aboutsummaryrefslogtreecommitdiffstats
path: root/src/tls/tls_server.cpp
Commit message (Expand)AuthorAgeFilesLines
* New policy methods. User provides lists of ciphers, hashes, etc theylloyd2012-01-201-7/+4
* If the client sent something > TLS 1.2, we sould respond as TLS 1.1lloyd2012-01-201-16/+10
* Somewhat contorted, but fixes the issue with sending hash/sig ids withlloyd2012-01-201-2/+3
* TLS_Ciphersuite_Algos was just a strange level of indirection betweenlloyd2012-01-201-5/+5
* Many fixes for TLS 1.2 though some things in particular client authlloyd2012-01-201-3/+7
* Various and sundry bug fixeslloyd2012-01-191-1/+1
* I'm not sure if I like this asthetically, but passing around thelloyd2012-01-191-27/+10
* The server would incorrectly send a server key exchange message when alloyd2012-01-061-19/+13
* If the maximum fragment extension was negotiated, enforce it. Alsolloyd2012-01-051-0/+6
* Add a hook in TLS_Channel that is called when an alert is received.lloyd2012-01-041-0/+12
* As someone pointed out on the TLS list, NPN isn't really a negotiationlloyd2012-01-041-3/+3
* Split hello.cpp into c_hello.cpp and s_hello.cpplloyd2012-01-041-17/+32
* If the handshake_fn returns false explicitly remove the session fromlloyd2012-01-031-0/+2
* Make handshake completion function non-optional. Now returns a boollloyd2012-01-031-9/+5
* Add Credentials_Manager which is an interface to something that knowslloyd2012-01-031-19/+17
* Add support for client-side session resumptionlloyd2011-12-311-19/+23
* Better names on the session manager. Plausible client lookup support,lloyd2011-12-301-1/+1
* Rename the session type to 'TLS_Session'. Split the manager out intolloyd2011-12-301-5/+5
* Add a function for getting the version number of an active connection.lloyd2011-12-301-9/+14
* Add support for the maximum fragment length extension. No hooks for itlloyd2011-12-301-0/+9
* Prevent ping-ponging of close alerts by tracking both if a handshakelloyd2011-12-301-1/+1
* Full support for renegotiation including RFC 5746 extensions forlloyd2011-12-301-3/+2
* Server side handling of the secure renegotiation extension.lloyd2011-12-301-0/+9
* Many renegotiation fixes. Add support for the secure renegotiationlloyd2011-12-301-1/+17
* Clean up the ordering of constructor args to the various message typeslloyd2011-12-291-17/+17
* Don't buffer in the record writer at all - we immediately process andlloyd2011-12-281-2/+0
* Comment grammarlloyd2011-12-281-2/+2
* Additional bits for SSLv3 client authlloyd2011-12-281-4/+5
* Save peer certs in session info. Use helper function for handshakelloyd2011-12-281-30/+23
* Working though hacking client verify (server side only). Only supportslloyd2011-12-281-5/+27
* Make TLS_Session_Params a real class. Various cleanups.lloyd2011-12-281-14/+32
* Partial bits of the server side of client auth. Incomplete.lloyd2011-12-281-15/+35
* Make tls_session_key.h an internal headerlloyd2011-12-271-0/+1
* Actually send the right info in a resumed session server hellolloyd2011-12-271-7/+4
* Force resumed session to use previous ciphersuite, etclloyd2011-12-271-22/+30
* Half of session serializationlloyd2011-12-271-13/+23
* First rev of working session resumption (server side only). Only workslloyd2011-12-271-25/+75
* Avoid a memory leak if we were using DHE - kex_priv would get a copylloyd2011-12-271-20/+20
* Much smarter state transition checking: at each point in thelloyd2011-12-271-63/+22
* Initial hooks for session resumptionlloyd2011-12-231-36/+56
* Centralize a lot of the handshaking and message parsing in TLS_Channellloyd2011-12-231-226/+9
* Rename ssl module to tlslloyd2011-12-231-0/+494