| Commit message (Expand) | Author | Age | Files | Lines |
* | Use standard unsigned integer types | Andreas Steffen | 2016-03-24 | 1 | -4/+4 |
* | credential-manager: Make online revocation checks optional for public key enu... | Tobias Brunner | 2016-03-10 | 1 | -1/+1 |
* | utils: Use chunk_equals_const() for all cryptographic purposes | Martin Willi | 2015-04-14 | 1 | -1/+1 |
* | diffie-hellman: Add a bool return value to set_other_public_value() | Martin Willi | 2015-03-23 | 1 | -1/+6 |
* | diffie-hellman: Add a bool return value to get_my_public_value() | Martin Willi | 2015-03-23 | 1 | -1/+5 |
* | diffie-hellman: Use bool instead of status_t as get_shared_secret() return value | Martin Willi | 2015-03-23 | 1 | -1/+1 |
* | libtls: Add getters for TLS handshake authentication details | Martin Willi | 2015-03-03 | 1 | -0/+7 |
* | libtls: Merge trustchain auth verification details done during TLS handhsake | Martin Willi | 2015-03-03 | 1 | -0/+1 |
* | If TLS peer authentication not required, the client does nonetheless, allow i... | Martin Willi | 2013-03-06 | 1 | -4/+19 |
* | Request a TLS client certificate even if no peer identity is given | Martin Willi | 2013-02-28 | 1 | -5/+1 |
* | Delegate tls_t.get_{peer,server}_id to handshake layer | Martin Willi | 2013-02-28 | 1 | -2/+23 |
* | Moved debug.[ch] to utils folder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 |
* | Check rng return value when generating TLS session identifiers | Martin Willi | 2012-07-16 | 1 | -3/+3 |
* | Check rng return value when generating secrets and IVs in libtls | Tobias Brunner | 2012-07-16 | 1 | -6/+8 |
* | Add a return value to tls_crypto_t.derive_secrets() | Martin Willi | 2012-07-16 | 1 | -8/+17 |
* | Implemented TLS session resumption both as client and as server | Martin Willi | 2011-12-31 | 1 | -39/+81 |
* | Separated cipherspec checking and switching, allowing us to defer the second | Martin Willi | 2011-12-31 | 1 | -12/+19 |
* | Be less verbose about TLS extensions | Martin Willi | 2011-12-24 | 1 | -1/+1 |
* | renamed tls_reader|writer to bio_* and moved to libstrongswan | Andreas Steffen | 2011-05-31 | 1 | -28/+28 |
* | Read the compression type byte for EC groups, only | Martin Willi | 2010-09-08 | 1 | -6/+10 |
* | Renamed ecp_format to ansi_format, as point formats in TLS use different iden... | Martin Willi | 2010-09-06 | 1 | -3/+3 |
* | Prepend point format to ECDH public key | Martin Willi | 2010-09-06 | 1 | -4/+14 |
* | Log the selected (EC)DH group | Martin Willi | 2010-09-06 | 1 | -0/+2 |
* | Parse unsupported TLS Hello extensions properly | Martin Willi | 2010-09-06 | 1 | -10/+6 |
* | Use a dynamic curve enumerator to list/convert TLS named curves | Martin Willi | 2010-09-03 | 1 | -39/+37 |
* | Use ECDH group check where appropriate | Martin Willi | 2010-09-03 | 1 | -42/+25 |
* | Select private key based on received cipher suites | Martin Willi | 2010-09-03 | 1 | -12/+54 |
* | Support for EC curve Hello extension, EC curve fallback | Martin Willi | 2010-09-03 | 1 | -21/+109 |
* | Added server support for ECDHE key exchange | Martin Willi | 2010-09-03 | 1 | -14/+60 |
* | fixed typo | Andreas Steffen | 2010-09-03 | 1 | -1/+1 |
* | Added TLS server side support for DHE suites | Martin Willi | 2010-09-02 | 1 | -3/+116 |
* | Implemented "signature algorithm" hello extension | Martin Willi | 2010-09-02 | 1 | -1/+37 |
* | Added generic TLS data sign/verify, hash/sig algorithm construction | Martin Willi | 2010-09-02 | 1 | -63/+9 |
* | Continue with a randomized premaster if decryption failed / version mismatches | Martin Willi | 2010-09-02 | 1 | -9/+41 |
* | Support different hash/sig algorithms in handshake signing, including ECDSA | Martin Willi | 2010-09-02 | 1 | -7/+64 |
* | Send TLS alerts for errors in TLS handshake building | Martin Willi | 2010-08-25 | 1 | -0/+3 |
* | Pass NULL peer identity to omit TLS peer authentication, added eap-ttls.reque... | Martin Willi | 2010-08-24 | 1 | -22/+6 |
* | removed some redundant debug output | Andreas Steffen | 2010-08-24 | 1 | -2/+0 |
* | Added generic TLS purposes | Martin Willi | 2010-08-24 | 1 | -0/+2 |
* | Added a TLS purpose for EAP-TTLS with client authentication | Martin Willi | 2010-08-23 | 1 | -0/+1 |
* | Implemented TLS Alert handling | Martin Willi | 2010-08-23 | 1 | -15/+39 |
* | Verify negotiated TLS version | Martin Willi | 2010-08-23 | 1 | -3/+4 |
* | Introducing a dedicated debug message group for libtls | Martin Willi | 2010-08-23 | 1 | -23/+23 |
* | Streamlined TLS debugging output | Martin Willi | 2010-08-23 | 1 | -5/+6 |
* | Introducing simple purposes for the TLS stack, switches various options | Martin Willi | 2010-08-20 | 1 | -3/+9 |
* | Use a seperate section for each nested struct member in INIT macro | Martin Willi | 2010-08-18 | 1 | -7/+9 |
* | Only include certificates with CA flag in TLS cert request | Martin Willi | 2010-08-16 | 1 | -2/+8 |
* | optional certificate-based peer authentication on TLS server side | Andreas Steffen | 2010-08-15 | 1 | -7/+30 |
* | added generic TLS application data handler and specific EAP-TTLS instantiation | Andreas Steffen | 2010-08-12 | 1 | -0/+7 |
* | Added support for different encryption schemes to private/public keys | Martin Willi | 2010-08-10 | 1 | -1/+2 |