summaryrefslogtreecommitdiff
path: root/lib/ext
Commit message (Expand)AuthorAgeFilesLines
* _gnutls_parse_hello_extensions: enforce that pre-shared-key extension is lastNikos Mavrogiannopoulos2018-06-222-1/+3
* tls13/session_ticket: don't send ticket when no common KE modesDaiki Ueno2018-06-051-1/+1
* ext/psk_ke_modes: always send extension unless disabled in configDaiki Ueno2018-06-051-21/+4
* ext/pre_shared_key: make PSK identity parsing robustertmp-session-ticket-key-nameDaiki Ueno2018-06-011-36/+21
* _gnutls_decrypt_session_ticket: fail early on key name mismatchDaiki Ueno2018-06-011-9/+7
* Renamed extension supported ECC to supported groups. Fixes #451.Tom Vrancken2018-05-296-126/+182
* session_ticket: use random noncesNikos Mavrogiannopoulos2018-05-261-4/+1
* handshake: store session parameters in TLS1.3 ticketNikos Mavrogiannopoulos2018-05-261-3/+7
* TLS 1.3: Introduced TLS 1.3 session resumptionAnder Juaristi2018-05-264-134/+391
* psk_ke_modes: introduce psk_ke_modes_is_required() and update docNikos Mavrogiannopoulos2018-05-261-6/+22
* session tickets: expose {encrypt,decrypt}_ticket as internal APIAnder Juaristi2018-05-262-246/+260
* ext/pre_shared_key: fix binder calculation when HRR is sentDaiki Ueno2018-05-261-13/+41
* handshake: do not send TLS extensions under DTLS and vice versatmp-prohibit-tls-dtls-mixNikos Mavrogiannopoulos2018-05-1720-40/+37
* post_handshake_auth: send extension irrespective of certificates being presentNikos Mavrogiannopoulos2018-05-041-1/+1
* psk: compute binder which is compatible with draft-ietf-tls-tls13Nikos Mavrogiannopoulos2018-05-042-15/+21
* psk: mark psk_ke_modes as invalid when ignoredNikos Mavrogiannopoulos2018-04-301-4/+11
* ANON,SRP,NULL ciphersuites: when set do not negotiate TLS1.3 or laterNikos Mavrogiannopoulos2018-04-133-5/+26
* ext/pre_shared_key: cleanups in error handlingNikos Mavrogiannopoulos2018-04-071-16/+38
* ext/psk_ke_modes: corrected data accessNikos Mavrogiannopoulos2018-04-071-1/+2
* psk: save the username on auth info struct under TLS1.3Nikos Mavrogiannopoulos2018-04-061-0/+18
* dumbfw: account for extension data paddingNikos Mavrogiannopoulos2018-04-061-3/+5
* Simplified the _gnutls13_psk_ext_parser interface and added unit testsNikos Mavrogiannopoulos2018-04-061-19/+9
* Added support for out-of-band Pre-shared keys under TLS1.3Ander Juaristi2018-04-066-3/+695
* _gnutls_supported_ecc_recv_params: take into account precedenceNikos Mavrogiannopoulos2018-03-232-55/+90
* supported_versions: cannot be used to negotiate pre-TLS1.3Nikos Mavrogiannopoulos2018-03-231-0/+3
* Hello retry request matches server helloNikos Mavrogiannopoulos2018-03-092-2/+3
* signatures: distinguish RSA-PSS signatures with RSA PKCS#1 1.5 certificates f...Nikos Mavrogiannopoulos2018-03-091-8/+15
* Server hello format follows TLS1.2 formatNikos Mavrogiannopoulos2018-03-081-6/+57
* Renumbered the key share extension to 51Nikos Mavrogiannopoulos2018-03-081-1/+1
* cert auth: use a single callback to call for OCSPNikos Mavrogiannopoulos2018-02-191-3/+0
* ocsp: enhanced the OCSP response loading APIsNikos Mavrogiannopoulos2018-02-191-1/+18
* ocsp: moved non-extension related functions to ocsp-api.cNikos Mavrogiannopoulos2018-02-191-249/+0
* gnutls_ocsp_status_request_get2: allow operation under TLS1.3 for server sideNikos Mavrogiannopoulos2018-02-191-2/+3
* introduced gnutls_certificate_retrieve_function3Nikos Mavrogiannopoulos2018-02-191-1/+1
* gnutls_ocsp_status_request_get2: added functionNikos Mavrogiannopoulos2018-02-191-3/+33
* tls13/certificate: parse OCSP status response and save responses in auth info...Nikos Mavrogiannopoulos2018-02-192-2/+5
* ext/status_request: allow more than a single OCSP response to be receivedNikos Mavrogiannopoulos2018-02-192-90/+79
* session state: TLS1.2 and TLS1.3 state is stored as unionNikos Mavrogiannopoulos2018-02-191-48/+48
* session state: organized key exchange keys into structuresNikos Mavrogiannopoulos2018-02-191-48/+48
* handshake: ffdhe flags merged with handshake flagsNikos Mavrogiannopoulos2018-02-191-1/+2
* handshake: added support for post-handshake authenticationNikos Mavrogiannopoulos2018-02-191-9/+4
* handshake: added support for client certificatesNikos Mavrogiannopoulos2018-02-191-4/+4
* key share: added flags to gnutls_init() to modify its default behaviorNikos Mavrogiannopoulos2018-02-191-20/+29
* extensions: renamed _gnutls_hello_ext_*sdata to _gnutls_hello_ext_*privNikos Mavrogiannopoulos2018-02-1911-59/+59
* server_name: use the new API for ext data settingNikos Mavrogiannopoulos2018-02-192-172/+59
* extensions: allow receiving and sending extensions which were not advertised ...Nikos Mavrogiannopoulos2018-02-191-1/+1
* handshake: added support for reading and sending cookie extensionNikos Mavrogiannopoulos2018-02-193-1/+149
* doc: document the GNUTLS_E_NO_COMMON_KEY_SHARE usageNikos Mavrogiannopoulos2018-02-191-1/+14
* handshake: reduce assert printouts in common casesNikos Mavrogiannopoulos2018-02-191-1/+1
* handshake: accept hello retry request in client sideNikos Mavrogiannopoulos2018-02-191-0/+37