- 01 Jul, 2012 5 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- 29 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
is required by client or server. An application can decide which certificate chain to present based on arbitrary criteria: for example supported signature algorithms. Add very simple example to s_server. This fixes many of the problems and restrictions of the existing client certificate callback: for example you can now clear existing certificates and specify the whole chain.
-
- 28 Jun, 2012 2 commits
-
-
Dr. Stephen Henson authored
appropriate checks in tls1_check_chain.
-
Dr. Stephen Henson authored
the certificate can be used for (if anything). Set valid_flags field in new tls1_check_chain function. Simplify ssl_set_cert_masks which used to have similar checks in it. Add new "cert_flags" field to CERT structure and include a "strict mode". This enforces some TLS certificate requirements (such as only permitting certificate signature algorithms contained in the supported algorithms extension) which some implementations ignore: this option should be used with caution as it could cause interoperability issues.
-
- 27 Jun, 2012 2 commits
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
path with spaces. PR: 2835
-
- 25 Jun, 2012 2 commits
-
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
Only store encoded versions of peer and configured signature algorithms. Determine shared signature algorithms and cache the result along with NID equivalents of each algorithm.
-
- 24 Jun, 2012 1 commit
-
-
Andy Polyakov authored
-
- 22 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
TLS v1.2. These are sent as an extension for clients and during a certificate request for servers. TODO: add support for shared signature algorithms, respect shared algorithms when deciding which ciphersuites and certificates to permit.
-
- 19 Jun, 2012 3 commits
-
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- 18 Jun, 2012 2 commits
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- 15 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
for debugging purposes. Needs "enable-ssl-trace" configuration option.
-
- 13 Jun, 2012 1 commit
-
-
Dr. Stephen Henson authored
-
- 12 Jun, 2012 5 commits
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Dr. Stephen Henson authored
-
- 11 Jun, 2012 4 commits
-
-
Andy Polyakov authored
PR: 2830 Submitted by: Robin Seggelmann
-
Andy Polyakov authored
-
Ben Laurie authored
-
Andy Polyakov authored
-
- 07 Jun, 2012 1 commit
-
-
Ben Laurie authored
-
- 06 Jun, 2012 2 commits
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- 04 Jun, 2012 1 commit
-
-
Andy Polyakov authored
-
- 03 Jun, 2012 1 commit
-
-
Ben Laurie authored
-
- 30 May, 2012 2 commits
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- 28 May, 2012 2 commits
-
-
Andy Polyakov authored
specific code path.
-
Andy Polyakov authored
-
- 24 May, 2012 1 commit
-
-
Andy Polyakov authored
-