aboutsummaryrefslogtreecommitdiffstats
path: root/src/libtls
Commit message (Collapse)AuthorAgeFilesLines
...
* Add a return value to crypter_t.decrypt()Martin Willi2012-07-161-1/+6
|
* Add a return value to crypter_t.encryptMartin Willi2012-07-161-1/+10
|
* Check rng return value when generating TLS session identifiersMartin Willi2012-07-161-3/+3
|
* Check rng return value when generating secrets and IVs in libtlsTobias Brunner2012-07-163-16/+20
|
* Add a return value to prf_t.set_key()Martin Willi2012-07-161-5/+4
|
* Add a return value to prf_t.get_bytes()Martin Willi2012-07-161-5/+8
|
* Add a return value to tls_prf_t.set_key()Martin Willi2012-07-163-9/+13
|
* Add a return value to tls_prf_t.get_bytes()Martin Willi2012-07-163-20/+42
|
* Add a return value to signer_t.set_key()Martin Willi2012-07-161-4/+10
|
* Add a return value to tls_crypto_t.derive_secrets()Martin Willi2012-07-164-21/+44
|
* Add a return value to signer_t.get_signature()Martin Willi2012-07-161-8/+9
|
* Add a return value to signer_t.allocate_signature()Martin Willi2012-07-161-1/+5
|
* eliminate message length field in EAP-TNCAndreas Steffen2012-07-111-2/+6
|
* allow to transmit 64k TLS Handshake and Application messages via EAP-[T]TLSAndreas Steffen2012-07-113-19/+23
|
* some tls_eap optimizationsAndreas Steffen2012-07-111-10/+13
|
* max_message_count = 0 disables limitAndreas Steffen2012-07-111-1/+1
|
* log invalid TLS packet lengthAndreas Steffen2012-07-111-1/+2
|
* Install dev headers only if --with-dev-headers= option is setMartin Willi2012-07-111-1/+3
|
* Install libtls development headersMartin Willi2012-07-111-12/+9
|
* Double check if a cached suite is available, overwrite any old suite stateMartin Willi2012-02-071-2/+3
|
* Some Doxygen fixes.Tobias Brunner2012-02-071-9/+9
|
* Fix TLS EAP-MSK derivation, uses different order of randoms than key expansionMartin Willi2012-02-071-0/+1
|
* Filter TLS suite MAC by HMAC algorithm, as the hash is not necessarily the sameMartin Willi2012-02-071-4/+4
|
* Added a tls_socket_t.splice method to wrap a file descriptor into TLSMartin Willi2011-12-312-5/+107
|
* Implemented TLS session resumption both as client and as serverMartin Willi2011-12-3111-100/+266
|
* Implemented a TLS session cacheMartin Willi2011-12-313-0/+316
|
* Check for cipherspec changes after each handshake messageMartin Willi2011-12-311-2/+6
|
* Separated cipherspec checking and switching, allowing us to defer the secondMartin Willi2011-12-314-33/+49
|
* Be less verbose about TLS extensionsMartin Willi2011-12-241-1/+1
|
* In TLS 1.2, PRF and HASH function use at least SHA-256, not the MAC hash ↵Martin Willi2011-12-241-20/+20
| | | | function
* Added a getter for the tls_socket file descriptorMartin Willi2011-12-242-0/+14
|
* added dummy libtls_init() function needed for integrity testingAndreas Steffen2011-11-082-0/+13
|
* Don't allocate extra memory to MAC the TLS headerMartin Willi2011-09-281-22/+23
|
* Verify TLS MAC even if padding is invalid to prevent timing attacksMartin Willi2011-09-281-6/+4
|
* Install and use libtls as dynamic library, as we have our private libdir nowMartin Willi2011-08-081-1/+1
|
* Fixed common misspellings.Tobias Brunner2011-07-204-4/+4
| | | | Mostly found by 'codespell'.
* renamed tls_reader|writer to bio_* and moved to libstrongswanAndreas Steffen2011-05-319-100/+98
|
* fixed typeAndreas Steffen2011-05-314-704/+0
|
* raw TLS debug outputAndreas Steffen2011-05-291-0/+3
|
* debug type is EAP_TLSAndreas Steffen2011-04-211-4/+4
|
* do not include length field in non-fragmented EAP-PEAP packetsAndreas Steffen2011-04-212-12/+45
|
* Revert alloc_str changesMartin Willi2011-04-211-8/+4
| | | | | | This reverts commit fdead26ffe1da8501a6ff5e0639a6f44c723e763. This reverts commit 3e2419ebe32de72d824864eb2e0e677a7c197af1. This reverts commit 17ce69b47a1efd6234960cf7d1f50712aee61db5.
* Use thread save settings alloc_str function where appropriateMartin Willi2011-04-211-4/+8
|
* Continue without client authentication if no matching certificate foundMartin Willi2011-04-141-19/+22
|
* Ignore TLS certificate requests as peer if peer authentication disabledMartin Willi2011-04-141-13/+14
|
* Send TLS Server Name Indication as peer if server identity is a FQDNMartin Willi2011-04-142-0/+18
|
* Fix tls_writer wrap functionsMartin Willi2011-04-141-4/+4
|
* added TLS renegotiation_info extensionAndreas Steffen2011-04-142-1/+7
|
* added TLS_PURPOSE_EAP_PEAPAndreas Steffen2011-04-053-0/+4
|
* implemented get|set_identifier() for tls_eap_tAndreas Steffen2011-04-052-24/+85
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-28 06:28:07 +0000