| Commit message (Expand) | Author | Age | Files | Lines |
* | Add TLS_ERROR_INVALID_CONTEXT error code to libtls | joshua | 2024-03-26 | 1 | -3/+4 |
* | Add error code support to libtls | joshua | 2024-03-26 | 1 | -20/+34 |
* | add missing #include <string.h>; ok tb@ | op | 2023-05-14 | 1 | -1/+3 |
* | Check function return value in libtls | inoguchi | 2022-01-19 | 1 | -9/+21 |
* | Use SSL_AD_INTERNAL_ERROR | tb | 2021-06-14 | 1 | -2/+2 |
* | Remove unnecessary cast in free. | tb | 2021-06-01 | 1 | -2/+2 |
* | Acquire mutex before incrementing the refcount. Fixes COV-186144 | bcook | 2019-05-13 | 1 | -1/+3 |
* | Automatically handle library initialisation for libtls. | jsing | 2018-03-19 | 1 | -1/+4 |
* | Split keypair handling out into its own file - it had already appeared | jsing | 2018-02-08 | 1 | -38/+1 |
* | Keep track of which keypair is in use by a TLS context. | jsing | 2017-09-20 | 1 | -1/+5 |
* | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | jsing | 2017-08-10 | 1 | -11/+5 |
* | RFC 6066 states that IP literals are not permitted in "HostName" for a | jsing | 2017-07-05 | 1 | -3/+9 |
* | Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that | jsing | 2017-06-22 | 1 | -2/+3 |
* | Use the standard `rv' idiom in tls_keypair_load_cert(), rather than | jsing | 2017-06-22 | 1 | -5/+4 |
* | Perform reference counting for tls_config. This allows tls_config_free() to | jsing | 2017-05-06 | 1 | -1/+3 |
* | Rework name verification code so that a match is indicated via an argument, | jsing | 2017-04-10 | 1 | -3/+8 |
* | Disable client-initiated renegotiation for libtls servers. | jsing | 2017-01-31 | 1 | -1/+3 |
* | Use a flag to track when we need to call SSL_shutdown(). This avoids an | jsing | 2017-01-26 | 1 | -1/+3 |
* | Introduce ticket support. To enable them it is enough to set a positive | claudio | 2017-01-24 | 1 | -10/+86 |
* | If tls_set_cbs() fails an error will already be specified, so do not | jsing | 2017-01-12 | 1 | -4/+2 |
* | Set the callback on the correct ssl_ctx for the SNI case, instead of | beck | 2016-11-06 | 1 | -2/+2 |
* | Add support for server side OCSP stapling to libtls. | beck | 2016-11-05 | 1 | -1/+7 |
* | Avoid shadowing the socket global. | jsing | 2016-11-04 | 1 | -3/+3 |
* | Set callbacks on the right tls ctx on accept. | bcook | 2016-09-14 | 1 | -2/+2 |
* | Maintain consistency with function naming. | jsing | 2016-09-04 | 1 | -4/+4 |
* | Add callback-based interface to libtls. | bcook | 2016-09-04 | 1 | -10/+50 |
* | Create contexts for server side SNI - these include the additional SSL_CTX | jsing | 2016-08-22 | 1 | -1/+133 |
* | Split out the TLS server SSL_CTX allocation and configuration code, so | jsing | 2016-08-18 | 1 | -19/+37 |
* | Explicitly pass in an SSL_CTX * to the functions that operate on one, | jsing | 2016-08-15 | 1 | -4/+5 |
* | Add ALPN support to libtls. | jsing | 2016-08-12 | 1 | -1/+19 |
* | Revert previous since it adds new symbols. | jsing | 2016-08-02 | 1 | -19/+1 |
* | Add ALPN support to libtls. | jsing | 2016-08-01 | 1 | -1/+19 |
* | Factor our the keypair handling in libtls. This results in more readable | jsing | 2016-04-28 | 1 | -2/+2 |
* | clean some ugly intendation warts | deraadt | 2015-09-29 | 1 | -3/+3 |
* | Ensure that we clear the libssl error stack before we make a function call | jsing | 2015-09-12 | 1 | -1/+3 |
* | actually set return value to 0 on success. | beck | 2015-09-11 | 1 | -1/+2 |
* | Split tls_handshake() out from tls_accept/tls_connect. By doing this the | jsing | 2015-09-10 | 1 | -30/+46 |
* | Add support for preferring the server's cipher list or the client's cipher | jsing | 2015-09-10 | 1 | -1/+5 |
* | Indent labels with a space so that diff -p is more friendly. | jsing | 2015-09-09 | 1 | -3/+3 |
* | Add client certificate support. Still needs a few tweaks but this will | beck | 2015-09-09 | 1 | -2/+9 |
* | Only take ownership of a socket if we allocated it within libtls. If we are | jsing | 2015-09-09 | 1 | -8/+2 |
* | Improve libtls error messages. | jsing | 2015-08-27 | 1 | -9/+9 |
* | Unify error message between client and server. | jsing | 2015-08-22 | 1 | -2/+2 |
* | SSL_set_app_data is a macro for SSL_set_ex_data(), which is a wrapper | jsing | 2015-08-22 | 1 | -3/+5 |
* | Provide a tls_accept_fds() function, which allows a TLS connection to be | jsing | 2015-03-31 | 1 | -5/+16 |
* | Store errors that occur during a tls_accept_socket() call on the context | jsing | 2015-03-31 | 1 | -2/+2 |
* | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | jsing | 2015-02-07 | 1 | -11/+6 |
* | Add tls_config_set_dheparams() to allow specification of the parameters to | jsing | 2015-02-07 | 1 | -5/+10 |
* | Make the TLS connect and accept error messages consistent. | bluhm | 2015-01-30 | 1 | -3/+2 |
* | The SSL/TLS session Id context is limited to 32 bytes. Instead of | reyk | 2015-01-16 | 1 | -1/+13 |