2015-11-16 |
Sam Hartman | Merge tag 'release_3_0_10' into tr-integ |
blob | commitdiff |
2015-09-14 |
Arran Cudbard-Bell | No ocsp_ok label either |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | No skipped label in v3.0.x |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | Should skip the OCSP check |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | Typo |
blob | commitdiff | diff to current |
2015-09-14 |
Arran Cudbard-Bell | If there's no OCSP URLs in the certificates, and we... |
blob | commitdiff | diff to current |
2015-09-11 |
Alan T. DeKok | Use fr_pair_list_mcopy... instead of fr_pair_list_move... |
blob | commitdiff | diff to current |
2015-08-19 |
Arran Cudbard-Bell | Use macro for terminating CONF_PARSER arrays |
blob | commitdiff | diff to current |
2015-07-16 |
Arran Cudbard-Bell | Use modern list names |
blob | commitdiff | diff to current |
2015-07-15 |
Arran Cudbard-Bell | Merge pull request #1133 from jpereira/devel/add-sql_fi... |
blob | commitdiff | diff to current |
2015-07-14 |
Arran Cudbard-Bell | Rename functions in pair.c to be consistent with the... |
blob | commitdiff | diff to current |
2015-06-25 |
Arran Cudbard-Bell | Merge pull request #1044 from geaaru/rlm_sqlippool_mand... |
blob | commitdiff | diff to current |
2015-06-22 |
Alan T. DeKok | Set X509_V_FLAG_CRL_CHECK_ALL |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Restore cached VPs prior to EAP-TLS inner-tunnel method |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Set persist callbacks only if persist_dir is configured |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Make messages clearer |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | return int |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | More messages as per last commit |
blob | commitdiff | diff to current |
2015-06-18 |
Alan T. DeKok | Make it clear when we can't cache TLS sessions |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Better debugging messages for TLS session cache &&... |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Correctly format cache entries. <sigh> |
blob | commitdiff | diff to current |
2015-06-16 |
Alan T. DeKok | Don't copy the VPs when we can just move them |
blob | commitdiff | diff to current |
2015-06-07 |
Arran Cudbard-Bell | Use bools where appropriate |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | OCSP messages should go to the request log, not the... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Fix indentation for some messages, lower priority of... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Move tls_status_table outside of ENABLE_OPENSSL_VERSOIN... |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Use common prefix for all TLS log messages |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | More logging fixes |
blob | commitdiff | diff to current |
2015-06-05 |
Arran Cudbard-Bell | Define a prefix for ROPTIONAL global messages |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Request may be null |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | int_ssl_status_check should log to the request log |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | These aren't global errors, so should be REDEBUG not... |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Messages in tls_handshake_recv should be logged to... |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | expose request in eaptls_operation |
blob | commitdiff | diff to current |
2015-06-04 |
Arran Cudbard-Bell | Slightly improved debug messages for EAP/TLS |
blob | commitdiff | diff to current |
2015-05-27 |
Alan T. DeKok | Use correct data types for TLS fields |
blob | commitdiff | diff to current |
2015-05-20 |
Alan T. DeKok | Print out bytes we see for TLS version |
blob | commitdiff | diff to current |
2015-05-14 |
Arran Cudbard-Bell | Callbacks used by map_to_request should take a TALLOC_C... |
blob | commitdiff | diff to current |
2015-05-14 |
Alan DeKok | Merge pull request #983 from michael-mri/v3.0.x |
blob | commitdiff | diff to current |
2015-05-04 |
Alan T. DeKok | Rename "offset" to "mtu", which is more accurate |
blob | commitdiff | diff to current |
2015-04-28 |
Arran Cudbard-Bell | sed -ie 's/fr_debug_flag/fr_debug_lvl/' sed -ie 's... |
blob | commitdiff | diff to current |
2015-04-27 |
Alan T. DeKok | Create client attributes only if we have a certs list |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Fix for last few commits |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Mash name spaces to dashes, too |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Fix error message |
blob | commitdiff | diff to current |
2015-04-09 |
Alan T. DeKok | Remove extraneous "+ 16" |
blob | commitdiff | diff to current |
2015-04-08 |
Alan T. DeKok | make client certs available for TLS application data... |
blob | commitdiff | diff to current |
2015-04-08 |
Alan T. DeKok | On TLS success, add the certs to the request |
blob | commitdiff | diff to current |
2015-04-08 |
Alan T. DeKok | The cert attributes are NOT added to the request. |
blob | commitdiff | diff to current |
2015-04-01 |
Alan T. DeKok | Create correctly formatted session cache entries |
blob | commitdiff | diff to current |
2015-04-01 |
Alan T. DeKok | Complain if stupid people disable all TLS versions |
blob | commitdiff | diff to current |
2015-03-31 |
Alan T. DeKok | Remove unnecessary comment |
blob | commitdiff | diff to current |
2015-03-31 |
Arran Cudbard-Bell | Add version strings for TLS 1.1, 1.2 and 1.3 |
blob | commitdiff | diff to current |
2015-03-31 |
Arran Cudbard-Bell | Re-enable TLS 1.2 by default |
blob | commitdiff | diff to current |
2015-03-31 |
Alan T. DeKok | Allow disabling of tlsv1 |
blob | commitdiff | diff to current |
2015-03-31 |
Arran Cudbard-Bell | Merge pull request #931 from nchaigne/3.0.x-fb4-rc |
blob | commitdiff | diff to current |
2015-03-30 |
Arran Cudbard-Bell | Disable TLS 1.2 by default. Causes MPPE key mismatches... |
blob | commitdiff | diff to current |
2015-03-30 |
Arran Cudbard-Bell | Print the attributes EAP-TLS extension attribute we... |
blob | commitdiff | diff to current |
2015-03-27 |
Alan T. DeKok | No comment in comment issues |
blob | commitdiff | diff to current |
2015-03-27 |
Arran Cudbard-Bell | Minor formatting in tls.c |
blob | commitdiff | diff to current |
2015-03-24 |
Arran Cudbard-Bell | Cleanup some of the tls code, add doxygen headers etc... |
blob | commitdiff | diff to current |
2015-03-13 |
Arran Cudbard-Bell | But it's been config_items for N number of decades! |
blob | commitdiff | diff to current |
2015-03-12 |
Alan T. DeKok | Make tls_new_client_session set a destructor, too. |
blob | commitdiff | diff to current |
2015-03-12 |
Alan T. DeKok | Make tls_new_client_session() take talloc_ctx |
blob | commitdiff | diff to current |
2015-03-08 |
Arran Cudbard-Bell | Merge pull request #919 from nchaigne/3.0.x-fb3 |
blob | commitdiff | diff to current |
2015-03-05 |
Alan T. DeKok | Make tls_new_client_session set a destructor, too. |
blob | commitdiff | diff to current |
2015-03-05 |
Alan T. DeKok | No need for these functions to be exported |
blob | commitdiff | diff to current |
2015-03-04 |
Alan DeKok | Merge pull request #918 from nchaigne/3.0.x-fb2 |
blob | commitdiff | diff to current |
2015-03-04 |
Alan T. DeKok | Make tls_new_client_session() take talloc_ctx |
blob | commitdiff | diff to current |
2015-02-27 |
Sam Hartman | Merge tag 'release_3_0_7' into tr-integ |
blob | commitdiff | diff to current |
2015-02-13 |
Alan T. DeKok | Remove support for ephemeral RSA keys. |
blob | commitdiff | diff to current |
2015-02-10 |
Herwin Weststrate | Fixed a number of double semicolons in source |
blob | commitdiff | diff to current |
2014-12-31 |
Alan T. DeKok | Sometimes we don't need to generate ephemeral RSA keys |
blob | commitdiff | diff to current |
2014-12-22 |
Arran Cudbard-Bell | Turn on super pedantic warnings in CLANG |
blob | commitdiff | diff to current |
2014-12-17 |
Herwin Weststrate | Added some null checks after talloc_zero |
blob | commitdiff | diff to current |
2014-12-04 |
Arran Cudbard-Bell | Cache Stripped-User-Domain too |
blob | commitdiff | diff to current |
2014-12-04 |
Arran Cudbard-Bell | Update range of cached TLS attributes |
blob | commitdiff | diff to current |
2014-12-04 |
Arran Cudbard-Bell | Formatting |
blob | commitdiff | diff to current |
2014-12-03 |
Arran Cudbard-Bell | Merge pull request #847 from spbnick/man_clients_update |
blob | commitdiff | diff to current |
2014-12-03 |
Arran Cudbard-Bell | Use correct type for log_lvl and add prefix to rdebug_pair |
blob | commitdiff | diff to current |
2014-12-02 |
Alan T. DeKok | Always get the "certs" index for SSL. |
blob | commitdiff | diff to current |
2014-12-02 |
Alan T. DeKok | Debug attributes added in cbtls_verify |
blob | commitdiff | diff to current |
2014-11-26 |
Arran Cudbard-Bell | Fix another spurious warning |
blob | commitdiff | diff to current |
2014-11-22 |
Arran Cudbard-Bell | Add internal API for rlm_cache module |
blob | commitdiff | diff to current |
2014-11-16 |
Alan T. DeKok | Make tlsv1.2 and tlsv1.2 conditional on having them |
blob | commitdiff | diff to current |
2014-11-16 |
Alan T. DeKok | Allow for selective disabling of TLSv1.1 and TLSv1.2 |
blob | commitdiff | diff to current |
2014-11-11 |
Arran Cudbard-Bell | Merge pull request #831 from mcnewton/patch-ocsp-host... |
blob | commitdiff | diff to current |
2014-11-11 |
Arran Cudbard-Bell | Merge pull request #832 from mcnewton/patch-softfail... |
blob | commitdiff | diff to current |
2014-11-11 |
Matthew Newton | add HTTP Host: header in OCSP request |
blob | commitdiff | diff to current |
2014-11-10 |
Matthew Newton | disable softfail by default (in line with documentation) |
blob | commitdiff | diff to current |
2014-11-04 |
Arran Cudbard-Bell | Formatting |
blob | commitdiff | diff to current |
2014-11-03 |
Alan T. DeKok | Allow TLS 1.1 and 1.2 |
blob | commitdiff | diff to current |
2014-10-28 |
Arran Cudbard-Bell | Use rdebug_pair_list in more places and remove debug_pa... |
blob | commitdiff | diff to current |
2014-10-28 |
Alan DeKok | Merge pull request #818 from spbnick/pool_trigger_fallt... |
blob | commitdiff | diff to current |
2014-10-27 |
Alan T. DeKok | Set PSK callback only if we have an identity or a dynam... |
blob | commitdiff | diff to current |
2014-10-26 |
Alan T. DeKok | Do OCSP checks only if we got issuer_cert. Closes... |
blob | commitdiff | diff to current |
2014-10-23 |
Nikolai Kondrashov | Add --disable-openssl-version-check option |
blob | commitdiff | diff to current |
2014-10-08 |
Sam Hartman | Don't crash if conf->psk_identity is null |
blob | commitdiff | diff to current |
2014-10-02 |
Arran Cudbard-Bell | Reorder radius_exec_program arguments to be consistent... |
blob | commitdiff | diff to current |
2014-09-11 |
Alan T. DeKok | Revert "tls: Set umask before creating temporary file" |
blob | commitdiff | diff to current |
next |