aboutsummaryrefslogtreecommitdiffstats
path: root/src/bogo_shim
Commit message (Collapse)AuthorAgeFilesLines
* Remove unnecessary code due to compiler limitationsJack Lloyd2020-11-111-1/+1
| | | | | Use [[nodiscard]] and [[deprecated]] annotations since those are available to us now.
* Remove deprecated headers, make more headers internalJack Lloyd2020-11-061-2/+2
| | | | | | | | | Now modules default to internal headers instead of defaulting to public; making a new public API should be a visible and intentional choice. Brings the public header count from over 300 to around 150. Also removes the deprecated tls_blocking interface
* Enforce TLS server certificate key usage constraintsJack Lloyd2020-06-092-3/+3
|
* Update Bogo test shimJack Lloyd2019-10-252-0/+5
|
* Clean up close_notify handling in TLSJack Lloyd2019-08-012-20/+39
| | | | | | Previously after sending or receiving a close_notify we would reset all handshake state and basically ignore anything the peer sent. Now we detect any garbage that might arrive after.
* Split more carefully to exactly MTU in DTLS handshake fragmentation.Jack Lloyd2019-07-181-14/+5
|
* Improve error messages when reporting TLS state transition violationsJack Lloyd2019-07-131-19/+18
|
* Add TLS v1.3 downgrade indicatorJack Lloyd2019-07-122-1/+3
|
* Make the TLS OCSP callback not const.Jack Lloyd2019-06-291-1/+1
| | | | | As the impl may need to do side-effecting things in order to get the most recent response.
* Add support for HelloVerifyRequest on server sideJack Lloyd2019-06-181-0/+5
| | | | Closes GH #1833
* Cleanup shim logicJack Lloyd2019-06-181-3/+7
|
* Ask for certificate status even on a resumption attemptJack Lloyd2019-05-281-1/+0
| | | | | This makes sense to do since if the server doesn't resume, we would like to see a updated status message.
* Fix another warning in BoGo shimJack Lloyd2019-05-241-1/+1
| | | | | On Linux x86-64 this complains because time_t is unsigned long not unsigned long long. Just cast it.
* Bogo shim warning build fixDavid Carlier2019-05-241-1/+1
|
* Add support for supported versions extension from TLS 1.3Jack Lloyd2019-05-242-34/+33
|
* Allow servers to prohibit renegotiation with fatal alertJack Lloyd2019-05-242-2/+3
|
* Remove hack for signature preferencesJack Lloyd2019-05-241-8/+1
|
* Build fixJack Lloyd2019-05-241-2/+2
|
* Avoid erroring out on a short readJack Lloyd2019-05-241-6/+22
| | | | Can't replicate this locally but it just caused a failure on Travis.
* Fix DTLS alertsJack Lloyd2019-05-232-20/+11
| | | | | For some reason doing two writes here ends up with the second (the payload) being lost due to socket closure.
* Some analysis of failing testsJack Lloyd2019-05-231-2/+5
|
* Ignore large DTLS ciphertextsJack Lloyd2019-05-231-1/+0
|
* Fix bugs when DTLS initial handshake messages are replayedJack Lloyd2019-05-231-1/+0
|
* Fix some issues with DTLS version intoleranceJack Lloyd2019-05-232-5/+8
|
* Clarify disabled commentJack Lloyd2019-05-231-6/+6
|
* Fix DTLS version settings in shimJack Lloyd2019-05-232-17/+8
|
* Verify contents of DTLS CCS messageJack Lloyd2019-05-231-1/+0
|
* Shorten callback nameJack Lloyd2019-05-221-2/+2
|
* Add BoGo tests and fix resumption caseJack Lloyd2019-05-222-10/+38
|
* Fix more BoGo testsJack Lloyd2019-05-222-16/+60
| | | | | Now all tests either pass or are known to fail for some reason. Disable -allow-unimplemented
* Fix DTLS MTU splittingJack Lloyd2019-05-212-3/+11
| | | | We could/would send packets somewhat larger than MTU
* Disable some BoGo tests with problems not immediately debuggableJack Lloyd2019-05-211-0/+23
|
* Start of support for DTLS in BoGo shimJack Lloyd2019-05-212-59/+142
|
* More BoGo workJack Lloyd2019-05-212-28/+39
|
* Fix some Clang warnings in the BoGo shimJack Lloyd2019-05-201-15/+16
|
* Add a shim for testing Botan using BoGoJack Lloyd2019-05-202-0/+1591
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-12 21:36:53 +0000