2017-02-03 |
Alan T. DeKok | read the TLS data first, before the VPs |
blob | commitdiff |
2016-12-07 |
Alan DeKok | Merge pull request #1850 from spbnick/v3.0.x_openssl_1... |
blob | commitdiff | diff to current |
2016-12-07 |
Nikolai Kondrashov | Handle deprecated OpenSSL thread cleanup functions |
blob | commitdiff | diff to current |
2016-12-07 |
Nikolai Kondrashov | Accomodate consts added in OpenSSL 1.1 |
blob | commitdiff | diff to current |
2016-12-07 |
Nikolai Kondrashov | Do not use OPENSSL_config |
blob | commitdiff | diff to current |
2016-12-07 |
Nikolai Kondrashov | Do not use ASN1_STRING_data |
blob | commitdiff | diff to current |
2016-12-07 |
Nikolai Kondrashov | Do not try to access private OpenSSL structs |
blob | commitdiff | diff to current |
2016-10-19 |
Alan DeKok | Merge branch 'v3.0.x' into v3.0.x-patch1 |
blob | commitdiff | diff to current |
2016-10-19 |
Alan T. DeKok | Add cipher_server_preference. Manual port of #1797 |
blob | commitdiff | diff to current |
2016-09-26 |
Arran Cudbard-Bell | Don't ignore the fact we've hit vulnerable versions... |
blob | commitdiff | diff to current |
2016-09-26 |
Alan T. DeKok | reorder list |
blob | commitdiff | diff to current |
2016-09-26 |
Arran Cudbard-Bell | Merge pull request #1758 from TheMysteriousX/v3.0.x |
blob | commitdiff | diff to current |
2016-09-26 |
Adam Bishop | Check the CVE ID, not the name |
blob | commitdiff | diff to current |
2016-09-26 |
Alan T. DeKok | update for new CVEs |
blob | commitdiff | diff to current |
2016-09-26 |
Alan T. DeKok | allow acknowledged CVEs |
blob | commitdiff | diff to current |
2016-09-23 |
Alan T. DeKok | clean up OCSP / verify routines |
blob | commitdiff | diff to current |
2016-09-22 |
Alan DeKok | Merge pull request #1755 from spaetow/patch-3 |
blob | commitdiff | diff to current |
2016-09-22 |
Alan T. DeKok | Fix tls_global_version_check() function and message |
blob | commitdiff | diff to current |
2016-09-22 |
Alan T. DeKok | simplify code |
blob | commitdiff | diff to current |
2016-09-22 |
Alan T. DeKok | typo in version string |
blob | commitdiff | diff to current |
2016-09-22 |
Alan T. DeKok | typo |
blob | commitdiff | diff to current |
2016-09-22 |
Alan T. DeKok | Add more vulnerabilities for OpenSSL |
blob | commitdiff | diff to current |
2016-09-21 |
Alan T. DeKok | make code match the comments and documentation |
blob | commitdiff | diff to current |
2016-09-21 |
Alan T. DeKok | Use conf->ocsp_store, as it is always set. |
blob | commitdiff | diff to current |
2016-09-01 |
Alan T. DeKok | issuer_cert may be retrieved, but not exist |
blob | commitdiff | diff to current |
2016-04-19 |
Alan T. DeKok | Fix #ifdef placement error. Fixes #1572 |
blob | commitdiff | diff to current |
2016-03-14 |
Arran Cudbard-Bell | Merge pull request #1527 from herwinw/rlm_perl_robustne... |
blob | commitdiff | diff to current |
2016-03-09 |
Arran Cudbard-Bell | Merge pull request #1559 from pwdng/freetds |
blob | commitdiff | diff to current |
2016-03-09 |
Arran Cudbard-Bell | Merge pull request #1558 from pwdng/v3.0.x |
blob | commitdiff | diff to current |
2016-03-09 |
Arran Cudbard-Bell | Use threadsafe OpenSSL error functions |
blob | commitdiff | diff to current |
2016-01-29 |
Alan T. DeKok | Set FILE_EXISTS for random files |
blob | commitdiff | diff to current |
2016-01-14 |
Alan T. DeKok | fix typo |
blob | commitdiff | diff to current |
2015-12-20 |
Arran Cudbard-Bell | Merge pull request #1377 from skids/virtualize_state |
blob | commitdiff | diff to current |
2015-12-11 |
Alan T. DeKok | disable tls 1.2 for OpenSSL 1.0.1f and 1.0.1g |
blob | commitdiff | diff to current |
2015-12-10 |
Alan T. DeKok | Copy TLS cert VPs to request, even on fail. |
blob | commitdiff | diff to current |
2015-12-10 |
Alan T. DeKok | Added TLS-OCSP-Cert-Valid to 3.0 |
blob | commitdiff | diff to current |
2015-12-07 |
Alan T. DeKok | port enum changes from head, which clarify the code |
blob | commitdiff | diff to current |
2015-12-07 |
Alan T. DeKok | run verify only on skipped |
blob | commitdiff | diff to current |
2015-12-07 |
Alan T. DeKok | clean up SSL errors on OCSP soft fail |
blob | commitdiff | diff to current |
2015-12-07 |
Alan T. DeKok | verify_callback should return 0 or 1 |
blob | commitdiff | diff to current |
2015-12-07 |
Alan T. DeKok | Added "skip verify if OCSP succeeds". Fixes #1426 |
blob | commitdiff | diff to current |
2015-11-24 |
Alan DeKok | Merge pull request #1394 from jpereira/fix/ramin1 |
blob | commitdiff | diff to current |
2015-11-24 |
Alan T. DeKok | If OCSP checks fail, don't run verify command |
blob | commitdiff | diff to current |
2015-11-02 |
Alan T. DeKok | Use main_config.name everywhere. |
blob | commitdiff | diff to current |
2015-10-31 |
Arran Cudbard-Bell | More compact |
blob | commitdiff | diff to current |
2015-10-21 |
Alan T. DeKok | Remove unused options |
blob | commitdiff | diff to current |
2015-10-21 |
Alan T. DeKok | Allow selective disabling of single dh use |
blob | commitdiff | diff to current |
2015-10-20 |
Alan T. DeKok | Enable auto_chain. Fixes #1330 |
blob | commitdiff | diff to current |
2015-10-14 |
Alan T. DeKok | Port fix from v3.1.x |
blob | commitdiff | diff to current |
2015-10-13 |
Alan T. DeKok | Intermediate variable to avoid compiler warning |
blob | commitdiff | diff to current |
2015-10-11 |
Alan T. DeKok | typo |
blob | commitdiff | diff to current |
2015-10-11 |
Alan T. DeKok | Init session only if it doesn't exist |
blob | commitdiff | diff to current |
2015-10-11 |
Alan T. DeKok | Wrappers and portability fixes for newer OpenSSL. |
blob | commitdiff | diff to current |
2015-10-09 |
Arran Cudbard-Bell | Make it clear whether we're sending or receiving ssl... |
blob | commitdiff | diff to current |
2015-10-09 |
Arran Cudbard-Bell | Formatting |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | No ocsp_ok label either |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | No skipped label in v3.0.x |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | Should skip the OCSP check |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | Typo |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | If there's no OCSP URLs in the certificates, and we... |
blob | commitdiff | diff to current |
2015-09-11 |
Alan T. DeKok | Use fr_pair_list_mcopy... instead of fr_pair_list_move... |
blob | commitdiff | diff to current |
2015-08-19 |
Arran Cudbard-Bell | Use macro for terminating CONF_PARSER arrays |
blob | commitdiff | diff to current |
2015-07-16 |
Arran Cudbard-Bell | Use modern list names |
blob | commitdiff | diff to current |
2015-07-15 |
Arran Cudbard-Bell | Merge pull request #1133 from jpereira/devel/add-sql_fi... |
blob | commitdiff | diff to current |
2015-07-14 |
Arran Cudbard-Bell | Rename functions in pair.c to be consistent with the... |
blob | commitdiff | diff to current |
2015-06-25 |
Arran Cudbard-Bell | Merge pull request #1044 from geaaru/rlm_sqlippool_mand... |
blob | commitdiff | diff to current |
2015-06-22 |
Alan T. DeKok | Set X509_V_FLAG_CRL_CHECK_ALL |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Restore cached VPs prior to EAP-TLS inner-tunnel method |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Set persist callbacks only if persist_dir is configured |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Make messages clearer |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | return int |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | More messages as per last commit |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Make it clear when we can't cache TLS sessions |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Better debugging messages for TLS session cache &&... |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Correctly format cache entries. <sigh> |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Don't copy the VPs when we can just move them |
blob | commitdiff | diff to current |
2015-06-07 |
Arran Cudbard-Bell | Use bools where appropriate |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | OCSP messages should go to the request log, not the... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Fix indentation for some messages, lower priority of... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Move tls_status_table outside of ENABLE_OPENSSL_VERSOIN... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Use common prefix for all TLS log messages |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | More logging fixes |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Define a prefix for ROPTIONAL global messages |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Request may be null |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | int_ssl_status_check should log to the request log |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | These aren't global errors, so should be REDEBUG not... |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Messages in tls_handshake_recv should be logged to... |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | expose request in eaptls_operation |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Slightly improved debug messages for EAP/TLS |
blob | commitdiff | diff to current |
2015-05-27 |
Alan T. DeKok | Use correct data types for TLS fields |
blob | commitdiff | diff to current |
2015-05-20 |
Alan T. DeKok | Print out bytes we see for TLS version |
blob | commitdiff | diff to current |
2015-05-14 |
Arran Cudbard-Bell | Callbacks used by map_to_request should take a TALLOC_C... |
blob | commitdiff | diff to current |
2015-05-14 |
Alan DeKok | Merge pull request #983 from michael-mri/v3.0.x |
blob | commitdiff | diff to current |
2015-05-04 |
Alan T. DeKok | Rename "offset" to "mtu", which is more accurate |
blob | commitdiff | diff to current |
2015-04-28 |
Arran Cudbard-Bell | sed -ie 's/fr_debug_flag/fr_debug_lvl/' sed -ie 's... |
blob | commitdiff | diff to current |
2015-04-27 |
Alan T. DeKok | Create client attributes only if we have a certs list |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Fix for last few commits |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Mash name spaces to dashes, too |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Fix error message |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Remove extraneous "+ 16" |
blob | commitdiff | diff to current |
next |