aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls
Commit message (Expand)AuthorAgeFilesLines
* Remove unused pkcs8 includesSimon Warta2015-08-031-1/+0
* tls: Add missing overridesDaniel Seither2015-07-301-30/+30
* Silence some extra ';' warningsSimon Warta2015-07-221-1/+1
* Fix invalid iterator use in TLS clientJack Lloyd2015-07-051-1/+1
* More changes for use with debug STLSimon Warta2015-06-303-6/+12
* lib/tls: Convert &vec[0] to vec.data()Simon Warta2015-06-2312-44/+44
* Fix various bugs found by Coverity scanner.lloyd2015-05-153-0/+7
* Remove RC4 (and all support for stream ciphers) from TLSlloyd2015-05-153-50/+5
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-2018-316/+138
* Hide Algorithm_Factory and use the functions in lookup.h internally.lloyd2015-03-043-18/+14
* Add new module `ffi` which provides a plain C interface, plus a newlloyd2015-02-161-3/+3
* Remove algo factory, engines, global RNG, global state, etc.lloyd2015-02-047-20/+45
* Convert PK operations to using Algo_Registry instead of Engine.lloyd2015-02-034-6/+4
* Add missing files. Remove cipher lookup from engine code.lloyd2015-02-012-17/+10
* Add a runtime map of string->func() which when called returnlloyd2015-01-283-42/+58
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-2713-92/+116
* Add Strict_Policy. Disable server initiated renegotiation by default.lloyd2015-01-232-13/+43
* Add support for configuring a TLS::Policy by text filelloyd2015-01-232-6/+163
* Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00lloyd2015-01-213-3/+47
* Remove SSLv3 and handling of SSLv2 client hellos.lloyd2015-01-1118-286/+38
* Support any key length for TLS session encryption by hashing with HMAClloyd2015-01-101-4/+16
* Ensure all files have copyright and license info.lloyd2015-01-1057-57/+57
* Change TLS session encryption to use AES-256/GCM instead of CBC+HMAClloyd2015-01-082-12/+26
* Support setting the number of pad bytes in a heartbeat message. Uselloyd2015-01-075-70/+86
* Remove config used for testing DTLS-SRTPlloyd2015-01-041-3/+2
* Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC).lloyd2015-01-0411-134/+293
* Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementationlloyd2014-12-317-95/+122
* Fix a couple things pointed out by VC++ warnings.lloyd2014-12-221-4/+0
* Add abstract database interface so applications can easily store infolloyd2014-12-207-244/+321
* Not helpfullloyd2014-11-161-1/+0
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-1510-75/+181
* Replace Transformatio::nstart with start_raw so we can do a full setlloyd2014-11-051-3/+3
* Let TLS policy disable putting the timestamp in the hello random fieldslloyd2014-11-046-11/+25
* Typolloyd2014-11-041-1/+1
* Cleanup handling of TLS AEAD nonce sizes, push all knowledge of whatlloyd2014-11-036-186/+193
* Various small fixes and cleanups, new is_prime utillloyd2014-11-031-4/+4
* Fix various warnings from VC++ 2014 and add missing includelloyd2014-10-314-6/+13
* No need to pass version by referencelloyd2014-10-312-2/+2
* Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)lloyd2014-10-319-26/+69
* If the server offers us a SCSV instead of a real ciphersuite send a fatal alertlloyd2014-10-303-0/+17
* Add support for DTLS handshake timeouts and retransmissions.lloyd2014-10-068-65/+224
* Specify version number in message when we reject due to policylloyd2014-10-062-2/+4
* Avoid initializer lists here, VC2013 doesn't like it. Github #18lloyd2014-05-012-5/+7
* Compile fixlloyd2014-04-131-2/+2
* Have TLS_Data_Reader decoding errors include the actual msg type namelloyd2014-04-1212-44/+47
* Verify that the server did not send any extension that the client didn'tlloyd2014-04-116-12/+41
* A std::deque's memory is not guaranteed to be contiguouslloyd2014-04-061-1/+1
* Add ECDHE_ECDSA CCM suiteslloyd2014-04-051-2/+14
* Compile fixeslloyd2014-02-082-1/+2
* Fix algo factory compilelloyd2014-01-182-2/+0