aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls
Commit message (Expand)AuthorAgeFilesLines
* New TLS positive and negative tests.Juraj Somorovsky2016-09-302-7/+7
* Removed redundant check in ClientHello parserJuraj Somorovsky2016-09-301-3/+0
* Vector out of bounds fixJuraj Somorovsky2016-09-301-1/+1
* Merge GH #633 Cleanup TLS CBC encryption codeJack Lloyd2016-09-261-140/+88
|\
| * Move this to avoid ASan triggerJack Lloyd2016-09-221-4/+4
| * Further TLS CBC cleanupsJack Lloyd2016-09-211-28/+37
| * Cleanup TLS CBC encryption record codeJack Lloyd2016-09-211-130/+69
* | Merge GH #516 Cipher_Mode API improvementsJack Lloyd2016-09-261-7/+4
|\ \
| * | Cipher_Mode API improvementsJack Lloyd2016-09-011-7/+4
| |/
* / TLS Server should respect client signature_algorithms. Stricter TLS hello dec...Jack Lloyd2016-09-215-31/+89
|/
* Merge GH #578/#492: TLS EtM extension and new policy togglesJack Lloyd2016-08-3120-112/+525
|\
| * Merge master into this branch, resolving conflicts with #457/#576Jack Lloyd2016-08-3125-1486/+1516
| |\
| * | Address some issues with PR 492Jack Lloyd2016-08-1313-58/+118
| * | Merge branch 'master' into Encrypt-then-MAC-with-policyJuraj Somorovsky2016-05-129-48/+46
| |\ \
| * | | Encrypt-then-MAC extension (RFC 7366)Juraj Somorovsky2016-05-1119-104/+329
| * | | TLS Policy supportChristian Mainka2016-05-036-24/+153
* | | | Fix TLS build with SRP6 disabledJack Lloyd2016-08-311-1/+1
| |_|/ |/| |
* | | Move some Callback functions to a source file.Jack Lloyd2016-08-312-7/+17
* | | Remove debug printfJack Lloyd2016-08-311-1/+0
* | | Merge GH #567/GH #457 TLS refactoring and Callbacks interfaceJack Lloyd2016-08-3119-652/+1250
|\ \ \
| * | | Added doxygen function parameter comments to tls_callbacks.hDan Brown2016-08-191-12/+32
| * | | Add a Callbacks function for ALPNJack Lloyd2016-08-163-14/+44
| * | | Changes to TLS::Callbacks for GH PR #457Jack Lloyd2016-08-1614-151/+221
| * | | Removed Handshake_Info class.Matthias Gierlings2016-06-198-56/+49
| * | | Removed TLS::Session::PropertiesMatthias Gierlings2016-06-197-197/+96
| * | | Reverted proposed constructor changes to X509_CA.Matthias Gierlings2016-06-193-14/+28
| * | | Compatibility patch for TLS::Callback interfaceMatthias Gierlings2016-06-197-16/+242
| * | | Added virtual Callback InterfaceMatthias Gierlings2016-06-198-52/+113
| * | | Implemented Feedback on GH #457Matthias Gierlings2016-06-197-13/+12
| * | | Fix for amalgamation build problemsMatthias Gierlings2016-06-194-7/+13
| * | | Reduction of code complexity in TLS classes.Matthias Gierlings2016-06-1922-892/+1172
* | | | Merge GH #583 Clean up TLS ciphersuite handlingJack Lloyd2016-08-173-696/+193
|\ \ \ \
| * | | | Clean up TLS ciphersuite handlingJack Lloyd2016-08-163-696/+193
* | | | | Update info.txtDaniel Neus2016-08-161-2/+1
* | | | | add sha1_sse2 to the TLS module dependenciesDaniel Neus2016-08-151-0/+1
|/ / / /
* | | | Remove unused kdf2 dependency from tls moduleRené Korthaus2016-07-041-1/+0
* | | | Various fixes with bsi module policyRené Korthaus2016-07-042-2/+8
|/ / /
* | | Merge GH #495 Add label argument to KDF::derive_keyJack Lloyd2016-06-173-10/+12
|\ \ \
| * | | make sure kdf labels are always usedKai Michaelis2016-06-013-10/+12
| * | | add label parameter to KDF::derive_keyKai Michaelis2016-05-193-4/+4
| | |/ | |/|
* / | Save the IETF ciphersute name directly in TLS::CiphersuiteJack Lloyd2016-06-093-444/+364
|/ /
* | Add explicit static_cast operations to eliminate implicit cast compiler warni...Dan Brown2016-04-278-23/+21
* | Change calls to 'get_byte' to explicitly cast parameters and eliminate compil...Dan Brown2016-04-275-25/+25
|/
* Fix return type of TLS_Reader::get_u32bitJack Lloyd2016-04-211-2/+2
* Don't reject TLS packets with zero plaintext bytesJack Lloyd2016-04-151-13/+13
* Update OCB ciphersuites to follow new nonce scheme from -04 draftJack Lloyd2016-04-041-37/+37
* Add IETF standard ChaCha20Poly1305 ciphersuites to TLSJack Lloyd2016-03-233-23/+83
* Add PK_Decryptor::decrypt_or_randomJack Lloyd2016-03-201-30/+22
* Remove support for TLS v1.2 MD5 and SHA-224 signatures.Jack Lloyd2016-03-172-53/+3
* Client must verify that the server sent an ECC curve which policy accepts.Jack Lloyd2016-03-173-0/+13