summaryrefslogtreecommitdiff
path: root/lib/libtls
AgeCommit message (Expand)Author
2022-02-08Plug a long standing leak in libtls CRL handlingTheo Buehler
2022-02-01Provide our own signature padding defines.Joel Sing
2022-02-01Revise signer callback interface.Joel Sing
2022-01-29Add limits.h for INT_MAX in tls_signer.cKinichiro Inoguchi
2022-01-28Expose tls_signer_error()Joel Sing
2022-01-25minor bump after api additiomEric Faurot
2022-01-25Introduce a signer interface intented to make TLS privsep simplerEric Faurot
2022-01-19Check function return value in libtlsKinichiro Inoguchi
2022-01-14bump libcrypto, libssl, libtls majors after struct visibility changesTheo Buehler
2022-01-10Convert tls_bio_cb for opaque BIOTheo Buehler
2022-01-01contibutions -> contributionsJonathan Gray
2021-10-31Bump majors after struct visibility changes, symbol removal and symbolTheo Buehler
2021-10-31Simplify some code by using X509_STORE_CTX_get_obj_by_subject()Theo Buehler
2021-10-21libtls: Don't reach into X509_STORE_CTX.Theo Buehler
2021-10-21Switch from X509_VERIFY_PARAM_set_flags() to X509_STORE_set_flags().Theo Buehler
2021-10-21Eliminate a dead assignment and a weird cast. Adjust a comment toTheo Buehler
2021-10-21Print uid with %u instead of %i.Theo Buehler
2021-10-21Use *printf %d instead of %iTheo Buehler
2021-10-02Use SSL_CTX_get0_param() rather than reaching into the SSL_CTX.Joel Sing
2021-09-10major bump (same type of crank as libssl)Theo Buehler
2021-08-16typo in commentTheo Buehler
2021-06-22zap wonky commas;Jason McIntyre
2021-06-22Clarify tls_config_set_*_file() file I/O semanticskn
2021-06-14Use SSL_AD_INTERNAL_ERRORTheo Buehler
2021-06-01Update RFC reference. RFC 4366 was obsoleted by RFC 6066.Theo Buehler
2021-06-01Avoid sending a trailing dot in SNI as a clientTheo Buehler
2021-06-01Remove unnecessary cast in free.Theo Buehler
2021-05-10give libtls the same bump as libsslTheo Buehler
2021-03-31Bump minors after symbol additionTheo Buehler
2021-03-23OCSP_basic_verify() doesn't set errno, so use tls_set_errorx()Theo Buehler
2021-02-01Use "EC/RSA key setup failure" to align error with othersTheo Buehler
2021-01-26Move private key setup to a helper function with proper errorEric Faurot
2021-01-21when using fake keys, skip the private key checkEric Faurot
2021-01-21return -1 on error for consistencyEric Faurot
2021-01-21minor bump after symbol additionEric Faurot
2021-01-21Allow setting a keypair on a tls context without specifying the privateEric Faurot
2021-01-05Fix indent.Joel Sing
2021-01-05Remove memset that was made redundant with the ASN1_time_parse()Theo Buehler
2021-01-02Tweak previous:Ingo Schwarze
2021-01-02Make list of DHE parameters more prominentkn
2020-12-30Make the list of supported protocols more prominentkn
2020-12-22Destroy the mutex in tls_config objects when tls_config_free is called.Brent Cook
2020-12-22Revert call to pthread_mutex_destroy until installers have a stub.Brent Cook
2020-12-21Destroy the mutex in a tls_config object when tls_config_free is called.Brent Cook
2020-12-15Fix return value variable type in tls_keypair_load_certKinichiro Inoguchi
2020-06-09The check_includes step is incorrect dependency management model forTheo de Raadt
2020-05-24Clear SSL_MODE_AUTO_RETRY in libtls, since we handle WANT_POLLIN correctly.Joel Sing
2020-01-22Correct includes check for libtls.Joel Sing
2020-01-22Add checks to ensure that lib{crypto,ssl,tls} public headers have actuallyJoel Sing
2020-01-22Note in the man page that the default protocols list includes 1.3Bob Beck