aboutsummaryrefslogtreecommitdiffstats
path: root/src/crypto
Commit message (Expand)AuthorAgeFilesLines
* EAP-FAST: Enable AES256-based TLS cipher suites with OpenSSLJouni Malinen2015-12-312-2/+10
* OpenSSL: Share a single openssl_tls_prf() implementationJouni Malinen2015-12-311-69/+13
* OpenSSL: Clean up function to fetch client/server randomJouni Malinen2015-12-311-13/+27
* OpenSSL: Drop support for OpenSSL 1.0.0Jouni Malinen2015-12-311-11/+1
* OpenSSL: Drop support for OpenSSL 0.9.8Jouni Malinen2015-12-312-31/+0
* Remove unnecessary cleanup assignment in SHA1Final()Jouni Malinen2015-12-281-1/+0
* TLS client: Multi-OCSP check to cover intermediate CAsJouni Malinen2015-12-231-6/+0
* Add ocsp=3 configuration parameter for multi-OCSPJouni Malinen2015-12-234-0/+19
* TLS server: OCSP stapling with ocsp_multi option (RFC 6961)Jouni Malinen2015-12-221-0/+3
* Server configuration for OCSP stapling with ocsp_multi (RFC 6961)Jouni Malinen2015-12-221-0/+4
* TLS server: OCSP staplingJouni Malinen2015-12-221-0/+4
* GnuTLS: OCSP stapling on the server sideJouni Malinen2015-12-221-0/+52
* EAP peer: External server certificate chain validationJouni Malinen2015-12-124-2/+16
* OpenSSL: Support new API for HMAC/EVP_MD_CTX in OpenSSL 1.1.x-pre1Jouni Malinen2015-12-101-0/+92
* BoringSSL: Move OCSP implementation into a separate fileJouni Malinen2015-12-043-820/+868
* BoringSSL: Support new SHA_CTX definition for EAP-SIM PRFJouni Malinen2015-12-041-0/+14
* OpenSSL: Fix build with current OpenSSL master branch snapshotJouni Malinen2015-12-031-0/+6
* Fix tls_connection_prf() regression with CONFIG_TLS=internalJouni Malinen2015-11-291-2/+2
* Add TEST_FAIL() support for internal hash functionsJouni Malinen2015-11-294-0/+12
* Fix memory leak on NFC DH generation error pathJouni Malinen2015-11-292-1/+7
* TLS client: Use TLS_CONN_* flagsJouni Malinen2015-11-291-2/+1
* TLS: Add support for tls_get_version()Jouni Malinen2015-11-291-1/+6
* TLS client: Add support for server certificate probingJouni Malinen2015-11-291-0/+12
* crypto: Add CRYPTO_HASH_ALG_SHA384 and CRYPTO_HASH_ALG_SHA512Jouni Malinen2015-11-292-1/+52
* Add SHA384 and SHA512 implementations from LibTomCrypt libraryPali Rohár2015-11-296-1/+429
* Add TEST_FAIL() condition to aes_128_cbc_encrypt/decrypt()Jouni Malinen2015-11-282-0/+12
* tests: Move EAP-SIM PRF module test into the hwsim frameworkJouni Malinen2015-11-231-0/+30
* Check for LIBRESSL_VERSION_NUMBER in tls_openssl.cMarek Behún2015-11-221-6/+6
* TLS: Fix memory leak with multiple TLS server instancesJouni Malinen2015-10-311-1/+3
* tests: Fix build without CONFIG_ERP=yJouni Malinen2015-10-251-0/+2
* tests: Add TEST_FAIL() condition to omac1_aes_vector()Jouni Malinen2015-10-172-0/+6
* OpenSSL: Add TEST_FAIL() checks to allow error path testingJouni Malinen2015-10-111-0/+6
* OpenSSL: Make msg_callback debug prints easier to readJouni Malinen2015-10-111-2/+63
* OpenSSL: Recognize special write_p == 2 in msg_callbackJouni Malinen2015-10-111-0/+8
* tests: Module test for hmac_sha256_kdf() maximum output lengthJouni Malinen2015-10-101-0/+24
* Fix MSCHAP UTF-8 to UCS-2 conversion check for three-byte encodingJouni Malinen2015-10-101-1/+1
* BoringSSL: Implement support for OCSP staplingJouni Malinen2015-10-091-0/+847
* Android: Fix keystore-backed keys with BoringSSLAdam Langley2015-10-061-4/+28
* Fix key derivation for Suite B 192-bit AKM to use SHA384Jouni Malinen2015-08-272-0/+105
* OpenSSL: Write PKCS#12 extra cert errors into debug logJouni Malinen2015-08-241-0/+5
* OpenSSL: Enable support for server side TLS session resumptionJouni Malinen2015-08-241-13/+115
* TLS: Add functions for managing cached session stateJouni Malinen2015-08-235-0/+102
* EAP server: Add tls_session_lifetime configurationJouni Malinen2015-08-231-0/+1
* OpenSSL: Allow server connection parameters to be configuredJouni Malinen2015-08-231-27/+36
* TLS: Add new arguments to tls_connection_set_verify()Jouni Malinen2015-08-235-5/+15
* OpenSSL: Add wrapper struct for tls_init() resultJouni Malinen2015-08-231-50/+76
* tests: Allow AES-WRAP-192 test cases to be commented out with BoringSSLJouni Malinen2015-08-181-0/+8
* OpenSSL: Reject OCSP-required configuration if no OCSP supportJouni Malinen2015-08-171-0/+10
* BoringSSL: Fix PKCS12_parse() segfault when used without passwordJouni Malinen2015-08-171-0/+2
* OpenSSL: Handshake completion and resumption state into debug logJouni Malinen2015-08-171-2/+8