aboutsummaryrefslogtreecommitdiff
path: root/src/openvpn/ssl_openssl.c
AgeCommit message (Expand)Author
2016-12-14The Great Reformatting - first phaseDavid Sommerseth
2016-12-01reload CRL only if file was modifiedAntonio Quartulli
2016-11-16Refactor CRL handlingSteffan Karger
2016-11-15Replace WIN32 by _WIN32Gert Doering
2016-11-14Move private file access checks to options_postprocess_filechecks()Steffan Karger
2016-04-27Fix buffer size parameter for exported keying material.Daniel Kubec
2016-04-18Further restrict default cipher listSteffan Karger
2016-01-15Fix build with libresslNiels Ole Salscheider
2016-01-03Fix regression in setups without a client certificateSteffan Karger
2015-12-26Make certificate expiry warning patch (091edd8e299686) work on OpenSSL 1.0.1 ...Jan Just Keijser
2015-12-15Disable certificate notBefore/notAfter sanity check on OpenSSL < 1.0.2Steffan Karger
2015-12-14Warn user if their certificate has expiredSteffan Karger
2015-11-09polarssl: add --verify-client-cert optional supportSteffan Karger
2015-11-09Author: Jan Just Keijser <janjust@nikhef.nl>Jan Just Keijser
2015-10-22Replace variable length array with mallocLev Stipakov
2015-10-22openssl: remove usage of OPENSSL_malloc() from show_available_curvesSteffan Karger
2015-10-10Added support for TLS Keying Material Exporters [RFC-5705]Daniel Kubec
2015-10-08openssl: be less verbose about cipher translation errorsSteffan Karger
2015-05-09Improve --tls-cipher and --show-tls man page descriptionSteffan Karger
2015-02-15Disable SSL compressionSteffan Karger
2015-01-04Add option to disable Diffie Hellman key exchange by setting '--dh none'Steffan Karger
2014-12-31openssl: use crypto_msg(), get rid of openssl-specific code in error.cSteffan Karger
2014-12-31Remove ENABLE_SSL define (and --disable-ssl configure option)Steffan Karger
2014-11-14Add --tls-version-maxSteffan Karger
2014-07-07Don't issue warning for 'translate to self' tls-ciphersSteffan Karger
2014-05-28Fix merge error in a6c573d, the ssl ctx is now abstracted.Steffan Karger
2014-05-25Use SSL_MODE_RELEASE_BUFFERS if availableCristian Rodriguez
2014-05-20Fixed some compile issues with show_library_versions()James Yonan
2014-04-25Add support for elliptic curve diffie-hellmann key exchange (ECDH)Steffan Karger
2014-04-18Add SSL library version reporting.Gert Doering
2014-03-23Disable unsupported TLS cipher modes by default, cleans --show-tls output.Steffan Karger
2014-03-23Bump minimum OpenSSL version to 0.9.8Steffan Karger
2014-03-17Set SSL_OP_NO_TICKET flag in SSL context for OpenSSL builds, to disable TLS s...James Yonan
2014-01-05Disable export ciphers by default for OpenSSL builds.Steffan Karger
2014-01-05Make tls_ctx_restrict_ciphers accept NULL as char *cipher_list.Steffan Karger
2014-01-03Remove OpenSSL tmp_rsa_callback. Removes support for ephemeral RSA in TLS.Steffan Karger
2014-01-03If --tls-cipher is supplied, make --show-tls parse the list.Steffan Karger
2014-01-03Update TLSv1 error messages to SSLv23 to reflect changes from commit 4b67f98Steffan Karger
2014-01-03Also update TLSv1_method() calls in support code to SSLv23_method() calls.Steffan Karger
2013-11-29Move ASSERT so external-key with OpenSSL works againArne Schwabe
2013-11-23Fix compile error in ssl_openssl introduced by polar external-management patchArne Schwabe
2013-11-23Refactor tls_ctx_use_external_private_key()Joachim Schipper
2013-11-15tls_ctx_load_ca: Improve certificate error messagesKlee Dienes
2013-08-16Always load intermediate certificates from a PKCS#12 fileHeikki Hannikainen
2013-08-16MSVC fixesJames Yonan
2013-07-11TLS version negotiationJames Yonan
2013-06-20PATCHv3 Remove unused variables or put them to the defines they are being use...Arne Schwabe
2013-06-07Do not pass struct tls_session* as void* in key_state_ssl_init().Steffan Karger
2013-05-07Use constrain_int() instead of MIN()+syshead.c compat definition - v2.Gert Doering
2013-04-05Fixed tls-cipher translation bug in openssl-buildSteffan Karger
generated by cgit v1.1 at 2024-10-07 00:28:27 +0000