| Commit message (Expand) | Author | Age | Files | Lines |
* | A fix for bug 192. First, when renegotiating in the client, attempt to | lloyd | 2012-06-09 | 1 | -0/+1 |
* | Replace 0 and NULL pointer constants with nullptr. Also fix an old | lloyd | 2012-05-18 | 1 | -1/+1 |
* | Fairly huge update that replaces the old secmem types with std::vector | lloyd | 2012-05-18 | 1 | -60/+61 |
* | Add a bool param to renegotiate on if we should force a full | lloyd | 2012-04-18 | 1 | -0/+1 |
* | Add support for TLS heartbeats (RFC 6520). Heartbeat initiations from | lloyd | 2012-04-16 | 1 | -15/+22 |
* | Finish up server side SRP support, a little ugly but it works. | lloyd | 2012-04-06 | 1 | -1/+6 |
* | Initial client-side support for SRP (finally!). Tested against OpenSSL | lloyd | 2012-04-05 | 1 | -0/+1 |
* | Limit the lifetime of tickets to Policy::session_ticket_lifetime() | lloyd | 2012-04-04 | 1 | -23/+10 |
* | Revert the session_ticket callback in credentials manager. If a PSK | lloyd | 2012-03-23 | 1 | -0/+1 |
* | Include the curves and sig algos list in a session resumption client | lloyd | 2012-03-23 | 1 | -0/+1 |
* | Server side handling of session tickets, though currently with a | lloyd | 2012-03-22 | 1 | -3/+9 |
* | Basic protocol message flow for session tickets | lloyd | 2012-03-20 | 1 | -12/+10 |
* | Various merge fixups. | lloyd | 2012-03-16 | 1 | -4/+4 |
* | propagate from branch 'net.randombit.botan.tls-state-machine' (head c24b5d6b0... | lloyd | 2012-03-16 | 1 | -101/+126 |
|\ |
|
| * | Add SecureQueue::empty | lloyd | 2012-03-07 | 1 | -0/+20 |
| * | Add an abstraction for reading handshake messages (as DTLS handles it | lloyd | 2012-03-05 | 1 | -4/+4 |
| * | Move the handshake serialization code to Record_Writer | lloyd | 2012-03-03 | 1 | -3/+3 |
| * | Server side PSK | lloyd | 2012-01-27 | 1 | -6/+5 |
| * | Somewhat cleaner PSK handling | lloyd | 2012-01-27 | 1 | -3/+4 |
| * | Server side PSK kex | lloyd | 2012-01-27 | 1 | -2/+3 |
| * | Add client-side support for PSK kex. Tested against OpenSSL. | lloyd | 2012-01-27 | 1 | -0/+4 |
| * | Move all key exchange mechanism code (eg DH/ECDH/SRP) out of the | lloyd | 2012-01-25 | 1 | -3/+9 |
| * | s/tls_suites/tls_ciphersuite/ | lloyd | 2012-01-24 | 1 | -1/+1 |
| * | We can now actually handle multiple certificate types in the server | lloyd | 2012-01-24 | 1 | -2/+4 |
| * | Remove Certificate_Type enum | lloyd | 2012-01-24 | 1 | -2/+2 |
| * | Send the supported elliptic curves extension. Instead of hardcoding | lloyd | 2012-01-24 | 1 | -2/+3 |
| * | Get the list of supported ECC curves out of the client hello, and | lloyd | 2012-01-24 | 1 | -0/+3 |
| * | Working ECDH key exchange. Only tested on client side but seems good | lloyd | 2012-01-24 | 1 | -2/+1 |
| * | Don't assume the server key exchange consists of a series of BigInts. | lloyd | 2012-01-24 | 1 | -3/+2 |
| * | Make the version number a proper class, makes many things much easier | lloyd | 2012-01-23 | 1 | -12/+12 |
| * | Since this branch is hugely API breaking already, go ahead and put | lloyd | 2012-01-23 | 1 | -21/+25 |
| * | Remove the key() method on server key exchange - instead leave it to | lloyd | 2012-01-23 | 1 | -1/+2 |
| * | Have the client key exchange examine the server key exchange message | lloyd | 2012-01-23 | 1 | -5/+3 |
| * | When generating a signature in TLS 1.2, respect the request of the | lloyd | 2012-01-20 | 1 | -0/+6 |
| * | Instead of using a hardcoded value for signature_algothms, go with | lloyd | 2012-01-20 | 1 | -1/+3 |
| * | TLS_Ciphersuite_Algos was just a strange level of indirection between | lloyd | 2012-01-20 | 1 | -10/+10 |
| * | Basic processing for signature_algorithms extension in client hello | lloyd | 2012-01-20 | 1 | -0/+2 |
| * | Initialize values once in constructor instead of in each branch | lloyd | 2012-01-20 | 1 | -7/+1 |
| * | Many fixes for TLS 1.2 though some things in particular client auth | lloyd | 2012-01-20 | 1 | -6/+8 |
| * | Various and sundry bug fixes | lloyd | 2012-01-19 | 1 | -0/+2 |
| * | Kinda maybe working TLS 1.2 for clients. Not well tested at all, but a | lloyd | 2012-01-19 | 1 | -1/+7 |
| * | Remove Handshake_Message::deserialize which was an unnecessary hook. | lloyd | 2012-01-19 | 1 | -20/+10 |
| * | I'm not sure if I like this asthetically, but passing around the | lloyd | 2012-01-19 | 1 | -29/+10 |
| * | Support SSLv3 client auth on the client side. | lloyd | 2012-01-19 | 1 | -0/+2 |
* | | Build fixes | lloyd | 2012-01-11 | 1 | -2/+6 |
* | | Outline of RFC 5077 session tickets | lloyd | 2012-01-11 | 1 | -0/+28 |
|/ |
|
* | As someone pointed out on the TLS list, NPN isn't really a negotiation | lloyd | 2012-01-04 | 1 | -2/+2 |
* | The first 4 bytes of the client and server randoms are supposed to be | lloyd | 2012-01-04 | 1 | -0/+2 |
* | Split hello.cpp into c_hello.cpp and s_hello.cpp | lloyd | 2012-01-04 | 1 | -9/+13 |
* | Add support for next protocol negotiation. Client only currently; | lloyd | 2012-01-04 | 1 | -26/+61 |