index
:
OpenVPN/openvpn.git
master
OpenVPN - A Secure tunneling daemon
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
openvpn
/
ssl.c
Age
Commit message (
Expand
)
Author
2020-12-02
Remove auth_user_pass.wait_for_push variable
Arne Schwabe
2020-11-24
Also announce IV_CIPHERS as client in OpenVPN 2.4
Arne Schwabe
2020-11-24
Normalise ncp-ciphers option and restrict it to 127 bytes
Arne Schwabe
2020-05-30
Switch assertion failure to returning false
Jeremy Evans
2020-04-16
Fix broken async push with NCP is used
Lev Stipakov
2019-11-06
Fix broken fragmentation logic when using NCP
Lev Stipakov
2018-12-10
Fallback to password authentication when auth-token fails
Arne Schwabe
2018-10-11
Add better support for showing TLS 1.3 ciphersuites in --show-tls
Arne Schwabe
2018-10-11
options.c: fix broken unary minus usage
Lev Stipakov
2018-10-10
Add support for tls-ciphersuites for TLS 1.3
Arne Schwabe
2018-07-18
Minor reliability layer documentation fixes
Gert van Dijk
2018-03-07
Check for more data in control channel
Steffan Karger
2018-02-20
Log pre-handshake packet drops using D_MULTI_DROPPED
Steffan Karger
2018-02-01
Update copyright to include 2018 plus company name change
David Sommerseth
2018-01-20
Add support for TLS 1.3 in --tls-version-{min, max}
Steffan Karger
2018-01-20
Fix --tls-version-min and --tls-version-max for OpenSSL 1.1+
Steffan Karger
2017-11-19
Add --tls-cert-profile option.
Steffan Karger
2017-09-07
tls-crypt: don't leak memory for incorrect tls-crypt messages
Steffan Karger
2017-08-17
crypto: create function to initialize encrypt and decrypt key
Steffan Karger
2017-08-14
Always use default keysize for NCP'd ciphers
Steffan Karger
2017-08-14
add missing static attribute to functions
Antonio Quartulli
2017-08-11
remove unused functions
Antonio Quartulli
2017-08-11
make function declarations C99 compliant
Antonio Quartulli
2017-06-29
Undo cipher push in client options state if cipher is rejected
Steffan Karger
2017-06-27
Set tls-cipher restriction before loading certificates
Arne Schwabe
2017-06-19
Ignore auth-nocache for auth-user-pass if auth-token is pushed
Antonio Quartulli
2017-06-18
OpenSSL: don't use direct access to the internal of HMAC_CTX
Emmanuel Deloget
2017-06-16
copyright: Update GPLv2 license texts
David Sommerseth
2017-05-17
Log the negotiated (NCP) cipher
Steffan Karger
2017-05-11
Don't assert out on receiving too-large control packets (CVE-2017-7478)
Steffan Karger
2017-05-09
Always clear username/password from memory on error
Steffan Karger
2017-05-09
Restore pre-NCP frame parameters for new sessions
Steffan Karger
2017-03-16
CRL: use time_t instead of struct timespec to store last mtime
Antonio Quartulli
2017-03-15
Remove duplicate X509 env variables
Steffan Karger
2017-01-18
More broadly enforce Allman style and braces-around-conditionals
Steffan Karger
2016-12-26
Remove IV_RGI6=1 peer-info signalling.
Gert Doering
2016-12-21
Update copyrights
David Sommerseth
2016-12-14
The Great Reformatting - first phase
David Sommerseth
2016-12-07
Fix (and cleanup) crypto flags in combination with NCP
Steffan Karger
2016-12-01
reload CRL only if file was modified
Antonio Quartulli
2016-11-29
Introduce and use secure_memzero() to erase secrets
Steffan Karger
2016-11-28
Unconditionally enable TLS_AGGREGATE_ACK
Steffan Karger
2016-11-28
tls_process: don't set variable that's never read
Steffan Karger
2016-11-23
Refactor data channel key generation API
Steffan Karger
2016-11-23
Poor man's NCP for non-NCP peers
Steffan Karger
2016-11-22
generate_key_expansion: make assumption explicit, use C99 features
Steffan Karger
2016-11-22
--tls-crypt fixes
Steffan Karger
2016-11-16
Add control channel encryption (--tls-crypt)
Steffan Karger
2016-11-16
Remove unneeded check for extra_certs_file_inline
Steffan Karger
2016-11-16
Refactor CRL handling
Steffan Karger
[next]