summaryrefslogtreecommitdiff
path: root/lib/libtls
AgeCommit message (Expand)Author
2017-01-31tweak previous;Jason McIntyre
2017-01-31Add tls_config_[add|set]keypair_ocsp functions so that ocsp staples may beBob Beck
2017-01-31Disable client-initiated renegotiation for libtls servers.Joel Sing
2017-01-29Marko Kreen contributed significantly to the ocsp stuff for libtlsBob Beck
2017-01-29Move the ocsp staple to being part of the keypair structure internally,Bob Beck
2017-01-28add HISTORY and AUTHORSIngo Schwarze
2017-01-27Fix Copyright notices; ok beck@ jsing@ tedu@Ingo Schwarze
2017-01-27More s/OSCP/OCSP/ typosTom Cosgrove
2017-01-26fix Dt;Jason McIntyre
2017-01-26Use a flag to track when we need to call SSL_shutdown(). This avoids anJoel Sing
2017-01-26Bump TLS_API due to new features being added earlier this week.Joel Sing
2017-01-26Bump libtls minor due to symbol additions earlier this week.Joel Sing
2017-01-25split the tls_init(3) that had grown fat to allow healthy future growth;Ingo Schwarze
2017-01-24Bump libssl and libtls minors due to symbol additions.Joel Sing
2017-01-24accross -> across;Jason McIntyre
2017-01-24Introduce ticket support. To enable them it is enough to set a positiveClaudio Jeker
2017-01-24Add missing documentation for tls_config_set_verify_depthClaudio Jeker
2017-01-24Shuffle the deck chairs to bring them back in order.Claudio Jeker
2017-01-24tls_config_add_keypair_mem is the function to add additional keypairs andClaudio Jeker
2017-01-22Disable session cache and tickets by default.Claudio Jeker
2017-01-22Wrap long lines.Joel Sing
2017-01-22Bump majors for libssl and libtls following the translucent struct change.Joel Sing
2017-01-13whitespaceTheo de Raadt
2017-01-12Inline strlen() call to reduce/simplify code.Joel Sing
2017-01-12Inline tls_get_new_cb_bio() from the only place that it gets called,Joel Sing
2017-01-12If tls_set_cbs() fails an error will already be specified, so do notJoel Sing
2017-01-12Simplify the TLS callback BIO code - a pointer to the tls context can beJoel Sing
2017-01-12If tls_get_new_cb_bio() fails, an error will already be set.Joel Sing
2017-01-12If no callbacks are specified, return after setting an error rather thanJoel Sing
2017-01-09Avoid leaking conninfo servername.Joel Sing
2017-01-03If certificate verification has been disabled, do not attempt to load aJoel Sing
2017-01-03Revert previous - the original code was correct since X509_verify_cert()Joel Sing
2017-01-02fix cert verify. a cert with an alt chain may verify but leave an errorTed Unangst
2016-12-26Hook up a certificate verify callback so that we can set user friendlyJoel Sing
2016-12-21Bump libcrypto/libssl/libtls majors due to libcrypto symbol removal andJoel Sing
2016-11-11Bump TLS_API due to recent feature additions and changes.Joel Sing
2016-11-11Change the return value of tls_config_set_protocols() andJoel Sing
2016-11-11Disable ec assembly for amd64 pending fixes for ssh, and bumpBob Beck
2016-11-06Set the callback on the correct ssl_ctx for the SNI case, instead ofBob Beck
2016-11-05fix misplaced quote by tls_peer_ocsp_this_updateBrent Cook
2016-11-05tweak previous;Jason McIntyre
2016-11-05bump minors for symbol addition for ocsp and x25519 symbol additionsBob Beck
2016-11-05Add support for server side OCSP stapling to libtls.Bob Beck
2016-11-05rename ocsp_ctx to ocspBob Beck
2016-11-05Remove generated Symbols.map on make clean.Joel Sing
2016-11-04Build with WARNINGS=Yes.Joel Sing
2016-11-04Avoid shadowing the socket global.Joel Sing
2016-11-04Make the tls_keypair_new() function a valid prototype.Joel Sing
2016-11-04Avoid another signed vs unsigned comparison.Joel Sing
2016-11-04Add an explict list of exported symbols with just the functions declaredPhilip Guenther