| Commit message (Expand) | Author | Age | Files | Lines |
* | Add TLS_ERROR_INVALID_CONTEXT error code to libtls | joshua | 2024-03-26 | 1 | -4/+7 |
* | Add error code support to libtls | joshua | 2024-03-26 | 1 | -33/+54 |
* | add missing #include <string.h>; ok tb@ | op | 2023-05-14 | 1 | -1/+2 |
* | Eliminate a dead assignment and a weird cast. Adjust a comment to | tb | 2021-10-21 | 1 | -6/+3 |
* | Update RFC reference. RFC 4366 was obsoleted by RFC 6066. | tb | 2021-06-01 | 1 | -2/+2 |
* | Avoid sending a trailing dot in SNI as a client | tb | 2021-06-01 | 1 | -6/+19 |
* | Automatically handle library initialisation for libtls. | jsing | 2018-03-19 | 1 | -1/+4 |
* | Add support to libtls for client-side TLS session resumption. | jsing | 2018-02-10 | 1 | -1/+127 |
* | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | jsing | 2017-08-10 | 1 | -1/+9 |
* | Ensure that a client context has been connected before attempting to | jsing | 2017-05-07 | 1 | -1/+8 |
* | Rework name verification code so that a match is indicated via an argument, | jsing | 2017-04-10 | 1 | -7/+7 |
* | Use a flag to track when we need to call SSL_shutdown(). This avoids an | jsing | 2017-01-26 | 1 | -1/+3 |
* | If tls_set_cbs() fails an error will already be specified, so do not | jsing | 2017-01-12 | 1 | -4/+2 |
* | Hook up a certificate verify callback so that we can set user friendly | jsing | 2016-12-26 | 1 | -4/+2 |
* | Add OCSP client side support to libtls. | beck | 2016-11-02 | 1 | -1/+11 |
* | Maintain consistency with function naming. | jsing | 2016-09-04 | 1 | -4/+4 |
* | Add callback-based interface to libtls. | bcook | 2016-09-04 | 1 | -20/+56 |
* | Explicitly pass in an SSL_CTX * to the functions that operate on one, | jsing | 2016-08-15 | 1 | -5/+6 |
* | Factor our the keypair handling in libtls. This results in more readable | jsing | 2016-04-28 | 1 | -2/+2 |
* | fix a gotcha in the connect refactoring, that could result in dropping | deraadt | 2015-10-09 | 1 | -1/+5 |
* | If getaddrinfo() succeeds, then don't try look ups with other flags, even | guenther | 2015-10-08 | 1 | -41/+39 |
* | Instead of declaring a union in multiple places, move it to tls_internal.h. | jsing | 2015-09-29 | 1 | -5/+2 |
* | clean some ugly intendation warts | deraadt | 2015-09-29 | 1 | -2/+5 |
* | Ensure that we clear the libssl error stack before we make a function call | jsing | 2015-09-12 | 1 | -1/+3 |
* | add tls_peer functions for checking names and issuers of peer certificates. | beck | 2015-09-11 | 1 | -2/+2 |
* | Split tls_handshake() out from tls_accept/tls_connect. By doing this the | jsing | 2015-09-10 | 1 | -21/+37 |
* | Indent labels with a space so that diff -p is more friendly. | jsing | 2015-09-09 | 1 | -4/+4 |
* | Add client certificate support. Still needs a few tweaks but this will | beck | 2015-09-09 | 1 | -26/+6 |
* | Only take ownership of a socket if we allocated it within libtls. If we are | jsing | 2015-09-09 | 1 | -3/+3 |
* | Remove the default HTTPS port from tls_connect() - this is a TLS library, | jsing | 2015-09-08 | 1 | -3/+5 |
* | Improve libtls error messages. | jsing | 2015-08-27 | 1 | -17/+17 |
* | Split the persistent/configuration flags from temporary state flags and | jsing | 2015-08-27 | 1 | -7/+7 |
* | SSL_set_app_data is a macro for SSL_set_ex_data(), which is a wrapper | jsing | 2015-08-22 | 1 | -3/+5 |
* | Store a reference to the libtls context in the SSL client connection app | jsing | 2015-08-22 | 1 | -1/+3 |
* | Store errors that occur during a tls_accept_socket() call on the context | jsing | 2015-03-31 | 1 | -2/+2 |
* | free the server certificate in tls_connect_fds(); fixes a memory leak with | sthen | 2015-03-21 | 1 | -1/+2 |
* | Provide a tls_connect_servername() function that has the same behaviour | jsing | 2015-02-11 | 1 | -3/+12 |
* | Be consistent with naming - only use "host" and "hostname" when referring | jsing | 2015-02-11 | 1 | -15/+15 |
* | When parsing the host in tls_connect(), first check if it is a numeric | reyk | 2015-02-09 | 1 | -29/+49 |
* | Use the AI_ADDRCONFIG flag in tls_connect(). This tells the resolver | reyk | 2015-02-08 | 1 | -1/+2 |
* | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | jsing | 2015-02-07 | 1 | -12/+6 |
* | Make the TLS connect and accept error messages consistent. | bluhm | 2015-01-30 | 1 | -2/+2 |
* | Allow to to load the CA chain directly from memory instead of | reyk | 2015-01-22 | 1 | -2/+15 |
* | For non-blocking sockets tls_connect_fds() could fail with EAGAIN. | bluhm | 2015-01-13 | 1 | -5/+19 |
* | Rename the tls_connect_socket() parameter 'socket' to 's' to avoid | bluhm | 2015-01-02 | 1 | -4/+4 |
* | include netinet/in.h to define struct in6_addr. | bcook | 2014-12-27 | 1 | -1/+2 |
* | Allow specific libtls hostname validation errors to propagate. | bcook | 2014-12-07 | 1 | -4/+5 |
* | revert previous change for now, adjusting based on comments from jsing@ | bcook | 2014-12-07 | 1 | -6/+4 |
* | Allow specific libtls hostname validation errors to propagate. | bcook | 2014-12-07 | 1 | -4/+6 |
* | Add a tls_connect_fds() function that allows a secure connection to be | jsing | 2014-11-02 | 1 | -3/+16 |