summaryrefslogtreecommitdiff
path: root/lib/libtls
AgeCommit message (Expand)Author
2015-11-09update some client/server info; from jan klemkowJason McIntyre
2015-11-02bump minors after adding EVP_aead_chacha20_poly1305_ietf()Reyk Floeter
2015-10-16Put tls_config_verify_client_optional() in the right place.Joel Sing
2015-10-16Fix tpyo.Joel Sing
2015-10-09fix a gotcha in the connect refactoring, that could result in droppingTheo de Raadt
2015-10-08If getaddrinfo() succeeds, then don't try look ups with other flags, evenPhilip Guenther
2015-10-08trailing whitespace;Jason McIntyre
2015-10-07Add tls_peer_cert_notbefore and tls_peer_cert_notafter to expose peer certifi...Bob Beck
2015-10-07Allow us to get cipher and version even if there is not a peer certificate.Bob Beck
2015-10-01include <sys/types.h> for ssize_tBrent Cook
2015-09-29Instead of declaring a union in multiple places, move it to tls_internal.h.Joel Sing
2015-09-29clean some ugly intendation wartsTheo de Raadt
2015-09-28Explicit NULL checks and style(9) tweaks.Joel Sing
2015-09-14tweak previous;Jason McIntyre
2015-09-14Provide tls_config_insecure_noverifytime() in order to be able to disableJoel Sing
2015-09-14Remove useless quoting from .Fo and .Fn function names, to preventIngo Schwarze
2015-09-14some conn_version and conn_cipher bits;Jason McIntyre
2015-09-14Expose EOF without close-notify via tls_close().Joel Sing
2015-09-14Return an error if tls_handshake() or tls_close() is called on a contextJoel Sing
2015-09-14add missing function return typesIngo Schwarze
2015-09-13Crank major version due to removal of SHA-0 and MD4 from libcrypto.Doug Hogan
2015-09-13work around the stupid semantics of SSL_read and SSL_write to make sureBob Beck
2015-09-13Don't leak conninfo - spotted by marko kreen.Bob Beck
2015-09-13Mechanical minor bump to follow libcrypto.Miod Vallat
2015-09-13add visibility of ciper and connection version stringsBob Beck
2015-09-12Move connection info into it's own private structure allocated and filled inBob Beck
2015-09-12Ensure that we clear the libssl error stack before we make a function callJoel Sing
2015-09-12Put tls_peer_cert* functions in the same place.Joel Sing
2015-09-11typoTheo de Raadt
2015-09-11more for NAME;Jason McIntyre
2015-09-11more cleanup;Jason McIntyre
2015-09-11update NAME; various cleanupJason McIntyre
2015-09-11document tls_get_peer_subject, tls_get_peer_issuer, and tls_get_peer_hashBob Beck
2015-09-11!= -> == that I broke while bikesheddingBob Beck
2015-09-11Do not match a wildcard against a name with no host part.Bob Beck
2015-09-11add tls_peer functions for checking names and issuers of peer certificates.Bob Beck
2015-09-11Provide tls_peer_cert_hash() which returns a hash of the raw certificateJoel Sing
2015-09-11Store a reference to the peer certificate (if any) upon completion of theJoel Sing
2015-09-11specify what is permitted as an argument to tls_config_set_ciphers()Bob Beck
2015-09-11actually set return value to 0 on success.Bob Beck
2015-09-11- add some missing NAME entriesJason McIntyre
2015-09-11sort MLINKS into the same order as the man page;Jason McIntyre
2015-09-10Call tls_set_errorx() instead of tls_set_error() inJoel Sing
2015-09-10improve examples,Theo de Raadt
2015-09-10document client side certificate verification functionality.Bob Beck
2015-09-10document changed tls_read and tls_write semantics.Bob Beck
2015-09-10mlink tls_handshake;Jason McIntyre
2015-09-10tweak previous;Jason McIntyre
2015-09-10Correctly document the behaviour of tls_close() - the caller is responsibleJoel Sing
2015-09-10Replace TLS_{READ,WRITE}_AGAIN with TLS_WANT_POLL{IN,OUT} and correctlyJoel Sing