Dimitri Papadopoulos
|
07386df8c6
No embedded URLs in translatable strings
|
vor 2 Jahren |
Dimitri Papadopoulos
|
f1c1aed6ca
Condition `!dtlsver` is true after `else if (dtlsver)`
|
vor 2 Jahren |
Dimitri Papadopoulos
|
c5367f1be4
Fix typos not found by codespell
|
vor 2 Jahren |
Dimitri Papadopoulos
|
b056e27c9a
Add missing '\n' to vpn_progress() messages
|
vor 3 Jahren |
Dimitri Papadopoulos
|
0621ef940d
Fix Linux kernel coding style error
|
vor 3 Jahren |
Dimitri Papadopoulos
|
daa7aff316
Fix Linux kernel coding style warning
|
vor 3 Jahren |
Dimitri Papadopoulos
|
fe795bf5b3
Reorganize #include
|
vor 3 Jahren |
Dimitri Papadopoulos
|
256e57d8b7
Remove duplicate includes
|
vor 3 Jahren |
David Woodhouse
|
2669ce309b
Offer OpenConnect-specific DTLSv1.2 AEAD suites with OpenSSL again
|
vor 3 Jahren |
David Woodhouse
|
d1d81fce46
Use BIO_dgram for OpenSSL DTLS
|
vor 3 Jahren |
David Woodhouse
|
9457f409e5
DTLS: Don't require secure renegotiation from Cisco
|
vor 3 Jahren |
Daniel Lenski
|
bfbe33bc08
Add start_dtls_anon_handshake() for PPP protocols
|
vor 3 Jahren |
David Woodhouse
|
45f9c27486
Fix timeout handling for DTLS handshake retries
|
vor 3 Jahren |
Daniel Lenski
|
8aa72856ee
include negotiated [D]TLS version in ciphersuite string for OpenSSL (GnuTLS already does this)
|
vor 4 Jahren |
David Woodhouse
|
112fb1c5e2
Fix double colon in DTLS12 ciphersuite list
|
vor 4 Jahren |
John Spencer
|
8ae6dd3981
Fix build with libressl 2.7.x/2.9.x
|
vor 5 Jahren |
David Woodhouse
|
c9b73ca372
Fix strerror() calls with negative values
|
vor 5 Jahren |
David Woodhouse
|
323849bab8
Turn off Extended Master Secret support (RFC7627) for resumed DTLS sessions
|
vor 5 Jahren |
David Woodhouse
|
97cafd182f
Disable encrypt-then-mac where possible with DTLS and OpenSSL
|
vor 5 Jahren |
Rosen Penev
|
afb6442533
Fix DTLS bug when lacking deprecated APIs
|
vor 5 Jahren |
David Woodhouse
|
b795ff3525
Add Pulse Connect Secure support
|
vor 5 Jahren |
David Woodhouse
|
917f15ad89
Clean up DTLS cipher selection for OpenSSL >= 1.1.0
|
vor 5 Jahren |
David Woodhouse
|
cd75e8fb90
Add Cisco DTLSv1.2 support for OpenSSL build
|
vor 5 Jahren |
David Woodhouse
|
fd8806e63b
Clean up X-DTLS-CipherSuite header generation to allow for DTLSv1.2
|
vor 5 Jahren |
David Woodhouse
|
6526aa640a
OpenSSL: Loop over DTLS ciphersuites looking for the one we asked for.
|
vor 5 Jahren |
Nikos Mavrogiannopoulos
|
71d6599879
No longer send the TLS extension for the PSK protocol
|
vor 6 Jahren |
Nikos Mavrogiannopoulos
|
0787d693f7
Use the client hello session identifier to transmit the client identifier
|
vor 6 Jahren |
Piotr Kubaj
|
69793ae0c1
Fix build with LibreSSL 2.5.1 and higher.
|
vor 7 Jahren |
David Woodhouse
|
dadbd59070
Calculate MTU for PSK-NEGOTIATE
|
vor 8 Jahren |
David Woodhouse
|
97d97dff07
Allow DTLS version negotiation with PSK-NEGOTIATE and OpenSSL 1.0.2
|
vor 8 Jahren |