| Commit message (Expand) | Author | Age | Files | Lines |
* | Remove OpenSSL engine RSAX. | doug | 2015-07-19 | 1 | -1/+1 |
* | tweak previous; ok doug | jmc | 2015-07-19 | 1 | -4/+4 |
* | Crank the major of libtls: the behaviour of tls_write() has been | reyk | 2015-07-19 | 1 | -1/+1 |
* | Add documentation on how to use TLS_{READ,WRITE}_AGAIN. | doug | 2015-07-19 | 1 | -2/+29 |
* | Set SSL_MODE_ENABLE_PARTIAL_WRITE and SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER | bluhm | 2015-07-18 | 1 | -1/+4 |
* | Crank major for libcrypto, ssl and tls due to MDC-2DES removal. | doug | 2015-06-20 | 1 | -2/+2 |
* | Add standard headers, C++ support to tls.h. | bcook | 2015-06-19 | 1 | -1/+12 |
* | Link ssl and crypto via BSDOBJDIR, works with native and cross builds | tobiasu | 2015-06-05 | 1 | -3/+3 |
* | Record inter-library dependencies between libcrypto, libssl and libtls | kettenis | 2015-05-17 | 1 | -1/+4 |
* | Reject dNSName of " " for subjectAltName extension. | doug | 2015-04-29 | 1 | -1/+20 |
* | Treat SSL_ERROR_ZERO_RETURN as a success, rather than a failure. Also | jsing | 2015-04-15 | 1 | -5/+6 |
* | Make tls_close() more robust - do not rely on a close notify being received | jsing | 2015-04-15 | 1 | -13/+17 |
* | comma fix; | jmc | 2015-04-03 | 1 | -3/+3 |
* | Handle the case where multiple calls to SSL_shutdown() are required to | jsing | 2015-04-02 | 2 | -8/+14 |
* | Correct man page title. | jsing | 2015-04-02 | 1 | -2/+2 |
* | Document the fact that the tls_accept_*() functions can return | jsing | 2015-04-02 | 1 | -7/+11 |
* | Bump libtls minor due to API addition. | jsing | 2015-03-31 | 1 | -1/+1 |
* | Provide a tls_accept_fds() function, which allows a TLS connection to be | jsing | 2015-03-31 | 4 | -9/+39 |
* | Store errors that occur during a tls_accept_socket() call on the context | jsing | 2015-03-31 | 4 | -11/+12 |
* | free the server certificate in tls_connect_fds(); fixes a memory leak with | sthen | 2015-03-21 | 1 | -1/+2 |
* | Prefix function parameter names with underscores in tls.h, since this makes | jsing | 2015-02-26 | 1 | -42/+44 |
* | Bump libtls major due to symbol removal. | jsing | 2015-02-22 | 1 | -3/+2 |
* | Rename tls_config_insecure_noverifyhost() to | jsing | 2015-02-22 | 4 | -21/+20 |
* | Check return values when setting dheparams and ecdhecurve for the default | jsing | 2015-02-22 | 1 | -11/+14 |
* | In the interests of being secure by default, make the default TLS ciphers | jsing | 2015-02-22 | 2 | -2/+17 |
* | explain how tls_accept_socket works. | tedu | 2015-02-21 | 1 | -2/+9 |
* | tls_config_set_protocols is really void. Greg Martin. | tedu | 2015-02-21 | 1 | -3/+3 |
* | fill out docs a bit more, notably the read/write again behaviors. | tedu | 2015-02-21 | 1 | -3/+27 |
* | s/tls_load_keys/tls_load_file/ | jsing | 2015-02-15 | 1 | -2/+2 |
* | Document tls_config_parse_protocols() and update documentation for | jsing | 2015-02-15 | 2 | -5/+27 |
* | bump minor for TLS_PROTOCOLS_ALL. OK jsing@ | reyk | 2015-02-12 | 1 | -1/+1 |
* | Add a tls_config_parse_protocols() function that allows a protocols string | jsing | 2015-02-12 | 2 | -2/+63 |
* | Fix handling of "legacy" mode for tls_config_set_dheparams(). | jsing | 2015-02-12 | 1 | -2/+2 |
* | Change TLS_PROTOCOLS_DEFAULT to be TLSv1.2 only. Add a TLS_PROTOCOLS_ALL | jsing | 2015-02-12 | 1 | -2/+4 |
* | Provide a tls_connect_servername() function that has the same behaviour | jsing | 2015-02-11 | 4 | -6/+27 |
* | Be consistent with naming - only use "host" and "hostname" when referring | jsing | 2015-02-11 | 6 | -60/+61 |
* | When parsing the host in tls_connect(), first check if it is a numeric | reyk | 2015-02-09 | 1 | -29/+49 |
* | Use the AI_ADDRCONFIG flag in tls_connect(). This tells the resolver | reyk | 2015-02-08 | 1 | -1/+2 |
* | Added tls_load_file() | reyk | 2015-02-07 | 1 | -1/+2 |
* | Add manpage bits for tls_load_file() and tls_accept_socket(). | reyk | 2015-02-07 | 2 | -2/+28 |
* | Add tls_load_file() as a helper to load certificates or encrypted keys | reyk | 2015-02-07 | 2 | -2/+92 |
* | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | jsing | 2015-02-07 | 4 | -26/+16 |
* | Add tls_config_set_dheparams() to allow specification of the parameters to | jsing | 2015-02-07 | 7 | -22/+53 |
* | Attempt to implement the OpenSSL error dance so that TLS read/write | jsing | 2015-02-07 | 1 | -29/+61 |
* | Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem(). | reyk | 2015-02-06 | 1 | -2/+2 |
* | Make the TLS connect and accept error messages consistent. | bluhm | 2015-01-30 | 2 | -5/+4 |
* | last entry in NAME should not have a trailing comma; | jmc | 2015-01-22 | 1 | -2/+2 |
* | Add MLINK for tls_config_set_ca_mem() | reyk | 2015-01-22 | 1 | -1/+2 |
* | Allow to to load the CA chain directly from memory instead of | reyk | 2015-01-22 | 6 | -8/+39 |
* | The SSL/TLS session Id context is limited to 32 bytes. Instead of | reyk | 2015-01-16 | 1 | -1/+13 |