| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Add support for next protocol negotiation. Client only currently; | lloyd | 2012-01-04 | 1 | -0/+4 |
| | | | | | tested with google.com:443 | ||||
| * | Add Credentials_Manager which is an interface to something that knows | lloyd | 2012-01-03 | 1 | -1/+2 |
| | | | | | | what certs, keys, etc are available to the app. Needs polishing but it seems like it should be sound. | ||||
| * | Code for NewSessionTicket handshake message | lloyd | 2012-01-03 | 1 | -0/+1 |
| | | |||||
| * | Some basic infrastructure pieces for SRP (policy, etc) | lloyd | 2011-12-31 | 1 | -3/+0 |
| | | |||||
| * | Many renegotiation fixes. Add support for the secure renegotiation | lloyd | 2011-12-30 | 1 | -1/+4 |
| | | | | | | extension (client side only at the moment). Add an interface that allows applications to request renegotiation. | ||||
| * | About half an implementation of RFC 5746 | lloyd | 2011-12-29 | 1 | -1/+3 |
| | | |||||
| * | Add support for sending server name indicator in client hello | lloyd | 2011-12-29 | 1 | -0/+11 |
| | | | | | | | | | Add support for sending and reading the SRP identifier extension. Add some helper classes for managing TLS extensions Add ciphersuite codes for SRP key exchange. | ||||
| * | SSLv3 clients will send this as a warning if the server requests a | lloyd | 2011-12-29 | 1 | -0/+1 |
| | | | | | client cert and they don't have one. | ||||
| * | Working though hacking client verify (server side only). Only supports | lloyd | 2011-12-28 | 1 | -1/+4 |
| | | | | | | TLS 1.0/1.1, SSLv3 uses a different hash format. Only RSA certs tested so far. | ||||
| * | Make TLS_Session_Params a real class. Various cleanups. | lloyd | 2011-12-28 | 1 | -2/+3 |
| | | |||||
| * | Session deserialization | lloyd | 2011-12-27 | 1 | -1/+1 |
| | | |||||
| * | Much smarter state transition checking: at each point in the | lloyd | 2011-12-27 | 1 | -3/+3 |
| | | | | | | | | | handshake, keep track of exactly which handshake message type(s) we can expect and assert before processing that what we recieved is what we expected. Contrast with previous 'checking' which was more in the style 'could we perhaps plausibly do something with this message?' aka broken. | ||||
| * | Add the code for DHE/DSS with RC4, not 'official' but the codepoint | lloyd | 2011-12-27 | 1 | -0/+1 |
| | | | | | | | | was included in a now-expired ID (draft-ietf-tls-56-bit-ciphersuites-01) and mentioned in Rescorla's SSL book. Not implemented by OpenSSL but does appear to be included in GnuTLS. | ||||
| * | Rename ssl module to tls | lloyd | 2011-12-23 | 1 | -0/+192 |
 |
index : botan.git | |
| Unnamed repository; edit this file 'description' to name the repository. |
| aboutsummaryrefslogtreecommitdiffstats |