| #
5c389b79 |
| 02-Jul-2023 |
beck <beck@openbsd.org> |
Remove the ability to do tls 1.0 and 1.1 from libtls.
With this change any requests from configurations to request
versions of tls before tls 1.2 will use tls 1.2. This prepares
us to deprecate tls
Remove the ability to do tls 1.0 and 1.1 from libtls.
With this change any requests from configurations to request
versions of tls before tls 1.2 will use tls 1.2. This prepares
us to deprecate tls 1.0 and tls 1.1 support from libssl.
ok tb@
show more ...
|
| #
14dc8396 |
| 02-Jan-2021 |
schwarze <schwarze@openbsd.org> |
Tweak previous:
* Do not abuse .Bl -tag for lists without bodies, use .Bl -item instead.
* In tagged lists, put bodies into bodies, not into heads.
* Add a few missing macros.
* Drop some useless quo
Tweak previous:
* Do not abuse .Bl -tag for lists without bodies, use .Bl -item instead.
* In tagged lists, put bodies into bodies, not into heads.
* Add a few missing macros.
* Drop some useless quoting.
show more ...
|
| #
4a699ee4 |
| 02-Jan-2021 |
kn <kn@openbsd.org> |
Make list of DHE parameters more prominent
Follow the previous commit and complete the manual page for consistency;
better readable and tags for free.
OK tb
|
| #
fcde59b2 |
| 30-Dec-2020 |
kn <kn@openbsd.org> |
Make the list of supported protocols more prominent
Manuals like httpd.conf(5) refer to this for valid protocol strings, but
elements inlined into sentences are hard find to spot.
Use a list as alr
Make the list of supported protocols more prominent
Manuals like httpd.conf(5) refer to this for valid protocol strings, but
elements inlined into sentences are hard find to spot.
Use a list as already done elsewhere in this manual.
OK jmc on earlier version
Feeback OK tb
show more ...
|
| #
6f8363ee |
| 22-Jan-2020 |
beck <beck@openbsd.org> |
Note in the man page that the default protocols list includes 1.3
ok jsing@
|
| #
4c479435 |
| 20-Jan-2020 |
jsing <jsing@openbsd.org> |
Add support for TLSv1.3 as a protocol to libtls.
This makes tls_config_parse_protocols() recognise and handle "tlsv1.3".
If TLSv1.3 is enabled libtls will also request libssl to enable it.
ok beck@
Add support for TLSv1.3 as a protocol to libtls.
This makes tls_config_parse_protocols() recognise and handle "tlsv1.3".
If TLSv1.3 is enabled libtls will also request libssl to enable it.
ok beck@ tb@
show more ...
|
| #
e8bac763 |
| 12-Aug-2017 |
jsing <jsing@openbsd.org> |
Document tls_config_set_dheparams().
|
| #
a0786738 |
| 11-Aug-2017 |
jmc <jmc@openbsd.org> |
new sentence, new line;
|
| #
4896de1e |
| 10-Aug-2017 |
jsing <jsing@openbsd.org> |
Add a tls_config_set_ecdhecurves() function to libtls, which allows the
names of the elliptic curves that may be used during client and server
key exchange to be specified.
This deprecates tls_confi
Add a tls_config_set_ecdhecurves() function to libtls, which allows the
names of the elliptic curves that may be used during client and server
key exchange to be specified.
This deprecates tls_config_set_ecdhecurve(), which could only be used to
specify a single supported curve.
ok beck@
show more ...
|
| #
8b02f64e |
| 28-Jan-2017 |
schwarze <schwarze@openbsd.org> |
add HISTORY and AUTHORS
|
| #
4801fc0b |
| 27-Jan-2017 |
schwarze <schwarze@openbsd.org> |
Fix Copyright notices; ok beck@ jsing@ tedu@
|
| #
e690d60f |
| 25-Jan-2017 |
schwarze <schwarze@openbsd.org> |
split the tls_init(3) that had grown fat to allow healthy future growth;
suggested by jsing@; "i would just chuck it in" jmc@
|