index
:
delta/openssl-new.git
1.0.2-aead
BRANCH_ASN1
BRANCH_OpenSSL_0_9_8k
BRANCH_VMS_64BIT
BRANCH_WIN64
BRANCH_engine
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL-rfc3820-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
OpenTLS
SSLeay
baserock/OpenSSL_1_0_1g
baserock/OpenSSL_1_0_2-stable
baserock/larswirzenius/morph
baserock/morph
baserock/pedroalvarez/power-port
baserock/ps/proto-web-system
eliminate-ssl-ctrl
master
openssl-3.0
openssl-3.1
rsalz-monolith
rt4526
supplemental-data-api-2
tls1.3-draft-18
tls1.3-draft-19
github.com: openssl/openssl.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
ssl
Commit message (
Expand
)
Author
Age
Files
Lines
*
Update copyright year
Matt Caswell
2018-09-11
1
-1
/
+1
*
Do not reset SNI data in SSL_do_handshake()
Matt Caswell
2018-09-07
2
-7
/
+5
*
Simplify SSL_get_servername() to avoid session references
Ben Kaduk
2018-09-07
1
-11
/
+7
*
Restore historical SSL_get_servername() behavior
Ben Kaduk
2018-09-07
1
-5
/
+2
*
Ensure certificate callbacks work correctly in TLSv1.3
Matt Caswell
2018-09-07
1
-2
/
+3
*
Process KeyUpdate and NewSessionTicket messages after a close_notify
Matt Caswell
2018-09-07
3
-27
/
+49
*
key zeroization fix for a branch path of tls13_final_finish_mac
Shane Lontis
2018-09-05
1
-0
/
+1
*
Don't use an RSA-PSS cert for RSA key exchange
Matt Caswell
2018-09-04
1
-3
/
+7
*
Send a NewSessionTicket after using an external PSK
Matt Caswell
2018-09-04
1
-0
/
+2
*
Ignore EPIPE when sending NewSessionTickets in TLSv1.3
Matt Caswell
2018-09-04
1
-1
/
+32
*
Rename SSL[_CTX]_add1_CA_list -> SSL[_CTX]_add1_to_CA_list
Richard Levitte
2018-09-03
1
-2
/
+6
*
Fix ssl/t1_trce.c to parse certificate chains
Erik Forsberg
2018-09-01
1
-10
/
+17
*
Fix a mem leak on error in the PSK code
Matt Caswell
2018-08-30
1
-0
/
+1
*
Don't detect a downgrade where the server has a protocol version hole
Matt Caswell
2018-08-22
1
-3
/
+10
*
Use the same min-max version range on the client consistently
Matt Caswell
2018-08-22
5
-63
/
+79
*
Allow TLS-1.3 ciphersuites in @SECLEVEL=3 and above
Tomas Mraz
2018-08-22
1
-1
/
+2
*
Add support for SSL_CTX_set_post_handshake_auth()
Matt Caswell
2018-08-20
2
-0
/
+9
*
Change Post Handshake auth so that it is opt-in
Matt Caswell
2018-08-20
3
-20
/
+5
*
Turn on TLSv1.3 downgrade protection by default
Matt Caswell
2018-08-15
2
-4
/
+2
*
Update code for the final RFC version of TLSv1.3 (RFC8446)
Matt Caswell
2018-08-15
5
-67
/
+5
*
Move SSL_DEBUG md fprintf after assignment
Dmitry Yakovlev
2018-08-14
1
-3
/
+5
*
Improve fallback protection
Matt Caswell
2018-08-09
1
-0
/
+3
*
Tolerate encrypted or plaintext alerts
Matt Caswell
2018-08-08
6
-14
/
+44
*
Ensure that we write out alerts correctly after early_data
Matt Caswell
2018-08-08
7
-15
/
+36
*
Fix a missing call to SSLfatal
Matt Caswell
2018-08-08
1
-9
/
+13
*
Fix setting of ssl_strings_inited.
Rich Salz
2018-08-07
1
-1
/
+1
*
ssl/*: switch to switch to Thread-Sanitizer-friendly primitives.
Andy Polyakov
2018-08-07
6
-80
/
+49
*
Harmonize use of sk_TYPE_find's return value.
Andy Polyakov
2018-08-07
1
-4
/
+1
*
Ensure we send an alert on error when processing a ticket
Matt Caswell
2018-08-06
1
-4
/
+10
*
Fix some TLSv1.3 alert issues
Matt Caswell
2018-07-31
2
-1
/
+6
*
Improve backwards compat for SSL_get_servername()
Benjamin Kaduk
2018-07-26
1
-1
/
+4
*
Add TODO comment for a nonsensical public API
Benjamin Kaduk
2018-07-20
1
-0
/
+9
*
Normalize SNI hostname handling for SSL and SSL_SESSION
Benjamin Kaduk
2018-07-20
4
-20
/
+43
*
const-ify some input SSL * arguments
Benjamin Kaduk
2018-07-20
1
-3
/
+3
*
Validate legacy_version
Matt Caswell
2018-07-20
2
-0
/
+13
*
Don't skip over early_data if we sent an HRR
Matt Caswell
2018-07-19
1
-1
/
+3
*
Check that the public key OID matches the sig alg
Matt Caswell
2018-07-18
3
-10
/
+32
*
Fix no-psk
Matt Caswell
2018-07-17
1
-1
/
+6
*
Always issue new tickets when using TLSv1.3 stateful tickets
Matt Caswell
2018-07-17
1
-1
/
+2
*
Don't remove sessions from the cache during PHA in TLSv1.3
Matt Caswell
2018-07-17
1
-9
/
+0
*
As a server don't select TLSv1.3 if we're not capable of it
Matt Caswell
2018-07-13
1
-3
/
+35
*
Use ssl_version_supported() when choosing server version
Matt Caswell
2018-07-13
3
-19
/
+11
*
Do not use GOST sig algs in TLSv1.3 where possible
Matt Caswell
2018-07-13
1
-0
/
+41
*
Introduce the recv_max_early_data setting
Matt Caswell
2018-07-06
3
-5
/
+63
*
Remove TLSv1.3 tickets from the client cache as we use them
Matt Caswell
2018-07-03
2
-5
/
+15
*
Restore behaviour from commit 36ff232cf that was incorrectly removed
Matt Caswell
2018-07-03
1
-0
/
+11
*
Add the ability to configure anti-replay via SSL_CONF
Matt Caswell
2018-07-02
1
-2
/
+9
*
Add setters to set the early_data callback
Matt Caswell
2018-07-02
3
-3
/
+31
*
Make the anti-replay feature optional
Matt Caswell
2018-07-02
4
-4
/
+12
*
Fix a NULL ptr deref in error path in tls_process_cke_dhe()
Matt Caswell
2018-07-02
1
-4
/
+3
[next]