 Jouni Malinen
|
213e158ca8
BoringSSL: Move OCSP implementation into a separate file
|
9 years ago |
 Jouni Malinen
|
b34c623c07
OpenSSL: Fix build with current OpenSSL master branch snapshot
|
9 years ago |
 Marek Behún
|
36e820605f
Check for LIBRESSL_VERSION_NUMBER in tls_openssl.c
|
9 years ago |
|
Jouni Malinen
|
cbb154973d
OpenSSL: Make msg_callback debug prints easier to read
|
9 years ago |
|
Jouni Malinen
|
faf8f29379
OpenSSL: Recognize special write_p == 2 in msg_callback
|
9 years ago |
|
Jouni Malinen
|
bdee6ca0e0
BoringSSL: Implement support for OCSP stapling
|
9 years ago |
 Adam Langley
|
aeeb0bca71
Android: Fix keystore-backed keys with BoringSSL
|
9 years ago |
|
Jouni Malinen
|
20f331b707
OpenSSL: Write PKCS#12 extra cert errors into debug log
|
9 years ago |
|
Jouni Malinen
|
acf36f319f
OpenSSL: Enable support for server side TLS session resumption
|
9 years ago |
|
Jouni Malinen
|
b3b8085ae8
TLS: Add functions for managing cached session state
|
9 years ago |
|
Jouni Malinen
|
93bc654996
OpenSSL: Allow server connection parameters to be configured
|
9 years ago |
|
Jouni Malinen
|
bfbebd2665
TLS: Add new arguments to tls_connection_set_verify()
|
9 years ago |
|
Jouni Malinen
|
bd9b8b2b68
OpenSSL: Add wrapper struct for tls_init() result
|
9 years ago |
|
Jouni Malinen
|
355a5c8ec5
OpenSSL: Reject OCSP-required configuration if no OCSP support
|
9 years ago |
|
Jouni Malinen
|
c07e7b43e9
BoringSSL: Fix PKCS12_parse() segfault when used without password
|
9 years ago |
|
Jouni Malinen
|
a89beee589
OpenSSL: Handshake completion and resumption state into debug log
|
9 years ago |
|
Jouni Malinen
|
a7803b0caf
BoringSSL: Fix session resumption
|
9 years ago |
|
Jouni Malinen
|
0f56057c64
BoringSSL: Make SSL_set_ssl_method() conditional on EAP-FAST
|
9 years ago |
|
Jouni Malinen
|
226cdea6ca
BoringSSL: Comment out SSL_build_cert_chain() call
|
9 years ago |
|
Jouni Malinen
|
de2a7b796d
OpenSSL: Use connection certificate chain with PKCS#12 extra certs
|
9 years ago |
|
Jouni Malinen
|
0d2c0e6776
OpenSSL: Fix PKCS#12 extra certificate handling
|
9 years ago |
|
Jouni Malinen
|
4fc53159b9
OpenSSL: Fix FIPS mode enabling in dynamic interface case
|
9 years ago |
|
Jouni Malinen
|
1046db8b53
Rename tls_connection_get_keys() to tls_connection_get_random()
|
9 years ago |
|
Jouni Malinen
|
d0eb8a0b4e
OpenSSL: Allow server/client random to be fetched in FIPS mode
|
9 years ago |
|
Jouni Malinen
|
266cf4a0bc
OpenSSL: Comment out openssl_get_keyblock_size() if CONFIG_FIPS=y
|
9 years ago |
|
Jouni Malinen
|
06836013d3
OpenSSL: Remove EAP-FAST TLSv1.0 only workaround for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
c34cd66866
OpenSSL: Drop security level to 0 if needed for EAP-FAST
|
9 years ago |
|
Jouni Malinen
|
16bc3b8935
OpenSSL: Add SHA256 support in openssl_tls_prf() for TLSv1.2
|
9 years ago |
|
Jouni Malinen
|
3de28506d2
OpenSSL: Implement openssl_tls_prf() for OpenSSL 1.1.0
|
9 years ago |
|
Jouni Malinen
|
4d2a1b4f8f
OpenSSL: Implement SSL_set_session_secret_cb() callback for OpenSSL 1.1.0
|
9 years ago |
