index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
/
libtls
Commit message (
Expand
)
Author
Age
Files
Lines
*
Send TLS close notify during tls_socket_t destruction
Martin Willi
2013-01-15
1
-2
/
+25
*
Send TLS close notify if application returns SUCCESS
Martin Willi
2013-01-15
1
-2
/
+6
*
Block TLS read when sending data, but have to wait for the handshake data first
Martin Willi
2013-01-15
1
-4
/
+11
*
Use a more POSIXy tls_socket interface with more flexibility.
Martin Willi
2013-01-15
2
-81
/
+165
*
Fixed encoding of TLS extensions (elliptic_curves and signature_algorithms)
Tobias Brunner
2012-11-28
2
-0
/
+2
*
Moved debug.[ch] to utils folder
Tobias Brunner
2012-10-24
10
-10
/
+10
*
Moved data structures to new collections subfolder
Tobias Brunner
2012-10-24
2
-3
/
+3
*
Added missing break when building TLS cipher suites
Tobias Brunner
2012-09-28
1
-0
/
+1
*
Don't allow NULL encryption with PEAP
Martin Willi
2012-09-12
1
-1
/
+3
*
Use memmove on overlapping regions, and operate with correct sizeof()
Martin Willi
2012-09-12
1
-2
/
+2
*
Whitespace cleanups in tls_eap
Martin Willi
2012-09-12
1
-6
/
+6
*
Check if TLS handshake received Finished before processing application data
Martin Willi
2012-08-09
1
-0
/
+6
*
Fix tls_prf bug introduced with bc474883
Martin Willi
2012-07-17
1
-4
/
+7
*
Add a return value to hasher_t.allocate_hash()
Martin Willi
2012-07-16
1
-2
/
+2
*
Add a return value to hasher_t.get_hash()
Martin Willi
2012-07-16
1
-4
/
+4
*
Add a return value to crypter_t.set_key()
Martin Willi
2012-07-16
1
-4
/
+10
*
Add a return value to crypter_t.decrypt()
Martin Willi
2012-07-16
1
-1
/
+6
*
Add a return value to crypter_t.encrypt
Martin Willi
2012-07-16
1
-1
/
+10
*
Check rng return value when generating TLS session identifiers
Martin Willi
2012-07-16
1
-3
/
+3
*
Check rng return value when generating secrets and IVs in libtls
Tobias Brunner
2012-07-16
3
-16
/
+20
*
Add a return value to prf_t.set_key()
Martin Willi
2012-07-16
1
-5
/
+4
*
Add a return value to prf_t.get_bytes()
Martin Willi
2012-07-16
1
-5
/
+8
*
Add a return value to tls_prf_t.set_key()
Martin Willi
2012-07-16
3
-9
/
+13
*
Add a return value to tls_prf_t.get_bytes()
Martin Willi
2012-07-16
3
-20
/
+42
*
Add a return value to signer_t.set_key()
Martin Willi
2012-07-16
1
-4
/
+10
*
Add a return value to tls_crypto_t.derive_secrets()
Martin Willi
2012-07-16
4
-21
/
+44
*
Add a return value to signer_t.get_signature()
Martin Willi
2012-07-16
1
-8
/
+9
*
Add a return value to signer_t.allocate_signature()
Martin Willi
2012-07-16
1
-1
/
+5
*
eliminate message length field in EAP-TNC
Andreas Steffen
2012-07-11
1
-2
/
+6
*
allow to transmit 64k TLS Handshake and Application messages via EAP-[T]TLS
Andreas Steffen
2012-07-11
3
-19
/
+23
*
some tls_eap optimizations
Andreas Steffen
2012-07-11
1
-10
/
+13
*
max_message_count = 0 disables limit
Andreas Steffen
2012-07-11
1
-1
/
+1
*
log invalid TLS packet length
Andreas Steffen
2012-07-11
1
-1
/
+2
*
Install dev headers only if --with-dev-headers= option is set
Martin Willi
2012-07-11
1
-1
/
+3
*
Install libtls development headers
Martin Willi
2012-07-11
1
-12
/
+9
*
Double check if a cached suite is available, overwrite any old suite state
Martin Willi
2012-02-07
1
-2
/
+3
*
Some Doxygen fixes.
Tobias Brunner
2012-02-07
1
-9
/
+9
*
Fix TLS EAP-MSK derivation, uses different order of randoms than key expansion
Martin Willi
2012-02-07
1
-0
/
+1
*
Filter TLS suite MAC by HMAC algorithm, as the hash is not necessarily the same
Martin Willi
2012-02-07
1
-4
/
+4
*
Added a tls_socket_t.splice method to wrap a file descriptor into TLS
Martin Willi
2011-12-31
2
-5
/
+107
*
Implemented TLS session resumption both as client and as server
Martin Willi
2011-12-31
11
-100
/
+266
*
Implemented a TLS session cache
Martin Willi
2011-12-31
3
-0
/
+316
*
Check for cipherspec changes after each handshake message
Martin Willi
2011-12-31
1
-2
/
+6
*
Separated cipherspec checking and switching, allowing us to defer the second
Martin Willi
2011-12-31
4
-33
/
+49
*
Be less verbose about TLS extensions
Martin Willi
2011-12-24
1
-1
/
+1
*
In TLS 1.2, PRF and HASH function use at least SHA-256, not the MAC hash func...
Martin Willi
2011-12-24
1
-20
/
+20
*
Added a getter for the tls_socket file descriptor
Martin Willi
2011-12-24
2
-0
/
+14
*
added dummy libtls_init() function needed for integrity testing
Andreas Steffen
2011-11-08
2
-0
/
+13
*
Don't allocate extra memory to MAC the TLS header
Martin Willi
2011-09-28
1
-22
/
+23
*
Verify TLS MAC even if padding is invalid to prevent timing attacks
Martin Willi
2011-09-28
1
-6
/
+4
[next]
