| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Fix bug that broke session decryption (and thus resumption) | Jack Lloyd | 2018-04-09 | 1 | -1/+1 |
| | | | | | Introduced in 3657639ab. Add a test that would have caught this | ||||
| * | Add RAII versions of get_cipher_mode and get_aead | Jack Lloyd | 2018-04-07 | 1 | -2/+2 |
| | | | | | See also #1526 | ||||
| * | Remove vestigial support for TLS compression | Jack Lloyd | 2018-01-21 | 1 | -4/+11 |
| | | | | | | It was never supported and never will be. Removing negotiation entirely simplifies the code a bit. | ||||
| * | More include header cleanups | Jack Lloyd | 2017-09-21 | 1 | -0/+1 |
| | | |||||
| * | Convert to using standard uintN_t integer types | Jack Lloyd | 2016-12-18 | 1 | -21/+21 |
| | | | | | | | Renames a couple of functions for somewhat better name consistency, eg make_u32bit becomes make_uint32. The old typedefs remain for now since probably lots of application code uses them. | ||||
| * | Merge branch 'master' into Encrypt-then-MAC-with-policy | Juraj Somorovsky | 2016-05-12 | 1 | -3/+2 |
| |\ | | | | | | | Merged recent changes and resolved minor conflicts in tls record classes. | ||||
| | * | Add explicit static_cast operations to eliminate implicit cast compiler ↵ | Dan Brown | 2016-04-27 | 1 | -3/+2 |
| | | | | | | | | | warnings. | ||||
| * | | Encrypt-then-MAC extension (RFC 7366) | Juraj Somorovsky | 2016-05-11 | 1 | -0/+4 |
| |/ | | | | | | Introduced a countermeasure against the logjam attack Short TLS records (AES-CBC) now return BAD_RECORD_MAC Fixed a compatibility problem with OpenSSL and TLS 1.0 (BEAST countermeasure) | ||||
| * | Remove support for the TLS min fragment length extension. | Jack Lloyd | 2016-02-07 | 1 | -4/+13 |
| | | |||||
| * | Add extended master secret extension (RFC 7627) to TLS | Jack Lloyd | 2016-01-03 | 1 | -0/+4 |
| | | | | | Interop tested with mbed TLS | ||||
| * | Add remove_all to TLS session manager interface | Jack Lloyd | 2015-11-13 | 1 | -10/+9 |
| | | | | | DB::spin now returns the number of rows affected | ||||
| * | lib/tls: Convert &vec[0] to vec.data() | Simon Warta | 2015-06-23 | 1 | -4/+4 |
| | | |||||
| * | Support any key length for TLS session encryption by hashing with HMAC | lloyd | 2015-01-10 | 1 | -4/+16 |
| | | |||||
| * | Ensure all files have copyright and license info. | lloyd | 2015-01-10 | 1 | -1/+1 |
| | | | | | | Update license header line to specify the terms and refer to the file, neither of which it included before. | ||||
| * | Change TLS session encryption to use AES-256/GCM instead of CBC+HMAC | lloyd | 2015-01-08 | 1 | -10/+26 |
| | | |||||
| * | Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC). | lloyd | 2015-01-04 | 1 | -6/+11 |
| | | | | | | | | | | | | | | | Github issue 27. Refactor server hello handling to make it easier to handle other extensions. The manual specified that 224 bit NIST primes were disabled by default for TLS but they were not. Additionaly disable the 256k1 curve and reorder the remaining curves by size. Rewrite the max fragment length extension code to roughly what an ideal compiler would have turned the original code into, using a switch instead of a lookup into a small constant std::map. | ||||
| * | Guess I won't be needing these | lloyd | 2014-01-18 | 1 | -1/+0 |
| | | |||||
| * | Move lib into src | lloyd | 2014-01-10 | 1 | -0/+177 |
 |
index : botan.git | |
| Unnamed repository; edit this file 'description' to name the repository. |
| aboutsummaryrefslogtreecommitdiffstats |