summaryrefslogtreecommitdiffstatsabout
path: root/src/gnutls_hooks.c
Commit message (Collapse)AuthorAgeFilesLines
* Proxy (TLS termination) patchDash Shendy2011-07-081-6/+8
| | | | Signed-off-by: Dash Shendy <neuromancer@dash.za.net>
* GnuTLSCache can now take a single argument (none).Nikos Mavrogiannopoulos2010-11-161-3/+0
|
* indented codeNikos Mavrogiannopoulos2010-10-251-926/+1018
|
* Safer usage of session variable to prevent segmentation faults on closure. ↵Nikos Mavrogiannopoulos2010-08-181-7/+43
| | | | Should solve issue #106.
* Depend on libgnutls for the activation and expiration time checks.Nikos Mavrogiannopoulos2010-07-021-23/+13
|
* Added option to turn on/off session tickets.Nikos Mavrogiannopoulos2010-07-011-1/+1
|
* More libgcrypt fixes.Nikos Mavrogiannopoulos2010-06-301-5/+4
|
* Use libgcrypt calls only if gnutls is older than 2.11.0Nikos Mavrogiannopoulos2010-06-301-0/+7
|
* properly initialize variable.Nikos Mavrogiannopoulos2010-06-271-2/+5
|
* Added support for session tickets.Nikos Mavrogiannopoulos2010-06-271-1/+9
|
* Applied patch of jmdesp that allows certificate lists by client.Nikos Mavrogiannopoulos2009-07-201-17/+45
|
* Avoid requesting certificate from client when we already have it. Patch by ↵Nikos Mavrogiannopoulos2009-06-301-0/+6
| | | | AlainKnaff.
* Applied patch by AlainKnaff to correctly verify certificates per directory. ↵Nikos Mavrogiannopoulos2009-06-301-6/+8
| | | | | | | Patch by AlainKnaff. Solves: http://issues.outoforder.cc/view.php?id=93
* set srp username to empty string. Solves ↵Nikos Mavrogiannopoulos2009-06-301-2/+2
| | | | http://issues.outoforder.cc/view.php?id=92
* Allow openpgp certificates that have infinite expiration time. Suggestion by ↵Nikos Mavrogiannopoulos2009-06-301-3/+5
| | | | MattLoar at http://issues.outoforder.cc/view.php?id=96.
* Added patch to fix issue with mod_proxy. Investigation and patch by Alain Knaff.Nikos Mavrogiannopoulos2009-01-041-0/+4
| | | | | | | | | | | | | It seems that the reason for this behavior is that the mgs_hook_pre_connection is being called both for incoming and outgoing (mod_proxy) connections. The attached patch (mod_proxy.patch) tries to find out in which case we are, and returns OK without doing anything if it is an outgoing connection. The method of telling both cases apart (namely, checking whether remote address' hostname is set) may seem somewhat hackish, but it does work, even if HostnameLookups is set to On. If ever there is a problem with this method, we might need to check local port instead (whether it is 443), but that would break if a non-standard https port was used.
* APLOG_EMERG was replaced with APLOG_STARTUP for startup messages.Nikos Mavrogiannopoulos2008-11-021-4/+4
|
* Allow openpgp-only sitesNikos Mavrogiannopoulos2008-10-011-4/+6
|
* better loggingNikos Mavrogiannopoulos2008-10-011-21/+24
|
* updated README file to account for openpgp keys --patch by Jack BatesNikos Mavrogiannopoulos2008-10-011-11/+32
|
* added check for invalid contextNikos Mavrogiannopoulos2008-09-141-0/+3
|
* depend on main libgnutls library (and gnutls 2.4.x)Nikos Mavrogiannopoulos2008-06-291-6/+0
|
* added option to disable srp (for distributions that disable it in gnutls)Nikos Mavrogiannopoulos2008-02-201-0/+6
|
* prepare for an alpha releaseNikos Mavrogiannopoulos2008-01-241-2/+0
|
* (no commit message)Nikos Mavrogiannopoulos2007-12-161-1/+1
|
* more changes for openpgp support. Seems to be at a workable state.Nikos Mavrogiannopoulos2007-12-161-24/+29
|
* print error if preconfiguration failsNikos Mavrogiannopoulos2007-12-151-4/+8
|
* Initial support for openpgp keysNikos Mavrogiannopoulos2007-12-151-38/+182
|
* (no commit message)Nikos Mavrogiannopoulos2007-12-101-4/+0
|
* (no commit message)Nikos Mavrogiannopoulos2007-12-101-4/+8
|
* Corrected bug which did not allow the TLS session cache to be used.Nikos Mavrogiannopoulos2007-12-091-4/+2
|
* Added support for sending more than one certificate.Nikos Mavrogiannopoulos2007-12-081-5/+5
|
* added more error checks.Nikos Mavrogiannopoulos2007-12-031-2/+5
|
* better handling of RSAFile and DHFileNikos Mavrogiannopoulos2007-12-031-100/+33
|
* report the missing GnuTLSPriorities for the gnutls enabled hosts only.Nikos Mavrogiannopoulos2007-12-021-1/+1
|
* No more defaults for dhparams, rsaparams. Check for GnuTLSPriorities.Nikos Mavrogiannopoulos2007-12-021-10/+25
|
* The compatibility mode can now be enabled only using the GnuTLSPriorities ↵Nikos Mavrogiannopoulos2007-12-021-5/+0
| | | | string.
* (no commit message)Nikos Mavrogiannopoulos2007-12-021-4/+4
|
* added SSL_SERVER/CLIENT_S_TYPENikos Mavrogiannopoulos2007-12-021-0/+3
|
* export the alternative names of the certificateNikos Mavrogiannopoulos2007-12-021-45/+88
|
* added SSL_SERVER_M_SERIAL environment variableNikos Mavrogiannopoulos2007-12-021-0/+5
|
* more fixes for subject alternative name.Nikos Mavrogiannopoulos2007-12-021-15/+31
|
* some fixes in alternative name supportNikos Mavrogiannopoulos2007-12-021-8/+15
|
* Added support for subject alternative names. (untested)Nikos Mavrogiannopoulos2007-12-011-99/+154
|
* upgraded to 0.4.0Nikos Mavrogiannopoulos2007-11-281-392/+598
|
* start the CA Certificate code.Paul Querna2005-05-241-52/+91
|
* - add lua to do client verificationPaul Querna2005-05-171-12/+16
| | | | | - only use gcrypt locking when required to
* Refactor finding the correct server record to fix resumed sessions.0.2.00.2.xPaul Querna2005-04-251-36/+35
|
* apr_table_setn doesn't copy the data. oops.Paul Querna2005-04-241-3/+3
|
* We already have a Certificate, use it directly. With SNI, GnuTLS doesn't ↵Paul Querna2005-04-241-34/+9
| | | | properly update it's internal state. ick.
generated by cgit v0.9.2 at 2024-04-19 03:54:55 (GMT)