summaryrefslogtreecommitdiff
path: root/lib/libtls/tls_internal.h
AgeCommit message (Expand)Author
2016-09-04Add callback-based interface to libtls.Brent Cook
2016-08-22Various clean up and reorganisation of the connection info handling code.Joel Sing
2016-08-22Provide an API that enables server side SNI support - add the ability toJoel Sing
2016-08-22Create contexts for server side SNI - these include the additional SSL_CTXJoel Sing
2016-08-15The tls_conninfo serial is also unused.Joel Sing
2016-08-15Group conninfo fields by connection and peer cert based information,Joel Sing
2016-08-15Explicitly pass in an SSL_CTX * to the functions that operate on one,Joel Sing
2016-08-13Load CA, certificate and key files into memory when the appropriateJoel Sing
2016-08-12Add ALPN support to libtls.Joel Sing
2016-08-02Revert previous since it adds new symbols.Joel Sing
2016-08-01Add ALPN support to libtls.Joel Sing
2016-07-13Split the existing TLS cipher suite groups into four:Joel Sing
2016-07-07Revert previous - it introduces problems with a common privsep use case.Joel Sing
2016-07-06Always load CA, key and certificate files at the time the configurationJoel Sing
2016-05-27Rename some of the internal error setting functions to more closely followJoel Sing
2016-04-28Factor our the keypair handling in libtls. This results in more readableJoel Sing
2016-04-28Rework the error handling in libtls so that we can associate errors withJoel Sing
2015-10-07Add tls_peer_cert_notbefore and tls_peer_cert_notafter to expose peer certifi...Bob Beck
2015-09-29Instead of declaring a union in multiple places, move it to tls_internal.h.Joel Sing
2015-09-14Provide tls_config_insecure_noverifytime() in order to be able to disableJoel Sing
2015-09-14Expose EOF without close-notify via tls_close().Joel Sing
2015-09-13add visibility of ciper and connection version stringsBob Beck
2015-09-12Move connection info into it's own private structure allocated and filled inBob Beck
2015-09-11add tls_peer functions for checking names and issuers of peer certificates.Bob Beck
2015-09-11Store a reference to the peer certificate (if any) upon completion of theJoel Sing
2015-09-10Split tls_handshake() out from tls_accept/tls_connect. By doing this theJoel Sing
2015-09-10Add support for preferring the server's cipher list or the client's cipherJoel Sing
2015-09-09Add client certificate support. Still needs a few tweaks but this willBob Beck
2015-09-08Remove the default HTTPS port from tls_connect() - this is a TLS library,Joel Sing
2015-08-27Improve libtls error messages.Joel Sing
2015-08-27Split the persistent/configuration flags from temporary state flags andJoel Sing
2015-03-31Store errors that occur during a tls_accept_socket() call on the contextJoel Sing
2015-02-22In the interests of being secure by default, make the default TLS ciphersJoel Sing
2015-02-11Be consistent with naming - only use "host" and "hostname" when referringJoel Sing
2015-02-07Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL errorJoel Sing
2015-02-07Add tls_config_set_dheparams() to allow specification of the parameters toJoel Sing
2015-01-22Allow to to load the CA chain directly from memory instead ofReyk Floeter
2015-01-13For non-blocking sockets tls_connect_fds() could fail with EAGAIN.Alexander Bluhm
2014-12-17Add size_t to int checks for SSL functions.Doug Hogan
2014-12-07Allow specific libtls hostname validation errors to propagate.Brent Cook
2014-12-07revert previous change for now, adjusting based on comments from jsing@Brent Cook
2014-12-07Allow specific libtls hostname validation errors to propagate.Brent Cook
2014-10-31Rename libressl to libtls to avoid confusion and to make it easier toJoel Sing