projects / strongswan.git / history
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
tls-peer: Use private key enumeration also in TLS versions < 1.2
[strongswan.git] / src / libtls / tls_peer.c
2021-02-12 Pascal Knechttls-peer: Use private key enumeration also in TLS versi... blob | commitdiff
2021-02-12 Pascal Knechttls-crypto: Share private key search between client... blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-server: Share trusted public key search between... blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-crypto: Generalizing DH group to TLS group mapping blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-server: Refactor writing of key share extensions blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-crypto: Fix invalid signature algorithm list building blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-crypto: Check if TLS versions and cipher suites... blob | commitdiff | diff to current
2021-02-12 Pascal Knechttls-peer: Don't initiate TLS connection if no cipher... blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Return INVALID_STATE after changing TLS 1... blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-crypto: Add support for RSA-PSS signatures blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Support answering KeyUpdate requests blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Add support to handle KeyUpdate message blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Correctly handle classic ECDH key-share format blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls: Allow setting both minimum and maximum TLS versions blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Handle HelloRetryRequest blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Refactor writing of extensions and use less... blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Refactor sending/processing finished message blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Simply ignore certificate request context blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Use existing code to verify certificate and... blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Refactor parsing of TLS extensions blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Fix parsing of encrypted extensions blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Fix parsing of intermediate CA certificates blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-crypto: Rename methods to calculate finished message blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-crypto: Simplify handshake/application key derivati... blob | commitdiff | diff to current
2021-02-12 Tobias Brunnertls-peer: Support x25519/448 for TLS 1.2 blob | commitdiff | diff to current
2021-02-12 Tobias Brunnerlibtls: Some code style fixes blob | commitdiff | diff to current
2021-02-12 bytinbitlibtls: Implement TLS 1.3 handshake on client-side blob | commitdiff | diff to current
2018-06-28 Tobias BrunnerMerge branch 'ike-proposal-switch' blob | commitdiff | diff to current
2018-06-28 Tobias BrunnerReplace 'inacceptable' with the more common 'unacceptable' blob | commitdiff | diff to current
2016-03-24 Andreas SteffenUse standard unsigned integer types blob | commitdiff | diff to current
2016-03-10 Tobias BrunnerMerge branch 'mbb-reauth-online-revocation' blob | commitdiff | diff to current
2016-03-10 Tobias Brunnercredential-manager: Make online revocation checks optio... blob | commitdiff | diff to current
2015-05-26 Martin Willilibtls: As client, reject DH exchanges using primes... blob | commitdiff | diff to current
2015-04-14 Martin WilliMerge branch 'const-memeq' blob | commitdiff | diff to current
2015-04-14 Martin Williutils: Use chunk_equals_const() for all cryptographic... blob | commitdiff | diff to current
2015-03-23 Martin WilliMerge branch 'dh-checks' blob | commitdiff | diff to current
2015-03-23 Martin Willidiffie-hellman: Add a bool return value to set_other_pu... blob | commitdiff | diff to current
2015-03-23 Martin Willidiffie-hellman: Add a bool return value to get_my_publi... blob | commitdiff | diff to current
2015-03-23 Martin Willidiffie-hellman: Use bool instead of status_t as get_sha... blob | commitdiff | diff to current
2015-03-09 Tobias Brunnertls-peer: Make sure to use the right trusted public... blob | commitdiff | diff to current
2015-03-03 Martin WilliMerge branch 'eap-constraints' blob | commitdiff | diff to current
2015-03-03 Martin Willilibtls: Add getters for TLS handshake authentication... blob | commitdiff | diff to current
2015-03-03 Martin Willilibtls: Merge trustchain auth verification details... blob | commitdiff | diff to current
2014-03-31 Martin WilliMerge branch 'tls-aead' blob | commitdiff | diff to current
2014-03-31 Martin Willitls: Include TLS version announced in Client Hello... blob | commitdiff | diff to current
2013-03-18 Martin WilliMerge branch 'stroke-counters' blob | commitdiff | diff to current
2013-03-18 Martin WilliMerge branch 'stroke-timeout' blob | commitdiff | diff to current
2013-03-07 Martin WilliMerge branch 'pt-tls' blob | commitdiff | diff to current
2013-02-28 Martin WilliDelegate tls_t.get_{peer,server}_id to handshake layer blob | commitdiff | diff to current
2012-11-28 Tobias BrunnerFixed encoding of TLS extensions (elliptic_curves and... blob | commitdiff | diff to current
2012-10-24 Tobias BrunnerMoved debug.[ch] to utils folder blob | commitdiff | diff to current
2012-07-16 Tobias BrunnerCheck rng return value when generating secrets and... blob | commitdiff | diff to current
2012-07-16 Martin WilliAdd a return value to tls_crypto_t.derive_secrets() blob | commitdiff | diff to current
2012-03-20 Martin WilliMerge branch 'ikev1-clean' into ikev1-master blob | commitdiff | diff to current
2011-12-31 Martin WilliImplemented TLS session resumption both as client and... blob | commitdiff | diff to current
2011-12-31 Martin WilliSeparated cipherspec checking and switching, allowing... blob | commitdiff | diff to current
2011-05-31 Andreas Steffenrenamed tls_reader|writer to bio_* and moved to libstro... blob | commitdiff | diff to current
2011-04-14 Martin WilliContinue without client authentication if no matching... blob | commitdiff | diff to current
2011-04-14 Martin WilliIgnore TLS certificate requests as peer if peer authent... blob | commitdiff | diff to current
2011-04-14 Martin WilliSend TLS Server Name Indication as peer if server ident... blob | commitdiff | diff to current
2010-09-06 Martin WilliInclude ec_point_format extension in ClientHello blob | commitdiff | diff to current
2010-09-06 Martin WilliRenamed ecp_format to ansi_format, as point formats... blob | commitdiff | diff to current
2010-09-06 Martin WilliPrepend point format to ECDH public key blob | commitdiff | diff to current
2010-09-03 Martin WilliUse a dynamic curve enumerator to list/convert TLS... blob | commitdiff | diff to current
2010-09-03 Martin WilliUse ECDH group check where appropriate blob | commitdiff | diff to current
2010-09-03 Martin WilliSelect private key based on received cipher suites blob | commitdiff | diff to current
2010-09-03 Martin WilliSupport for EC curve Hello extension, EC curve fallback blob | commitdiff | diff to current
2010-09-03 Martin WilliAdded client support for ECDHE key exchange blob | commitdiff | diff to current
2010-09-02 Martin WilliAdded TLS client side support for DHE suites blob | commitdiff | diff to current
2010-09-02 Martin WilliImplemented "signature algorithm" hello extension blob | commitdiff | diff to current
2010-09-02 Martin WilliSupport different hash/sig algorithms in handshake... blob | commitdiff | diff to current
2010-08-31 Martin WilliStrictly check if the server certificate matches the... blob | commitdiff | diff to current
2010-08-25 Martin WilliSend TLS alerts for errors in TLS handshake building blob | commitdiff | diff to current
2010-08-24 Martin WilliPass NULL peer identity to omit TLS peer authentication... blob | commitdiff | diff to current
2010-08-24 Andreas Steffenremoved some redundant debug output blob | commitdiff | diff to current
2010-08-23 Martin WilliImplemented TLS Alert handling blob | commitdiff | diff to current
2010-08-23 Martin WilliVerify negotiated TLS version blob | commitdiff | diff to current
2010-08-23 Martin WilliIntroducing a dedicated debug message group for libtls blob | commitdiff | diff to current
2010-08-23 Martin WilliStreamlined TLS debugging output blob | commitdiff | diff to current
2010-08-18 Martin WilliUse a seperate section for each nested struct member... blob | commitdiff | diff to current
2010-08-12 Andreas Steffenadded generic TLS application data handler and specific... blob | commitdiff | diff to current
2010-08-10 Martin WilliAdded support for different encryption schemes to priva... blob | commitdiff | diff to current
2010-08-07 Andreas Steffensupport server authentication only for EAP-TTLS blob | commitdiff | diff to current
2010-08-05 Martin WilliUse certificate subject to get a public key of the... blob | commitdiff | diff to current
2010-08-05 Andreas Steffenadded some more TLS debug output blob | commitdiff | diff to current
2010-08-04 Andreas Steffenlog selected TLS version and cipher suite blob | commitdiff | diff to current
2010-08-03 Martin WilliMoved TLS stack to its own library blob | commitdiff | diff to current
strongSwan - IPsec VPN