Commits · b05e4ce6e14c78f15f40b73ba6696283d0e4589f · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Jan 30, 2017
- Re-enable TLSv1.3 session resumption related tests in sslapitest · b05e4ce6
  Matt Caswell authored Jan 19, 2017
  b05e4ce6
- Update create_ssl_connection() to make sure its gets a session · 59db06f1
  Matt Caswell authored Jan 19, 2017
  59db06f1
- Re-enable ALPN resumption tests where we are using TLSv1.3 · 4b7ffd8b
  Matt Caswell authored Jan 19, 2017
  4b7ffd8b
- Always ensure that session->cipher is set · 534a43ff
  Matt Caswell authored Jan 19, 2017
  534a43ff
- Tweak a comment · 4086b42b
  Matt Caswell authored Jan 19, 2017
  4086b42b
- Use the correct session resumption mechanism · 08191294
  Matt Caswell authored Jan 19, 2017
  08191294
- Move session version consistency check · 128ae276
  Matt Caswell authored Jan 19, 2017
  128ae276
- Set the kex modes on the client too. · b3ad72ce
  Matt Caswell authored Jan 19, 2017
  b3ad72ce
- Implement server side of PSK extension construction · 0247086d
  Matt Caswell authored Jan 18, 2017
  0247086d
- Implement Server side of PSK extension parsing · 1053a6e2
  Matt Caswell authored Jan 18, 2017
  1053a6e2
- Make sure we also cleanse the finished key · 71c94d3c
  Matt Caswell authored Jan 18, 2017
  71c94d3c
- Provide a key_share extension finaliser · f4bbb37c
  Matt Caswell authored Jan 18, 2017
  f4bbb37c
- Add support for client side parsing of the PSK extension · 4ff65f77
  Matt Caswell authored Jan 18, 2017
  4ff65f77
- Add support for the age_add field · fc24f0bf
  Matt Caswell authored Jan 17, 2017
  fc24f0bf
- Construct the client side psk extension for TLSv1.3 · ec15acb6
  Matt Caswell authored Jan 13, 2017
  ec15acb6
- Provide a new WPACKET function for filling in all the lengths · a2b7e655
  Matt Caswell authored Jan 13, 2017
  a2b7e655
- Update the s_client -sess_out feature to work for TLSv1.3 · be62b22b
  Matt Caswell authored Jan 13, 2017
  be62b22b
- Never send a session id in TLS1.3 · f05bcf0f
  Matt Caswell authored Jan 13, 2017
  f05bcf0f
- Add a TODO around handling of SSL_get_session() and SSL_get1_session() · e7a28df7
  Matt Caswell authored Jan 13, 2017
  e7a28df7
- Process incoming NewSessionTicket messages on the client side · de1df7e9
  Matt Caswell authored Jan 13, 2017
  de1df7e9
- Create the NewSessionTicket message in TLSv1.3 · 30f05b19
  Matt Caswell authored Jan 13, 2017
  30f05b19
- Add support for the psk_key_exchange_modes extension · b2f7e8c0
  Matt Caswell authored Jan 12, 2017
  b2f7e8c0
- Move TLSv1.3 Session Ticket processing into the state machine · cc2455bf
  Matt Caswell authored Jan 11, 2017
  cc2455bf
- Disable requests for renegotiation in TLSv1.3 · cda6b998
  Matt Caswell authored Jan 11, 2017
  cda6b998
- Move state machine knowledge out of the record layer · c7f47786
  Matt Caswell authored Jan 10, 2017
  c7f47786
- Remove use of the SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS flag · 0386aad1
  Matt Caswell authored Jan 10, 2017
  0386aad1
- ChangeCipherSpec is not allowed in TLSv1.3 · 97997489
  Matt Caswell authored Jan 06, 2017
  97997489
Jan 29, 2017
- Remove annoying and pointless pause. · 26967dc3
  Ben Laurie authored Jan 02, 2017
  26967dc3
- Fix faulty free · d85d3c99
  Richard Levitte authored Jan 29, 2017
  d85d3c99
- test/evp_test.c: If no algorithm was specified, don't try to check for DES · 31b69e9a
  Richard Levitte authored Jan 29, 2017
  31b69e9a
Jan 28, 2017
- Update client and server corpus · d2828c8b
  Kurt Roeckx authored Jan 28, 2017
  d2828c8b
- Don't need the checkbox; the hook does it · ec675019
  Rich Salz authored Jan 28, 2017
  ec675019
- Add a couple of test to check CRL fingerprint · 929860d0
  Richard Levitte authored Jan 28, 2017
  929860d0
- Document what EXFLAG_SET is for in x509v3.h · 2d60c923
  Richard Levitte authored Jan 28, 2017
  2d60c923
- X509_CRL_digest() - ensure precomputed sha1 hash before returning it · 6195848b
  Richard Levitte authored Jan 28, 2017
  6195848b
- Correct pointer to be freed · 63414e64
  Richard Levitte authored Jan 28, 2017
  63414e64
Jan 26, 2017
- Avoid over-long strings. Fix a mem leak. · 26a39fa9
  Rich Salz authored Jan 26, 2017
  26a39fa9
- Add server signature algorithm bug test. · 9cf847d7
  Dr. Stephen Henson authored Jan 25, 2017
  9cf847d7
- Use correct signature algorithm list when sending or checking. · a9669ddc
  Dr. Stephen Henson authored Jan 25, 2017
  a9669ddc
- Update CHANGES and NEWS for new release · 536454e5
  Matt Caswell authored Jan 24, 2017
  536454e5