summaryrefslogtreecommitdiff
path: root/src/lib/libtls/tls_internal.h (follow)
Commit message (Expand)AuthorAgeFilesLines
* Provide tls_peer_cert_common_name()tb2024-12-101-1/+4
* Add error code support to libtlsjoshua2024-03-261-22/+23
* Use errno_value instead of num for readabilityjoshua2024-03-261-2/+2
* Zap stray spacetb2023-06-271-2/+2
* libtls: switch ECDSA_METHOD usage to EC_KEY_METHODop2023-06-181-2/+2
* Drop X9.31 support from libtlstb2023-04-091-2/+1
* Hide the tls_signer from public visibility. It's not ready yet andtb2022-03-241-1/+23
* Introduce a signer interface intented to make TLS privsep simplereric2022-01-251-1/+6
* Allow setting a keypair on a tls context without specifying the privateeric2021-01-211-1/+3
* Allow 1.3 ciphers in libtls.beck2019-11-161-2/+2
* Allow portable to override the default CA bundle locationbeck2019-11-161-1/+5
* Provide tls_conn_cipher_strength().jsing2019-11-021-1/+2
* Add a mutex to guard reference counting for tls_config.jsing2019-04-011-1/+4
* Define TLS_CA_CERT_FILE rather than having every application create theirjsing2018-11-061-3/+1
* Correct tls_config_clear_keys() behaviour.jsing2018-04-071-2/+2
* Automatically handle library initialisation for libtls.jsing2018-03-191-1/+3
* Move the keypair pubkey hash handling code to during config.jsing2018-02-101-11/+9
* Add support to libtls for client-side TLS session resumption.jsing2018-02-101-1/+3
* Have tls_keypair_pubkey_hash() call tls_keypair_load_cert() instead ofjsing2018-02-081-2/+3
* Move tls_keypair_pubkey_hash() to the keypair file.jsing2018-02-081-1/+2
* Split keypair handling out into its own file - it had already appearedjsing2018-02-081-1/+24
* Keep track of which keypair is in use by a TLS context.jsing2017-09-201-1/+5
* Add a tls_config_set_ecdhecurves() function to libtls, which allows thejsing2017-08-101-2/+5
* Don't use tls_cert_hash for the hashing used by the engine offloading magicclaudio2017-08-091-2/+2
* Add support for providing CRLs to libtls - once a CRL is provided wejsing2017-07-061-1/+3
* Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so thatjsing2017-06-221-1/+3
* Ensure that a client context has been connected before attempting tojsing2017-05-071-3/+4
* Perform reference counting for tls_config. This allows tls_config_free() tojsing2017-05-061-1/+3
* Move tls_config_skip_private_key_check() out from under HIDDEN_DECLS.claudio2017-05-041-2/+4
* Rework name verification code so that a match is indicated via an argument,jsing2017-04-101-2/+3
* Use uint8_t instead of u_int8_t - for consistency and to make things easierjsing2017-04-071-2/+2
* Add tls_peer_cert_chain_pem - To retreive the peer certificate and chainbeck2017-04-051-1/+6
* Internal changes to allow for relayd engine privsep. sends the hash of thebeck2017-04-051-1/+6
* Move the ocsp staple to being part of the keypair structure internally,beck2017-01-291-3/+3
* Use a flag to track when we need to call SSL_shutdown(). This avoids anjsing2017-01-261-1/+2
* Introduce ticket support. To enable them it is enough to set a positiveclaudio2017-01-241-1/+23
* Add support for server side OCSP stapling to libtls.beck2016-11-051-5/+4
* rename ocsp_ctx to ocspbeck2016-11-051-5/+5
* Add an explict list of exported symbols with just the functions declaredguenther2016-11-041-1/+5
* make public ASN1_time_parse and ASN1_time_tm_cmp to replace former hiddenbeck2016-11-041-3/+1
* Add ocsp_require_stapling config option for tls - allows a connectionbeck2016-11-041-1/+2
* Only set an error from libssl related code, if an error has not alreadyjsing2016-11-031-1/+6
* Add OCSP client side support to libtls.beck2016-11-021-1/+32
* Add callback-based interface to libtls.bcook2016-09-041-1/+8
* Various clean up and reorganisation of the connection info handling code.jsing2016-08-221-3/+3
* Provide an API that enables server side SNI support - add the ability tojsing2016-08-221-1/+2
* Create contexts for server side SNI - these include the additional SSL_CTXjsing2016-08-221-1/+14
* The tls_conninfo serial is also unused.jsing2016-08-151-2/+1
* Group conninfo fields by connection and peer cert based information,jsing2016-08-151-5/+6
* Explicitly pass in an SSL_CTX * to the functions that operate on one,jsing2016-08-151-5/+6