aboutsummaryrefslogtreecommitdiffstats
path: root/src/tls/tls_policy.h
Commit message (Expand)AuthorAgeFilesLines
* Shuffle things around. Add NIST X.509 test to build.lloyd2014-01-011-194/+0
* Have default TLS policy reject SSLv3. Add TLS::Policy::acceptable_ciphersuitelloyd2013-12-101-0/+3
* Add a basic DTLS policylloyd2013-11-201-0/+13
* Add Cipher_Mode intermediate class. Add missing BOTAN_DLL exportslloyd2013-08-191-1/+1
* Change default policy to prohibit DTLS to minimize surprise.lloyd2013-07-101-0/+2
* Add a policy for Suite B 128-bitlloyd2013-04-121-7/+33
* Make ciphersuite_list a virtual member of TLS::Policylloyd2013-04-101-7/+7
* Add TLS::Policy::server_uses_own_ciphersuite_preferences()lloyd2013-03-211-0/+7
* Blocking_Client fixes. Add relnotelloyd2013-02-281-1/+3
* Add TLS::Policy::negotiate_heartbeat_support which controls if thelloyd2012-10-131-0/+5
* Remove TLS::Policy::pref_version. Instead pass the version to offer tolloyd2012-10-131-5/+0
* No reason to pass a u16bit by referencelloyd2012-09-101-1/+1
* Add a Policy item for if a client will accept a server-initiatedlloyd2012-08-061-0/+5
* Fix DTLS version string.lloyd2012-07-281-0/+1
* Changes to version handling in support of DTLS work.lloyd2012-07-121-2/+2
* Split TLS::Policy::allowed_hashes into allowed_signature_hashes andlloyd2012-06-291-5/+8
* Add TLS::Policy::minimum_dh_group_size, default 1024. Send anlloyd2012-06-251-0/+5
* Invert the policy setting as I think it makes it more obvious thatlloyd2012-06-081-5/+5
* Put the implementation of Policy::dh_group in source so it's easier tolloyd2012-04-191-1/+1
* Remove Policy::choose_compression and move to tls_serverlloyd2012-04-041-14/+8
* Limit the lifetime of tickets to Policy::session_ticket_lifetime()lloyd2012-04-041-0/+7
* Move min_version and pref_version to the source file so they can belloyd2012-03-021-4/+2
* Go back to choosing the ciphersuite based on the server's preferences.lloyd2012-01-251-5/+7
* Hiding SRP users or not is policy. Not sure what the default should be for thislloyd2012-01-251-2/+10
* We can now actually handle multiple certificate types in the serverlloyd2012-01-241-2/+1
* Send the supported elliptic curves extension. Instead of hardcodinglloyd2012-01-241-0/+10
* Get the list of supported ECC curves out of the client hello, andlloyd2012-01-241-0/+1
* Add comments for the Policy class. Make the allowed_* calls virtual solloyd2012-01-241-16/+42
* The credentials manager interface seems a much better place for certlloyd2012-01-231-10/+1
* Make the version number a proper class, makes many things much easierlloyd2012-01-231-4/+6
* Since this branch is hugely API breaking already, go ahead and putlloyd2012-01-231-2/+6
* When generating a signature in TLS 1.2, respect the request of thelloyd2012-01-201-1/+1
* New policy methods. User provides lists of ciphers, hashes, etc theylloyd2012-01-201-21/+37
* Many fixes for TLS 1.2 though some things in particular client authlloyd2012-01-201-1/+1
* Various and sundry bug fixeslloyd2012-01-191-1/+1
* Some basic infrastructure pieces for SRP (policy, etc)lloyd2011-12-311-3/+7
* Many renegotiation fixes. Add support for the secure renegotiationlloyd2011-12-301-0/+2
* Rename ssl module to tlslloyd2011-12-231-0/+63
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-19 01:07:40 +0000