Age | Commit message (Expand) | Author |
2017-09-20 | Keep track of which keypair is in use by a TLS context. | Joel Sing |
2017-08-10 | Add a tls_config_set_ecdhecurves() function to libtls, which allows the | Joel Sing |
2017-07-05 | RFC 6066 states that IP literals are not permitted in "HostName" for a | Joel Sing |
2017-06-22 | Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that | Joel Sing |
2017-06-22 | Use the standard `rv' idiom in tls_keypair_load_cert(), rather than | Joel Sing |
2017-05-06 | Perform reference counting for tls_config. This allows tls_config_free() to | Joel Sing |
2017-04-10 | Rework name verification code so that a match is indicated via an argument, | Joel Sing |
2017-01-31 | Disable client-initiated renegotiation for libtls servers. | Joel Sing |
2017-01-26 | Use a flag to track when we need to call SSL_shutdown(). This avoids an | Joel Sing |
2017-01-24 | Introduce ticket support. To enable them it is enough to set a positive | Claudio Jeker |
2017-01-12 | If tls_set_cbs() fails an error will already be specified, so do not | Joel Sing |
2016-11-06 | Set the callback on the correct ssl_ctx for the SNI case, instead of | Bob Beck |
2016-11-05 | Add support for server side OCSP stapling to libtls. | Bob Beck |
2016-11-04 | Avoid shadowing the socket global. | Joel Sing |
2016-09-14 | Set callbacks on the right tls ctx on accept. | Brent Cook |
2016-09-04 | Maintain consistency with function naming. | Joel Sing |
2016-09-04 | Add callback-based interface to libtls. | Brent Cook |
2016-08-22 | Create contexts for server side SNI - these include the additional SSL_CTX | Joel Sing |
2016-08-18 | Split out the TLS server SSL_CTX allocation and configuration code, so | Joel Sing |
2016-08-15 | Explicitly pass in an SSL_CTX * to the functions that operate on one, | Joel Sing |
2016-08-12 | Add ALPN support to libtls. | Joel Sing |
2016-08-02 | Revert previous since it adds new symbols. | Joel Sing |
2016-08-01 | Add ALPN support to libtls. | Joel Sing |
2016-04-28 | Factor our the keypair handling in libtls. This results in more readable | Joel Sing |
2015-09-29 | clean some ugly intendation warts | Theo de Raadt |
2015-09-12 | Ensure that we clear the libssl error stack before we make a function call | Joel Sing |
2015-09-11 | actually set return value to 0 on success. | Bob Beck |
2015-09-10 | Split tls_handshake() out from tls_accept/tls_connect. By doing this the | Joel Sing |
2015-09-10 | Add support for preferring the server's cipher list or the client's cipher | Joel Sing |
2015-09-09 | Indent labels with a space so that diff -p is more friendly. | Joel Sing |
2015-09-09 | Add client certificate support. Still needs a few tweaks but this will | Bob Beck |
2015-09-09 | Only take ownership of a socket if we allocated it within libtls. If we are | Joel Sing |
2015-08-27 | Improve libtls error messages. | Joel Sing |
2015-08-22 | Unify error message between client and server. | Joel Sing |
2015-08-22 | SSL_set_app_data is a macro for SSL_set_ex_data(), which is a wrapper | Joel Sing |
2015-03-31 | Provide a tls_accept_fds() function, which allows a TLS connection to be | Joel Sing |
2015-03-31 | Store errors that occur during a tls_accept_socket() call on the context | Joel Sing |
2015-02-07 | Convert tls_connect_fds() and tls_accept_socket() to the new OpenSSL error | Joel Sing |
2015-02-07 | Add tls_config_set_dheparams() to allow specification of the parameters to | Joel Sing |
2015-01-30 | Make the TLS connect and accept error messages consistent. | Alexander Bluhm |
2015-01-16 | The SSL/TLS session Id context is limited to 32 bytes. Instead of | Reyk Floeter |
2014-10-31 | Rename libressl to libtls to avoid confusion and to make it easier to | Joel Sing |