aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls/tls_server.cpp
Commit message (Expand)AuthorAgeFilesLines
* Use enums to represent TLS signature and kex algorithms.Jack Lloyd2018-01-281-41/+42
* Add an examine callback alsoJack Lloyd2018-01-271-0/+2
* Add ability for application to control which TLS extensions are usedJack Lloyd2018-01-271-0/+2
* Remove vestigial support for TLS compressionJack Lloyd2018-01-211-24/+0
* Handle #1303 on the server sideJack Lloyd2017-12-071-1/+13
* Fix formatting in TLS server code [ci skip]Jack Lloyd2017-12-071-193/+179
* Correct version selection logic in TLS serverJack Lloyd2017-11-281-0/+5
* Fix errors caught with tlsfuzzerJack Lloyd2017-11-261-7/+0
* Fall back to default group if client does not send any DH groupsRené Korthaus2017-10-201-1/+0
* Add supported groups TLS extension (RFC 7919)René Korthaus2017-10-171-0/+7
* Apply final annotations to the library alsoJack Lloyd2017-09-221-1/+1
* Merge GH #872 Add ability for TLS servers to prohibit renegotiationJack Lloyd2017-09-191-1/+7
|\
| * Fix logic of renegotiation checkJack Lloyd2017-02-201-3/+3
| * Add TLS::Policy::allow_client_initiated_renegotiationJack Lloyd2017-02-191-1/+7
* | Don't try enforcing the hash policy for PSK ciphersuitesJack Lloyd2017-09-011-1/+1
* | Enforce signature hash policy properlyJack Lloyd2017-08-311-0/+34
|/
* Export tls_messages.h as a public headerRené Korthaus2016-12-231-1/+1
* Convert to using standard uintN_t integer typesJack Lloyd2016-12-181-17/+17
* Add OCSP stapling support to TLS clientJack Lloyd2016-11-261-0/+1
* Add TLS::Policy::minimum_signature_strengthJack Lloyd2016-11-251-1/+2
* Move TLS cert verification callback from Credentials_Manager to TLS::CallbacksJack Lloyd2016-11-231-1/+7
* Tighten up TLS server handshake logic.Jack Lloyd2016-10-201-20/+15
* Revert PK_Verifier change (don't require RNG there).Jack Lloyd2016-10-071-1/+1
* Remove Algo_Registry usage from public key code.Jack Lloyd2016-10-071-1/+1
* TLS Server should respect client signature_algorithms. Stricter TLS hello dec...Jack Lloyd2016-09-211-9/+27
* Merge master into this branch, resolving conflicts with #457/#576Jack Lloyd2016-08-311-363/+463
|\
| * Add a Callbacks function for ALPNJack Lloyd2016-08-161-5/+11
| * Changes to TLS::Callbacks for GH PR #457Jack Lloyd2016-08-161-8/+28
| * Removed Handshake_Info class.Matthias Gierlings2016-06-191-13/+11
| * Removed TLS::Session::PropertiesMatthias Gierlings2016-06-191-10/+7
| * Compatibility patch for TLS::Callback interfaceMatthias Gierlings2016-06-191-0/+38
| * Added virtual Callback InterfaceMatthias Gierlings2016-06-191-1/+4
| * Fix for amalgamation build problemsMatthias Gierlings2016-06-191-1/+2
| * Reduction of code complexity in TLS classes.Matthias Gierlings2016-06-191-392/+430
* | Encrypt-then-MAC extension (RFC 7366)Juraj Somorovsky2016-05-111-0/+14
* | TLS Policy supportChristian Mainka2016-05-031-1/+1
|/
* Check that TLS signature type is accepted by the policy.Jack Lloyd2016-03-061-1/+1
* Make SRP6 support optional in TLSJack Lloyd2016-02-071-0/+4
* Remove support for the TLS min fragment length extension.Jack Lloyd2016-02-071-1/+0
* Add extended master secret extension (RFC 7627) to TLSJack Lloyd2016-01-031-1/+20
* TLS improvementsJack Lloyd2015-10-251-20/+38
* Avoid a crash in the TLS server if the client sends ALPN but no nextJack Lloyd2015-08-281-1/+1
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-201-43/+17
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-271-6/+8
* Remove SSLv3 and handling of SSLv2 client hellos.lloyd2015-01-111-6/+3
* Ensure all files have copyright and license info.lloyd2015-01-101-1/+1
* Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC).lloyd2015-01-041-48/+23
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-151-1/+2
* Let TLS policy disable putting the timestamp in the hello random fieldslloyd2014-11-041-1/+1
* Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)lloyd2014-10-311-4/+14