| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-02-14 | Clean up module boundaries | Raimo Niskanen | |
| Improve the abstraction between the ssl_connection module and dtls_connection, tls_connection and tls_sender, as well as towards the lower level tls_record and ssl_record modules. Remove some dead code. | |||
| 2019-02-14 | ssl: Remove duplicate record_cb handling | Ingela Anderton Andin | |
| 2019-02-14 | ssl: Add test case for continued handshake with a timeout | dimadio | |
| 2019-02-14 | Merge branch 'peterdmv/ssl/fix-failing-testcases' into maint | Péter Dimitrov | |
| * peterdmv/ssl/fix-failing-testcases: ssl: Fix renegotiation testcases ssl: Fix failing rizzo testcases ssl: Use IPv4 addresses with openssl s_client ssl: Use sha256 in test certificates if supported Change-Id: I11a326be027545e20fbef6f90996b0c8be8c3e50 | |||
| 2019-02-13 | Remove redundant return of CipherState | Raimo Niskanen | |
| 2019-02-13 | ssl: Fix renegotiation testcases | Péter Dimitrov | |
| Fix failing renegotiation testcases with openssl-1.1.1a. openssl s_client sends the renegotiation "R\n" connected command to the server side causing testcase failure. This commit updates ssl_to_openssl_SUITE:erlang_ssl_receive to swallow the unexpected packet. Change-Id: I1f5d040ac65c25652f7101ddf109fc84acc4c915 | |||
| 2019-02-13 | Use iovec() internally in send path | Raimo Niskanen | |
| 2019-02-13 | Small binary handling optimizations | Raimo Niskanen | |
| 2019-02-13 | Optimize read_application_data with Okasaki queue | Raimo Niskanen | |
| To avoid degenerate case with quadratic complexity that shows up when sending large messages since the the fragment concatenation was done by binary append. An Okasaki queue is much more efficient. | |||
| 2019-02-13 | Try to optimize decode_cipher_text/3 | Raimo Niskanen | |
| 2019-02-13 | Optimize application data aggregation | Raimo Niskanen | |
| 2019-02-13 | Optimize TLS record parsing with Okasaki queue | Raimo Niskanen | |
| 2019-02-13 | Cache strong_random_bytes for IV | Raimo Niskanen | |
| 2019-02-13 | Optimize padding | Raimo Niskanen | |
| 2019-02-13 | Produce less garbage in encrypt loop | Raimo Niskanen | |
| 2019-02-13 | Reorganize #data{} | Raimo Niskanen | |
| 2019-02-13 | Tidy up state machine | Raimo Niskanen | |
| 2019-02-13 | Add server GC info to bench results | Raimo Niskanen | |
| 2019-02-13 | ssl: Use gen_statem named timers to handle connection and recv timeouts | Ingela Anderton Andin | |
| 2019-02-13 | ssl: Fix failing rizzo testcases | Péter Dimitrov | |
| Filter out the cipher 'chacha20_poly1305' when running the testcase 'rizzo_one_n_minus_one'. Change-Id: If3a18b0782b747b91155553e0659faebd7c5dd05 | |||
| 2019-02-13 | ssl: Use IPv4 addresses with openssl s_client | Péter Dimitrov | |
| This commit fixes failing testcases on OpenBSD 12.0 systems. It forces openssl s_client to use an IPv4 address if openssl supports IPv6. When s_client is called with the argument "localhost" it binds to the first address returned by getaddrinfo. As the first address is an IPv6 address on OpenBSD 12.0, the client fails to send UDP packets to the ssl server that is listening on an IPv4 address. Change-Id: Ie662d10f4f0d9c803f7a341c9ea7dbe2ac80b556 | |||
| 2019-02-11 | ssl: Use sha256 in test certificates if supported | Péter Dimitrov | |
| This commit fixes ssl_test_lib:appropriate_sha/1 that returns sha256 if it is supported by crypto. It returns sha1 otherwise. Change-Id: I0bfa4d50bbe3c788551a81d418db2cabc36a4344 | |||
| 2019-02-08 | ssl: Move and rename diffie_hellman_keys and srp_keys to kex_keys | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Move key_algorithm to handshake_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: srp | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Rename | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Move diffie_hellman_params to handshake_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Move and rename psk_identity state record field | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Move premaster_secret to handshake_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Make flight_state DTLS specific | Ingela Anderton Andin | |
| flight_state is used to handle retransmission timers for DTLS over udp | |||
| 2019-02-08 | ssl: Add private_key to connection_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Remove unused record field | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Add erl_dist_handle to connection_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Add negotiated_version to connection_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Add key exchange items to handshake_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Add hashsign_algorithm and cert_hashsign_algorithm to handshake_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Add downgrade handling to connection_env | Ingela Anderton Andin | |
| Remove duplicate handsake history handling form ssl_config function. Later we might refactor to avoid duplication in TLS and DTLS code, but handshake history does not belong in ssl_config function. | |||
| 2019-02-08 | ssl: Create connection_env | Ingela Anderton Andin | |
| 2019-02-08 | ssl: Handle renegotiation and extensions in handshake_env | Ingela Anderton Andin | |
| 2019-02-05 | Merge branch 'ingela/ssl/alert-return/OTP-15423' into maint | Ingela Anderton Andin | |
| * ingela/ssl/alert-return/OTP-15423: ssl: Use specs to generate type documentation ssl: Enhance error handling | |||
| 2019-02-05 | ssl: Use specs to generate type documentation | Ingela Anderton Andin | |
| 2019-02-04 | ssl: Enhance error handling | Ingela Anderton Andin | |
| 2019-02-01 | ssl: Remove unintended match | Ingela Anderton Andin | |
| 2019-01-30 | Merge pull request #2109 from IngelaAndin/ingela/ssl/active-check | Ingela Andin | |
| ssl: Correct check for delayed close due to undliverd data | |||
| 2019-01-30 | Merge branch 'peterdmv/ssl/improve_openssl_interop_tests' into maint | Péter Dimitrov | |
| * peterdmv/ssl/improve_openssl_interop_tests: ssl: Improve openssl interop tests Change-Id: I65b63ddb8c8948d246e341f8c821b3b499507cb6 | |||
| 2019-01-29 | ssl: Improve openssl interop tests | Péter Dimitrov | |
| openssl 1.1.x changed the default ECC curves that made testcases fail in the ECC suite. openssl s_server and s_client sent 'Illegal Parameter' alert when the CertificateVerify (client) or ServerKeyExchange (server) message was signed with a curve that was not present in openssl's default ECC curve list (x25519, secp256r1, secp521r1, secp384r1, brainpoolP256r1, brainpoolP384r1, brainpool512r1). This commit changes the default curve of make_ec_cert_chains to 'secp256r1' and explicitly configures the default curve in those testcases where the default curve of the ssl application is expected. Change-Id: I81ebe1a30b8f863b0e2836b1dad3d8bc767cc47e | |||
| 2019-01-24 | ssl: Correct check for delayed close due to undliverd data | Ingela Anderton Andin | |
| Could cause connection processes not terminate when they should | |||
| 2019-01-23 | Merge branch 'ingela/ssl/continue-optimize/OTP-15445' into maint | Ingela Anderton Andin | |
| * ingela/ssl/continue-optimize/OTP-15445: ssl: If possible assemble several received application data records | |||
| 2019-01-22 | ssl: If possible assemble several received application data records | Ingela Anderton Andin | |
| 2019-01-22 | ssl: Create hs_env | Ingela Anderton Andin | |
| We want to decrease the size of the outer state tuple, and gain ease of understanding by better grouping. This is the first step of creating a hs_env (handshake environment) part of the state. This change will be performed gradually to reduce merge conflicts complexity and risk of introducing errors. | |||
 |
index : otp.git | |
| Mirror of Erlang/OTP repository. | OTP Team |
| aboutsummaryrefslogtreecommitdiffstats |