| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Send the supported elliptic curves extension. Instead of hardcoding | lloyd | 2012-01-24 | 1 | -1/+12 |
| * | Forgot to check in server side ECDH key gen | lloyd | 2012-01-24 | 1 | -3/+11 |
| * | The credentials manager interface seems a much better place for cert | lloyd | 2012-01-23 | 1 | -2/+10 |
| * | Add Ciphersuite::to_string | lloyd | 2012-01-23 | 1 | -2/+2 |
| * | Make the version number a proper class, makes many things much easier | lloyd | 2012-01-23 | 1 | -11/+11 |
| * | Since this branch is hugely API breaking already, go ahead and put | lloyd | 2012-01-23 | 1 | -19/+23 |
| * | Instead of using a hardcoded value for signature_algothms, go with | lloyd | 2012-01-20 | 1 | -0/+1 |
| * | New policy methods. User provides lists of ciphers, hashes, etc they | lloyd | 2012-01-20 | 1 | -7/+4 |
| * | If the client sent something > TLS 1.2, we sould respond as TLS 1.1 | lloyd | 2012-01-20 | 1 | -16/+10 |
| * | Somewhat contorted, but fixes the issue with sending hash/sig ids with | lloyd | 2012-01-20 | 1 | -2/+3 |
| * | TLS_Ciphersuite_Algos was just a strange level of indirection between | lloyd | 2012-01-20 | 1 | -5/+5 |
| * | Many fixes for TLS 1.2 though some things in particular client auth | lloyd | 2012-01-20 | 1 | -3/+7 |
| * | Various and sundry bug fixes | lloyd | 2012-01-19 | 1 | -1/+1 |
| * | I'm not sure if I like this asthetically, but passing around the | lloyd | 2012-01-19 | 1 | -27/+10 |
| * | The server would incorrectly send a server key exchange message when a | lloyd | 2012-01-06 | 1 | -19/+13 |
| * | If the maximum fragment extension was negotiated, enforce it. Also | lloyd | 2012-01-05 | 1 | -0/+6 |
| * | Add a hook in TLS_Channel that is called when an alert is received. | lloyd | 2012-01-04 | 1 | -0/+12 |
| * | As someone pointed out on the TLS list, NPN isn't really a negotiation | lloyd | 2012-01-04 | 1 | -3/+3 |
| * | Split hello.cpp into c_hello.cpp and s_hello.cpp | lloyd | 2012-01-04 | 1 | -17/+32 |
| * | If the handshake_fn returns false explicitly remove the session from | lloyd | 2012-01-03 | 1 | -0/+2 |
| * | Make handshake completion function non-optional. Now returns a bool | lloyd | 2012-01-03 | 1 | -9/+5 |
| * | Add Credentials_Manager which is an interface to something that knows | lloyd | 2012-01-03 | 1 | -19/+17 |
| * | Add support for client-side session resumption | lloyd | 2011-12-31 | 1 | -19/+23 |
| * | Better names on the session manager. Plausible client lookup support, | lloyd | 2011-12-30 | 1 | -1/+1 |
| * | Rename the session type to 'TLS_Session'. Split the manager out into | lloyd | 2011-12-30 | 1 | -5/+5 |
| * | Add a function for getting the version number of an active connection. | lloyd | 2011-12-30 | 1 | -9/+14 |
| * | Add support for the maximum fragment length extension. No hooks for it | lloyd | 2011-12-30 | 1 | -0/+9 |
| * | Prevent ping-ponging of close alerts by tracking both if a handshake | lloyd | 2011-12-30 | 1 | -1/+1 |
| * | Full support for renegotiation including RFC 5746 extensions for | lloyd | 2011-12-30 | 1 | -3/+2 |
| * | Server side handling of the secure renegotiation extension. | lloyd | 2011-12-30 | 1 | -0/+9 |
| * | Many renegotiation fixes. Add support for the secure renegotiation | lloyd | 2011-12-30 | 1 | -1/+17 |
| * | Clean up the ordering of constructor args to the various message types | lloyd | 2011-12-29 | 1 | -17/+17 |
| * | Don't buffer in the record writer at all - we immediately process and | lloyd | 2011-12-28 | 1 | -2/+0 |
| * | Comment grammar | lloyd | 2011-12-28 | 1 | -2/+2 |
| * | Additional bits for SSLv3 client auth | lloyd | 2011-12-28 | 1 | -4/+5 |
| * | Save peer certs in session info. Use helper function for handshake | lloyd | 2011-12-28 | 1 | -30/+23 |
| * | Working though hacking client verify (server side only). Only supports | lloyd | 2011-12-28 | 1 | -5/+27 |
| * | Make TLS_Session_Params a real class. Various cleanups. | lloyd | 2011-12-28 | 1 | -14/+32 |
| * | Partial bits of the server side of client auth. Incomplete. | lloyd | 2011-12-28 | 1 | -15/+35 |
| * | Make tls_session_key.h an internal header | lloyd | 2011-12-27 | 1 | -0/+1 |
| * | Actually send the right info in a resumed session server hello | lloyd | 2011-12-27 | 1 | -7/+4 |
| * | Force resumed session to use previous ciphersuite, etc | lloyd | 2011-12-27 | 1 | -22/+30 |
| * | Half of session serialization | lloyd | 2011-12-27 | 1 | -13/+23 |
| * | First rev of working session resumption (server side only). Only works | lloyd | 2011-12-27 | 1 | -25/+75 |
| * | Avoid a memory leak if we were using DHE - kex_priv would get a copy | lloyd | 2011-12-27 | 1 | -20/+20 |
| * | Much smarter state transition checking: at each point in the | lloyd | 2011-12-27 | 1 | -63/+22 |
| * | Initial hooks for session resumption | lloyd | 2011-12-23 | 1 | -36/+56 |
| * | Centralize a lot of the handshaking and message parsing in TLS_Channel | lloyd | 2011-12-23 | 1 | -226/+9 |
| * | Rename ssl module to tls | lloyd | 2011-12-23 | 1 | -0/+494 |
