aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Remove debug outputlloyd2012-09-091-1/+1
* Support both TLS and DTLS in the tls_server example.lloyd2012-09-092-410/+159
* Expect a cookie field in a DTLS client hellolloyd2012-09-091-0/+3
* Support DTLS in tls_client. Support client-initiated close_notify (via 'Q')lloyd2012-09-091-98/+103
* Rename functionlloyd2012-09-092-16/+16
* Remove redundant Channel::m_current_versionlloyd2012-09-094-30/+30
* Create the IO in Channel and then pass it down to new_handshake_statelloyd2012-09-097-37/+39
* Store the is-SSLv3 flag in the cipher state as the difference is onlylloyd2012-09-092-22/+19
* Clean up includeslloyd2012-09-094-6/+5
* Also hide Channel::m_handshake_fnlloyd2012-09-093-5/+5
* Hide Channel::m_rng and Channel::m_session_manager, add getterslloyd2012-09-094-23/+28
* Small cleanuplloyd2012-09-081-1/+5
* Only accept a hello request if an active state currently exists.lloyd2012-09-071-4/+2
* Per Google's spec the client is not supposed to include a NPNlloyd2012-09-071-0/+4
* This should be inlinelloyd2012-09-071-1/+1
* Small doc tweakslloyd2012-09-071-6/+6
* Add support for key material exportlloyd2012-09-075-0/+69
* Remove Channel::m_peer_certs, instead retrieve directly from the state.lloyd2012-09-076-12/+45
* Avoid another instance of pulling the key out of the certificatelloyd2012-09-073-9/+7
* Just dynamic_cast once at the start of process_handshake_msglloyd2012-09-072-21/+20
* Save the peer public key in the handshake state instead of pulling itlloyd2012-09-076-16/+29
* Take version from pending state for creating cipher speclloyd2012-09-071-3/+3
* This check is boguslloyd2012-09-071-9/+0
* Use TLS v1.0 in the initial record version. Given that we're includinglloyd2012-09-071-1/+1
* Inline Secure_Renegotiation_State into Channel as so much of the datelloyd2012-09-074-68/+62
* Channel::heartbeat_support was removedlloyd2012-09-073-8/+0
* Pass the current active state as well as the pending state which islloyd2012-09-076-16/+22
* Single predecl of Handshake_State saves some noiselloyd2012-09-073-11/+13
* Keep two handshake states around, swap them whenlloyd2012-09-074-68/+69
* Use initializerslloyd2012-09-071-6/+2
* Reindentlloyd2012-09-071-10/+11
* Fixes for server record handling, where we don't know the versionlloyd2012-09-071-31/+43
* In Channel move some checks to after we've verified needed == 0 tolloyd2012-09-072-18/+16
* Remove bogus forced 64 byte mtu.lloyd2012-09-074-9/+22
* DTLS versions count backwardslloyd2012-09-061-0/+3
* Minimize header size dependencies in record readinglloyd2012-09-061-13/+18
* Reject a SSLv2 mapped DTLS client hello as serious bogosity.lloyd2012-09-061-0/+4
* Avoid secure_vector allocation per block on TLS CBC decryptlloyd2012-09-061-1/+3
* Have write_record resize the vector as it goes, thus the return valuelloyd2012-09-063-51/+41
* Move the hostname check last as it's the least 'important' error.lloyd2012-09-061-3/+3
* The checks in renegotiate would prevent initiate_handshake from beinglloyd2012-09-061-1/+1
* Inline current_protocol_version, fix fragment limit checklloyd2012-09-062-11/+13
* Make Channel::m_state privatelloyd2012-09-067-43/+62
* Pass process_handshake_msg a reference to the Handshake_Statelloyd2012-09-0611-307/+307
* Inline Record_Reader to Channel as welllloyd2012-09-067-194/+56
* Inline Record_Writer to Channellloyd2012-09-066-210/+101
* Add Channel::send_recordlloyd2012-09-064-8/+18
* Add more functions to Channel, hiding Record_Reader entirely and mostlloyd2012-09-064-47/+68
* Make a number of members of Channel private instead of protectedlloyd2012-09-066-48/+40
* Record_Reader::m_macbuf no longer usedlloyd2012-09-062-5/+0