aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls
Commit message (Expand)AuthorAgeFilesLines
* Missing addsJack Lloyd2015-12-113-3/+0
* Reroot the exception hierarchy into a toplevel Exception classJack Lloyd2015-12-1110-19/+19
* Fix bug causing TLS client to sometimes reject DHE server kexJack Lloyd2015-11-132-35/+16
* Add remove_all to TLS session manager interfaceJack Lloyd2015-11-135-44/+57
* Drop the DH group check to a weaker version of the checksJack Lloyd2015-11-131-2/+3
* Add TLS_PSK testsJack Lloyd2015-11-133-14/+5
* Add check for path validation result in Credentials_Manager. GH #324Jack Lloyd2015-11-041-5/+8
* Merge pull request #314 from randombit/ct-tls-cbc-paddingJack Lloyd2015-10-2617-190/+382
|\
| * Asan fix - referencing &vec[vec.size()] instead of vec.end()Jack Lloyd2015-10-261-22/+3
| * TLS improvementsJack Lloyd2015-10-2516-168/+379
* | Fix cert validation bugs found by x509test.Jack Lloyd2015-10-231-7/+14
|/
* Remove use of lookup.h in favor of new T::create API.Jack Lloyd2015-09-215-25/+14
* Internal header cleanupsJack Lloyd2015-09-192-2/+1
* Move Credentials_Manager to TLSJack Lloyd2015-08-293-1/+325
* Avoid a crash in the TLS server if the client sends ALPN but no nextJack Lloyd2015-08-281-1/+1
* Remove unused pkcs8 includesSimon Warta2015-08-031-1/+0
* tls: Add missing overridesDaniel Seither2015-07-301-30/+30
* Silence some extra ';' warningsSimon Warta2015-07-221-1/+1
* Fix invalid iterator use in TLS clientJack Lloyd2015-07-051-1/+1
* More changes for use with debug STLSimon Warta2015-06-303-6/+12
* lib/tls: Convert &vec[0] to vec.data()Simon Warta2015-06-2312-44/+44
* Fix various bugs found by Coverity scanner.lloyd2015-05-153-0/+7
* Remove RC4 (and all support for stream ciphers) from TLSlloyd2015-05-153-50/+5
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-2018-316/+138
* Hide Algorithm_Factory and use the functions in lookup.h internally.lloyd2015-03-043-18/+14
* Add new module `ffi` which provides a plain C interface, plus a newlloyd2015-02-161-3/+3
* Remove algo factory, engines, global RNG, global state, etc.lloyd2015-02-047-20/+45
* Convert PK operations to using Algo_Registry instead of Engine.lloyd2015-02-034-6/+4
* Add missing files. Remove cipher lookup from engine code.lloyd2015-02-012-17/+10
* Add a runtime map of string->func() which when called returnlloyd2015-01-283-42/+58
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-2713-92/+116
* Add Strict_Policy. Disable server initiated renegotiation by default.lloyd2015-01-232-13/+43
* Add support for configuring a TLS::Policy by text filelloyd2015-01-232-6/+163
* Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00lloyd2015-01-213-3/+47
* Remove SSLv3 and handling of SSLv2 client hellos.lloyd2015-01-1118-286/+38
* Support any key length for TLS session encryption by hashing with HMAClloyd2015-01-101-4/+16
* Ensure all files have copyright and license info.lloyd2015-01-1057-57/+57
* Change TLS session encryption to use AES-256/GCM instead of CBC+HMAClloyd2015-01-082-12/+26
* Support setting the number of pad bytes in a heartbeat message. Uselloyd2015-01-075-70/+86
* Remove config used for testing DTLS-SRTPlloyd2015-01-041-3/+2
* Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC).lloyd2015-01-0411-134/+293
* Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementationlloyd2014-12-317-95/+122
* Fix a couple things pointed out by VC++ warnings.lloyd2014-12-221-4/+0
* Add abstract database interface so applications can easily store infolloyd2014-12-207-244/+321
* Not helpfullloyd2014-11-161-1/+0
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-1510-75/+181
* Replace Transformatio::nstart with start_raw so we can do a full setlloyd2014-11-051-3/+3
* Let TLS policy disable putting the timestamp in the hello random fieldslloyd2014-11-046-11/+25
* Typolloyd2014-11-041-1/+1
* Cleanup handling of TLS AEAD nonce sizes, push all knowledge of whatlloyd2014-11-036-186/+193