| Age | Commit message (Expand) | Author |
|---|
| 2017-04-10 | Rework name verification code so that a match is indicated via an argument, | Joel Sing |
| 2017-04-07 | Use uint8_t instead of u_int8_t - for consistency and to make things easier | Joel Sing |
| 2017-04-05 | Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain | Bob Beck |
| 2017-04-05 | Internal changes to allow for relayd engine privsep. sends the hash of the | Bob Beck |
| 2017-01-29 | Move the ocsp staple to being part of the keypair structure internally, | Bob Beck |
| 2017-01-26 | Use a flag to track when we need to call SSL_shutdown(). This avoids an | Joel Sing |
| 2017-01-24 | Introduce ticket support. To enable them it is enough to set a positive | Claudio Jeker |
| 2016-11-05 | Add support for server side OCSP stapling to libtls. | Bob Beck |
| 2016-11-05 | rename ocsp_ctx to ocsp | Bob Beck |
| 2016-11-04 | Add an explict list of exported symbols with just the functions declared | Philip Guenther |
| 2016-11-04 | make public ASN1_time_parse and ASN1_time_tm_cmp to replace former hidden | Bob Beck |
| 2016-11-04 | Add ocsp_require_stapling config option for tls - allows a connection | Bob Beck |
| 2016-11-03 | Only set an error from libssl related code, if an error has not already | Joel Sing |
| 2016-11-02 | Add OCSP client side support to libtls. | Bob Beck |
| 2016-09-04 | Add callback-based interface to libtls. | Brent Cook |
| 2016-08-22 | Various clean up and reorganisation of the connection info handling code. | Joel Sing |
| 2016-08-22 | Provide an API that enables server side SNI support - add the ability to | Joel Sing |
| 2016-08-22 | Create contexts for server side SNI - these include the additional SSL_CTX | Joel Sing |
| 2016-08-15 | The tls_conninfo serial is also unused. | Joel Sing |
| 2016-08-15 | Group conninfo fields by connection and peer cert based information, | Joel Sing |
| 2016-08-15 | Explicitly pass in an SSL_CTX * to the functions that operate on one, | Joel Sing |
| 2016-08-13 | Load CA, certificate and key files into memory when the appropriate | Joel Sing |
| 2016-08-12 | Add ALPN support to libtls. | Joel Sing |
| 2016-08-02 | Revert previous since it adds new symbols. | Joel Sing |
| 2016-08-01 | Add ALPN support to libtls. | Joel Sing |
| 2016-07-13 | Split the existing TLS cipher suite groups into four: | Joel Sing |
| 2016-07-07 | Revert previous - it introduces problems with a common privsep use case. | Joel Sing |
| 2016-07-06 | Always load CA, key and certificate files at the time the configuration | Joel Sing |
| 2016-05-27 | Rename some of the internal error setting functions to more closely follow | Joel Sing |
| 2016-04-28 | Factor our the keypair handling in libtls. This results in more readable | Joel Sing |
| 2016-04-28 | Rework the error handling in libtls so that we can associate errors with | Joel Sing |
| 2015-10-07 | Add tls_peer_cert_notbefore and tls_peer_cert_notafter to expose peer certifi... | Bob Beck |
| 2015-09-29 | Instead of declaring a union in multiple places, move it to tls_internal.h. | Joel Sing |
| 2015-09-14 | Provide tls_config_insecure_noverifytime() in order to be able to disable | Joel Sing |
| 2015-09-14 | Expose EOF without close-notify via tls_close(). | Joel Sing |
| 2015-09-13 | add visibility of ciper and connection version strings | Bob Beck |
| 2015-09-12 | Move connection info into it's own private structure allocated and filled in | Bob Beck |
| 2015-09-11 | add tls_peer functions for checking names and issuers of peer certificates. | Bob Beck |
| 2015-09-11 | Store a reference to the peer certificate (if any) upon completion of the | Joel Sing |
| 2015-09-10 | Split tls_handshake() out from tls_accept/tls_connect. By doing this the | Joel Sing |
| 2015-09-10 | Add support for preferring the server's cipher list or the client's cipher | Joel Sing |
| 2015-09-09 | Add client certificate support. Still needs a few tweaks but this will | Bob Beck |
| 2015-09-08 | Remove the default HTTPS port from tls_connect() - this is a TLS library, | Joel Sing |
| 2015-08-27 | Improve libtls error messages. | Joel Sing |
| 2015-08-27 | Split the persistent/configuration flags from temporary state flags and | Joel Sing |
| 2015-03-31 | Store errors that occur during a tls_accept_socket() call on the context | Joel Sing |
| 2015-02-22 | In the interests of being secure by default, make the default TLS ciphers | Joel Sing |
| 2015-02-11 | Be consistent with naming - only use "host" and "hostname" when referring | Joel Sing |
| 2015-02-07 | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | Joel Sing |
| 2015-02-07 | Add tls_config_set_dheparams() to allow specification of the parameters to | Joel Sing |
