tls-peer: Derive application traffic keys after server finished message
[strongswan.git] / src / libtls / tls_peer.c
2021-02-12 Pascal Knechttls-peer: Derive application traffic keys after server...
2021-02-12 Pascal Knechttls-peer: Use private key enumeration also in TLS versi...
2021-02-12 Pascal Knechttls-crypto: Share private key search between client...
2021-02-12 Pascal Knechttls-server: Share trusted public key search between...
2021-02-12 Pascal Knechttls-crypto: Generalizing DH group to TLS group mapping
2021-02-12 Pascal Knechttls-server: Refactor writing of key share extensions
2021-02-12 Pascal Knechttls-crypto: Fix invalid signature algorithm list building
2021-02-12 Pascal Knechttls-crypto: Check if TLS versions and cipher suites...
2021-02-12 Pascal Knechttls-peer: Don't initiate TLS connection if no cipher...
2021-02-12 Tobias Brunnertls-peer: Return INVALID_STATE after changing TLS 1...
2021-02-12 Tobias Brunnertls-crypto: Add support for RSA-PSS signatures
2021-02-12 Tobias Brunnertls-peer: Support answering KeyUpdate requests
2021-02-12 Tobias Brunnertls-peer: Add support to handle KeyUpdate message
2021-02-12 Tobias Brunnertls-peer: Correctly handle classic ECDH key-share format
2021-02-12 Tobias Brunnertls: Allow setting both minimum and maximum TLS versions
2021-02-12 Tobias Brunnertls-peer: Handle HelloRetryRequest
2021-02-12 Tobias Brunnertls-peer: Refactor writing of extensions and use less...
2021-02-12 Tobias Brunnertls-peer: Refactor sending/processing finished message
2021-02-12 Tobias Brunnertls-peer: Simply ignore certificate request context
2021-02-12 Tobias Brunnertls-peer: Use existing code to verify certificate and...
2021-02-12 Tobias Brunnertls-peer: Refactor parsing of TLS extensions
2021-02-12 Tobias Brunnertls-peer: Fix parsing of encrypted extensions
2021-02-12 Tobias Brunnertls-peer: Fix parsing of intermediate CA certificates
2021-02-12 Tobias Brunnertls-crypto: Rename methods to calculate finished message
2021-02-12 Tobias Brunnertls-crypto: Simplify handshake/application key derivati...
2021-02-12 Tobias Brunnertls-peer: Support x25519/448 for TLS 1.2
2021-02-12 Tobias Brunnerlibtls: Some code style fixes
2021-02-12 bytinbitlibtls: Implement TLS 1.3 handshake on client-side
2018-06-28 Tobias BrunnerMerge branch 'ike-proposal-switch'
2018-06-28 Tobias BrunnerReplace 'inacceptable' with the more common 'unacceptable'
2016-03-24 Andreas SteffenUse standard unsigned integer types
2016-03-10 Tobias BrunnerMerge branch 'mbb-reauth-online-revocation'
2016-03-10 Tobias Brunnercredential-manager: Make online revocation checks optio...
2015-05-26 Martin Willilibtls: As client, reject DH exchanges using primes...
2015-04-14 Martin WilliMerge branch 'const-memeq'
2015-04-14 Martin Williutils: Use chunk_equals_const() for all cryptographic...
2015-03-23 Martin WilliMerge branch 'dh-checks'
2015-03-23 Martin Willidiffie-hellman: Add a bool return value to set_other_pu...
2015-03-23 Martin Willidiffie-hellman: Add a bool return value to get_my_publi...
2015-03-23 Martin Willidiffie-hellman: Use bool instead of status_t as get_sha...
2015-03-09 Tobias Brunnertls-peer: Make sure to use the right trusted public...
2015-03-03 Martin WilliMerge branch 'eap-constraints'
2015-03-03 Martin Willilibtls: Add getters for TLS handshake authentication...
2015-03-03 Martin Willilibtls: Merge trustchain auth verification details...
2014-03-31 Martin WilliMerge branch 'tls-aead'
2014-03-31 Martin Willitls: Include TLS version announced in Client Hello...
2013-03-18 Martin WilliMerge branch 'stroke-counters'
2013-03-18 Martin WilliMerge branch 'stroke-timeout'
2013-03-07 Martin WilliMerge branch 'pt-tls'
2013-02-28 Martin WilliDelegate tls_t.get_{peer,server}_id to handshake layer
2012-11-28 Tobias BrunnerFixed encoding of TLS extensions (elliptic_curves and...
2012-10-24 Tobias BrunnerMoved debug.[ch] to utils folder
2012-07-16 Tobias BrunnerCheck rng return value when generating secrets and...
2012-07-16 Martin WilliAdd a return value to tls_crypto_t.derive_secrets()
2012-03-20 Martin WilliMerge branch 'ikev1-clean' into ikev1-master
2011-12-31 Martin WilliImplemented TLS session resumption both as client and...
2011-12-31 Martin WilliSeparated cipherspec checking and switching, allowing...
2011-05-31 Andreas Steffenrenamed tls_reader|writer to bio_* and moved to libstro...
2011-04-14 Martin WilliContinue without client authentication if no matching...
2011-04-14 Martin WilliIgnore TLS certificate requests as peer if peer authent...
2011-04-14 Martin WilliSend TLS Server Name Indication as peer if server ident...
2010-09-06 Martin WilliInclude ec_point_format extension in ClientHello
2010-09-06 Martin WilliRenamed ecp_format to ansi_format, as point formats...
2010-09-06 Martin WilliPrepend point format to ECDH public key
2010-09-03 Martin WilliUse a dynamic curve enumerator to list/convert TLS...
2010-09-03 Martin WilliUse ECDH group check where appropriate
2010-09-03 Martin WilliSelect private key based on received cipher suites
2010-09-03 Martin WilliSupport for EC curve Hello extension, EC curve fallback
2010-09-03 Martin WilliAdded client support for ECDHE key exchange
2010-09-02 Martin WilliAdded TLS client side support for DHE suites
2010-09-02 Martin WilliImplemented "signature algorithm" hello extension
2010-09-02 Martin WilliSupport different hash/sig algorithms in handshake...
2010-08-31 Martin WilliStrictly check if the server certificate matches the...
2010-08-25 Martin WilliSend TLS alerts for errors in TLS handshake building
2010-08-24 Martin WilliPass NULL peer identity to omit TLS peer authentication...
2010-08-24 Andreas Steffenremoved some redundant debug output
2010-08-23 Martin WilliImplemented TLS Alert handling
2010-08-23 Martin WilliVerify negotiated TLS version
2010-08-23 Martin WilliIntroducing a dedicated debug message group for libtls
2010-08-23 Martin WilliStreamlined TLS debugging output
2010-08-18 Martin WilliUse a seperate section for each nested struct member...
2010-08-12 Andreas Steffenadded generic TLS application data handler and specific...
2010-08-10 Martin WilliAdded support for different encryption schemes to priva...
2010-08-07 Andreas Steffensupport server authentication only for EAP-TTLS
2010-08-05 Martin WilliUse certificate subject to get a public key of the...
2010-08-05 Andreas Steffenadded some more TLS debug output
2010-08-04 Andreas Steffenlog selected TLS version and cipher suite
2010-08-03 Martin WilliMoved TLS stack to its own library