Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-14 | ssl: Remove duplicate record_cb handling | Ingela Anderton Andin | |
2019-02-14 | ssl: Add test case for continued handshake with a timeout | dimadio | |
2019-02-13 | ssl: Use gen_statem named timers to handle connection and recv timeouts | Ingela Anderton Andin | |
2019-02-08 | ssl: Move and rename diffie_hellman_keys and srp_keys to kex_keys | Ingela Anderton Andin | |
2019-02-08 | ssl: Move key_algorithm to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: srp | Ingela Anderton Andin | |
2019-02-08 | ssl: Rename | Ingela Anderton Andin | |
2019-02-08 | ssl: Move diffie_hellman_params to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Move and rename psk_identity state record field | Ingela Anderton Andin | |
2019-02-08 | ssl: Move premaster_secret to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Make flight_state DTLS specific | Ingela Anderton Andin | |
flight_state is used to handle retransmission timers for DTLS over udp | |||
2019-02-08 | ssl: Add private_key to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Remove unused record field | Ingela Anderton Andin | |
2019-02-08 | ssl: Add erl_dist_handle to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add negotiated_version to connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add key exchange items to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add hashsign_algorithm and cert_hashsign_algorithm to handshake_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Add downgrade handling to connection_env | Ingela Anderton Andin | |
Remove duplicate handsake history handling form ssl_config function. Later we might refactor to avoid duplication in TLS and DTLS code, but handshake history does not belong in ssl_config function. | |||
2019-02-08 | ssl: Create connection_env | Ingela Anderton Andin | |
2019-02-08 | ssl: Handle renegotiation and extensions in handshake_env | Ingela Anderton Andin | |
2019-02-05 | Merge branch 'ingela/ssl/alert-return/OTP-15423' into maint | Ingela Anderton Andin | |
* ingela/ssl/alert-return/OTP-15423: ssl: Use specs to generate type documentation ssl: Enhance error handling | |||
2019-02-05 | ssl: Use specs to generate type documentation | Ingela Anderton Andin | |
2019-02-04 | ssl: Enhance error handling | Ingela Anderton Andin | |
2019-02-01 | ssl: Remove unintended match | Ingela Anderton Andin | |
2019-01-30 | Merge pull request #2109 from IngelaAndin/ingela/ssl/active-check | Ingela Andin | |
ssl: Correct check for delayed close due to undliverd data | |||
2019-01-30 | Merge branch 'peterdmv/ssl/improve_openssl_interop_tests' into maint | Péter Dimitrov | |
* peterdmv/ssl/improve_openssl_interop_tests: ssl: Improve openssl interop tests Change-Id: I65b63ddb8c8948d246e341f8c821b3b499507cb6 | |||
2019-01-29 | ssl: Improve openssl interop tests | Péter Dimitrov | |
openssl 1.1.x changed the default ECC curves that made testcases fail in the ECC suite. openssl s_server and s_client sent 'Illegal Parameter' alert when the CertificateVerify (client) or ServerKeyExchange (server) message was signed with a curve that was not present in openssl's default ECC curve list (x25519, secp256r1, secp521r1, secp384r1, brainpoolP256r1, brainpoolP384r1, brainpool512r1). This commit changes the default curve of make_ec_cert_chains to 'secp256r1' and explicitly configures the default curve in those testcases where the default curve of the ssl application is expected. Change-Id: I81ebe1a30b8f863b0e2836b1dad3d8bc767cc47e | |||
2019-01-24 | ssl: Correct check for delayed close due to undliverd data | Ingela Anderton Andin | |
Could cause connection processes not terminate when they should | |||
2019-01-23 | Merge branch 'ingela/ssl/continue-optimize/OTP-15445' into maint | Ingela Anderton Andin | |
* ingela/ssl/continue-optimize/OTP-15445: ssl: If possible assemble several received application data records | |||
2019-01-22 | ssl: If possible assemble several received application data records | Ingela Anderton Andin | |
2019-01-22 | ssl: Create hs_env | Ingela Anderton Andin | |
We want to decrease the size of the outer state tuple, and gain ease of understanding by better grouping. This is the first step of creating a hs_env (handshake environment) part of the state. This change will be performed gradually to reduce merge conflicts complexity and risk of introducing errors. | |||
2019-01-22 | ssl: Remove unnecessary iolist_to_binary | Ingela Anderton Andin | |
2019-01-22 | Merge branch 'ingela/ssl/test-cuddle' into maint | Ingela Anderton Andin | |
* ingela/ssl/test-cuddle: ssl: Correct test input | |||
2019-01-21 | ssl: Correct test input | Ingela Anderton Andin | |
2019-01-21 | Merge branch 'ingela/ssl/DES-EDE/OTP-15539' into maint | Ingela Anderton Andin | |
* ingela/ssl/DES-EDE/OTP-15539: ssl: Correct 3des_ede_cbc check | |||
2019-01-17 | ssl: Correct 3des_ede_cbc check | Ingela Anderton Andin | |
Could cause ssl to claim to support 3des_ede_cbc when cryptolib does not | |||
2019-01-16 | Merge branch 'maint-21' into maint | Rickard Green | |
* maint-21: Updated OTP version Prepare release | |||
2019-01-16 | ssl: Cuddle tests | Ingela Anderton Andin | |
2019-01-15 | Prepare release | Erlang/OTP | |
2019-01-15 | Merge branch 'peterdmv/ssl/fix-srp-encode-decode/ERL-790/OTP-15477' into ↵ | Erlang/OTP | |
maint-21 * peterdmv/ssl/fix-srp-encode-decode/ERL-790/OTP-15477: ssl: Fix encoding/decoding of the SRP extension | |||
2019-01-15 | Merge branch 'ingela/ssl/enhance-error-handling/OTP-15505' into maint-21 | Erlang/OTP | |
* ingela/ssl/enhance-error-handling/OTP-15505: ssl: Cuddle test cases ssl: Fix test case ssl: Fix two invalid gen_statem returns | |||
2019-01-14 | ssl: Add value 'save' to reuse_sessions and reuse_session client option | Ingela Anderton Andin | |
We want to be able to save a specific session to reuse, and make sure it is reusable immediatly when the connection has been established. Add client option {reuse_session, SessionID::binary()} We also do not want clients to save sessions that it did not verify. Additionaly change behaviour of the client and server to not save sessions if reuse_session is set to false. | |||
2019-01-14 | ssl: Client shall only save verified sessions | Ingela Anderton Andin | |
Modernize test case option handling | |||
2019-01-14 | ssl: Uncomplicate test code | Ingela Anderton Andin | |
No need for this test case to set a specific cipher suite. An appropriate cipher suite will be negotiated and it will of course be the same for clients with the same configuration. | |||
2019-01-14 | ssl: Modernize test suite | Ingela Anderton Andin | |
2019-01-10 | Merge branch 'peterdmv/ssl/fix-crl-suite' into maint | Péter Dimitrov | |
* peterdmv/ssl/fix-crl-suite: ssl: Fix CRL suite with openssl-1.1.1a Change-Id: I2847107b6cf0210c3002c016a6ba49288505d06f | |||
2019-01-10 | ssl: Add renegotiation test case to OpenSSL sanity check | Ingela Anderton Andin | |
2019-01-10 | ssl: Better stream handling | Ingela Anderton Andin | |
Remove rizzo rests that made incorrect assumptions | |||
2019-01-09 | ssl: Fix CRL suite with openssl-1.1.1a | Péter Dimitrov | |
Later versions of openssl do not support negative integers for CRL due time (used for negative testing). As a workaround this commit implements a function that can set CRL due time in seconds and makes the testcase 'crl_hash_dir_expired' sleep for one second. Change-Id: I2ef8b3c6ee545bd09170fa6027cb9ca38cfb42c0 | |||
2019-01-08 | ssl: Cuddle test cases | Ingela Anderton Andin | |
Cipher test case also needed updating to handle streams correctly We should not rizzo test chacha20_poly1305 Conflicts: lib/ssl/test/ssl_basic_SUITE.erl |