summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Expand)Author
2012-12-29add SSL_CONF functions and documentation (backport from HEAD)Dr. Stephen Henson
2012-12-26SSL/TLS record tracing code (backport from HEAD).Dr. Stephen Henson
2012-12-26Reject zero length ec point format list.Dr. Stephen Henson
2012-12-26handle point format list retrieval for clients too (from HEAD)Dr. Stephen Henson
2012-12-26Add support for printing out and retrieving EC point formats extension.Dr. Stephen Henson
2012-12-26return error if Suite B mode is selected and TLS 1.2 can't be used.Dr. Stephen Henson
2012-12-26set auto ecdh parameter selction for Suite BDr. Stephen Henson
2012-12-26add Suite B 128 bit mode offering only combination 2Dr. Stephen Henson
2012-12-26Use client version when deciding which cipher suites to disable.Dr. Stephen Henson
2012-12-26Use default point formats extension for server side as well as clientDr. Stephen Henson
2012-12-26Add ctrl and utility functions to retrieve raw cipher list sent by client inDr. Stephen Henson
2012-12-26new ctrl to retrive value of received temporary key in server key exchange me...Dr. Stephen Henson
2012-12-26store and print out message digest peer signed with in TLS 1.2Dr. Stephen Henson
2012-12-26perform sanity checks on server certificate type as soon as it is received in...Dr. Stephen Henson
2012-12-26give more meaningful error if presented with wrong certificate type by serverDr. Stephen Henson
2012-12-26Add three Suite B modes to TLS code, supporting RFC6460.Dr. Stephen Henson
2012-12-26New function X509_chain_up_ref to dup and up the reference count ofDr. Stephen Henson
2012-12-26Make tls1_check_chain return a set of flags indicating checks passedDr. Stephen Henson
2012-12-26Abort handshake if signature algorithm used not supported by peer.Dr. Stephen Henson
2012-12-26check EC tmp key matches preferencesDr. Stephen Henson
2012-12-26typoDr. Stephen Henson
2012-12-26Add support for certificate stores in CERT structure. This makes itDr. Stephen Henson
2012-12-26add ssl_locl.h to err header files, rebuild ssl error stringsDr. Stephen Henson
2012-12-26set ciphers to NULL before calling cert_cbDr. Stephen Henson
2012-12-26stop warningDr. Stephen Henson
2012-12-26New function ssl_set_client_disabled to set masks for any ciphersuitesDr. Stephen Henson
2012-12-26Add new ctrl to retrieve client certificate types, print outDr. Stephen Henson
2012-12-26new function SSL_is_server to which returns 1 is the corresponding SSL contex...Dr. Stephen Henson
2012-12-26no need to check s->server as default_nid is never used for TLS 1.2 client au...Dr. Stephen Henson
2012-12-26Separate client and server permitted signature algorithm support: by defaultDr. Stephen Henson
2012-12-26Add certificate callback. If set this is called whenever a certificateDr. Stephen Henson
2012-12-26Function tls1_check_ec_server_key is now redundant as we makeDr. Stephen Henson
2012-12-26Add new "valid_flags" field to CERT_PKEY structure which determines whatDr. Stephen Henson
2012-12-26Reorganise supported signature algorithm extension processing.Dr. Stephen Henson
2012-12-26Add support for application defined signature algorithms for use withDr. Stephen Henson
2012-12-26Make it possible to delete all certificates from an SSL structure.Dr. Stephen Henson
2012-12-20oops, revertDr. Stephen Henson
2012-12-20apps/ocsp.cDr. Stephen Henson
2012-11-26change inaccurate error messageDr. Stephen Henson
2012-11-22reject zero length point format list or supported curves extensionsDr. Stephen Henson
2012-11-15add "missing" TLSv1.2 cipher aliasDr. Stephen Henson
2012-09-21* ssl/t1_enc.c (tls1_change_cipher_state): Stupid bug. Fortunately inRichard Levitte
2012-09-11Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificateDr. Stephen Henson
2012-09-11Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-07-03revert unrelated test codeDr. Stephen Henson
2012-07-03PR: 2840Dr. Stephen Henson
2012-06-27don't use pseudo digests for default values of keysDr. Stephen Henson
2012-06-11Fix memory leak.Ben Laurie
2012-06-07Rearrange and test authz extension.Ben Laurie
2012-06-06Fix memory leak.Ben Laurie
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-06 07:26:09 +0000