature algorithm list to find type.
2017-01-30 Dr. Stephen HensonAdd SSL_get_peer_signature_type_nid() function.
2017-01-30 Dr. Stephen HensonStore peer signature type.
2017-01-30 Dr. Stephen HensonMore complete PSS support.
2017-01-30 Dr. Stephen HensonUse uint16_t for signature scheme.
2017-01-30 Matt CaswellVarious style fixes following review feedback
2017-01-30 Matt CaswellRemove unneccessary comments
2017-01-30 Matt CaswellMake the "ticket" function return codes clearer
2017-01-30 Matt CaswellUse the correct session resumption mechanism
2017-01-30 Matt CaswellImplement Server side of PSK extension parsing
2017-01-26 Dr. Stephen HensonUse correct signature algorithm list when sending or...
2017-01-18 Rich SalzIf client doesn't send curves list, don't assume all.
2017-01-10 Matt CaswellFix no-ec following sigalgs refactor
2017-01-10 Matt CaswellFix tls1_set_sigalgs() length calculation
2017-01-10 Matt CaswellAdd some missing sigalgs
2017-01-10 Matt CaswellFix a Travis failure
2017-01-10 Matt CaswellExtend PSS signature support to TLSv1.2
2017-01-10 Matt CaswellAdd a TLS1.3 TODO for setting of sig algs
2017-01-10 Matt CaswellIgnore PKCS1 based sig algs in TLSv1.3
2017-01-10 Matt CaswellVerify that the sig algs extension has been sent for...
2017-01-10 Matt CaswellRemove some unneeded functions
2017-01-10 Matt CaswellUse NIDs instead of the old TLSv1.2 sigalgs hash and...
2017-01-10 Matt CaswellRemove a redundant function
2017-01-10 Matt CaswellConvert Sigalgs processing to use ints
2017-01-10 Rich SalzMove extension data into sub-structs
2016-12-08 Matt CaswellAvoid repeatedly scanning the list of extensions
2016-12-08 Matt CaswellMove client construction of ClientHello extensions...
2016-12-08 Matt CaswellMove client parsing of ServerHello extensions into...
2016-12-08 Matt CaswellMove ServerHello extension construction into the new...
2016-12-08 Matt CaswellRefactor ClientHello extension parsing
2016-11-29 Matt CaswellUse the TLSv1.3 nonce construction
2016-11-23 Matt CaswellFix missing NULL checks in key_share processing
2016-11-23 Matt CaswellFix some style issues identified during review
2016-11-23 Matt CaswellFix SSL_IS_TLS13(s)
2016-11-23 Matt CaswellUpdate state machine to be closer to TLS1.3
2016-11-23 Matt CaswellRemove old style NewSessionTicket from TLSv1.3
2016-11-16 Matt CaswellMove getting the curvelist for client and server out...
next