Age | Commit message (Expand) | Author |
2021-10-21 | Eliminate a dead assignment and a weird cast. Adjust a comment to | Theo Buehler |
2021-06-01 | Update RFC reference. RFC 4366 was obsoleted by RFC 6066. | Theo Buehler |
2021-06-01 | Avoid sending a trailing dot in SNI as a client | Theo Buehler |
2018-03-19 | Automatically handle library initialisation for libtls. | Joel Sing |
2018-02-10 | Add support to libtls for client-side TLS session resumption. | Joel Sing |
2017-08-10 | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | Joel Sing |
2017-05-07 | Ensure that a client context has been connected before attempting to | Joel Sing |
2017-04-10 | Rework name verification code so that a match is indicated via an argument, | Joel Sing |
2017-01-26 | Use a flag to track when we need to call SSL_shutdown(). This avoids an | Joel Sing |
2017-01-12 | If tls_set_cbs() fails an error will already be specified, so do not | Joel Sing |
2016-12-26 | Hook up a certificate verify callback so that we can set user friendly | Joel Sing |
2016-11-02 | Add OCSP client side support to libtls. | Bob Beck |
2016-09-04 | Maintain consistency with function naming. | Joel Sing |
2016-09-04 | Add callback-based interface to libtls. | Brent Cook |
2016-08-15 | Explicitly pass in an SSL_CTX * to the functions that operate on one, | Joel Sing |
2016-04-28 | Factor our the keypair handling in libtls. This results in more readable | Joel Sing |
2015-10-09 | fix a gotcha in the connect refactoring, that could result in dropping | Theo de Raadt |
2015-10-08 | If getaddrinfo() succeeds, then don't try look ups with other flags, even | Philip Guenther |
2015-09-29 | Instead of declaring a union in multiple places, move it to tls_internal.h. | Joel Sing |
2015-09-29 | clean some ugly intendation warts | Theo de Raadt |
2015-09-12 | Ensure that we clear the libssl error stack before we make a function call | Joel Sing |
2015-09-11 | add tls_peer functions for checking names and issuers of peer certificates. | Bob Beck |
2015-09-10 | Split tls_handshake() out from tls_accept/tls_connect. By doing this the | Joel Sing |
2015-09-09 | Indent labels with a space so that diff -p is more friendly. | Joel Sing |
2015-09-09 | Add client certificate support. Still needs a few tweaks but this will | Bob Beck |
2015-09-09 | Only take ownership of a socket if we allocated it within libtls. If we are | Joel Sing |
2015-09-08 | Remove the default HTTPS port from tls_connect() - this is a TLS library, | Joel Sing |
2015-08-27 | Improve libtls error messages. | Joel Sing |
2015-08-27 | Split the persistent/configuration flags from temporary state flags and | Joel Sing |
2015-08-22 | SSL_set_app_data is a macro for SSL_set_ex_data(), which is a wrapper | Joel Sing |
2015-08-22 | Store a reference to the libtls context in the SSL client connection app | Joel Sing |
2015-03-31 | Store errors that occur during a tls_accept_socket() call on the context | Joel Sing |
2015-03-21 | free the server certificate in tls_connect_fds(); fixes a memory leak with | Stuart Henderson |
2015-02-11 | Provide a tls_connect_servername() function that has the same behaviour | Joel Sing |
2015-02-11 | Be consistent with naming - only use "host" and "hostname" when referring | Joel Sing |
2015-02-09 | When parsing the host in tls_connect(), first check if it is a numeric | Reyk Floeter |
2015-02-08 | Use the AI_ADDRCONFIG flag in tls_connect(). This tells the resolver | Reyk Floeter |
2015-02-07 | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | Joel Sing |
2015-01-30 | Make the TLS connect and accept error messages consistent. | Alexander Bluhm |
2015-01-22 | Allow to to load the CA chain directly from memory instead of | Reyk Floeter |
2015-01-13 | For non-blocking sockets tls_connect_fds() could fail with EAGAIN. | Alexander Bluhm |
2015-01-02 | Rename the tls_connect_socket() parameter 'socket' to 's' to avoid | Alexander Bluhm |
2014-12-27 | include netinet/in.h to define struct in6_addr. | Brent Cook |
2014-12-07 | Allow specific libtls hostname validation errors to propagate. | Brent Cook |
2014-12-07 | revert previous change for now, adjusting based on comments from jsing@ | Brent Cook |
2014-12-07 | Allow specific libtls hostname validation errors to propagate. | Brent Cook |
2014-11-02 | Add a tls_connect_fds() function that allows a secure connection to be | Joel Sing |
2014-10-31 | Rename libressl to libtls to avoid confusion and to make it easier to | Joel Sing |