aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls
Commit message (Expand)AuthorAgeFilesLines
* Asan fix - referencing &vec[vec.size()] instead of vec.end()Jack Lloyd2015-10-261-22/+3
* TLS improvementsJack Lloyd2015-10-2516-168/+379
* Remove use of lookup.h in favor of new T::create API.Jack Lloyd2015-09-215-25/+14
* Internal header cleanupsJack Lloyd2015-09-192-2/+1
* Move Credentials_Manager to TLSJack Lloyd2015-08-293-1/+325
* Avoid a crash in the TLS server if the client sends ALPN but no nextJack Lloyd2015-08-281-1/+1
* Remove unused pkcs8 includesSimon Warta2015-08-031-1/+0
* tls: Add missing overridesDaniel Seither2015-07-301-30/+30
* Silence some extra ';' warningsSimon Warta2015-07-221-1/+1
* Fix invalid iterator use in TLS clientJack Lloyd2015-07-051-1/+1
* More changes for use with debug STLSimon Warta2015-06-303-6/+12
* lib/tls: Convert &vec[0] to vec.data()Simon Warta2015-06-2312-44/+44
* Fix various bugs found by Coverity scanner.lloyd2015-05-153-0/+7
* Remove RC4 (and all support for stream ciphers) from TLSlloyd2015-05-153-50/+5
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-2018-316/+138
* Hide Algorithm_Factory and use the functions in lookup.h internally.lloyd2015-03-043-18/+14
* Add new module `ffi` which provides a plain C interface, plus a newlloyd2015-02-161-3/+3
* Remove algo factory, engines, global RNG, global state, etc.lloyd2015-02-047-20/+45
* Convert PK operations to using Algo_Registry instead of Engine.lloyd2015-02-034-6/+4
* Add missing files. Remove cipher lookup from engine code.lloyd2015-02-012-17/+10
* Add a runtime map of string->func() which when called returnlloyd2015-01-283-42/+58
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-2713-92/+116
* Add Strict_Policy. Disable server initiated renegotiation by default.lloyd2015-01-232-13/+43
* Add support for configuring a TLS::Policy by text filelloyd2015-01-232-6/+163
* Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00lloyd2015-01-213-3/+47
* Remove SSLv3 and handling of SSLv2 client hellos.lloyd2015-01-1118-286/+38
* Support any key length for TLS session encryption by hashing with HMAClloyd2015-01-101-4/+16
* Ensure all files have copyright and license info.lloyd2015-01-1057-57/+57
* Change TLS session encryption to use AES-256/GCM instead of CBC+HMAClloyd2015-01-082-12/+26
* Support setting the number of pad bytes in a heartbeat message. Uselloyd2015-01-075-70/+86
* Remove config used for testing DTLS-SRTPlloyd2015-01-041-3/+2
* Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC).lloyd2015-01-0411-134/+293
* Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementationlloyd2014-12-317-95/+122
* Fix a couple things pointed out by VC++ warnings.lloyd2014-12-221-4/+0
* Add abstract database interface so applications can easily store infolloyd2014-12-207-244/+321
* Not helpfullloyd2014-11-161-1/+0
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-1510-75/+181
* Replace Transformatio::nstart with start_raw so we can do a full setlloyd2014-11-051-3/+3
* Let TLS policy disable putting the timestamp in the hello random fieldslloyd2014-11-046-11/+25
* Typolloyd2014-11-041-1/+1
* Cleanup handling of TLS AEAD nonce sizes, push all knowledge of whatlloyd2014-11-036-186/+193
* Various small fixes and cleanups, new is_prime utillloyd2014-11-031-4/+4
* Fix various warnings from VC++ 2014 and add missing includelloyd2014-10-314-6/+13
* No need to pass version by referencelloyd2014-10-312-2/+2
* Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)lloyd2014-10-319-26/+69
* If the server offers us a SCSV instead of a real ciphersuite send a fatal alertlloyd2014-10-303-0/+17
* Add support for DTLS handshake timeouts and retransmissions.lloyd2014-10-068-65/+224
* Specify version number in message when we reject due to policylloyd2014-10-062-2/+4
* Avoid initializer lists here, VC2013 doesn't like it. Github #18lloyd2014-05-012-5/+7
* Compile fixlloyd2014-04-131-2/+2