Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Remove debug output | lloyd | 2012-09-09 | 1 | -1/+1 |
| | |||||
* | Support both TLS and DTLS in the tls_server example. | lloyd | 2012-09-09 | 2 | -410/+159 |
| | | | | Drop the fairly bogus socket wrapper layer. | ||||
* | Support DTLS in tls_client. Support client-initiated close_notify (via 'Q') | lloyd | 2012-09-09 | 1 | -98/+103 |
| | |||||
* | Small doc tweaks | lloyd | 2012-09-07 | 1 | -6/+6 |
| | |||||
* | Add support for key material export | lloyd | 2012-09-07 | 2 | -0/+18 |
| | |||||
* | Reject SRP6 values which are negative or larger than p since these are | lloyd | 2012-08-11 | 1 | -13/+23 |
| | | | | likely totally bogus. | ||||
* | TLS doc updates | lloyd | 2012-08-09 | 1 | -7/+8 |
| | |||||
* | Instead of using static salts in the KDF for generating the cipher and | lloyd | 2012-08-09 | 1 | -10/+18 |
| | | | | | | MAC keys for session encryption, randomly generate two 80-bit salt values which are included in the session blob and run the KDF over the master key and the random salts to create the keys. | ||||
* | Remove octal references | lloyd | 2012-08-09 | 1 | -16/+8 |
| | |||||
* | More 1.11.1 notes. Update TLS docs | lloyd | 2012-08-09 | 2 | -7/+53 |
| | |||||
* | Add a field in credits for Bitcoin addresses. | lloyd | 2012-08-09 | 1 | -2/+3 |
| | |||||
* | Turn on NPN | lloyd | 2012-08-06 | 1 | -1/+2 |
| | |||||
* | Fix link | lloyd | 2012-08-02 | 1 | -2/+3 |
| | |||||
* | Fix emphasis | lloyd | 2012-08-02 | 1 | -3/+2 |
| | |||||
* | Remove BigInt::assign | lloyd | 2012-08-01 | 1 | -3/+3 |
| | |||||
* | Remove BigInt(NumberType type, size_t n) and replace it with a static | lloyd | 2012-08-01 | 1 | -0/+2 |
| | | | | BigInt function power_of_2. (Power2 was the only available NumberType) | ||||
* | Remove all support for octal BigInt conversions. | lloyd | 2012-08-01 | 1 | -0/+10 |
| | |||||
* | OpenSSL gets cranky if we send application data mid handshake | lloyd | 2012-07-28 | 1 | -3/+2 |
| | |||||
* | Add Public_Key::estimated_strength which gives an approximation of how | lloyd | 2012-07-27 | 3 | -1/+31 |
| | | | | | | | hard that key is to break. Use it in cert path validation, rejecting keys with estimated strength less than 80 bits. | ||||
* | Small doc tweaks | lloyd | 2012-07-27 | 4 | -18/+21 |
| | |||||
* | Have the release script pull the datestamp from monotone, so it does | lloyd | 2012-07-25 | 1 | -9/+9 |
| | | | | not need to be manually set before a release. | ||||
* | Build on Sheevaplug | lloyd | 2012-07-24 | 1 | -0/+2 |
| | |||||
* | Update for 1.11.0 release1.11.0 | lloyd | 2012-07-19 | 2 | -2/+4 |
| | |||||
* | Add 1.8.14 release notes | lloyd | 2012-07-18 | 3 | -3/+21 |
| | |||||
* | Add FAQ entry for old Pythons having issues with configure | lloyd | 2012-07-18 | 1 | -0/+30 |
| | |||||
* | Sort by last name | lloyd | 2012-07-13 | 1 | -5/+5 |
| | |||||
* | Make page wider. QNX build report. Link to 1.10.2 notes in 1.10.3. | lloyd | 2012-07-13 | 3 | -6/+10 |
| | |||||
* | Add an optional parameter to TLS::Client specifying the port number. | lloyd | 2012-07-12 | 3 | -13/+38 |
| | | | | | | Pass this down into the session managers. Also document how to use session tickets with TLS servers. | ||||
* | Update the InnoSetup script: | lloyd | 2012-07-11 | 1 | -7/+45 |
| | | | | | | | | | | | | | | | | | | | | | - Have configure.py create a new var %{innosetup_arch} which means one doesn't have to remmeber to uncomment the ArchitecturesAllowed and ArchitecturesInstallIn64BitMode for 64-bit installs. Also it would theoretically work out of the box for IA-64 installs though this is completely untested. - InnoSetup 5.5 drops support for Windows 95/98/ME. While I'm in there, move MinVersion to 5.1 (XP) since 2000 is (as with 9x) totally an unknown quantity (not to mention EOLed). - No PDF manual anymore, don't try to install it - The files under doc are .rst rather than .txt now - Include %{arch} in OutputBaseFilename so I don't have to rename the output afterwards. and outline the process for creating the installer in release_process.rst | ||||
* | Use subsections in 1.11.0 release notes. | lloyd | 2012-07-11 | 4 | -32/+48 |
| | | | | | | | | | Remove installer link for 1.8. Update 1.10 installer to 1.10.3 and link to signatures as well. Add note in download links that 1.11 requires a C++11 compiler. Add build records for Windows 1.10.3 with VC 2010. | ||||
* | More release process docs | lloyd | 2012-07-10 | 1 | -13/+22 |
| | |||||
* | Add a basic outline of how releases occur while it is fresh in my | lloyd | 2012-07-10 | 2 | -0/+44 |
| | | | | memory from the 1.10.3 release. | ||||
* | Add relnotes and update download links for 1.10.3 | lloyd | 2012-07-10 | 3 | -3/+15 |
| | |||||
* | Add a patch from Markus Wanner that extends DataSource (including | lloyd | 2012-07-09 | 1 | -0/+1 |
| | | | | | Pipe) with get_bytes_read() which returns the number of bytes read so far from that source. | ||||
* | Fix leak in read_ssh example, reported by Martin Olsson to the mailing list | lloyd | 2012-07-09 | 1 | -2/+3 |
| | |||||
* | Add a LZMA filter contributed by Vojtech Kral | lloyd | 2012-07-09 | 3 | -0/+10 |
| | |||||
* | Drop the support page as FlexSecure doesn't provide any info about | lloyd | 2012-07-09 | 4 | -24/+15 |
| | | | | | | InSiTo or botan support anymore. Build records for 1.11.0 and 1.10.2 | ||||
* | Fix for bug 209. Required some reworking of the ASN.1 bytestring | lloyd | 2012-07-09 | 1 | -0/+10 |
| | | | | decoding code but seems an improvement. | ||||
* | Add wikipedia extlinks target. Warn about SRP verifier being secret | lloyd | 2012-07-06 | 2 | -2/+18 |
| | |||||
* | Outline of docs for SRP | lloyd | 2012-07-06 | 2 | -0/+26 |
| | |||||
* | Basic PSK documentation | lloyd | 2012-07-06 | 1 | -3/+15 |
| | |||||
* | A bit more OCSP documentation | lloyd | 2012-07-05 | 1 | -3/+8 |
| | |||||
* | Rename all text files that are actually reStructuredText to .rst | lloyd | 2012-07-01 | 191 | -5/+3 |
| | |||||
* | Add OCSP doc. Rewrite 1.11.0 release notes. | lloyd | 2012-07-01 | 3 | -42/+70 |
| | |||||
* | Use new header for sqlite session manager | lloyd | 2012-06-29 | 1 | -2/+2 |
| | |||||
* | Minor doc updates | lloyd | 2012-06-29 | 2 | -4/+9 |
| | |||||
* | More discussion of the TLS callbacks | lloyd | 2012-06-29 | 1 | -10/+61 |
| | |||||
* | Split TLS::Policy::allowed_hashes into allowed_signature_hashes and | lloyd | 2012-06-29 | 1 | -9/+41 |
| | | | | | | | | | | | | | allowed_macs. This allows someone to turn on MD5 for message auth, which is a little sketchy but probably OK, without also (likely unintentionally) enabling MD5 for TLS v1.2 signatures, which would be a big problem. Prioritize RC4 over 3DES in default policy. Disable ECC curves smaller than 224 bits by default. More updates to the TLS policy documentation. | ||||
* | Fix formatting of Channel docs | lloyd | 2012-06-29 | 1 | -28/+34 |
| | |||||
* | Improve TLS::Channel documentation | lloyd | 2012-06-29 | 1 | -4/+13 |
| |