| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | If tls_config_parse_protocols() is called with a NULL pointer, return the | jsing | 2017-09-25 | 1 | -1/+4 |
| * | Keep track of which keypair is in use by a TLS context. | jsing | 2017-09-20 | 4 | -14/+25 |
| * | Slightly restructure tls_ocsp_verify_cb() to make it more like libtls code. | jsing | 2017-09-20 | 1 | -6/+7 |
| * | Provide a useful error if there are no OCSP URLs in the peer certificate. | jsing | 2017-09-20 | 1 | -1/+4 |
| * | Fix indentation. | jsing | 2017-09-20 | 1 | -1/+1 |
| * | Bump libssl/libtls minors due to symbol (re)addition. | jsing | 2017-08-30 | 1 | -1/+1 |
| * | Bump lib{crypto,ssl,tls} majors due to symbol removals. | jsing | 2017-08-28 | 1 | -2/+2 |
| * | Fix unchecked return nit | beck | 2017-08-28 | 1 | -2/+5 |
| * | Make the symbol for ASN1_time_tm_clamp_notafter visible so libtls | beck | 2017-08-27 | 1 | -1/+5 |
| * | Switch to -Werror with clang for libressl. | doug | 2017-08-13 | 1 | -2/+2 |
| * | Document tls_config_set_dheparams(). | jsing | 2017-08-12 | 1 | -4/+13 |
| * | Document tls_reset(). | jsing | 2017-08-12 | 1 | -2/+13 |
| * | new sentence, new line; | jmc | 2017-08-11 | 1 | -3/+4 |
| * | Bump minor due to symbol addition. | jsing | 2017-08-11 | 1 | -1/+1 |
| * | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | jsing | 2017-08-10 | 7 | -34/+108 |
| * | Don't use tls_cert_hash for the hashing used by the engine offloading magic | claudio | 2017-08-09 | 3 | -11/+24 |
| * | correct function name; | jmc | 2017-08-01 | 1 | -3/+3 |
| * | Document tls_config_set_crl_file() and tls_config_set_crl_mem(). | jsing | 2017-07-06 | 1 | -3/+30 |
| * | Bump minor due to symbol addition. | jsing | 2017-07-06 | 1 | -1/+1 |
| * | Add support for providing CRLs to libtls - once a CRL is provided we | jsing | 2017-07-06 | 5 | -4/+67 |
| * | RFC 6066 states that IP literals are not permitted in "HostName" for a | jsing | 2017-07-05 | 1 | -3/+9 |
| * | Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that | jsing | 2017-06-22 | 4 | -11/+14 |
| * | Fix incorrect indentation. | jsing | 2017-06-22 | 1 | -2/+2 |
| * | Plug a memory leak in tls_keypair_cert_hash(), introduced in r1.60. | jsing | 2017-06-22 | 1 | -1/+3 |
| * | Remove dead code that has remained hiding since ressl.c r1.14! | jsing | 2017-06-22 | 1 | -4/+1 |
| * | Use the standard `rv' idiom in tls_keypair_load_cert(), rather than | jsing | 2017-06-22 | 1 | -5/+4 |
| * | Plug a memory leak. The main_cert needs to be X509_free()ed since | claudio | 2017-05-16 | 1 | -0/+2 |
| * | Ensure that a client context has been connected before attempting to | jsing | 2017-05-07 | 2 | -4/+12 |
| * | Return an error if tls_handshake() is called on a TLS context that has | jsing | 2017-05-07 | 1 | -1/+6 |
| * | Use freezero() for the tls_load_file() failure case, since we're | jsing | 2017-05-06 | 1 | -4/+4 |
| * | BIO_free_all() and EVP_PKEY_free() can be called with NULL. | jsing | 2017-05-06 | 1 | -5/+3 |
| * | Be explicit about when it is safe to call tls_config_free(). | jsing | 2017-05-06 | 1 | -3/+8 |
| * | Document tls_unload_file(). | jsing | 2017-05-06 | 1 | -3/+14 |
| * | Perform reference counting for tls_config. This allows tls_config_free() to | jsing | 2017-05-06 | 4 | -6/+22 |
| * | Provide a tls_unload_file() function, that frees the memory returned from | jsing | 2017-05-06 | 3 | -2/+10 |
| * | Bump minors for symbol addition in libcrypto | beck | 2017-05-06 | 1 | -1/+1 |
| * | Move tls_config_skip_private_key_check() out from under HIDDEN_DECLS. | claudio | 2017-05-04 | 1 | -2/+4 |
| * | use freezero() instead of memset/explicit_bzero + free. Substantially | deraadt | 2017-05-02 | 1 | -4/+2 |
| * | Only enable -Werror on libcrypto/libssl/libtls if we are building with | jsing | 2017-04-30 | 1 | -2/+5 |
| * | Add a tls_keypair_clear_key() function that uses freezero() to make key | jsing | 2017-04-30 | 1 | -5/+11 |
| * | tls_free(3) and tls_config_free(3) accept NULL; | schwarze | 2017-04-27 | 2 | -4/+14 |
| * | Rework name verification code so that a match is indicated via an argument, | jsing | 2017-04-10 | 5 | -47/+76 |
| * | Use uint8_t instead of u_int8_t - for consistency and to make things easier | jsing | 2017-04-07 | 1 | -2/+2 |
| * | Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain | beck | 2017-04-05 | 7 | -6/+77 |
| * | Internal changes to allow for relayd engine privsep. sends the hash of the | beck | 2017-04-05 | 5 | -29/+87 |
| * | fix error in Dt; from robert klein | jmc | 2017-03-02 | 1 | -3/+3 |
| * | Bump minors due to symbol addition. | jsing | 2017-02-28 | 1 | -1/+1 |
| * | spelling fix; | jmc | 2017-02-20 | 1 | -2/+2 |
| * | document tls_config_error(3) RETURN VALUES, improve what is said | schwarze | 2017-02-20 | 2 | -6/+59 |
| * | tweak previous; | jmc | 2017-01-31 | 2 | -12/+8 |
