Google Git
Sign in
flutter / third_party / openssl / 9d0a8bb71e3e411e9183e635122f17c1429c4116 / ssl / statem / statem_srvr.c
  1. 9d0a8bb Enable the ability to set the number of TLSv1.3 session tickets sent by Matt Caswell · 7 years ago
  2. 61fb592 Rework the decrypt ticket callback by Matt Caswell · 7 years ago
  3. c0638ad Fix ticket callbacks in TLSv1.3 by Matt Caswell · 7 years ago
  4. f20404f Don't fail on an out-of-order CCS in DTLS by Matt Caswell · 7 years ago
  5. a682365 Check the return from EVP_PKEY_get0_DH() by Matt Caswell · 7 years ago
  6. 7f9f5f7 Make sure info callback knows about all handshake start events by Matt Caswell · 7 years ago
  7. 4cffafe Use the private RNG for data that is not public by Kurt Roeckx · 7 years ago
  8. 803cc8c Revert commit 4a56d9a2 by Matt Caswell · 7 years ago
  9. c6d3818 Rewrite the X509->alert mapping code by Rich Salz · 7 years ago
  10. 9d5db9c Assert that alpn_selected is NULL before we assign it by Matt Caswell · 7 years ago
  11. 4bfb96f Place ticket keys into secure memory by Todd Short · 7 years ago
  12. 16cfc2c Don't use a ssl specific DRBG anymore by Kurt Roeckx · 7 years ago
  13. f023ba2 Don't update the session cache when processing a client certificate in TLSv1.3 by Matt Caswell · 7 years ago
  14. 32305f8 Always call the new_session_cb when issuing a NewSessionTicket in TLSv1.3 by Matt Caswell · 7 years ago
  15. 16ff134 Only update the server session cache when the session is ready by Matt Caswell · 7 years ago
  16. df0fed9 Session Ticket app data by Todd Short · 7 years ago
  17. d91f456 Tell the ciphers which DRBG to use for generating random bytes. by Kurt Roeckx · 7 years ago
  18. d592734 Remove unreachable statement. by Pauli · 7 years ago
  19. 9d75dce Add TLSv1.3 post-handshake authentication (PHA) by Todd Short · 7 years ago
  20. 3faa07b Move decisions about whether to accept reneg into the state machine by Matt Caswell · 7 years ago
  21. c36001c Fix logic around when to send an HRR based on cookies by Matt Caswell · 7 years ago
  22. 43054d3 Add support for sending TLSv1.3 cookies by Matt Caswell · 7 years ago
  23. 2a8db71 Don't flush the ClientHello if we're going to send early data by Matt Caswell · 7 years ago
  24. f699992 Remove outdated comments by Paul Yang · 7 years ago
  25. 56d3628 Remove spaces at end of line in ssl/statem by Paul Yang · 7 years ago
  26. 75259b4 Fix server side HRR flushing by Matt Caswell · 7 years ago
  27. 426dfc9 Send supported_versions in an HRR by Matt Caswell · 7 years ago
  28. fc7129d Update state machine to send CCS based on whether we did an HRR by Matt Caswell · 7 years ago
  29. 597c51b Merge HRR into ServerHello by Matt Caswell · 7 years ago
  30. db37d32 Send a CCS after ServerHello in TLSv1.3 if using middlebox compat mode by Matt Caswell · 7 years ago
  31. a5816a5 Implement session id TLSv1.3 middlebox compatibility mode by Matt Caswell · 7 years ago
  32. 88050dd Update ServerHello to new draft-22 format by Matt Caswell · 7 years ago
  33. dd5a427 Fix some formatting nits by Matt Caswell · 7 years ago
  34. 29bfd5b Add some more cleanups by Matt Caswell · 7 years ago
  35. 3ec8d11 Convert remaining functions in statem_srvr.c to use SSLfatal() by Matt Caswell · 7 years ago
  36. f63a17d Convert the state machine code to use SSLfatal() by Matt Caswell · 7 years ago
  37. 43b95d7 Replace tls1_ec_curve_id2nid. by Dr. Stephen Henson · 7 years ago
  38. 8841154 Return group id in tls1_shared_group by Dr. Stephen Henson · 7 years ago
  39. f1b97da Introduce named constants for the ClientHello callback. by David Benjamin · 8 years ago
  40. a9c0d8b Rename SSL_CTX_set_early_cb to SSL_CTX_set_client_hello_cb. by David Benjamin · 8 years ago
  41. eb5fd03 ssl/statem/*.c: address "enum mixed with another type" warnings. by Andy Polyakov · 8 years ago
  42. 4be3a7c Client side sanity check of ALPN after server has accepted early_data by Matt Caswell · 8 years ago
  43. 630369d Add server side sanity checks of SNI/ALPN for use with early_data by Matt Caswell · 8 years ago
  44. 5626f63 Move ALPN handling from finalizer to delayed call by Benjamin Kaduk · 8 years ago
  45. ae3947d Add a DRBG to each SSL object by Rich Salz · 8 years ago
  46. d4504fe Fix early_data with an HRR by Matt Caswell · 8 years ago
  47. 5159821 Updates following review feedback of TLSv1.3 draft-21 code by Matt Caswell · 8 years ago
  48. 9b6a825 Send and receive the ticket_nonce field in a NewSessionTicket by Matt Caswell · 8 years ago
  49. b202155 Allow Ed25519 in TLS 1.2 by Dr. Stephen Henson · 8 years ago
  50. 72ceb6a Convert key exchange to one shot call by Dr. Stephen Henson · 8 years ago
  51. c80149d Merge Nokia copyright notice into standard by Rich Salz · 8 years ago
  52. aa8f3d7 Modify Sun copyright to follow OpenSSL style by Rich Salz · 8 years ago
  53. abeb2a6 Tweak the check that a ciphersuite has not changed since the HRR by Matt Caswell · 8 years ago
  54. 8acc279 Fix an uninitialised variable warning by Matt Caswell · 8 years ago
  55. 0de6d66 Move ciphersuite selection before session resumption in TLSv1.3 by Matt Caswell · 8 years ago
  56. a055a88 Allow the server to change the ciphersuite on resume by Matt Caswell · 8 years ago
  57. fbaf285 If-guard to avoid null ptr deref in statem_srvr.c by Rich Salz · 8 years ago
  58. db0f35d Fix #2400 Add NO_RENEGOTIATE option by Todd Short · 8 years ago
  59. fb34a0f Try to be more consistent about the alerts we send by Matt Caswell · 8 years ago
  60. ef57a47 Verify that there is no trailing data after the extensions block by Matt Caswell · 8 years ago
  61. 1fe3549 Verify that only NULL compression is sent in TLSv1.3 ClientHello by Matt Caswell · 8 years ago
  62. 33564cb Fix comment around safari fingerprint check by Matt Caswell · 8 years ago
  63. 8e1634e Don't treat PACKET_remaining() as boolean by Tatsuhiro Tsujikawa · 8 years ago
  64. 735d5b5 Call init and finalization functions per extension message by Tatsuhiro Tsujikawa · 8 years ago
  65. bf846a6 Don't overwrite the alert value if there is no alert to send by Matt Caswell · 8 years ago
  66. bd79bcb Remove special case code for SCTP reneg handling by Matt Caswell · 8 years ago
  67. fe874d2 Move the extensions context codes into the public API by Matt Caswell · 8 years ago
  68. 69687aa More typo fixes by FdaSilvaYY · 8 years ago
  69. f7f2a01 Add server side support for TLSv1.3 downgrade mechanism by Matt Caswell · 8 years ago
  70. 32f6610 Support draft-19 TLS certificate request format by Dr. Stephen Henson · 8 years ago
  71. 5d6cca0 Move parsing and construction of CA names to separate functions by Dr. Stephen Henson · 8 years ago
  72. 635b7d3 Updates following review feedback by Matt Caswell · 8 years ago
  73. 69b2d39 Fix ciphersuite handling during an HRR by Matt Caswell · 8 years ago
  74. 11c67ee HelloRetryRequest updates for draft-19 by Matt Caswell · 8 years ago
  75. 9e0ac6a Check ClientHello boundary as per draft-19 by Matt Caswell · 8 years ago
  76. ef6c191 Update end of early data processing for draft-19 by Matt Caswell · 8 years ago
  77. 42c28b6 Use the new TLSv1.3 certificate_required alert where appropriate by Matt Caswell · 8 years ago
  78. 8f12296 Disallow zero length signature algorithms by Dr. Stephen Henson · 8 years ago
  79. f7e393b Various fixes required to allow SSL_write/SSL_read during early data by Matt Caswell · 8 years ago
  80. d7f8783 Enable the server to call SSL_write() without stopping the ability to call SSL_read_early() by Matt Caswell · 8 years ago
  81. 4004ce5 Introduce a new early_data state in the state machine by Matt Caswell · 8 years ago
  82. f637004 Only accept early_data if the negotiated ALPN is the same by Matt Caswell · 8 years ago
  83. 2c604cb Validate the ticket age for resumed sessions by Matt Caswell · 8 years ago
  84. 1010936 Disallow handshake messages in the middle of early_data by Matt Caswell · 8 years ago
  85. fe5e20f Fix changing of the cipher state when dealing with early data by Matt Caswell · 8 years ago
  86. d781d24 Provide an SSL_read_early() function for reading early data by Matt Caswell · 8 years ago
  87. c19602b Ensure that we never select compression in TLSv1.3 by Matt Caswell · 8 years ago
  88. 03f44b9 Initial incomplete TLS 1.3 certificate request support. by Dr. Stephen Henson · 8 years ago
  89. 6b1bb98 Add SSL_CTX early callback by Benjamin Kaduk · 8 years ago
  90. 90134d9 Refactor SSL_bytes_to_cipher_list() by Benjamin Kaduk · 8 years ago
  91. ccb8e6e Export SSL_bytes_to_cipher_list() by Benjamin Kaduk · 8 years ago
  92. 60d685d Let ssl_get_cipher_by_char yield not-valid ciphers by Benjamin Kaduk · 8 years ago
  93. 26f4268 Store the number of extensions in CLIENTHELLO_MSG by Benjamin Kaduk · 8 years ago
  94. fc5ece2 output number of exts from tls_collect_extensions() by Benjamin Kaduk · 8 years ago
  95. a9998e2 Updates following review feedback by Matt Caswell · 8 years ago
  96. 57389a3 Actually update the keys when a KeyUpdate message is sent or received by Matt Caswell · 8 years ago
  97. 5bf4793 If we receive an "update_requested" KeyUpdate then respond with a KeyUpdate by Matt Caswell · 8 years ago
  98. 8cdc8c5 Add the ability for a server to receive a KeyUpdate message by Matt Caswell · 8 years ago
  99. 44c04a2 Provide a function to send a KeyUpdate message by Matt Caswell · 8 years ago
  100. a497cf2 Use CERT_PKEY pointer instead of index by Dr. Stephen Henson · 8 years ago