|
|
@70a1e5a
|
7 years |
thomas2.klute |
Introduce OCSP caching grace time
A cached OCSP response must be …
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@c005645
|
7 years |
thomas2.klute |
Mutex for DBM cache access
I noticed that with a DBM cache enabled …
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@8913410
|
7 years |
thomas2.klute |
Update copyright headers
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@fd6bb19
|
7 years |
thomas2.klute |
Extract OCSP access URI from the server certificate
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@fad7695
|
7 years |
thomas2.klute |
Store OCSP trust list in server config
This avoids recreating the …
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@94cb972
|
7 years |
thomas2.klute |
Minimal OCSP stapling implementation using externally provided …
asynciodebian/masterdebian/stretch-backportsproxy-ticketupstream
|
|
|
@9ca1f21
|
7 years |
thomas2.klute |
Allow loading more than one PKCS #11 module using GnuTLSP11Module
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@176047e
|
7 years |
thomas2.klute |
Use AP_INIT_FLAG for On/Off? config directives
Letting the Apache …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@7764015
|
7 years |
thomas2.klute |
Update GnuTLSP11Module documentation for stricter semantics
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@e021722
|
8 years |
thomas2.klute |
Update copyright headers for Nikos Mavrogiannopoulos' PKCS #11 patch
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@e391197
|
8 years |
thomas2.klute |
Update copyright headers for C source
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@a2e3c33
|
8 years |
thomas2.klute |
Rename option SSLProxyEngine to GnuTLSProxyEngine
This matches the …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@87f1ed2
|
8 years |
thomas2.klute |
Allow loading of an additional PKCS #11 provider library
When using …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@4133f2d
|
8 years |
thomas2.klute |
Unify argument handling in mgs_set_priorities
Just store the argument …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@2cde026d
|
8 years |
thomas2.klute |
Merge branch 'new-gnutls-api'
Merge my TLS proxy implementation with …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@f030883
|
8 years |
thomas2.klute |
Set GnuTLS priorities for proxy connections separately
Until now, …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@d04f7da
|
8 years |
thomas2.klute |
Version guards for gnutls_privkey_import_openpgp_raw workaround
The …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@2cde8111
|
8 years |
thomas2.klute |
Workarounds for OpenPGP key handling
Commit …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@259e835
|
8 years |
thomas2.klute |
Merge branch 'master' into new-gnutls-api
Branch 'master' at this …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@1d9cfaf
|
8 years |
thomas2.klute |
gnutls_config.c: Backport function signature changes from master
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@809c422
|
8 years |
thomas2.klute |
TLS proxy: Add support for CRLs to back end server verification
When …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@0de1839
|
8 years |
thomas2.klute |
Support X.509 auth for TLS proxy connections
This commit adds support …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@7314438
|
8 years |
thomas2.klute |
Fix whitespace problems detected by git
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@beb14d9
|
8 years |
thomas2.klute |
Proof of concept: Support for proxy back end connections using TLS
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@031acac
|
9 years |
nmav |
Use the new (3.1.3+) GnuTLS APIs to obtain private keys.
This allows …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@fd82e59
|
9 years |
dkg |
use strict compiler arguments by default (-Wall -Werror -Wextra)
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@2aaf4f5
|
9 years |
dkg |
implement GnuTLSExportCertificates control over max exported cert size …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@55dc3f0
|
9 years |
dkg |
Make Apache 2.4 display the correct module in error logs
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@671b64f
|
9 years |
dkg |
remove all trailing whitespace
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@cf2b905
|
9 years |
dkg |
MSVA: document and parse GnuTLSClientVerifyMethod directive
The …
asynciodebian/masterdebian/stretch-backportsjessie-backportsproxy-ticketupstream
|
|
|
@7d1ab49
|
10 years |
dkg |
restore GnuTLSExportCertificate directive
It looks to me like this …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@929d313
|
10 years |
dkg |
avoid use-after-free in mgs_set_key_file()
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@480aba1
|
10 years |
dkg |
correct context terminology for GnuTLSCache configurations
"global …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@040387c
|
10 years |
dkg |
server-wide settings should be defaults unless overridden in a vhost
…
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@8400c2e
|
10 years |
dkg |
properly document the GnuTLSCache directive
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@3b4c0d0
|
10 years |
neuromancer |
* Added Comments to Header Structures
* Refactored the following: …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@33826c5
|
11 years |
neuromancer |
mod_proxy support
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@e183628
|
11 years |
neuromancer |
Updated Copyright Headers & Formatting
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@443b18e
|
11 years |
neuromancer |
Remove Legacy LUA Code
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@b59327c
|
12 years |
nmav |
GnuTLSCache can now take a single argument (none).
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@e02dd8c
|
12 years |
nmav |
indented code
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@d8c7cf4
|
12 years |
nmav |
Only allow two options for DB. Berkeley DB and gdbm. The other options …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@771ca63
|
12 years |
nmav |
The GnuTLSCache variable now can be given the specific
option "sdbm" …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@bca274d
|
13 years |
nmav |
Session tickets are enabled by default.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@ae233c2
|
13 years |
nmav |
Added option to turn on/off session tickets.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@03a9a6b
|
13 years |
nmav |
Force SDBM.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@7ef38d4
|
14 years |
nmav |
if private key import fails try as pkcs8 key.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@8663ace
|
14 years |
nmav |
removed limit on ca certificates' number
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@787dab7
|
15 years |
nmav |
added option to disable srp (for distributions that disable it in gnutls)
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@2b3a248b
|
15 years |
nmav |
more changes for openpgp support. Seems to be at a workable state.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@e5bbda4
|
15 years |
nmav |
Initial support for openpgp keys
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@5e81262
|
15 years |
nmav |
Added support for sending more than one certificate.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@b077bdd
|
15 years |
nmav |
added more error checks.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@a3c97d1
|
15 years |
nmav |
better handling of RSAFile and DHFile
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@e239d1a
|
15 years |
nmav |
No more defaults for dhparams, rsaparams. Check for GnuTLSPriorities.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@fd73a08
|
15 years |
nmav |
Added support for subject alternative names. (untested)
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@7bebb42
|
15 years |
nmav |
upgraded to 0.4.0
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@836c2f9
|
18 years |
chip |
start the CA Certificate code.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@84cb5b2
|
18 years |
chip |
- add lua to do client verification
- only use gcrypt locking when …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@c301152
|
18 years |
chip |
- move hooks to gnutls_hooks.c
- use 'mgs_' as the prefix for all …
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|
|
|
@46b85d8
|
18 years |
chip |
move config functions to their own file.
asynciodebian/masterdebian/stretch-backportsjessie-backportsmsvaproxy-ticketupstream
|