summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2022-05-21Fix typosDirk Engling
2022-05-21Handle several verify resultsDirk Engling
2022-05-20Check pinned fingerprints and add much more error checksDirk Engling
2022-05-20Add cert and key match checkDirk Engling
2022-05-20Enforce exactly one of the tls libs to be enabledDirk Engling
2022-05-20Add ciphersuite parser and converter for openssl ciphersuite namesDirk Engling
2022-05-20Check for more errors and dump the cert info to the userDirk Engling
2022-05-20Make mbedtls version dispatch more readableDirk Engling
2022-05-20Move pinned fingerprint handler out of openssls scopeDirk Engling
2022-05-20ensure that the format string is constDirk Engling
2022-05-20Remove library path used on brewDirk Engling
2022-05-20Implement a happy path mbedtls wrapperDirk Engling
2022-05-18Simplify tls code by removing all unused functions to allow for more generic helpers that can be used across lib wrappersDirk Engling
2022-05-17Remove one debug statementDirk Engling
2022-05-17Use a staging area to glue newlines to outgoing messages before sending them in two packetsDirk Engling
2022-05-17Get rid of some warningsDirk Engling
2022-05-17Move packet handler and line splitting to vchat-connection.cDirk Engling
2022-05-17Add -2 return code to read() calls that may feature an EAGAINDirk Engling
2022-05-17Rework line detectionDirk Engling
2022-05-16Only set ca file if it exists. Prevents error in openssl for the default pathDirk Engling
2022-05-16Decouple IO openssl's BIO abstraction and split connection and tls handling to allow for other TLS libsDirk Engling
2019-09-15Set loggedin to false when connection breaksDirk Engling
2017-05-06Add more cleanup code on connection lossDirk Engling
2016-08-27Adapt to openssl 1.1.0 APIDirk Engling
2016-04-15Reformat fingerprint display for better readabilityDirk Engling
2016-04-15Fix last patch (that was committed blindly)Dirk Engling
2016-04-15Make fingerprint pinning an optionDirk Engling
2016-04-15add chompDirk Engling
2016-04-15More fixes to fingerprint checker codeDirk Engling
2016-04-15Fix fingerprint verification codeDirk Engling
2016-04-15Also allow ignoring SSL error, if fingerprinting is enabledDirk Engling
2015-01-19Username checks need to terminate at 0, not at strlen(g_nick)Dirk Engling
2014-11-16Check for error allocating tls structDirk Engling
2014-11-16Keep pulling openssl's tentacles out of protocol codeDirk Engling
2014-11-15openssl include unnecessary hereDirk Engling
2014-05-07use version-independent cipherlist againerdgeist
2014-04-30merge github patcheserdgeist
2014-04-16reintroduce ignssl, safeguard pinningAndreas Kotes
2014-04-16Fix trailing spaceserdgeist
2014-04-16Merge from githuberdgeist
2014-04-16store & verify server cert fingerprintAndreas Kotes
2014-04-16fix version stringsAndreas Kotes
2014-04-16version 0.19Andreas Kotes
* fixed version string display * failing on SSL verify failures * removed ignssl option * reenabled ciphers options * added verifyssl option (cert verify depth)
2014-04-15Specify client methoderdgeist
2014-04-15use SSLv23_client_method & force cipherstringAndreas Kotes
2014-04-15Display cipher list, thanks to counterdgeist
2014-04-15Enforce strong cryptoerdgeist
2014-04-15disable RC4 explicitlyAndreas Kotes
2014-04-15don't check cipher if SSL object not availableAndreas Kotes
2014-04-15update debian packaging rulesAndreas Kotes