| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Change callback interface to pass the Alert object itself instead | lloyd | 2012-01-26 | 1 | -3/+3 |
| * | Make Alert a first class object ala Version. Move the alert codes into | lloyd | 2012-01-26 | 1 | -7/+7 |
| * | Deleting the return of private_key_for in the TLS server forces the | lloyd | 2012-01-26 | 1 | -7/+9 |
| * | Move around the order of arguments to activate() and add the | lloyd | 2012-01-25 | 1 | -3/+6 |
| * | In earlier versions, key exchange == "RSA" meant export-style | lloyd | 2012-01-25 | 1 | -2/+2 |
| * | Move all key exchange mechanism code (eg DH/ECDH/SRP) out of the | lloyd | 2012-01-25 | 1 | -37/+16 |
| * | Fix printing PSK ciphersuites. Better assert msg. | lloyd | 2012-01-25 | 1 | -1/+2 |
| * | Go back to choosing the ciphersuite based on the server's preferences. | lloyd | 2012-01-25 | 1 | -0/+3 |
| * | We can now actually handle multiple certificate types in the server | lloyd | 2012-01-24 | 1 | -17/+31 |
| * | Send the supported elliptic curves extension. Instead of hardcoding | lloyd | 2012-01-24 | 1 | -1/+12 |
| * | Forgot to check in server side ECDH key gen | lloyd | 2012-01-24 | 1 | -3/+11 |
| * | The credentials manager interface seems a much better place for cert | lloyd | 2012-01-23 | 1 | -2/+10 |
| * | Add Ciphersuite::to_string | lloyd | 2012-01-23 | 1 | -2/+2 |
| * | Make the version number a proper class, makes many things much easier | lloyd | 2012-01-23 | 1 | -11/+11 |
| * | Since this branch is hugely API breaking already, go ahead and put | lloyd | 2012-01-23 | 1 | -19/+23 |
| * | Instead of using a hardcoded value for signature_algothms, go with | lloyd | 2012-01-20 | 1 | -0/+1 |
| * | New policy methods. User provides lists of ciphers, hashes, etc they | lloyd | 2012-01-20 | 1 | -7/+4 |
| * | If the client sent something > TLS 1.2, we sould respond as TLS 1.1 | lloyd | 2012-01-20 | 1 | -16/+10 |
| * | Somewhat contorted, but fixes the issue with sending hash/sig ids with | lloyd | 2012-01-20 | 1 | -2/+3 |
| * | TLS_Ciphersuite_Algos was just a strange level of indirection between | lloyd | 2012-01-20 | 1 | -5/+5 |
| * | Many fixes for TLS 1.2 though some things in particular client auth | lloyd | 2012-01-20 | 1 | -3/+7 |
| * | Various and sundry bug fixes | lloyd | 2012-01-19 | 1 | -1/+1 |
| * | I'm not sure if I like this asthetically, but passing around the | lloyd | 2012-01-19 | 1 | -27/+10 |
| * | The server would incorrectly send a server key exchange message when a | lloyd | 2012-01-06 | 1 | -19/+13 |
| * | If the maximum fragment extension was negotiated, enforce it. Also | lloyd | 2012-01-05 | 1 | -0/+6 |
| * | Add a hook in TLS_Channel that is called when an alert is received. | lloyd | 2012-01-04 | 1 | -0/+12 |
| * | As someone pointed out on the TLS list, NPN isn't really a negotiation | lloyd | 2012-01-04 | 1 | -3/+3 |
| * | Split hello.cpp into c_hello.cpp and s_hello.cpp | lloyd | 2012-01-04 | 1 | -17/+32 |
| * | If the handshake_fn returns false explicitly remove the session from | lloyd | 2012-01-03 | 1 | -0/+2 |
| * | Make handshake completion function non-optional. Now returns a bool | lloyd | 2012-01-03 | 1 | -9/+5 |
| * | Add Credentials_Manager which is an interface to something that knows | lloyd | 2012-01-03 | 1 | -19/+17 |
| * | Add support for client-side session resumption | lloyd | 2011-12-31 | 1 | -19/+23 |
| * | Better names on the session manager. Plausible client lookup support, | lloyd | 2011-12-30 | 1 | -1/+1 |
| * | Rename the session type to 'TLS_Session'. Split the manager out into | lloyd | 2011-12-30 | 1 | -5/+5 |
| * | Add a function for getting the version number of an active connection. | lloyd | 2011-12-30 | 1 | -9/+14 |
| * | Add support for the maximum fragment length extension. No hooks for it | lloyd | 2011-12-30 | 1 | -0/+9 |
| * | Prevent ping-ponging of close alerts by tracking both if a handshake | lloyd | 2011-12-30 | 1 | -1/+1 |
| * | Full support for renegotiation including RFC 5746 extensions for | lloyd | 2011-12-30 | 1 | -3/+2 |
| * | Server side handling of the secure renegotiation extension. | lloyd | 2011-12-30 | 1 | -0/+9 |
| * | Many renegotiation fixes. Add support for the secure renegotiation | lloyd | 2011-12-30 | 1 | -1/+17 |
| * | Clean up the ordering of constructor args to the various message types | lloyd | 2011-12-29 | 1 | -17/+17 |
| * | Don't buffer in the record writer at all - we immediately process and | lloyd | 2011-12-28 | 1 | -2/+0 |
| * | Comment grammar | lloyd | 2011-12-28 | 1 | -2/+2 |
| * | Additional bits for SSLv3 client auth | lloyd | 2011-12-28 | 1 | -4/+5 |
| * | Save peer certs in session info. Use helper function for handshake | lloyd | 2011-12-28 | 1 | -30/+23 |
| * | Working though hacking client verify (server side only). Only supports | lloyd | 2011-12-28 | 1 | -5/+27 |
| * | Make TLS_Session_Params a real class. Various cleanups. | lloyd | 2011-12-28 | 1 | -14/+32 |
| * | Partial bits of the server side of client auth. Incomplete. | lloyd | 2011-12-28 | 1 | -15/+35 |
| * | Make tls_session_key.h an internal header | lloyd | 2011-12-27 | 1 | -0/+1 |
| * | Actually send the right info in a resumed session server hello | lloyd | 2011-12-27 | 1 | -7/+4 |
