summaryrefslogtreecommitdiff
path: root/lib/priority.c
Commit message (Expand)AuthorAgeFilesLines
* priorities: when %NO_EXTENSIONS is specified disable TLS1.3Nikos Mavrogiannopoulos2019-01-251-1/+1
* set_ciphersuite_list(): Use linear approach to cleanup prioritiestmp-priority-linearTim Rühsen2019-01-231-20/+15
* Prevent applications from combining legacy versions of TLS with TLS1.3tmp-tls10-tls13-fixNikos Mavrogiannopoulos2018-11-271-5/+16
* gnutls_priority_init: ignore CTYPE-OPENPGP optionstmp-ignore-ctypesNikos Mavrogiannopoulos2018-11-011-0/+3
* gnutls_priority_init: fixed indentation according to project rulesNikos Mavrogiannopoulos2018-11-011-22/+25
* gnutls_priority_set: re-organizedtmp-fix-priority-setNikos Mavrogiannopoulos2018-10-311-22/+22
* gnutls_priority_set: do not override the version after handshake is completeNikos Mavrogiannopoulos2018-10-301-4/+6
* Renamed fields in priority_st to improve code readability. Fixes #453.Tom Vrancken2018-10-181-94/+94
* pkcs11 uris: the URI scheme is case insensitivetmp-urisNikos Mavrogiannopoulos2018-10-121-12/+13
* gnutls_priority_set: do not override version on handshaketmp-fix-priority-set-callNikos Mavrogiannopoulos2018-10-031-1/+2
* Use ASCII version of strcasecmp() in library codetmp-lib-c-strcaseTim Rühsen2018-09-271-17/+18
* Enable the TLS1.3 protocol by defaultNikos Mavrogiannopoulos2018-09-241-2/+0
* Fix issue introduced in 20886264feTim Rühsen2018-09-201-3/+3
* priority: be backwards compatible with priority strings starting with NONENikos Mavrogiannopoulos2018-09-121-11/+21
* Use gnutls_strdup() instead of strdup() in library codetmp-strdupTim Rühsen2018-08-241-1/+1
* Implemented RFC7250 certificate type negotiation extensions.Tom Vrancken2018-08-201-8/+92
* algorithms: add support for FFDHE6144Daiki Ueno2018-08-081-0/+3
* gnutls_priority_init: fix err_pos on invalid stringsNikos Mavrogiannopoulos2018-07-191-5/+12
* _gnutls_resolve_priorities: avoid gnu extension for ?: constructNikos Mavrogiannopoulos2018-07-141-1/+3
* priorities: ensure that SSL3.0 enablement fails early when disabledNikos Mavrogiannopoulos2018-07-131-8/+13
* gnutls_priority_init2,gnutls_set_default_priority_append: introducedNikos Mavrogiannopoulos2018-07-091-3/+135
* configure: added option --enable-tls13-supportNikos Mavrogiannopoulos2018-07-071-0/+3
* priorities: introduced %FORCE_ETMtmp-measure-recordNikos Mavrogiannopoulos2018-06-121-0/+4
* priorities: hmac-sha256 ciphersuites were removed from defaultsNikos Mavrogiannopoulos2018-06-121-4/+0
* session tickets: expose {encrypt,decrypt}_ticket as internal APIAnder Juaristi2018-05-261-1/+1
* priority: handle RSA-PSK ciphersuites similar to SRPNikos Mavrogiannopoulos2018-04-301-5/+11
* priority: document the reasons for the order of supported groups [ci skip]Nikos Mavrogiannopoulos2018-04-161-0/+5
* ANON,SRP,NULL ciphersuites: when set do not negotiate TLS1.3 or laterNikos Mavrogiannopoulos2018-04-131-8/+30
* priority: added GROUP-DH-ALL and GROUP-EC-ALLNikos Mavrogiannopoulos2018-04-061-0/+28
* Added support for out-of-band Pre-shared keys under TLS1.3Ander Juaristi2018-04-061-2/+12
* priorities: disable any key exchange methods if there is no TLS1.2 or earlierNikos Mavrogiannopoulos2018-03-231-14/+35
* signatures: distinguish RSA-PSS signatures with RSA PKCS#1 1.5 certificates f...Nikos Mavrogiannopoulos2018-03-091-0/+8
* priorities: provide a more consistent "story" for default cipher settingsNikos Mavrogiannopoulos2018-02-191-37/+13
* lib: simplify adding groups according to priorititesDmitry Eremin-Solenikov2018-02-191-21/+12
* extensions: renamed _gnutls_hello_ext_*sdata to _gnutls_hello_ext_*privNikos Mavrogiannopoulos2018-02-191-1/+1
* priority: include groups into priority when having a TLS1.3-only sessionNikos Mavrogiannopoulos2018-02-191-2/+27
* priority: do include all the version's signature semanticsNikos Mavrogiannopoulos2018-02-191-4/+0
* extensions: files renamed to hello_extNikos Mavrogiannopoulos2018-02-191-1/+1
* extensions: renamed hello extension handling functions appropriatelyNikos Mavrogiannopoulos2018-02-191-1/+1
* ext/signature: improved TLS 1.3 signature algorithm negotiationNikos Mavrogiannopoulos2018-02-191-3/+5
* handshake: added the TLS 1.3 ciphersuitesNikos Mavrogiannopoulos2018-02-191-0/+13
* priorities: when no signature algorithms eliminate (D)TLS 1.2 or laterNikos Mavrogiannopoulos2018-02-191-6/+19
* priority: do not include signature algorithms that apply to different TLS ver...Nikos Mavrogiannopoulos2018-02-191-5/+51
* ext/signature: added TLS 1.3 signature algorithm negotiationNikos Mavrogiannopoulos2018-02-191-3/+12
* handshake: legacy version negotiation is not used for TLS 1.3Nikos Mavrogiannopoulos2018-02-191-0/+5
* Revert "priority: disable the enabled by default RSA-PSS signature algorithms"Nikos Mavrogiannopoulos2018-02-191-7/+7
* priority: disable the enabled by default RSA-PSS signature algorithmstmp-tests-include-ccmNikos Mavrogiannopoulos2018-02-121-7/+7
* gnutls_priority_ecc_curve_list: avoid including groups into elliptic curves listNikos Mavrogiannopoulos2017-08-021-0/+13
* TLS: introduced support for RFC7919 groupsNikos Mavrogiannopoulos2017-08-011-44/+153
* gnutls_priority_set: use reference countingNikos Mavrogiannopoulos2017-07-251-44/+24