summaryrefslogtreecommitdiff
path: root/lib/libtls
AgeCommit message (Expand)Author
2015-09-29clean some ugly intendation wartsTheo de Raadt
2015-09-28Explicit NULL checks and style(9) tweaks.Joel Sing
2015-09-14tweak previous;Jason McIntyre
2015-09-14Provide tls_config_insecure_noverifytime() in order to be able to disableJoel Sing
2015-09-14Remove useless quoting from .Fo and .Fn function names, to preventIngo Schwarze
2015-09-14some conn_version and conn_cipher bits;Jason McIntyre
2015-09-14Expose EOF without close-notify via tls_close().Joel Sing
2015-09-14Return an error if tls_handshake() or tls_close() is called on a contextJoel Sing
2015-09-14add missing function return typesIngo Schwarze
2015-09-13Crank major version due to removal of SHA-0 and MD4 from libcrypto.Doug Hogan
2015-09-13work around the stupid semantics of SSL_read and SSL_write to make sureBob Beck
2015-09-13Don't leak conninfo - spotted by marko kreen.Bob Beck
2015-09-13Mechanical minor bump to follow libcrypto.Miod Vallat
2015-09-13add visibility of ciper and connection version stringsBob Beck
2015-09-12Move connection info into it's own private structure allocated and filled inBob Beck
2015-09-12Ensure that we clear the libssl error stack before we make a function callJoel Sing
2015-09-12Put tls_peer_cert* functions in the same place.Joel Sing
2015-09-11typoTheo de Raadt
2015-09-11more for NAME;Jason McIntyre
2015-09-11more cleanup;Jason McIntyre
2015-09-11update NAME; various cleanupJason McIntyre
2015-09-11document tls_get_peer_subject, tls_get_peer_issuer, and tls_get_peer_hashBob Beck
2015-09-11!= -> == that I broke while bikesheddingBob Beck
2015-09-11Do not match a wildcard against a name with no host part.Bob Beck
2015-09-11add tls_peer functions for checking names and issuers of peer certificates.Bob Beck
2015-09-11Provide tls_peer_cert_hash() which returns a hash of the raw certificateJoel Sing
2015-09-11Store a reference to the peer certificate (if any) upon completion of theJoel Sing
2015-09-11specify what is permitted as an argument to tls_config_set_ciphers()Bob Beck
2015-09-11actually set return value to 0 on success.Bob Beck
2015-09-11- add some missing NAME entriesJason McIntyre
2015-09-11sort MLINKS into the same order as the man page;Jason McIntyre
2015-09-10Call tls_set_errorx() instead of tls_set_error() inJoel Sing
2015-09-10improve examples,Theo de Raadt
2015-09-10document client side certificate verification functionality.Bob Beck
2015-09-10document changed tls_read and tls_write semantics.Bob Beck
2015-09-10mlink tls_handshake;Jason McIntyre
2015-09-10tweak previous;Jason McIntyre
2015-09-10Correctly document the behaviour of tls_close() - the caller is responsibleJoel Sing
2015-09-10Replace TLS_{READ,WRITE}_AGAIN with TLS_WANT_POLL{IN,OUT} and correctlyJoel Sing
2015-09-10Update libtls man page to reflect tls_handshake() related changes.Joel Sing
2015-09-10revert accidental commitBob Beck
2015-09-10comment for errno clobbering, to indicate why we do this.Bob Beck
2015-09-10bump majorBob Beck
2015-09-10change TLS_READ_AGAIN to TLS_WANT_POLLIN and TLS_WRITE_AGAIN to TLS_WANT_POLLOUTBob Beck
2015-09-10Change tls_read and tls_write semantics to return an ssize_t to betterBob Beck
2015-09-10Split tls_handshake() out from tls_accept/tls_connect. By doing this theJoel Sing
2015-09-10add MLINKS for _prefer_ciphers_*Jason McIntyre
2015-09-10Add support for preferring the server's cipher list or the client's cipherJoel Sing
2015-09-09Indent labels with a space so that diff -p is more friendly.Joel Sing
2015-09-09Add client certificate support. Still needs a few tweaks but this willBob Beck