summaryrefslogtreecommitdiff
path: root/lib/libtls
AgeCommit message (Expand)Author
2017-05-16Plug a memory leak. The main_cert needs to be X509_free()ed sinceClaudio Jeker
2017-05-07Ensure that a client context has been connected before attempting toJoel Sing
2017-05-07Return an error if tls_handshake() is called on a TLS context that hasJoel Sing
2017-05-06Use freezero() for the tls_load_file() failure case, since we'reJoel Sing
2017-05-06BIO_free_all() and EVP_PKEY_free() can be called with NULL.Joel Sing
2017-05-06Be explicit about when it is safe to call tls_config_free().Joel Sing
2017-05-06Document tls_unload_file().Joel Sing
2017-05-06Perform reference counting for tls_config. This allows tls_config_free() toJoel Sing
2017-05-06Provide a tls_unload_file() function, that frees the memory returned fromJoel Sing
2017-05-06Bump minors for symbol addition in libcryptoBob Beck
2017-05-04Move tls_config_skip_private_key_check() out from under HIDDEN_DECLS.Claudio Jeker
2017-05-02use freezero() instead of memset/explicit_bzero + free. SubstantiallyTheo de Raadt
2017-04-30Only enable -Werror on libcrypto/libssl/libtls if we are building withJoel Sing
2017-04-30Add a tls_keypair_clear_key() function that uses freezero() to make keyJoel Sing
2017-04-27tls_free(3) and tls_config_free(3) accept NULL;Ingo Schwarze
2017-04-10Rework name verification code so that a match is indicated via an argument,Joel Sing
2017-04-07Use uint8_t instead of u_int8_t - for consistency and to make things easierJoel Sing
2017-04-05Add tls_peer_cert_chain_pem - To retreive the peer certificate and chainBob Beck
2017-04-05Internal changes to allow for relayd engine privsep. sends the hash of theBob Beck
2017-03-02fix error in Dt; from robert kleinJason McIntyre
2017-02-28Bump minors due to symbol addition.Joel Sing
2017-02-20spelling fix;Jason McIntyre
2017-02-20document tls_config_error(3) RETURN VALUES, improve what is saidIngo Schwarze
2017-01-31tweak previous;Jason McIntyre
2017-01-31Add tls_config_[add|set]keypair_ocsp functions so that ocsp staples may beBob Beck
2017-01-31Disable client-initiated renegotiation for libtls servers.Joel Sing
2017-01-29Marko Kreen contributed significantly to the ocsp stuff for libtlsBob Beck
2017-01-29Move the ocsp staple to being part of the keypair structure internally,Bob Beck
2017-01-28add HISTORY and AUTHORSIngo Schwarze
2017-01-27Fix Copyright notices; ok beck@ jsing@ tedu@Ingo Schwarze
2017-01-27More s/OSCP/OCSP/ typosTom Cosgrove
2017-01-26fix Dt;Jason McIntyre
2017-01-26Use a flag to track when we need to call SSL_shutdown(). This avoids anJoel Sing
2017-01-26Bump TLS_API due to new features being added earlier this week.Joel Sing
2017-01-26Bump libtls minor due to symbol additions earlier this week.Joel Sing
2017-01-25split the tls_init(3) that had grown fat to allow healthy future growth;Ingo Schwarze
2017-01-24Bump libssl and libtls minors due to symbol additions.Joel Sing
2017-01-24accross -> across;Jason McIntyre
2017-01-24Introduce ticket support. To enable them it is enough to set a positiveClaudio Jeker
2017-01-24Add missing documentation for tls_config_set_verify_depthClaudio Jeker
2017-01-24Shuffle the deck chairs to bring them back in order.Claudio Jeker
2017-01-24tls_config_add_keypair_mem is the function to add additional keypairs andClaudio Jeker
2017-01-22Disable session cache and tickets by default.Claudio Jeker
2017-01-22Wrap long lines.Joel Sing
2017-01-22Bump majors for libssl and libtls following the translucent struct change.Joel Sing
2017-01-13whitespaceTheo de Raadt
2017-01-12Inline strlen() call to reduce/simplify code.Joel Sing
2017-01-12Inline tls_get_new_cb_bio() from the only place that it gets called,Joel Sing
2017-01-12If tls_set_cbs() fails an error will already be specified, so do notJoel Sing
2017-01-12Simplify the TLS callback BIO code - a pointer to the tls context can beJoel Sing
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-25 15:22:17 +0000