| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Link ssl and crypto via BSDOBJDIR, works with native and cross builds | tobiasu | 2015-06-05 | 1 | -3/+3 |
| * | Record inter-library dependencies between libcrypto, libssl and libtls | kettenis | 2015-05-17 | 1 | -1/+4 |
| * | Reject dNSName of " " for subjectAltName extension. | doug | 2015-04-29 | 1 | -1/+20 |
| * | Treat SSL_ERROR_ZERO_RETURN as a success, rather than a failure. Also | jsing | 2015-04-15 | 1 | -5/+6 |
| * | Make tls_close() more robust - do not rely on a close notify being received | jsing | 2015-04-15 | 1 | -13/+17 |
| * | comma fix; | jmc | 2015-04-03 | 1 | -3/+3 |
| * | Handle the case where multiple calls to SSL_shutdown() are required to | jsing | 2015-04-02 | 2 | -8/+14 |
| * | Correct man page title. | jsing | 2015-04-02 | 1 | -2/+2 |
| * | Document the fact that the tls_accept_*() functions can return | jsing | 2015-04-02 | 1 | -7/+11 |
| * | Bump libtls minor due to API addition. | jsing | 2015-03-31 | 1 | -1/+1 |
| * | Provide a tls_accept_fds() function, which allows a TLS connection to be | jsing | 2015-03-31 | 4 | -9/+39 |
| * | Store errors that occur during a tls_accept_socket() call on the context | jsing | 2015-03-31 | 4 | -11/+12 |
| * | free the server certificate in tls_connect_fds(); fixes a memory leak with | sthen | 2015-03-21 | 1 | -1/+2 |
| * | Prefix function parameter names with underscores in tls.h, since this makes | jsing | 2015-02-26 | 1 | -42/+44 |
| * | Bump libtls major due to symbol removal. | jsing | 2015-02-22 | 1 | -3/+2 |
| * | Rename tls_config_insecure_noverifyhost() to | jsing | 2015-02-22 | 4 | -21/+20 |
| * | Check return values when setting dheparams and ecdhecurve for the default | jsing | 2015-02-22 | 1 | -11/+14 |
| * | In the interests of being secure by default, make the default TLS ciphers | jsing | 2015-02-22 | 2 | -2/+17 |
| * | explain how tls_accept_socket works. | tedu | 2015-02-21 | 1 | -2/+9 |
| * | tls_config_set_protocols is really void. Greg Martin. | tedu | 2015-02-21 | 1 | -3/+3 |
| * | fill out docs a bit more, notably the read/write again behaviors. | tedu | 2015-02-21 | 1 | -3/+27 |
| * | s/tls_load_keys/tls_load_file/ | jsing | 2015-02-15 | 1 | -2/+2 |
| * | Document tls_config_parse_protocols() and update documentation for | jsing | 2015-02-15 | 2 | -5/+27 |
| * | bump minor for TLS_PROTOCOLS_ALL. OK jsing@ | reyk | 2015-02-12 | 1 | -1/+1 |
| * | Add a tls_config_parse_protocols() function that allows a protocols string | jsing | 2015-02-12 | 2 | -2/+63 |
| * | Fix handling of "legacy" mode for tls_config_set_dheparams(). | jsing | 2015-02-12 | 1 | -2/+2 |
| * | Change TLS_PROTOCOLS_DEFAULT to be TLSv1.2 only. Add a TLS_PROTOCOLS_ALL | jsing | 2015-02-12 | 1 | -2/+4 |
| * | Provide a tls_connect_servername() function that has the same behaviour | jsing | 2015-02-11 | 4 | -6/+27 |
| * | Be consistent with naming - only use "host" and "hostname" when referring | jsing | 2015-02-11 | 6 | -60/+61 |
| * | When parsing the host in tls_connect(), first check if it is a numeric | reyk | 2015-02-09 | 1 | -29/+49 |
| * | Use the AI_ADDRCONFIG flag in tls_connect(). This tells the resolver | reyk | 2015-02-08 | 1 | -1/+2 |
| * | Added tls_load_file() | reyk | 2015-02-07 | 1 | -1/+2 |
| * | Add manpage bits for tls_load_file() and tls_accept_socket(). | reyk | 2015-02-07 | 2 | -2/+28 |
| * | Add tls_load_file() as a helper to load certificates or encrypted keys | reyk | 2015-02-07 | 2 | -2/+92 |
| * | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | jsing | 2015-02-07 | 4 | -26/+16 |
| * | Add tls_config_set_dheparams() to allow specification of the parameters to | jsing | 2015-02-07 | 7 | -22/+53 |
| * | Attempt to implement the OpenSSL error dance so that TLS read/write | jsing | 2015-02-07 | 1 | -29/+61 |
| * | Rename SSL_CTX_use_certificate_chain() to SSL_CTX_use_certificate_chain_mem(). | reyk | 2015-02-06 | 1 | -2/+2 |
| * | Make the TLS connect and accept error messages consistent. | bluhm | 2015-01-30 | 2 | -5/+4 |
| * | last entry in NAME should not have a trailing comma; | jmc | 2015-01-22 | 1 | -2/+2 |
| * | Add MLINK for tls_config_set_ca_mem() | reyk | 2015-01-22 | 1 | -1/+2 |
| * | Allow to to load the CA chain directly from memory instead of | reyk | 2015-01-22 | 6 | -8/+39 |
| * | The SSL/TLS session Id context is limited to 32 bytes. Instead of | reyk | 2015-01-16 | 1 | -1/+13 |
| * | For non-blocking sockets tls_connect_fds() could fail with EAGAIN. | bluhm | 2015-01-13 | 2 | -7/+22 |
| * | Rename the tls_connect_socket() parameter 'socket' to 's' to avoid | bluhm | 2015-01-02 | 1 | -4/+4 |
| * | Revert previous; tls_accept_socket() was intentionally undocumented | schwarze | 2015-01-01 | 1 | -7/+1 |
| * | minimally document tls_accept_socket(); | schwarze | 2015-01-01 | 1 | -2/+8 |
| * | include netinet/in.h to define struct in6_addr. | bcook | 2014-12-27 | 1 | -1/+2 |
| * | Add size_t to int checks for SSL functions. | doug | 2014-12-17 | 3 | -8/+39 |
| * | Allow specific libtls hostname validation errors to propagate. | bcook | 2014-12-07 | 3 | -21/+27 |
