aboutsummaryrefslogtreecommitdiffstats
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* Remove debug outputlloyd2012-09-091-1/+1
|
* Support both TLS and DTLS in the tls_server example.lloyd2012-09-092-410/+159
| | | | Drop the fairly bogus socket wrapper layer.
* Support DTLS in tls_client. Support client-initiated close_notify (via 'Q')lloyd2012-09-091-98/+103
|
* Small doc tweakslloyd2012-09-071-6/+6
|
* Add support for key material exportlloyd2012-09-072-0/+18
|
* Reject SRP6 values which are negative or larger than p since these arelloyd2012-08-111-13/+23
| | | | likely totally bogus.
* TLS doc updateslloyd2012-08-091-7/+8
|
* Instead of using static salts in the KDF for generating the cipher andlloyd2012-08-091-10/+18
| | | | | | MAC keys for session encryption, randomly generate two 80-bit salt values which are included in the session blob and run the KDF over the master key and the random salts to create the keys.
* Remove octal referenceslloyd2012-08-091-16/+8
|
* More 1.11.1 notes. Update TLS docslloyd2012-08-092-7/+53
|
* Add a field in credits for Bitcoin addresses.lloyd2012-08-091-2/+3
|
* Turn on NPNlloyd2012-08-061-1/+2
|
* Fix linklloyd2012-08-021-2/+3
|
* Fix emphasislloyd2012-08-021-3/+2
|
* Remove BigInt::assignlloyd2012-08-011-3/+3
|
* Remove BigInt(NumberType type, size_t n) and replace it with a staticlloyd2012-08-011-0/+2
| | | | BigInt function power_of_2. (Power2 was the only available NumberType)
* Remove all support for octal BigInt conversions.lloyd2012-08-011-0/+10
|
* OpenSSL gets cranky if we send application data mid handshakelloyd2012-07-281-3/+2
|
* Add Public_Key::estimated_strength which gives an approximation of howlloyd2012-07-273-1/+31
| | | | | | | hard that key is to break. Use it in cert path validation, rejecting keys with estimated strength less than 80 bits.
* Small doc tweakslloyd2012-07-274-18/+21
|
* Have the release script pull the datestamp from monotone, so it doeslloyd2012-07-251-9/+9
| | | | not need to be manually set before a release.
* Build on Sheevapluglloyd2012-07-241-0/+2
|
* Update for 1.11.0 release1.11.0lloyd2012-07-192-2/+4
|
* Add 1.8.14 release noteslloyd2012-07-183-3/+21
|
* Add FAQ entry for old Pythons having issues with configurelloyd2012-07-181-0/+30
|
* Sort by last namelloyd2012-07-131-5/+5
|
* Make page wider. QNX build report. Link to 1.10.2 notes in 1.10.3.lloyd2012-07-133-6/+10
|
* Add an optional parameter to TLS::Client specifying the port number.lloyd2012-07-123-13/+38
| | | | | | Pass this down into the session managers. Also document how to use session tickets with TLS servers.
* Update the InnoSetup script:lloyd2012-07-111-7/+45
| | | | | | | | | | | | | | | | | | | | | - Have configure.py create a new var %{innosetup_arch} which means one doesn't have to remmeber to uncomment the ArchitecturesAllowed and ArchitecturesInstallIn64BitMode for 64-bit installs. Also it would theoretically work out of the box for IA-64 installs though this is completely untested. - InnoSetup 5.5 drops support for Windows 95/98/ME. While I'm in there, move MinVersion to 5.1 (XP) since 2000 is (as with 9x) totally an unknown quantity (not to mention EOLed). - No PDF manual anymore, don't try to install it - The files under doc are .rst rather than .txt now - Include %{arch} in OutputBaseFilename so I don't have to rename the output afterwards. and outline the process for creating the installer in release_process.rst
* Use subsections in 1.11.0 release notes.lloyd2012-07-114-32/+48
| | | | | | | | | Remove installer link for 1.8. Update 1.10 installer to 1.10.3 and link to signatures as well. Add note in download links that 1.11 requires a C++11 compiler. Add build records for Windows 1.10.3 with VC 2010.
* More release process docslloyd2012-07-101-13/+22
|
* Add a basic outline of how releases occur while it is fresh in mylloyd2012-07-102-0/+44
| | | | memory from the 1.10.3 release.
* Add relnotes and update download links for 1.10.3lloyd2012-07-103-3/+15
|
* Add a patch from Markus Wanner that extends DataSource (includinglloyd2012-07-091-0/+1
| | | | | Pipe) with get_bytes_read() which returns the number of bytes read so far from that source.
* Fix leak in read_ssh example, reported by Martin Olsson to the mailing listlloyd2012-07-091-2/+3
|
* Add a LZMA filter contributed by Vojtech Krallloyd2012-07-093-0/+10
|
* Drop the support page as FlexSecure doesn't provide any info aboutlloyd2012-07-094-24/+15
| | | | | | InSiTo or botan support anymore. Build records for 1.11.0 and 1.10.2
* Fix for bug 209. Required some reworking of the ASN.1 bytestringlloyd2012-07-091-0/+10
| | | | decoding code but seems an improvement.
* Add wikipedia extlinks target. Warn about SRP verifier being secretlloyd2012-07-062-2/+18
|
* Outline of docs for SRPlloyd2012-07-062-0/+26
|
* Basic PSK documentationlloyd2012-07-061-3/+15
|
* A bit more OCSP documentationlloyd2012-07-051-3/+8
|
* Rename all text files that are actually reStructuredText to .rstlloyd2012-07-01191-5/+3
|
* Add OCSP doc. Rewrite 1.11.0 release notes.lloyd2012-07-013-42/+70
|
* Use new header for sqlite session managerlloyd2012-06-291-2/+2
|
* Minor doc updateslloyd2012-06-292-4/+9
|
* More discussion of the TLS callbackslloyd2012-06-291-10/+61
|
* Split TLS::Policy::allowed_hashes into allowed_signature_hashes andlloyd2012-06-291-9/+41
| | | | | | | | | | | | | allowed_macs. This allows someone to turn on MD5 for message auth, which is a little sketchy but probably OK, without also (likely unintentionally) enabling MD5 for TLS v1.2 signatures, which would be a big problem. Prioritize RC4 over 3DES in default policy. Disable ECC curves smaller than 224 bits by default. More updates to the TLS policy documentation.
* Fix formatting of Channel docslloyd2012-06-291-28/+34
|
* Improve TLS::Channel documentationlloyd2012-06-291-4/+13
|