aboutsummaryrefslogtreecommitdiff
path: root/src/net/tls.c
AgeCommit message (Expand)AuthorFilesLines
2014-03-28[crypto] Generalise X.509 cache to a full certificate storeMichael Brown1-40/+34
2014-03-25[crypto] Remove dynamically-allocated storage for certificate nameMichael Brown1-10/+4
2013-01-31[tls] Concatenate received non-data records before processingMichael Brown1-12/+10
2012-09-28[tls] Fix potential memory leakMichael Brown1-0/+1
2012-09-28[tls] Fix uninitialised variableMichael Brown1-2/+1
2012-09-27[tls] Split received records over multiple I/O buffersMichael Brown1-164/+278
2012-08-25[tls] Disambiguate most error causesMichael Brown1-32/+140
2012-07-20[legal] Update FSF mailing address in GPL licence textsMichael Brown1-1/+2
2012-06-29[tls] Request a maximum fragment length of 2048 bytesMichael Brown1-0/+11
2012-06-09[tls] Mark security negotiation as a pending operationMichael Brown1-3/+13
2012-05-08[tls] Use asynchronous certificate validatorMichael Brown1-46/+113
2012-05-08[crypto] Add x509_append_raw()Michael Brown1-18/+5
2012-05-08[crypto] Allow for X.509 certificates with no common nameMichael Brown1-1/+2
2012-05-04[crypto] Allow certificate chains to be long-lived data structuresMichael Brown1-67/+94
2012-05-04[crypto] Parse OCSP responder URI from X.509 certificateMichael Brown1-1/+1
2012-04-10[tls] Fix wrong memset in function tls_clear_cipherStefan Weil1-1/+1
2012-03-22[crypto] Differentiate "untrusted root" and "incomplete chain" error casesMichael Brown1-5/+5
2012-03-22[crypto] Add previous certificate in chain as a parameter to parse_next()Michael Brown1-1/+4
2012-03-20[tls] Support sending a client certificateMichael Brown1-13/+237
2012-03-20[tls] Treat handshake digest algorithm as a session parameterMichael Brown1-39/+24
2012-03-20[tls] Use hybrid MD5+SHA1 algorithmMichael Brown1-13/+66
2012-03-19[tls] Check certificate validity period against current date and timeMichael Brown1-1/+3
2012-03-19[tls] Include current time within the client random bytesMichael Brown1-1/+2
2012-03-19[tls] Validate server certificateMichael Brown1-36/+93
2012-03-19[tls] Add full X.509 certificate parsingMichael Brown1-10/+12
2012-03-18[tls] Use iPXE native RSA algorithmMichael Brown1-37/+51
2012-03-13[tls] Use const to mark incoming data being processedMichael Brown1-26/+28
2012-03-09[crypto] Upgrade AES and RSA code to upstream axTLS version 1.4.5Michael Brown1-1/+1
2012-03-05[tls] Formalise the definition of a TLS cipher suiteMichael Brown1-81/+114
2012-03-05[tls] Support (and prefer) SHA-256 variants of existing cipher suitesMichael Brown1-3/+15
2012-03-05[tls] Support TLS version 1.2Michael Brown1-35/+72
2012-03-03[tls] Send empty Certificate record if requested by serverMichael Brown1-0/+57
2012-03-03[tls] Verify the contents of the Finished recordMichael Brown1-3/+24
2012-03-03[tls] Allow transmitted records to be scheduled independentlyMichael Brown1-83/+29
2012-03-03[tls] Add support for Server Name Indication (SNI)Michael Brown1-3/+29
2012-03-03[tls] Support TLS version 1.1Michael Brown1-16/+28
2012-02-21[tls] Use ANS X9.82 Approved RBG as source of random data for TLSMichael Brown1-9/+35
2011-06-28[tls] Eliminate polling while TX state machine is idleMichael Brown1-13/+67
2011-06-28[process] Pass containing object pointer to process step() methodsMichael Brown1-5/+7
2011-06-28[tls] Send xfer_window_changed() when TLS session is establishedMichael Brown1-0/+4
2010-06-23[tls] Handle multiple handshake recordsMichael Brown1-39/+54
2010-06-22[interface] Convert all data-xfer interfaces to generic interfacesMichael Brown1-92/+72
2010-06-22[refcnt] Add ref_init() wrapper functionMichael Brown1-1/+1
2010-04-19[build] Rename gPXE to iPXEMichael Brown1-11/+11
2009-05-18[legal] Add a selection of FILE_LICENCE declarationsMichael Brown1-0/+2
2009-03-30[xfer] Implement xfer_vreopen() to properly handle redirectionsMichael Brown1-1/+1
2009-02-19[crypto] Change cipher_{en,de}crypt() to void functionsMichael Brown1-17/+5
2009-02-18[crypto] Split crypto_algorithm into {digest,cipher,pubkey}_algorithmMichael Brown1-17/+17
2009-02-18[crypto] Move AES_convert_key() hack into axtls_aes.cMichael Brown1-4/+0
2009-02-18[crypto] Rename aes_algorithm to aes_cbc_algorithmMichael Brown1-2/+2
generated by cgit v1.1 at 2024-07-19 23:13:38 +0000