summaryrefslogtreecommitdiff
path: root/lib/ext
Commit message (Expand)AuthorAgeFilesLines
* Merge branch 'tmp-ext-mandatory' into 'master'Nikos Mavrogiannopoulos2019-10-1025-25/+54
|\
| * session tickets: parse extension during session resumption on client sideNikos Mavrogiannopoulos2019-10-0825-25/+54
* | ext/supported_groups: don't consider non-EC groups for ECDmitry Eremin-Solenikov2019-10-081-2/+2
|/
* ext/supported_versions: reorder client precedence if necessaryDaiki Ueno2019-09-271-21/+34
* lib/*: remove unnecessary cast to ssize_ttmp-decr-lenDaiki Ueno2019-09-1218-49/+31
* ext/session_ticket: avoid calling memcpy on overlapping memory areastmp-session-ticket-valgrindDaiki Ueno2019-07-101-1/+5
* Always pass in and check Q in TLS 1.3Simo Sorce2019-05-231-2/+12
* priority: add new option to allow small records (>= 64)Daiki Ueno2019-05-222-2/+7
* ext/record_size_limit: distinguish sending and receiving limitstmp-record-sizesDaiki Ueno2019-05-142-23/+75
* Add or clean header guards in lib/ext/Tim Rühsen2019-05-0726-72/+90
* handshake: generate early exporter secretDaiki Ueno2019-04-191-0/+12
* handshake: move early secrets calculation to pre_shared_keyDaiki Ueno2019-04-192-2/+70
* Use https:// in lib/, src/, and m4/Tim Rühsen2019-03-132-2/+2
* Use https:// for www.gnu.org and www.example.comTim Rühsen2019-03-1350-50/+50
* ext/supported_versions: regenerate server randomDaiki Ueno2019-02-221-0/+15
* gnutls_record_set_max_size: make it work on server sidetmp-fix-record-size-limit-resumptionDaiki Ueno2019-02-141-5/+4
* ext/record_size_limit: account for content type octet in TLS 1.3Daiki Ueno2019-02-141-3/+30
* ext/record_size_limit: don't confuse with negotiated/user-supplied maximumDaiki Ueno2019-02-141-9/+26
* ext/max_record: server shouldn't send it with record_size_limitDaiki Ueno2019-02-142-4/+6
* Add GNUTLS_E_RECEIVED_DISALLOWED_NAME for illegal SNI namesTim Rühsen2019-01-311-2/+6
* Merge branch 'tmp-fix-no-extensions' into 'master'Nikos Mavrogiannopoulos2019-01-242-1/+4
|\
| * The flag %NO_EXTENSIONS is disabling extension support while being functionaltmp-fix-no-extensionsNikos Mavrogiannopoulos2019-01-102-1/+4
* | ext/record_size_limit: mark it as mandatory extensionDaiki Ueno2019-01-231-1/+1
* | ext/record_size_limit: reject too large extension payloadDaiki Ueno2019-01-231-0/+2
|/
* Merge branch 'tmp-msvc-fixes' into 'master'Daiki Ueno2019-01-041-1/+1
|\
| * ext/pre_shared_key: avoid unnecessary use of VLA for MSVCtmp-msvc-fixesDaiki Ueno2019-01-041-1/+1
* | Fix typos in lib/tmp-fix-typos-in-libTim Rühsen2019-01-042-2/+2
|/
* Implemented support for raw public-key functionality (RFC7250).Tom Vrancken2018-12-153-40/+93
* anti_replay: moved new add function into anti_replay structureNikos Mavrogiannopoulos2018-11-151-1/+1
* TLS 1.3: implement anti-replay measure using ClientHello recordingDaiki Ueno2018-11-122-1/+29
* record: introduce new API functions for early dataDaiki Ueno2018-11-111-1/+21
* handshake: handle early dataDaiki Ueno2018-11-111-2/+22
* ext/pre_shared_key: use predefined macros for secret labelsDaiki Ueno2018-11-111-4/+4
* ext/record_size_limit: handle the extension in TLS 1.2 ServerHellotmp-fix-record-size-limit-tls12Daiki Ueno2018-11-011-1/+1
* ext/pre_shared_key: don't assume ob_ticket_age < ticket_age_addtmp-session-ticket-timestampDaiki Ueno2018-10-261-6/+0
* tls13/session_ticket: calculate ticket_age in millisecondsDaiki Ueno2018-10-261-6/+11
* system: provide a means to replace gettime implementationDaiki Ueno2018-10-261-4/+4
* tls13/session_ticket: rename tls13_ticket_t type to tls13_ticket_stDaiki Ueno2018-10-251-2/+2
* Merge branch 'tmp_cleanup_and_fixes' into 'master'Nikos Mavrogiannopoulos2018-10-236-48/+43
|\
| * Unified abbreviation for certificate type priorities in code.Tom Vrancken2018-10-222-18/+18
| * Renamed _gnutls_auth_info_set() to _gnutls_auth_info_init().Tom Vrancken2018-10-181-2/+2
| * Renamed fields in priority_st to improve code readability. Fixes #453.Tom Vrancken2018-10-184-26/+26
| * Small fixes for comments and log strings.Tom Vrancken2018-10-181-16/+11
* | handshake: send missing extension alertNikos Mavrogiannopoulos2018-10-161-0/+1
|/
* session tickets: check timestamp for validitytmp-session-ticket-key-rotation-ajuaristiNikos Mavrogiannopoulos2018-09-201-8/+0
* Added session ticket key rotation with TOTPAnder Juaristi2018-09-191-66/+67
* dtls: recover when a NewSessionTicket message is lostNikos Mavrogiannopoulos2018-09-141-6/+16
* Use gnutls_strdup() instead of strdup() in library codetmp-strdupTim Rühsen2018-08-241-2/+2
* ext/pre_shared_key: use consistent name for regitration entryDaiki Ueno2018-08-234-4/+4
* ext/pre_shared_key: make ticket age calculation consistentDaiki Ueno2018-08-231-10/+10