Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-13 | Optimize application data aggregation | Raimo Niskanen | |
2019-02-13 | Optimize TLS record parsing with Okasaki queue | Raimo Niskanen | |
2019-02-13 | Cache strong_random_bytes for IV | Raimo Niskanen | |
2019-02-13 | Optimize padding | Raimo Niskanen | |
2019-02-13 | Produce less garbage in encrypt loop | Raimo Niskanen | |
2019-02-13 | Reorganize #data{} | Raimo Niskanen | |
2019-02-13 | Tidy up state machine | Raimo Niskanen | |
2019-02-13 | Add server GC info to bench results | Raimo Niskanen | |
2019-02-13 | ssl: Use gen_statem named timers to handle connection and recv timeouts | Ingela Anderton Andin | |
2019-02-13 | ssl: Fix failing rizzo testcases | Péter Dimitrov | |
Filter out the cipher 'chacha20_poly1305' when running the testcase 'rizzo_one_n_minus_one'. Change-Id: If3a18b0782b747b91155553e0659faebd7c5dd05 | |||
2019-02-13 | ssl: Use IPv4 addresses with openssl s_client | Péter Dimitrov | |
This commit fixes failing testcases on OpenBSD 12.0 systems. It forces openssl s_client to use an IPv4 address if openssl supports IPv6. When s_client is called with the argument "localhost" it binds to the first address returned by getaddrinfo. As the first address is an IPv6 address on OpenBSD 12.0, the client fails to send UDP packets to the ssl server that is listening on an IPv4 address. Change-Id: Ie662d10f4f0d9c803f7a341c9ea7dbe2ac80b556 | |||
2019-02-11 | ssl: Use sha256 in test certificates if supported | Péter Dimitrov | |
This commit fixes ssl_test_lib:appropriate_sha/1 that returns sha256 if it is supported by crypto. It returns sha1 otherwise. Change-Id: I0bfa4d50bbe3c788551a81d418db2cabc36a4344 | |||
2019-02-08 | ssl: Move and rename diffie_hellman_keys and srp_keys to kex_keys | Ingela Anderton Andin | |
2019-02-08 | ssl: Move key_algorithm to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: srp | Ingela Anderton Andin | |
2019-02-08 | ssl: Rename | Ingela Anderton Andin | |
2019-02-08 | ssl: Move diffie_hellman_params to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Move and rename psk_identity state record field | Ingela Anderton Andin | |
2019-02-08 | ssl: Move premaster_secret to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Make flight_state DTLS specific | Ingela Anderton Andin | |
flight_state is used to handle retransmission timers for DTLS over udp | |||
2019-02-08 | ssl: Add private_key to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Remove unused record field | Ingela Anderton Andin | |
2019-02-08 | ssl: Add erl_dist_handle to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add negotiated_version to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add key exchange items to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add hashsign_algorithm and cert_hashsign_algorithm to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add downgrade handling to connection_env | Ingela Anderton Andin | |
Remove duplicate handsake history handling form ssl_config function. Later we might refactor to avoid duplication in TLS and DTLS code, but handshake history does not belong in ssl_config function. | |||
2019-02-08 | ssl: Create connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Handle renegotiation and extensions in handshake_env | Ingela Anderton Andin | |
2019-02-05 | Merge branch 'ingela/ssl/alert-return/OTP-15423' into maint | Ingela Anderton Andin | |
* ingela/ssl/alert-return/OTP-15423: ssl: Use specs to generate type documentation ssl: Enhance error handling | |||
2019-02-05 | ssl: Use specs to generate type documentation | Ingela Anderton Andin | |
2019-02-04 | ssl: Enhance error handling | Ingela Anderton Andin | |
2019-02-01 | ssl: Remove unintended match | Ingela Anderton Andin | |
2019-01-30 | Merge pull request #2109 from IngelaAndin/ingela/ssl/active-check | Ingela Andin | |
ssl: Correct check for delayed close due to undliverd data | |||
2019-01-30 | Merge branch 'peterdmv/ssl/improve_openssl_interop_tests' into maint | Péter Dimitrov | |
* peterdmv/ssl/improve_openssl_interop_tests: ssl: Improve openssl interop tests Change-Id: I65b63ddb8c8948d246e341f8c821b3b499507cb6 | |||
2019-01-29 | ssl: Improve openssl interop tests | Péter Dimitrov | |
openssl 1.1.x changed the default ECC curves that made testcases fail in the ECC suite. openssl s_server and s_client sent 'Illegal Parameter' alert when the CertificateVerify (client) or ServerKeyExchange (server) message was signed with a curve that was not present in openssl's default ECC curve list (x25519, secp256r1, secp521r1, secp384r1, brainpoolP256r1, brainpoolP384r1, brainpool512r1). This commit changes the default curve of make_ec_cert_chains to 'secp256r1' and explicitly configures the default curve in those testcases where the default curve of the ssl application is expected. Change-Id: I81ebe1a30b8f863b0e2836b1dad3d8bc767cc47e | |||
2019-01-24 | ssl: Correct check for delayed close due to undliverd data | Ingela Anderton Andin | |
Could cause connection processes not terminate when they should | |||
2019-01-23 | Merge branch 'ingela/ssl/continue-optimize/OTP-15445' into maint | Ingela Anderton Andin | |
* ingela/ssl/continue-optimize/OTP-15445: ssl: If possible assemble several received application data records | |||
2019-01-22 | ssl: If possible assemble several received application data records | Ingela Anderton Andin | |
2019-01-22 | ssl: Create hs_env | Ingela Anderton Andin | |
We want to decrease the size of the outer state tuple, and gain ease of understanding by better grouping. This is the first step of creating a hs_env (handshake environment) part of the state. This change will be performed gradually to reduce merge conflicts complexity and risk of introducing errors. | |||
2019-01-22 | ssl: Remove unnecessary iolist_to_binary | Ingela Anderton Andin | |
2019-01-22 | Merge branch 'ingela/ssl/test-cuddle' into maint | Ingela Anderton Andin | |
* ingela/ssl/test-cuddle: ssl: Correct test input | |||
2019-01-21 | ssl: Correct test input | Ingela Anderton Andin | |
2019-01-21 | Merge branch 'ingela/ssl/DES-EDE/OTP-15539' into maint | Ingela Anderton Andin | |
* ingela/ssl/DES-EDE/OTP-15539: ssl: Correct 3des_ede_cbc check | |||
2019-01-17 | ssl: Correct 3des_ede_cbc check | Ingela Anderton Andin | |
Could cause ssl to claim to support 3des_ede_cbc when cryptolib does not | |||
2019-01-16 | Merge branch 'maint-21' into maint | Rickard Green | |
* maint-21: Updated OTP version Prepare release | |||
2019-01-16 | ssl: Cuddle tests | Ingela Anderton Andin | |
2019-01-15 | Prepare release | Erlang/OTP | |
2019-01-15 | Merge branch 'peterdmv/ssl/fix-srp-encode-decode/ERL-790/OTP-15477' into ↵ | Erlang/OTP | |
maint-21 * peterdmv/ssl/fix-srp-encode-decode/ERL-790/OTP-15477: ssl: Fix encoding/decoding of the SRP extension | |||
2019-01-15 | Merge branch 'ingela/ssl/enhance-error-handling/OTP-15505' into maint-21 | Erlang/OTP | |
* ingela/ssl/enhance-error-handling/OTP-15505: ssl: Cuddle test cases ssl: Fix test case ssl: Fix two invalid gen_statem returns |