Document in CHANGES that config now recognises 64-bit mingw
[openssl.git] / ssl /
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellDon't use an enum in the return type for a public API...
2017-02-17 Matt CaswellFix a shadowed global variable warning
2017-02-17 Matt CaswellUpdates following review feedback
2017-02-17 Matt CaswellLimit the number of KeyUpdate messages we can process
2017-02-17 Matt CaswellActually update the keys when a KeyUpdate message is...
2017-02-17 Matt CaswellIf we receive an "update_requested" KeyUpdate then...
2017-02-17 Matt CaswellAdd the ability for a server to receive a KeyUpdate...
2017-02-17 Matt CaswellAdd a SSL_get_key_update_type() function
2017-02-17 Matt CaswellAdd the ability for a client to send a KeyUpdate message
2017-02-17 Matt CaswellAdd the ability for a client to receive a KeyUpdate...
2017-02-17 Matt CaswellAdd SSL_trace() support for KeyUpdate messages
2017-02-17 Matt CaswellProvide a function to send a KeyUpdate message
2017-02-16 Dr. Stephen HensonUse tls_choose_sigalg for client auth.
2017-02-16 Dr. Stephen HensonAdd client side support to tls_choose_sigalg.
2017-02-16 Matt CaswellRemove an OPENSSL_assert() and replace with a soft...
2017-02-16 Matt CaswellDon't change the state of the ETM flags until CCS proce...
2017-02-16 Dr. Stephen HensonFix warning
2017-02-15 Dr. Stephen HensonSet current certificate to selected certificate.
2017-02-15 Bernd EdlingerRework error handling of custom_ext_meth_add towards...
2017-02-15 Dr. Stephen HensonSkip curve check if sigalg doesn't specify a curve.
2017-02-15 Dr. Stephen HensonUse CERT_PKEY pointer instead of index
2017-02-15 Dr. Stephen HensonSimplify tls_construct_server_key_exchange
2017-02-15 Dr. Stephen HensonUse cert_index and sigalg
2017-02-15 Dr. Stephen HensonAdd sigalg for earlier TLS versions
2017-02-15 Dr. Stephen HensonChange tls_choose_sigalg so it can set errors and alerts.
2017-02-15 Dr. Stephen Hensonadd ssl_has_cert
2017-02-14 Bernd EdlingerUse TLSEXT_KEYNAME_LENGTH in tls_decrypt_ticket.
2017-02-14 Matt CaswellFix no-ec compilation
2017-02-14 Matt CaswellRemove a double call to ssl3_send_alert()
2017-02-14 Matt CaswellFix a bogus uninit variable warning
2017-02-14 Matt CaswellAdd a bytestogroup macro
2017-02-14 Matt CaswellVarious style fixes following review feedback
2017-02-14 Matt CaswellAdd trace support for HelloRetryRequest
2017-02-14 Matt CaswellImplement support for resumption with a HelloRetryRequest
2017-02-14 Matt CaswellAdd client side support for parsing Hello Retry Request
2017-02-14 Matt CaswellAdd server side support for creating the Hello Retry...
2017-02-14 Matt CaswellMake the context available to the extensions parse...
2017-02-14 Yuchimem leak on error path and error propagation fix
2017-02-10 Dr. Stephen HensonReplace SSL_PKEY_RSA_ENC, SSL_PKEY_RSA_SIGN
2017-02-10 Dr. Stephen HensonCheck index >= 0 as 0 is a valid index.
2017-02-09 David BenjaminDon't read uninitialised data for short session IDs.
2017-02-09 Peter WuSSL_get_shared_sigalgs: handle negative idx parameter
2017-02-08 Matt CaswellFix crash in tls13_enc
2017-02-08 Dr. Stephen HensonAdd remaining TLS1.3 ciphersuites
2017-02-08 Dr. Stephen HensonUse contants for Chacha/Poly, redo algorithm expressions.
2017-02-08 Dr. Stephen HensonAdd CCM mode support for TLS 1.3
2017-02-08 Dr. Stephen HensonAdd NID_auth_any and NID_kx_any NIDs.
2017-02-08 Dr. Stephen HensonAdd SSL_kANY and SSL_aANY
2017-02-03 Bernd EdlingerCombined patch against master branch for the following...
2017-02-03 Richard LevitteFix "no-ec"
2017-02-02 Richard LevitteInitialise alg_k and alg_a
2017-02-02 Dr. Stephen HensonDon't filter TLS 1.3 ciphersuites by signing or key...
2017-02-02 Dr. Stephen HensonUpdate cipher definition
2017-02-02 Dr. Stephen HensonRemove special case for TLS 1.3.
2017-02-02 Dr. Stephen HensonFor TLS 1.3 retrieve previously set certificate index
2017-02-02 Dr. Stephen Hensonmake errors
2017-02-02 Dr. Stephen HensonSet signature algorithm when choosing cipher
2017-02-02 Dr. Stephen HensonAdd function tls_choose_sigalg().
2017-02-02 Dr. Stephen HensonCosmetic change
2017-02-02 Cory BenfieldAdd support for logging out TLSv1.3 secrets
2017-02-01 Todd ShortMajority rules, use session_ctx vs initial_ctx
2017-01-31 Dr. Stephen HensonTidy up Suite B logic
2017-01-31 Dr. Stephen HensonRemove peer_md and use peer_sigalg instead.
2017-01-31 Dr. Stephen HensonSimplify sigalgs code.
2017-01-31 Dr. Stephen HensonAdd digest and key indices to table.
2017-01-31 Dr. Stephen HensonDon't check certificate type against ciphersuite for...
2017-01-31 Dr. Stephen HensonAdd TLS 1.3 signing curve check
2017-01-31 Dr. Stephen HensonOnly allow PSS signatures with RSA keys and TLS 1.3
2017-01-31 Dr. Stephen HensonStore table entry to peer signature algorithm.
2017-01-30 Matt CaswellFree up the memory for the NewSessionTicket extensions
2017-01-30 Matt CaswellMake sure we free and cleanse the pms value in all...
2017-01-30 Dr. Stephen HensonUpdate macros.
2017-01-30 Dr. Stephen Hensonfix style issues
2017-01-30 Dr. Stephen HensonFix TLS 1.2 and no sigalgs.
2017-01-30 Dr. Stephen HensonReplace TLS_SIGALGS with SIGALG_LOOKUP
2017-01-30 Dr. Stephen HensonSupport TLS 1.3 signature scheme names.
2017-01-30 Dr. Stephen HensonExtend TLS 1.3 signature table.
2017-01-30 Dr. Stephen HensonUse shared signature algorithm list to find type.
2017-01-30 Dr. Stephen HensonAdd SSL_get_peer_signature_type_nid() function.
2017-01-30 Dr. Stephen HensonStore peer signature type.
2017-01-30 Dr. Stephen HensonMore complete PSS support.
2017-01-30 Dr. Stephen HensonUse uint16_t for signature scheme.
2017-01-30 Dr. Stephen Hensonuse RSA_PSS_SALTLEN_DIGEST constant
2017-01-30 Matt CaswellExpand comment in tls_process_hello_req()
2017-01-30 Matt CaswellAdd a TODO around validating the ticket age
2017-01-30 Matt CaswellVarious style fixes following review feedback
2017-01-30 Matt CaswellRemove unneccessary comments
2017-01-30 Matt CaswellUse for loop in WPACKET_fill_lengths instead of do...
2017-01-30 Matt CaswellMove the SSL3_CK_CIPHERSUITE_FLAG out of public header
2017-01-30 Matt CaswellIf we have no suitable PSK kex modes then don't attempt...
2017-01-30 Matt CaswellFix <= TLS1.2 break
2017-01-30 Matt CaswellMake calls to SSL_renegotiate() error out for TLSv1.3
2017-01-30 Matt CaswellMake the "ticket" function return codes clearer
2017-01-30 Matt CaswellMiscellaneous style tweaks based on feedback received
2017-01-30 Matt CaswellEnsure the al variable is properly ininitialised in...
2017-01-30 Matt CaswellEnsure the age_add variable is properly initialised
2017-01-30 Matt CaswellAlways ensure that session->cipher is set
2017-01-30 Matt CaswellTweak a comment
2017-01-30 Matt CaswellUse the correct session resumption mechanism
next