| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Allow 1.3 ciphers in libtls. | beck | 2019-11-16 | 1 | -2/+2 |
| * | Allow portable to override the default CA bundle location | beck | 2019-11-16 | 1 | -1/+5 |
| * | Provide tls_conn_cipher_strength(). | jsing | 2019-11-02 | 1 | -1/+2 |
| * | Add a mutex to guard reference counting for tls_config. | jsing | 2019-04-01 | 1 | -1/+4 |
| * | Define TLS_CA_CERT_FILE rather than having every application create their | jsing | 2018-11-06 | 1 | -3/+1 |
| * | Correct tls_config_clear_keys() behaviour. | jsing | 2018-04-07 | 1 | -2/+2 |
| * | Automatically handle library initialisation for libtls. | jsing | 2018-03-19 | 1 | -1/+3 |
| * | Move the keypair pubkey hash handling code to during config. | jsing | 2018-02-10 | 1 | -11/+9 |
| * | Add support to libtls for client-side TLS session resumption. | jsing | 2018-02-10 | 1 | -1/+3 |
| * | Have tls_keypair_pubkey_hash() call tls_keypair_load_cert() instead of | jsing | 2018-02-08 | 1 | -2/+3 |
| * | Move tls_keypair_pubkey_hash() to the keypair file. | jsing | 2018-02-08 | 1 | -1/+2 |
| * | Split keypair handling out into its own file - it had already appeared | jsing | 2018-02-08 | 1 | -1/+24 |
| * | Keep track of which keypair is in use by a TLS context. | jsing | 2017-09-20 | 1 | -1/+5 |
| * | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | jsing | 2017-08-10 | 1 | -2/+5 |
| * | Don't use tls_cert_hash for the hashing used by the engine offloading magic | claudio | 2017-08-09 | 1 | -2/+2 |
| * | Add support for providing CRLs to libtls - once a CRL is provided we | jsing | 2017-07-06 | 1 | -1/+3 |
| * | Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that | jsing | 2017-06-22 | 1 | -1/+3 |
| * | Ensure that a client context has been connected before attempting to | jsing | 2017-05-07 | 1 | -3/+4 |
| * | Perform reference counting for tls_config. This allows tls_config_free() to | jsing | 2017-05-06 | 1 | -1/+3 |
| * | Move tls_config_skip_private_key_check() out from under HIDDEN_DECLS. | claudio | 2017-05-04 | 1 | -2/+4 |
| * | Rework name verification code so that a match is indicated via an argument, | jsing | 2017-04-10 | 1 | -2/+3 |
| * | Use uint8_t instead of u_int8_t - for consistency and to make things easier | jsing | 2017-04-07 | 1 | -2/+2 |
| * | Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain | beck | 2017-04-05 | 1 | -1/+6 |
| * | Internal changes to allow for relayd engine privsep. sends the hash of the | beck | 2017-04-05 | 1 | -1/+6 |
| * | Move the ocsp staple to being part of the keypair structure internally, | beck | 2017-01-29 | 1 | -3/+3 |
| * | Use a flag to track when we need to call SSL_shutdown(). This avoids an | jsing | 2017-01-26 | 1 | -1/+2 |
| * | Introduce ticket support. To enable them it is enough to set a positive | claudio | 2017-01-24 | 1 | -1/+23 |
| * | Add support for server side OCSP stapling to libtls. | beck | 2016-11-05 | 1 | -5/+4 |
| * | rename ocsp_ctx to ocsp | beck | 2016-11-05 | 1 | -5/+5 |
| * | Add an explict list of exported symbols with just the functions declared | guenther | 2016-11-04 | 1 | -1/+5 |
| * | make public ASN1_time_parse and ASN1_time_tm_cmp to replace former hidden | beck | 2016-11-04 | 1 | -3/+1 |
| * | Add ocsp_require_stapling config option for tls - allows a connection | beck | 2016-11-04 | 1 | -1/+2 |
| * | Only set an error from libssl related code, if an error has not already | jsing | 2016-11-03 | 1 | -1/+6 |
| * | Add OCSP client side support to libtls. | beck | 2016-11-02 | 1 | -1/+32 |
| * | Add callback-based interface to libtls. | bcook | 2016-09-04 | 1 | -1/+8 |
| * | Various clean up and reorganisation of the connection info handling code. | jsing | 2016-08-22 | 1 | -3/+3 |
| * | Provide an API that enables server side SNI support - add the ability to | jsing | 2016-08-22 | 1 | -1/+2 |
| * | Create contexts for server side SNI - these include the additional SSL_CTX | jsing | 2016-08-22 | 1 | -1/+14 |
| * | The tls_conninfo serial is also unused. | jsing | 2016-08-15 | 1 | -2/+1 |
| * | Group conninfo fields by connection and peer cert based information, | jsing | 2016-08-15 | 1 | -5/+6 |
| * | Explicitly pass in an SSL_CTX * to the functions that operate on one, | jsing | 2016-08-15 | 1 | -5/+6 |
| * | Load CA, certificate and key files into memory when the appropriate | jsing | 2016-08-13 | 1 | -4/+5 |
| * | Add ALPN support to libtls. | jsing | 2016-08-12 | 1 | -1/+5 |
| * | Revert previous since it adds new symbols. | jsing | 2016-08-02 | 1 | -5/+1 |
| * | Add ALPN support to libtls. | jsing | 2016-08-01 | 1 | -1/+5 |
| * | Split the existing TLS cipher suite groups into four: | jsing | 2016-07-13 | 1 | -2/+4 |
| * | Revert previous - it introduces problems with a common privsep use case. | jsing | 2016-07-07 | 1 | -1/+4 |
| * | Always load CA, key and certificate files at the time the configuration | jsing | 2016-07-06 | 1 | -4/+1 |
| * | Rename some of the internal error setting functions to more closely follow | jsing | 2016-05-27 | 1 | -3/+9 |
| * | Factor our the keypair handling in libtls. This results in more readable | jsing | 2016-04-28 | 1 | -8/+15 |
