Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Better checks in loops.origin/new | Nikos Mavrogiannopoulos | 2010-05-24 | 1 | -2/+2 |
| | |||||
* | Simplified internal API. The only question that remains now is how to handle | Nikos Mavrogiannopoulos | 2010-05-24 | 8 | -141/+102 |
| | | | | | | | the gnutls_pkcs11_privkey_t. Currently it opens a session and maintains a handle to the object. This will require locks to be added on operations. Alternatively new sessions may be opened for each operation performed. This is guarranteed by PKCS #11 to be thread safe but will of course require to ask for the PIN again. | ||||
* | Removed debugging print. | Nikos Mavrogiannopoulos | 2010-05-24 | 1 | -2/+0 |
| | |||||
* | Added a modified pakchois library (to open arbitrary pkcs11 modules). | Nikos Mavrogiannopoulos | 2010-05-24 | 7 | -19/+2881 |
| | | | | Current gnutls works only with this one. | ||||
* | Added missing file. | Nikos Mavrogiannopoulos | 2010-05-24 | 1 | -0/+495 |
| | |||||
* | Removed finished items. | Nikos Mavrogiannopoulos | 2010-05-24 | 1 | -4/+0 |
| | |||||
* | Noted that there things to be done. | Nikos Mavrogiannopoulos | 2010-05-24 | 1 | -8/+11 |
| | |||||
* | Added documentation on abstract types. | Nikos Mavrogiannopoulos | 2010-05-24 | 2 | -130/+183 |
| | |||||
* | Common code for calculation of RSA exp1 and exp2. Also update the openpgp | Nikos Mavrogiannopoulos | 2010-05-23 | 6 | -41/+69 |
| | | | | code to calculate those values. | ||||
* | More fixes. | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -65/+87 |
| | |||||
* | Corrected nicely hidden bug that caused accesses to uninitialized variables | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -6/+12 |
| | | | | | if the gcry_mpi_print() functions were pessimists and returned more size than actually needed for the print. | ||||
* | Added some sanity checks. | Nikos Mavrogiannopoulos | 2010-05-23 | 1 | -2/+8 |
| | |||||
* | Documentation updates. Separated big gnutls.texi to chapter to allow easier | Nikos Mavrogiannopoulos | 2010-05-23 | 17 | -4257/+3980 |
| | | | | maintainance. | ||||
* | Added support to copy certificates and private keys to tokens. | Nikos Mavrogiannopoulos | 2010-05-23 | 21 | -331/+1269 |
| | | | | | | | | | | | New functions: gnutls_pkcs11_copy_x509_crt() gnutls_pkcs11_copy_x509_privkey() gnutls_pkcs11_delete_url() Certtool was updated to allow copying certificates and private keys to tokens. Deleting an object has issues (segfault) but it seems to be related with libopensc and its pkcs11 API. | ||||
* | Merge branch 'new' of ssh://git.sv.gnu.org/srv/git/gnutls into new | Nikos Mavrogiannopoulos | 2010-05-23 | 1 | -0/+1 |
|\ | |||||
| * | Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). | Nikos Mavrogiannopoulos | 2010-05-22 | 8 | -32/+147 |
| | | |||||
| * | Added gnutls_pubkey_import_pkcs11(), gnutls_pubkey_import_rsa_raw(), | Nikos Mavrogiannopoulos | 2010-05-22 | 10 | -134/+591 |
| | | | | | | | | gnutls_pubkey_import_dsa_raw(), gnutls_pkcs11_obj_export(). | ||||
| * | Ignore files that should be ignored. | Nikos Mavrogiannopoulos | 2010-05-22 | 1 | -0/+8 |
| | | |||||
| * | Tried to document recent changes. | Nikos Mavrogiannopoulos | 2010-05-22 | 3 | -5/+89 |
| | | |||||
| * | Added gnutls_pubkey_t abstract type to handle public keys. It can currently | Nikos Mavrogiannopoulos | 2010-05-22 | 20 | -429/+1578 |
| | | | | | | | | | | | | | | | | | | import/export public keys from existing certificate types as well as from PKCS #11 URL. This allows generating a certificate or certificate request from a given public key (currently one could only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of just certificates. Certtool updated to list those objects. | ||||
| * | Added gnutls_pkcs11_token_get_flags() to distinguish between hardware and ↵ | Nikos Mavrogiannopoulos | 2010-05-22 | 2 | -3/+87 |
| | | | | | | | | soft tokens. | ||||
| * | Export all symbols from C++ library. This library doesn't contain any | Nikos Mavrogiannopoulos | 2010-05-22 | 3 | -14/+9 |
| | | | | | | | | | | internal symbols anyway and there is no reason to mess with the C++ ABI that hasn't got the problems of C. | ||||
| * | Added support for libnettle backend. This uses gmp for big number operations. | Nikos Mavrogiannopoulos | 2010-05-21 | 27 | -85/+1870 |
| | | | | | | | | It is not currently completed. It lacks RSA blinding as well as optimizations. | ||||
| * | Documented that the --file options in gnutls-cli and gnutls-serv can accept ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 5 | -15/+16 |
| | | | | | | | | a PKCS #11 URL. | ||||
| * | Corrected bug in DSA signature generation. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -12/+21 |
| | | |||||
| * | Added operations to sign CRLs, certificates and requests with an abstract ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 9 | -79/+288 |
| | | | | | | | | key and thus with a PKCS #11 key as well. | ||||
| * | privkey.h -> abstract.h | Nikos Mavrogiannopoulos | 2010-05-18 | 7 | -6/+6 |
| | | |||||
| * | The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 4 | -8/+79 |
| | | | | | | | | | | | | gnome-keyring's certificates and use them in the trusted list. | ||||
| * | Documented that gnutls_global_init calls gnutls_pkcs11_init. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -0/+3 |
| | | |||||
| * | Documented behavioral change. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -2/+4 |
| | | |||||
| * | Because we want to differentiate the behavior of server | Nikos Mavrogiannopoulos | 2010-05-18 | 2 | -3/+33 |
| | | | | | | | | | | | | | | | | and client with regards to safe renegotiation. If a server didn't have either SAFE_RENEGOTIATION or UNSAFE_RENEGOTIATION set the safe renegotiation will be the default. This (as well as the safe_renegotiation_set flag) has to be removed once safe renegotiation is default in both server and client side. | ||||
| * | Emulate old gnutls behavior regarding safe renegotiation if the priority_* ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -0/+5 |
| | | | | | | | | functions are not called. | ||||
| * | Only send termination request to avoid stalling on servers that do not reply. | Nikos Mavrogiannopoulos | 2010-05-16 | 1 | -1/+1 |
| | | |||||
| * | Corrected issue on the %SSL3_RECORD_VERSION priority string. It now | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -10/+5 |
| | | | | | | | | works even when resuming a session. | ||||
| * | Added initial example. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -1/+279 |
| | | |||||
| * | Corrections in openpgp private key usage. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -48/+33 |
| | | |||||
| * | Updated self tests and examples to avoid using deprecated functions such as | Nikos Mavrogiannopoulos | 2010-05-16 | 5 | -520/+12 |
| | | | | | | | | gnutls_certificate_server_set_retrieve_function and the sign callback. | ||||
| * | Use the new callback function. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -16/+9 |
| | | |||||
| * | Added documentation for most of the new functions. | Nikos Mavrogiannopoulos | 2010-05-16 | 8 | -18/+370 |
| | | |||||
| * | Documented that it was initially based on neon pkcs11 and got ideas from ↵ | Nikos Mavrogiannopoulos | 2010-05-16 | 1 | -24/+3 |
| | | | | | | | | pkcs11-helper library. | ||||
| * | Corrections to properly handle token removal and insert. | Nikos Mavrogiannopoulos | 2010-05-15 | 6 | -6/+38 |
| | | |||||
| * | Deprecated the sign callback. | Nikos Mavrogiannopoulos | 2010-05-15 | 2 | -14/+29 |
| | | |||||
| * | Added gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are | Nikos Mavrogiannopoulos | 2010-05-15 | 41 | -1054/+2147 |
| | | | | | | | | | | an abstract private key type that can be used to sign/encrypt any private key of pkcs11,x509 or openpgp types. Added support for PKCS11 in gnutls-cli/gnutls-serv. | ||||
| * | ignore unrelated to gnutls files. | Nikos Mavrogiannopoulos | 2010-05-15 | 1 | -34/+4 |
| | | |||||
| * | Added several helper functions, to allow printing of tokens. | Nikos Mavrogiannopoulos | 2010-05-11 | 9 | -90/+448 |
| | | |||||
| * | Added ability to export certificates from PKCS #11 tokens. | Nikos Mavrogiannopoulos | 2010-05-11 | 11 | -397/+655 |
| | | | | | | | | | | Added ability to list trusted certificates, or only certificates with a corresponding private key or just all. | ||||
| * | Added initial PKCS #11 support. Certtool can now print lists of certificates | Nikos Mavrogiannopoulos | 2010-05-11 | 25 | -132/+1938 |
| | | | | | | | | available in system. | ||||
| * | Optimized the check_if_same(). | Nikos Mavrogiannopoulos | 2010-05-11 | 1 | -3/+26 |
| | | |||||
| * | Added a forgoten by god OID for RSA. Warn using the actual OID | Nikos Mavrogiannopoulos | 2010-05-11 | 3 | -6/+11 |
| | | | | | | | | on unknown public key algorithms. | ||||
* | | Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). | Nikos Mavrogiannopoulos | 2010-05-23 | 8 | -32/+147 |
| | |