| Commit message (Expand) | Author | Age | Files | Lines |
* | Remove use of lookup.h in favor of new T::create API. | Jack Lloyd | 2015-09-21 | 5 | -25/+14 |
* | Internal header cleanups | Jack Lloyd | 2015-09-19 | 2 | -2/+1 |
* | Move Credentials_Manager to TLS | Jack Lloyd | 2015-08-29 | 3 | -1/+325 |
* | Avoid a crash in the TLS server if the client sends ALPN but no next | Jack Lloyd | 2015-08-28 | 1 | -1/+1 |
* | Remove unused pkcs8 includes | Simon Warta | 2015-08-03 | 1 | -1/+0 |
* | tls: Add missing overrides | Daniel Seither | 2015-07-30 | 1 | -30/+30 |
* | Silence some extra ';' warnings | Simon Warta | 2015-07-22 | 1 | -1/+1 |
* | Fix invalid iterator use in TLS client | Jack Lloyd | 2015-07-05 | 1 | -1/+1 |
* | More changes for use with debug STL | Simon Warta | 2015-06-30 | 3 | -6/+12 |
* | lib/tls: Convert &vec[0] to vec.data() | Simon Warta | 2015-06-23 | 12 | -44/+44 |
* | Fix various bugs found by Coverity scanner. | lloyd | 2015-05-15 | 3 | -0/+7 |
* | Remove RC4 (and all support for stream ciphers) from TLS | lloyd | 2015-05-15 | 3 | -50/+5 |
* | Add ALPN (RFC 7301) and remove NPN | lloyd | 2015-03-20 | 18 | -316/+138 |
* | Hide Algorithm_Factory and use the functions in lookup.h internally. | lloyd | 2015-03-04 | 3 | -18/+14 |
* | Add new module `ffi` which provides a plain C interface, plus a new | lloyd | 2015-02-16 | 1 | -3/+3 |
* | Remove algo factory, engines, global RNG, global state, etc. | lloyd | 2015-02-04 | 7 | -20/+45 |
* | Convert PK operations to using Algo_Registry instead of Engine. | lloyd | 2015-02-03 | 4 | -6/+4 |
* | Add missing files. Remove cipher lookup from engine code. | lloyd | 2015-02-01 | 2 | -17/+10 |
* | Add a runtime map of string->func() which when called return | lloyd | 2015-01-28 | 3 | -42/+58 |
* | Add typedefs for function signatures/types used in TLS for easier reading | lloyd | 2015-01-27 | 13 | -92/+116 |
* | Add Strict_Policy. Disable server initiated renegotiation by default. | lloyd | 2015-01-23 | 2 | -13/+43 |
* | Add support for configuring a TLS::Policy by text file | lloyd | 2015-01-23 | 2 | -6/+163 |
* | Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00 | lloyd | 2015-01-21 | 3 | -3/+47 |
* | Remove SSLv3 and handling of SSLv2 client hellos. | lloyd | 2015-01-11 | 18 | -286/+38 |
* | Support any key length for TLS session encryption by hashing with HMAC | lloyd | 2015-01-10 | 1 | -4/+16 |
* | Ensure all files have copyright and license info. | lloyd | 2015-01-10 | 57 | -57/+57 |
* | Change TLS session encryption to use AES-256/GCM instead of CBC+HMAC | lloyd | 2015-01-08 | 2 | -12/+26 |
* | Support setting the number of pad bytes in a heartbeat message. Use | lloyd | 2015-01-07 | 5 | -70/+86 |
* | Remove config used for testing DTLS-SRTP | lloyd | 2015-01-04 | 1 | -3/+2 |
* | Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC). | lloyd | 2015-01-04 | 11 | -134/+293 |
* | Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementation | lloyd | 2014-12-31 | 7 | -95/+122 |
* | Fix a couple things pointed out by VC++ warnings. | lloyd | 2014-12-22 | 1 | -4/+0 |
* | Add abstract database interface so applications can easily store info | lloyd | 2014-12-20 | 7 | -244/+321 |
* | Not helpful | lloyd | 2014-11-16 | 1 | -1/+0 |
* | A TLS Server can now process either TLS or DTLS but not either, | lloyd | 2014-11-15 | 10 | -75/+181 |
* | Replace Transformatio::nstart with start_raw so we can do a full set | lloyd | 2014-11-05 | 1 | -3/+3 |
* | Let TLS policy disable putting the timestamp in the hello random fields | lloyd | 2014-11-04 | 6 | -11/+25 |
* | Typo | lloyd | 2014-11-04 | 1 | -1/+1 |
* | Cleanup handling of TLS AEAD nonce sizes, push all knowledge of what | lloyd | 2014-11-03 | 6 | -186/+193 |
* | Various small fixes and cleanups, new is_prime util | lloyd | 2014-11-03 | 1 | -4/+4 |
* | Fix various warnings from VC++ 2014 and add missing include | lloyd | 2014-10-31 | 4 | -6/+13 |
* | No need to pass version by reference | lloyd | 2014-10-31 | 2 | -2/+2 |
* | Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00) | lloyd | 2014-10-31 | 9 | -26/+69 |
* | If the server offers us a SCSV instead of a real ciphersuite send a fatal alert | lloyd | 2014-10-30 | 3 | -0/+17 |
* | Add support for DTLS handshake timeouts and retransmissions. | lloyd | 2014-10-06 | 8 | -65/+224 |
* | Specify version number in message when we reject due to policy | lloyd | 2014-10-06 | 2 | -2/+4 |
* | Avoid initializer lists here, VC2013 doesn't like it. Github #18 | lloyd | 2014-05-01 | 2 | -5/+7 |
* | Compile fix | lloyd | 2014-04-13 | 1 | -2/+2 |
* | Have TLS_Data_Reader decoding errors include the actual msg type name | lloyd | 2014-04-12 | 12 | -44/+47 |
* | Verify that the server did not send any extension that the client didn't | lloyd | 2014-04-11 | 6 | -12/+41 |