otp.git - Mirror of Erlang/OTP repository.

Age	Commit message (Collapse)	Author
2019-05-15	ssl: Refactor of OTP 22 code due to patch OTP-15823	Ingela Anderton Andin

2019-03-06	ssl: Verify CertificateVerify	Péter Dimitrov
	Verify CertificateVerify message against the handshake context and the public key provided by the Certificate message. Remove 'Context' argument from state handler functions and store data in the state variable. Refactor get_handshake_context/1 to cover all implemented cases. Change-Id: If803e05009331d1ec7e0ba2ea2b81d917a0add6d
2019-03-04	ssl: Validate client certificates (TLS 1.3)	Péter Dimitrov
	Implement validation of client certificates in state 'wait_cert'. Implement state 'wait_cv'. Clean up handler functions. Change-Id: I5c410bf7afe34632f27fabcd61670764fedb105d
2019-03-04	ssl: Implement state 'wait_cert'	Péter Dimitrov
	Implement state 'wait_cert' with its handler function do_wait_cert/2. Send CertificateRequest if peer verification is enabled. Send Alert 'certificate required' if client answers with empty Certificate and option 'fail_if_no_peer_cert' is set to true. Change-Id: I72c73bcb6bc68ea60e6fe41cdd29ccfe40d18322
2019-02-25	ssl: Implement 'hello_retry_request'	Péter Dimitrov
	Refactor state 'start' and handler functions. Send 'hello_retry_request' if ClientHello does not contain sufficient information. Change-Id: I9fccb38aff5ba88bff75887261e8b1487bd64e17
2019-02-18	Merge branch 'maint'	Ingela Anderton Andin
	Conflicts: lib/ssl/src/dtls_connection.erl lib/ssl/src/ssl_connection.erl lib/ssl/src/ssl_connection.hrl lib/ssl/src/tls_connection.erl
2019-02-08	ssl: Improve TLS 1.3 statem	Péter Dimitrov
	- Store FinishedKey in cipher_state. - Implement state 'wait_finished'. - Calculate traffic secrets in 'wait_finished' after Finished received from client and go to state 'Connection'. - Drop 'change_cipher_spec' messages (middlebox compatibility mode). - Extend tests of 1-RTT. Change-Id: Id69619ec5da053ffaaef75378678a27afeef6916
2019-01-28	ssl: Fix dialyzer warnings	Péter Dimitrov
	Change-Id: Icc6c1433dba8d35f81162ef8100292bf2ba53c71
2019-01-28	ssl: Encode/decode CertificateVerify	Péter Dimitrov
	Implement encoding/decoding of CertificateVerify. Update property tests with CertificateVerify. Refactor state handling function: 'do_negotiated'. Change-Id: Ifa066076960120717ddb472dc45fcc7a16a517d0
2019-01-22	Merge branch 'maint'	Ingela Anderton Andin
	Conflicts: lib/ssl/src/ssl_connection.erl lib/ssl/src/ssl_connection.hrl lib/ssl/src/tls_connection.erl
2019-01-11	ssl: Fix dialyzer warnings	Péter Dimitrov
	Change-Id: I9269825c833d1461369828a9228f384ccf2543a9
2019-01-11	ssl: Refactor state 'negotiated'	Péter Dimitrov
	Change-Id: I1a2e9b1b639cae0d78b6d25d7b6e761a2d90b7b1
2019-01-11	ssl: Add 'CertificateVerify'	Péter Dimitrov
	Change-Id: Iab7148f609b4965cd1a815d04507a59cc1b8fb5f
2019-01-11	ssl: Add support for x25519 and x448 in ECDH	Péter Dimitrov
	Change-Id: I206b851fc616c53475f4a2935f6f52baf8f3e1e6
2019-01-11	ssl: Create server 'Certificate' message	Péter Dimitrov
	Create a TLS 1.3 'Certificate' message in the 'negotiated' state. Change-Id: I03115de2353324f8533146ba19809064da6b0866
2019-01-11	ssl: Calculate handshake traffic keys	Péter Dimitrov
	Change-Id: Ifdf8978c58c15313e8a7973cff97dda3458f7721
2018-12-14	Merge branch 'maint'	Ingela Anderton Andin
	Conflicts: lib/ssl/src/dtls_connection.erl lib/ssl/src/ssl_connection.erl lib/ssl/src/ssl_connection.hrl lib/ssl/src/tls_connection.erl lib/ssl/src/tls_record.erl
2018-11-20	ssl: Improve the "start" and "negotiated" states	Péter Dimitrov
	This change adds the capability to the TLS 1.3 server to process ClientHello messages and answer with ServerHello. Change-Id: I13f6cfac932574300338e7301c6162252a591c70
2018-10-24	ssl: Implement TLS 1.3 state machine skeleton	Péter Dimitrov
	Change-Id: I4b382a7907247cc2099951fdefa40f1511b1123e