Document in CHANGES that config now recognises 64-bit mingw
[openssl.git] / ssl /
2017-03-10 PauliUse the callbacks from the SSL object instead of the...
2017-03-10 Bernd EdlingerAvoid questionable use of the value of a pointer
2017-03-10 Matt CaswellUse the new TLSv1.3 certificate_required alert where...
2017-03-10 Matt CaswellCheck that the PSK extension is last
2017-03-10 Bernd EdlingerFixup previous merge.
2017-03-08 Roberto Guimaraesthis change will prevent undefined behavior when src...
2017-03-08 Matt CaswellFix no-comp
2017-03-07 Matt CaswellCheck TLSv1.3 ServerHello, Finished and KeyUpdates...
2017-03-07 Matt CaswellProvide a function to test whether we have unread recor...
2017-03-07 Rich SalzGet pointer type right in BIO_ssl_shutdown()
2017-03-06 Matt CaswellTweak the TLSv1.3 record overflow limits
2017-03-06 Kurt RoeckxFix double free in cookie generation.
2017-03-04 Matt CaswellDon't call memcmp with a NULL pointer
2017-03-04 Matt CaswellAdd basic TLSv1.3 cookie support
2017-03-04 Matt CaswellFix a memory leak on an error path
2017-03-03 Dr. Stephen HensonSet specific error is we have no valid signature algori...
2017-03-03 Dr. Stephen HensonSignature algorithm enhancement.
2017-03-03 Dr. Stephen HensonDisallow zero length signature algorithms
2017-03-03 Dr. Stephen HensonDon't allow DSA for TLS 1.3
2017-03-03 Matt CaswellSilence some more clang warnings
2017-03-02 Matt CaswellSilence some clang warnings
2017-03-02 Matt CaswellUpdate early data API for writing to unauthenticated...
2017-03-02 Matt CaswellRename SSL_write_early() to SSL_write_early_data()
2017-03-02 Matt CaswellRename SSL_read_early() to SSL_read_early_data()
2017-03-02 Matt CaswellMake SSL_write_early_finish() an internal only function
2017-03-02 Matt CaswellVarious fixes required to allow SSL_write/SSL_read...
2017-03-02 Matt CaswellEnable the server to call SSL_write() without stopping...
2017-03-02 Matt CaswellEnable the client to call SSL_read() without stopping...
2017-03-02 Matt CaswellIntroduce a new early_data state in the state machine
2017-03-02 Matt CaswellImprove the early data sanity check in SSL_do_handshake()
2017-03-02 Matt CaswellTighten sanity checks when calling early data functions
2017-03-02 Matt CaswellMake SSL_get_early_data_status() take a const
2017-03-02 Matt CaswellMake SSL_get_max_early_data() and SSL_CTX_get_max_early...
2017-03-02 Matt CaswellAdd a SSL_SESSION_get_max_early_data() function
2017-03-02 Matt CaswellDon't attempt to write more early_data than we know...
2017-03-02 Matt CaswellOnly accept early_data if the negotiated ALPN is the...
2017-03-02 Matt CaswellSkip early_data if appropriate after a HelloRetryRequest
2017-03-02 Matt CaswellDon't accept early_data if we are going to issue a...
2017-03-02 Matt CaswellAdd extra validation parsing the server-to-client early...
2017-03-02 Matt CaswellRemove some TLSv1.3 TODOs that are no longer relevant
2017-03-02 Matt CaswellValidate the ticket age for resumed sessions
2017-03-02 Matt CaswellProvide a default value for max_early_data
2017-03-02 Matt CaswellCheck max_early_data against the amount of early data...
2017-03-02 Matt CaswellMake sure we reset the read sequence when skipping...
2017-03-02 Matt CaswellDisallow handshake messages in the middle of early_data
2017-03-02 Matt CaswellFix seg fault when sending early_data using CCM ciphers...
2017-03-02 Matt CaswellImplement client side parsing of the early_data extension
2017-03-02 Matt CaswellFix changing of the cipher state when dealing with...
2017-03-02 Matt CaswellConstruct the server side early_data extension
2017-03-02 Matt CaswellProvide an SSL_read_early() function for reading early...
2017-03-02 Matt CaswellChange the cipher state when sending early data
2017-03-02 Matt CaswellImplement the early data changes required in tls13_chan...
2017-03-02 Matt CaswellParse the early_data extension
2017-03-02 Matt CaswellConstruct the early_data extension
2017-03-02 Matt CaswellProvide functions to write early data
2017-03-02 Matt CaswellParse the ticket_early_data_info extension
2017-03-02 Matt CaswellTeach SSL_trace() about the early_data_info extension
2017-03-02 Matt CaswellConstruct the ticket_early_data_info extension
2017-03-02 Matt CaswellFix a compression bug
2017-03-02 Matt CaswellEnsure that we never select compression in TLSv1.3
2017-03-02 Jon SpillettCheck for zero records and return immediately
2017-03-01 AndyCode health: ssl/ssl_locl.h unused macros
2017-03-01 Emilia KasperRemove some obsolete/obscure internal define switches:
2017-02-28 Matt CaswellRemove some commented out code in libssl
2017-02-28 Todd ShortRemove some #if 0 code in ssl, crypto/bio
2017-02-28 Richard LevitteCode health: Stop using timeb.h / ftime() (VMS only)
2017-02-28 Emilia KasperClean up references to FIPS
2017-02-28 Bernd EdlingerRemove unnecessary memset after PR #2583 avoids accessing
2017-02-28 Matt CaswellRemove some dead code from libssl
2017-02-27 Dr. Stephen HensonTrace support for TLS 1.3 certificate request message
2017-02-27 Dr. Stephen HensonInitial incomplete TLS 1.3 certificate request support.
2017-02-26 Dr. Stephen HensonAdd missing blank lines and cosmetic improvements
2017-02-26 Dr. Stephen HensonTLS 1.3 support for ssl_print_ticket()
2017-02-26 Dr. Stephen Hensonprint out alpn extension
2017-02-26 Dr. Stephen HensonAdd ffdhe groups to trace output
2017-02-26 Dr. Stephen HensonPrint numerical value of named roups
2017-02-26 Dr. Stephen HensonAdd entry for PSK extension
2017-02-26 Dr. Stephen HensonAdd trace entries for remaining TLS 1.3 ciphersuites
2017-02-25 Dr. Stephen HensonFor TLS 1.3 reject SHA1 TLS signatures
2017-02-24 Dr. Stephen HensonReject compressed point format with TLS 1.3
2017-02-24 Dr. Stephen HensonAdd SuiteB support to tls_choose_sigalg()
2017-02-24 Dr. Stephen HensonTidy up certificate type handling.
2017-02-23 Kurt RoeckxImplement SSL_read_ex() and SSL_write_ex() as documented.
2017-02-23 Benjamin KadukAdd SSL_CTX early callback
2017-02-23 Benjamin KadukPrepare for WORK_MORE_C
2017-02-23 Benjamin KadukRefactor SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukExport SSL_bytes_to_cipher_list()
2017-02-23 Benjamin KadukLet ssl_get_cipher_by_char yield not-valid ciphers
2017-02-23 Benjamin KadukAdd more first-class support for SCSVS
2017-02-23 Benjamin KadukMove CLIENTHELLO_MSG up in the header
2017-02-23 Benjamin KadukStore the number of extensions in CLIENTHELLO_MSG
2017-02-23 Benjamin Kadukoutput number of exts from tls_collect_extensions()
2017-02-22 Bernd EdlingerAdd some more consistency checks in tls_decrypt_ticket.
2017-02-21 Bernd EdlingerFix i2d_SSL_SESSION pp output parameter should point...
2017-02-21 Dr. Stephen HensonCheck validity, not just signing for all certificates
2017-02-21 Dr. Stephen HensonSet default validity flags.
2017-02-21 Dr. Stephen Hensonremove md array: it is not used any more.
2017-02-21 Paulifix spelling of Camellia in comment
2017-02-21 PauliImplementation of the ARIA cipher as described in RFC...
2017-02-17 Dr. Stephen HensonExplicitly disallow DSA for TLS 1.3
next