| Commit message (Expand) | Author | Age | Files | Lines |
* | Let TLS policy disable putting the timestamp in the hello random fields | lloyd | 2014-11-04 | 6 | -11/+25 |
* | Use noexcept on swap | lloyd | 2014-11-04 | 1 | -1/+1 |
* | Remove pubkey filters, broken for a long time and not useful | lloyd | 2014-11-04 | 3 | -214/+0 |
* | Typo | lloyd | 2014-11-04 | 1 | -1/+1 |
* | Cleanup handling of TLS AEAD nonce sizes, push all knowledge of what | lloyd | 2014-11-03 | 6 | -186/+193 |
* | Various small fixes and cleanups, new is_prime util | lloyd | 2014-11-03 | 10 | -24/+38 |
* | Fix various warnings from VC++ 2014 and add missing include | lloyd | 2014-10-31 | 12 | -37/+39 |
* | No need to pass version by reference | lloyd | 2014-10-31 | 2 | -2/+2 |
* | Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00) | lloyd | 2014-10-31 | 9 | -26/+69 |
* | Fix error in add_str2oid call, github pull req 28 | etcimon | 2014-10-31 | 1 | -1/+1 |
* | If the server offers us a SCSV instead of a real ciphersuite send a fatal alert | lloyd | 2014-10-30 | 3 | -0/+17 |
* | Add support for DTLS handshake timeouts and retransmissions. | lloyd | 2014-10-06 | 8 | -65/+224 |
* | Specify version number in message when we reject due to policy | lloyd | 2014-10-06 | 2 | -2/+4 |
* | Handle new source file | lloyd | 2014-10-06 | 1 | -4/+0 |
* | Fix decoding indefinite length BER constructs that contain a context | lloyd | 2014-09-27 | 1 | -1/+1 |
* | Don't bother polling std:: clocks if we have clock_gettime | lloyd | 2014-08-09 | 1 | -32/+22 |
* | Asserts here are nice | lloyd | 2014-08-09 | 1 | -2/+7 |
* | Move mul and square operations on a elliptic curve to CurveGFp so we | lloyd | 2014-08-09 | 4 | -213/+279 |
* | Have clear_mem just be a plain memset and only call the (slow) | lloyd | 2014-08-09 | 2 | -2/+2 |
* | Fix header guard for amalgamation | lloyd | 2014-07-03 | 1 | -2/+2 |
* | Erroring on strict-overflow is a little too strict, GCC 4.9 is smart | lloyd | 2014-05-26 | 1 | -11/+8 |
* | Correct CCM for L != 2. Bugzilla 270 | lloyd | 2014-05-16 | 1 | -1/+1 |
* | merge of 'ae7e800adaf5627c6033a09814b7e3644e7d92b7' | lloyd | 2014-05-16 | 1 | -3/+2 |
|\ |
|
| * | Avoid GCC 4.9 strict-overflow warning | lloyd | 2014-05-03 | 1 | -3/+2 |
* | | VC2013 doesn't support __func__. Github #22 | lloyd | 2014-05-15 | 1 | -4/+4 |
* | | Visual C++'s iterator debugging gets cranky with &vec[vec.size()]. | lloyd | 2014-05-15 | 2 | -2/+2 |
|/ |
|
* | Add default constructors to work around VC2013 issue. Github #17 | lloyd | 2014-05-01 | 2 | -0/+4 |
* | Avoid initializer lists here, VC2013 doesn't like it. Github #18 | lloyd | 2014-05-01 | 2 | -5/+7 |
* | Require one plausible entropy source in auto_rng, prevents the common | lloyd | 2014-04-27 | 1 | -0/+1 |
* | Any fixed MR iterations is probably wrong for somebody. Allow the user | lloyd | 2014-04-25 | 6 | -16/+57 |
* | Avoid std::chrono::steady_clock, missing in some distro gccs | lloyd | 2014-04-25 | 1 | -1/+0 |
* | Avoid crash if read returns an error. Canonical case is on the blocking device | lloyd | 2014-04-24 | 1 | -1/+2 |
* | Use MADV_DONTDUMP on Linux, equiv to MAP_NOCORE on BSD | lloyd | 2014-04-14 | 1 | -1/+5 |
* | Use 20 Miller-Rabin iterations regardless of the size of the integer. This | lloyd | 2014-04-13 | 4 | -186/+42 |
* | Compile fix | lloyd | 2014-04-13 | 1 | -2/+2 |
* | Have TLS_Data_Reader decoding errors include the actual msg type name | lloyd | 2014-04-12 | 12 | -44/+47 |
* | Verify that the server did not send any extension that the client didn't | lloyd | 2014-04-11 | 6 | -12/+41 |
* | Fix a bug in Miller-Rabin primality testing introduced in 1.8.3 | lloyd | 2014-04-10 | 1 | -5/+6 |
* | Better TLS checks | lloyd | 2014-04-10 | 1 | -1/+2 |
* | A std::deque's memory is not guaranteed to be contiguous | lloyd | 2014-04-06 | 1 | -1/+1 |
* | Make X.509 extension decoding failures point back to the problem extension | lloyd | 2014-04-05 | 2 | -10/+17 |
* | Add ECDHE_ECDSA CCM suites | lloyd | 2014-04-05 | 1 | -2/+14 |
* | X.509 path validation now performs all possible tests and returns a | lloyd | 2014-04-05 | 4 | -137/+153 |
* | Check Content-Length of HTTP responses | lloyd | 2014-04-05 | 1 | -1/+10 |
* | Fix an OCSP response decoding bug, we were not decoding KeyID properly. | lloyd | 2014-04-05 | 1 | -4/+5 |
* | Remove debug headers | lloyd | 2014-04-05 | 1 | -3/+0 |
* | NetBSD portability fix and some performance tweaks in locking allocator | lloyd | 2014-04-05 | 1 | -1/+11 |
* | Avoid a ubsan warning on GCC 4.9 due uninitialized sign enum being | lloyd | 2014-03-30 | 2 | -5/+1 |
* | Support 0 length salts in PSSR. Bugzilla 268 | lloyd | 2014-03-27 | 2 | -3/+12 |
* | Add rng command which can dump RNG outputs or raw entropy samples | lloyd | 2014-03-22 | 1 | -2/+2 |