index
:
openbsd
OPENBSD_2_0
OPENBSD_2_1
OPENBSD_2_2
OPENBSD_2_3
OPENBSD_2_4
OPENBSD_2_5
OPENBSD_2_6
OPENBSD_2_7
OPENBSD_2_8
OPENBSD_2_9
OPENBSD_3_0
OPENBSD_3_1
OPENBSD_3_2
OPENBSD_3_3
OPENBSD_3_4
OPENBSD_3_5
OPENBSD_3_6
OPENBSD_3_7
OPENBSD_3_8
OPENBSD_3_9
OPENBSD_4_0
OPENBSD_4_1
OPENBSD_4_2
OPENBSD_4_3
OPENBSD_4_4
OPENBSD_4_5
OPENBSD_4_6
OPENBSD_4_7
OPENBSD_4_8
OPENBSD_4_9
OPENBSD_5_0
OPENBSD_5_1
OPENBSD_5_2
OPENBSD_5_3
OPENBSD_5_4
OPENBSD_5_5
OPENBSD_5_6
OPENBSD_5_7
OPENBSD_5_8
OPENBSD_5_9
OPENBSD_6_0
OPENBSD_6_1
OPENBSD_6_2
OPENBSD_6_3
OPENBSD_6_4
OPENBSD_6_5
OPENBSD_6_6
OPENBSD_6_7
OPENBSD_6_8
OPENBSD_6_9
OPENBSD_7_0
OPENBSD_7_1
OPENBSD_7_2
OPENBSD_7_3
OPENBSD_7_4
OPENBSD_7_5
OPENBSD_7_6
master
A mirror of https://github.com/libressl/openbsd.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
lib
/
libtls
/
tls_config.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
*
when using fake keys, skip the private key check
eric
2021-01-21
1
-1
/
+2
*
Allow setting a keypair on a tls context without specifying the private
eric
2021-01-21
1
-3
/
+11
*
Destroy the mutex in tls_config objects when tls_config_free is called.
bcook
2020-12-22
1
-1
/
+3
*
Revert call to pthread_mutex_destroy until installers have a stub.
bcook
2020-12-22
1
-3
/
+1
*
Destroy the mutex in a tls_config object when tls_config_free is called.
bcook
2020-12-21
1
-1
/
+3
*
Add support for TLSv1.3 as a protocol to libtls.
jsing
2020-01-20
1
-1
/
+3
*
Allow portable to override the default CA bundle location
beck
2019-11-16
1
-2
/
+2
*
Switch to pthread_mutex_init().
jsing
2019-04-04
1
-3
/
+5
*
Add a mutex to guard reference counting for tls_config.
jsing
2019-04-01
1
-2
/
+9
*
remove duplicate set key file call. from alf.
tedu
2019-03-27
1
-3
/
+1
*
expose the default cert file as a function, not a define. it's really
tedu
2018-11-29
1
-1
/
+9
*
Correct tls_config_clear_keys() behaviour.
jsing
2018-04-07
1
-5
/
+2
*
Avoid potentially calling strchr() on a NULL pointer in
jsing
2018-03-20
1
-7
/
+6
*
Automatically handle library initialisation for libtls.
jsing
2018-03-19
1
-2
/
+11
*
Move the keypair pubkey hash handling code to during config.
jsing
2018-02-10
1
-7
/
+11
*
Add support to libtls for client-side TLS session resumption.
jsing
2018-02-10
1
-1
/
+40
*
Split keypair handling out into its own file - it had already appeared
jsing
2018-02-08
1
-125
/
+6
*
Be consistent with the goto label names used in libtls code.
jsing
2018-02-05
1
-10
/
+10
*
Make tls_config_parse_protocols() work correctly when passed a NULL pointer
jsing
2017-12-09
1
-3
/
+5
*
If tls_config_parse_protocols() is called with a NULL pointer, return the
jsing
2017-09-25
1
-1
/
+4
*
Add a tls_config_set_ecdhecurves() function to libtls, which allows the
jsing
2017-08-10
1
-12
/
+72
*
Don't use tls_cert_hash for the hashing used by the engine offloading magic
claudio
2017-08-09
1
-2
/
+2
*
Add support for providing CRLs to libtls - once a CRL is provided we
jsing
2017-07-06
1
-1
/
+17
*
Perform reference counting for tls_config. This allows tls_config_free() to
jsing
2017-05-06
1
-1
/
+6
*
use freezero() instead of memset/explicit_bzero + free. Substantially
deraadt
2017-05-02
1
-4
/
+2
*
Add a tls_keypair_clear_key() function that uses freezero() to make key
jsing
2017-04-30
1
-5
/
+11
*
Internal changes to allow for relayd engine privsep. sends the hash of the
beck
2017-04-05
1
-1
/
+8
*
Add tls_config_[add|set]keypair_ocsp functions so that ocsp staples may be
beck
2017-01-31
1
-14
/
+99
*
Move the ocsp staple to being part of the keypair structure internally,
beck
2017-01-29
1
-5
/
+21
*
Introduce ticket support. To enable them it is enough to set a positive
claudio
2017-01-24
1
-1
/
+101
*
Change the return value of tls_config_set_protocols() and
jsing
2016-11-11
1
-5
/
+11
*
Add support for server side OCSP stapling to libtls.
beck
2016-11-05
1
-1
/
+15
*
Make the tls_keypair_new() function a valid prototype.
jsing
2016-11-04
1
-2
/
+2
*
Avoid another signed vs unsigned comparison.
jsing
2016-11-04
1
-2
/
+6
*
Add ocsp_require_stapling config option for tls - allows a connection
beck
2016-11-04
1
-1
/
+7
*
Provide an API that enables server side SNI support - add the ability to
jsing
2016-08-22
1
-1
/
+57
*
Avoid leaking memory if tls_config_set_alpn() is called multiple times
jsing
2016-08-13
1
-4
/
+5
*
Load CA, certificate and key files into memory when the appropriate
jsing
2016-08-13
1
-13
/
+68
*
Add ALPN support to libtls.
jsing
2016-08-12
1
-1
/
+68
*
Revert previous since it adds new symbols.
jsing
2016-08-02
1
-69
/
+1
*
Add ALPN support to libtls.
jsing
2016-08-01
1
-1
/
+69
*
Split the existing TLS cipher suite groups into four:
jsing
2016-07-13
1
-3
/
+7
*
Revert previous - it introduces problems with a common privsep use case.
jsing
2016-07-07
1
-68
/
+11
*
Check that the given ciphers string is syntactically valid and results in
jsing
2016-07-06
1
-1
/
+17
*
Always load CA, key and certificate files at the time the configuration
jsing
2016-07-06
1
-11
/
+68
*
Rename some of the internal error setting functions to more closely follow
jsing
2016-05-27
1
-3
/
+3
*
Avoid leaking ca_mem when freeing a tls_config.
jsing
2016-05-27
1
-1
/
+2
*
Factor our the keypair handling in libtls. This results in more readable
jsing
2016-04-28
1
-14
/
+100
*
Rework the error handling in libtls so that we can associate errors with
jsing
2016-04-28
1
-3
/
+15
*
clean some ugly intendation warts
deraadt
2015-09-29
1
-2
/
+2
[next]
