Context Navigation

source: mod_gnutls/include

Legend:

: Added
: Modified
: Copied or renamed

	Rev	Age	Author	Log Message
(edit)	@e819f13	3 years	fiona.klute	Unconditionally enable early SNI parsing All supported GnuTLS … asynciomainproxy-ticket
(edit)	@b22def6	3 years	fiona.klute	Remove SIGPIPE signal block There's no discernible reason to keep … asynciomainproxy-ticket
(edit)	@05e2d9e	3 years	fiona.klute	Move function declarations for gnutls_io.c into a separate header asynciomainproxy-ticket
(edit)	@a3e0f7b	3 years	fiona.klute	Support a list of files for the GnuTLSOCSPResponseFile option This … asynciomainproxy-ticket
(edit)	@c446ca5	3 years	fiona.klute	Small cleanups (use mgs_ocsp_data_t, update copyright header) asynciomainproxy-ticket
(edit)	@1c3853a	3 years	fiona.klute	Minimal multi-staple implementation Works, but has limitations: * … asynciomainproxy-ticket
(edit)	@08ba205	3 years	fiona.klute	Turn per-vhost OCSP data into an array Size 1 for now, but it's a … asynciomainproxy-ticket
(edit)	@0378c22	4 years	fiona.klute	Move mod_proxy note name definitions to gnutls_proxy.h asynciodebian/mastermainproxy-ticket
(edit)	@a939015	4 years	fiona.klute	Test early SNI in HTTP/2 test (if enabled) asynciodebian/mastermainproxy-ticket
(edit)	@d4c1a4e	4 years	fiona.klute	Add a reference from mod_gnutls server settings back to the server_rec … asynciodebian/mastermainproxy-ticket
(edit)	@c0fc11e	4 years	fiona.klute	Separate functions for default SNI and loading virtual host … asynciodebian/mastermainproxy-ticket
(edit)	@f06c148	4 years	fiona.klute	Simplify wildcard match for virtual host aliases asynciodebian/mastermainproxy-ticket
(edit)	@6d8c00c	4 years	fiona.klute	Include apr_strings.h only where needed asynciodebian/mastermainproxy-ticket
(edit)	@a14cf5c	4 years	fiona.klute	Store SNI hostname in mod_gnutls' connection context asynciodebian/mastermainproxy-ticket
(edit)	@de3fad3	4 years	fiona.klute	Require handshake and request to use the same server The new check … asynciodebian/mastermainproxy-ticket
(edit)	@72b669e	5 years	fiona.klute	Refuse to send or receive over a failed TLS connection On a failed … asynciodebian/mastermainproxy-ticket
(edit)	@adceac0	5 years	fiona.klute	Remove unneeded server variables "cert_cn" and "cert_san" "cert_san" … asynciodebian/mastermainproxy-ticket
(edit)	@eced11a	5 years	fiona.klute	Remove server variable ocsp_cache_enable There is no need to … asynciodebian/mastermainproxy-ticket
(edit)	@babdb29	5 years	fiona.klute	Initialize and clean up the OCSP cache, following session cache patterns asynciodebian/mastermainproxy-ticket
(edit)	@ce5f776	5 years	fiona.klute	Move config and post_config of a cache instance to separate functions … asynciodebian/mastermainproxy-ticket
(edit)	@5ab2868	5 years	fiona.klute	Remove unused server variable The mgs_srvconf_rec.non_ssl_request … asynciodebian/mastermainproxy-ticket
(edit)	@b94aee2	5 years	fiona.klute	Remove internal cache type enum The cache type is now transparently … asynciodebian/mastermainproxy-ticket
(edit)	@6bbd378	5 years	fiona.klute	Remove special handling for APR memcache and leftover includes asynciodebian/mastermainproxy-ticket
(edit)	@de1ceab	5 years	fiona.klute	Replace internal cache implementation with mod_socache Massively … asynciodebian/mastermainproxy-ticket
(edit)	@0470e44	5 years	fiona.klute	Support common socache "type:config" style for GnuTLSCache directive asynciodebian/mastermainproxy-ticket
(edit)	@7921dc7	5 years	fiona.klute	Remove OpenPGP authentication OpenPGP authentication was removed from … asynciodebian/mastermainproxy-ticket
(edit)	@2246a84	5 years	fiona.klute	Make automatic OCSP cache updates and fuzz time configurable asynciodebian/mastermainproxy-ticket
(edit)	@0e3f8c6	5 years	fiona.klute	Create module-wide singleton watchdog during post_config asynciodebian/mastermainproxy-ticket
(edit)	@5c62a6a	5 years	fiona.klute	mod_gnutls.h.in: Remove outdated comment asynciodebian/mastermainproxy-ticket
(edit)	@3c123cd	5 years	fiona.klute	Update my name, prepare changelog for the next release asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@e7cf823	5 years	fiona.klute	Add process_connection hook, adjust hook order for mod_http2 … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@4cdd4fd	5 years	fiona.klute	Implement ssl_var_lookup function (subset of mod_ssl implementation) … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@23e98b3	5 years	fiona.klute	Implement ssl_engine_set as introduced by mod_ssl in Apache 2.4.33 asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@265159d	5 years	thomas2.klute	Send SNI for proxy connections asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@0b83b21	6 years	thomas2.klute	Remove two left-over function declarations for Lua auth handling … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@104e881	6 years	thomas2.klute	General comment updates for Doxygen compatibility Mostly /* */ vs. … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@e1c094c	6 years	thomas2.klute	Replace GnuTLSOCSPGraceTime with GnuTLSOCSPCacheTimeout Configuring a … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@b888e8b	6 years	thomas2.klute	New directive GnuTLSOCSPCheckNonce Some CAs refuse to send nonces in … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@3475e62	6 years	thomas2.klute	Remove EXPERIMENTAL mark for OCSP from internal documentation asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@0a02378	6 years	thomas2.klute	Style fixes for OCSP related time differences * Consistently use … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@333bbc7	6 years	thomas2.klute	Configurable OCSP socket timeout Stalled OCSP requests must time out … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@c6dda6d	6 years	thomas2.klute	Rate limit OCSP requests Retries after failed OCSP requests must be … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@78b75b3	7 years	thomas2.klute	Restore GnuTLSOCSPResponseFile option Using an externally updated … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@4d4a406	7 years	thomas2.klute	New config option: GnuTLSOCSPStapling This flag option … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@eee1432	7 years	thomas2.klute	Bind temporary pool in mgs_load_files() to ptemp scope Pool 'spool' … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@cc74801e	7 years	thomas2.klute	Move generated vhost-wide OCSP config into a private structure asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@6b89353	7 years	thomas2.klute	Remove Lua bytecode variables from directory config structure The … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@d6834e0	7 years	thomas2.klute	OCSP refresh mutex: Prevent parallel requests Add a global mutex … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@aa68232	7 years	thomas2.klute	Move global cache mutex into the private cache struct asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@e809fb30	7 years	thomas2.klute	Use generic cache functions for OCSP response caching With this, OCSP … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@70a1e5a	7 years	thomas2.klute	Introduce OCSP caching grace time A cached OCSP response must be … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@c005645	7 years	thomas2.klute	Mutex for DBM cache access I noticed that with a DBM cache enabled … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@04e6e65	7 years	thomas2.klute	Move declarations of cache-related functions to a dedicated header … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@379a297	7 years	thomas2.klute	Remove code used only with GnuTLS 2.x asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@8913410	7 years	thomas2.klute	Update copyright headers asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@c3ad933	7 years	thomas2.klute	Remove stale support code for Apache versions before 2.2 asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@fd6bb19	7 years	thomas2.klute	Extract OCSP access URI from the server certificate asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@fad7695	7 years	thomas2.klute	Store OCSP trust list in server config This avoids recreating the … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@64856fd	7 years	thomas2.klute	Get rid of exit(-1) calls in mgs_hook_post_config() This allows the … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@94cb972	7 years	thomas2.klute	Minimal OCSP stapling implementation using externally provided … asynciodebian/masterdebian/stretch-backportsmainproxy-ticketupstream
(edit)	@9ca1f21	8 years	thomas2.klute	Allow loading more than one PKCS #11 module using GnuTLSP11Module … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@176047e	8 years	thomas2.klute	Use AP_INIT_FLAG for On/Off? config directives Letting the Apache … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@e021722	8 years	thomas2.klute	Update copyright headers for Nikos Mavrogiannopoulos' PKCS #11 patch … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@e391197	8 years	thomas2.klute	Update copyright headers for C source asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@87f1ed2	8 years	thomas2.klute	Allow loading of an additional PKCS #11 provider library When using … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@4133f2d	8 years	thomas2.klute	Unify argument handling in mgs_set_priorities Just store the argument … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@2cde026d	8 years	thomas2.klute	Merge branch 'new-gnutls-api' Merge my TLS proxy implementation with … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@f030883	8 years	thomas2.klute	Set GnuTLS priorities for proxy connections separately Until now, … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@d04f7da	8 years	thomas2.klute	Version guards for gnutls_privkey_import_openpgp_raw workaround The … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@2cde8111	8 years	thomas2.klute	Workarounds for OpenPGP key handling Commit … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@c4a015b	8 years	thomas2.klute	Merge branch 'split-testsuite' into new-gnutls-api OpenPGP support is … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@809c422	8 years	thomas2.klute	TLS proxy: Add support for CRLs to back end server verification When … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@bd24203	8 years	thomas2.klute	Explicitly build trust list for proxy connections This change … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@0de1839	8 years	thomas2.klute	Support X.509 auth for TLS proxy connections This commit adds support … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@7314438	8 years	thomas2.klute	Fix whitespace problems detected by git asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@beb14d9	8 years	thomas2.klute	Proof of concept: Support for proxy back end connections using TLS … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@c1ef069	8 years	thomas2.klute	Record if a connection is a proxy connection When handling a proxy … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@e8acf05	8 years	thomas2.klute	Enable/disable TLS per connection in ssl_engine_disable Previously, … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@031acac	9 years	nmav	Use the new (3.1.3+) GnuTLS APIs to obtain private keys. This allows … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@2aaf4f5	9 years	dkg	implement GnuTLSExportCertificates control over max exported cert size … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@671b64f	9 years	dkg	remove all trailing whitespace asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@cf2b905	9 years	dkg	MSVA: document and parse GnuTLSClientVerifyMethod directive The … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainproxy-ticketupstream
(edit)	@7d1ab49	10 years	dkg	restore GnuTLSExportCertificate directive It looks to me like this … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@25e6b32	10 years	dkg	remove obsolete mgs_handle_t.rsa_params -- RSA-EXPORT is not supported … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@032ff02	10 years	dkg	parameterize mod_gnutls.h.in so that MOD_GNUTLS_VERSION and … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@040387c	10 years	dkg	server-wide settings should be defaults unless overridden in a vhost … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@dab7a25	10 years	dkg	rip out remaining references to obsolete "export" encryption asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@3596d6a	10 years	dkg	enable building against gnutls 3.x, which does not have <gnutls/extra.h> asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@3b4c0d0	10 years	neuromancer	* Added Comments to Header Structures * Refactored the following: … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@9ddaa29	10 years	neuromancer	Added missing header for string matching function ap_fnmatch() asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@9ee0464	10 years	neuromancer	Compilation Errors Cleanup Signed-off-by: Dash Shendy … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@37f8282	11 years	neuromancer	mod_proxy support continued Signed-off-by: Dash Shendy … asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@33826c5	11 years	neuromancer	mod_proxy support asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@fb26be5	12 years	neuromancer	Declation of apr_signal_block(int signum) asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@7c05ed1	12 years	neuromancer	Fix Compilation Warnings asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@ec9daf2	12 years	neuromancer	Reverted ENABLE_SRP define (was correct!) asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@c70c6d7	12 years	neuromancer	#defined missing ENABLE_SRP asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@16a6853	12 years	neuromancer	Re-Arranged USING_2_1_RECENT define asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@c7c2ad2	12 years	neuromancer	Removed reference to mgs_authz_lua() asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream
(edit)	@485d28e	12 years	neuromancer	Major Legacy Code Cleanup asynciodebian/masterdebian/stretch-backportsjessie-backportsmainmsvaproxy-ticketupstream

Note: See TracRevisionLog for help on using the revision log.

Download in other formats: