aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/tls
Commit message (Expand)AuthorAgeFilesLines
* Update OCB ciphersuites to follow new nonce scheme from -04 draftJack Lloyd2016-04-041-37/+37
* Add IETF standard ChaCha20Poly1305 ciphersuites to TLSJack Lloyd2016-03-233-23/+83
* Add PK_Decryptor::decrypt_or_randomJack Lloyd2016-03-201-30/+22
* Remove support for TLS v1.2 MD5 and SHA-224 signatures.Jack Lloyd2016-03-172-53/+3
* Client must verify that the server sent an ECC curve which policy accepts.Jack Lloyd2016-03-173-0/+13
* TLS client featuresJack Lloyd2016-03-161-0/+3
* Check that TLS signature type is accepted by the policy.Jack Lloyd2016-03-069-38/+106
* Remaining cppcheck fixes that are not covered by GH #444Daniel Neus2016-03-059-33/+20
* cppcheck fixes: Class 'X' has a constructor with 1 argument that is not expli...Daniel Neus2016-03-058-27/+27
* Fix remaining Wshadow warnings and enable on gcc and clangRené Korthaus2016-02-181-2/+4
* Reject zero length TLS records out of hand.Jack Lloyd2016-02-161-4/+11
* Make SRP6 support optional in TLSJack Lloyd2016-02-0710-20/+72
* Remove support for the TLS min fragment length extension.Jack Lloyd2016-02-0711-147/+18
* Remove TLS heartbeat support.Jack Lloyd2016-02-0715-290/+1
* Avoid set<Ciphersuite>Jack Lloyd2016-01-171-6/+7
* Add final attribute to many classesJack Lloyd2016-01-106-30/+30
* Mass-prefix member vars with m_René Korthaus2016-01-086-54/+54
* Precompile the list of TLS ciphersuitesJack Lloyd2016-01-063-294/+458
* String comparision fixesDaniel Neus2016-01-048-14/+14
* Add extended master secret extension (RFC 7627) to TLSJack Lloyd2016-01-0310-12/+118
* Merge pull request #378 from neusdan/warning_fixesJack Lloyd2015-12-261-1/+1
|\
| * some trivial compiler/PVS-Studio warning fixesDaniel Neus2015-12-221-1/+1
* | Fix a few clang warnings. Set clang sanitizer flagsJack Lloyd2015-12-241-1/+1
|/
* Remove debug printfJack Lloyd2015-12-211-1/+0
* Remove all remaining uses of throwing a std:: exception directlyJack Lloyd2015-12-191-1/+1
* CLI rewriteJack Lloyd2015-12-191-2/+0
* Missing addsJack Lloyd2015-12-113-3/+0
* Reroot the exception hierarchy into a toplevel Exception classJack Lloyd2015-12-1110-19/+19
* Fix bug causing TLS client to sometimes reject DHE server kexJack Lloyd2015-11-132-35/+16
* Add remove_all to TLS session manager interfaceJack Lloyd2015-11-135-44/+57
* Drop the DH group check to a weaker version of the checksJack Lloyd2015-11-131-2/+3
* Add TLS_PSK testsJack Lloyd2015-11-133-14/+5
* Add check for path validation result in Credentials_Manager. GH #324Jack Lloyd2015-11-041-5/+8
* Merge pull request #314 from randombit/ct-tls-cbc-paddingJack Lloyd2015-10-2617-190/+382
|\
| * Asan fix - referencing &vec[vec.size()] instead of vec.end()Jack Lloyd2015-10-261-22/+3
| * TLS improvementsJack Lloyd2015-10-2516-168/+379
* | Fix cert validation bugs found by x509test.Jack Lloyd2015-10-231-7/+14
|/
* Remove use of lookup.h in favor of new T::create API.Jack Lloyd2015-09-215-25/+14
* Internal header cleanupsJack Lloyd2015-09-192-2/+1
* Move Credentials_Manager to TLSJack Lloyd2015-08-293-1/+325
* Avoid a crash in the TLS server if the client sends ALPN but no nextJack Lloyd2015-08-281-1/+1
* Remove unused pkcs8 includesSimon Warta2015-08-031-1/+0
* tls: Add missing overridesDaniel Seither2015-07-301-30/+30
* Silence some extra ';' warningsSimon Warta2015-07-221-1/+1
* Fix invalid iterator use in TLS clientJack Lloyd2015-07-051-1/+1
* More changes for use with debug STLSimon Warta2015-06-303-6/+12
* lib/tls: Convert &vec[0] to vec.data()Simon Warta2015-06-2312-44/+44
* Fix various bugs found by Coverity scanner.lloyd2015-05-153-0/+7
* Remove RC4 (and all support for stream ciphers) from TLSlloyd2015-05-153-50/+5
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-2018-316/+138