summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* .travis.yml: use V=1tmp-travis-renamed-constructorNikos Mavrogiannopoulos2017-08-211-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* removed static ldflagsNikos Mavrogiannopoulos2017-08-211-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* fuzz: removed LIBS LDADD flagNikos Mavrogiannopoulos2017-08-201-2/+1
| | | | | | | It was causing issues in MacOSX linking and was not necessary for the fuzz builds. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* .travis.yml: print failed log files in fuzz after failureNikos Mavrogiannopoulos2017-08-201-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* hooks.m4: reduce the gap between minor soversion of 3.5.x and 3.6.0Nikos Mavrogiannopoulos2017-08-201-2/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* tests: make mini-record more friendly for OSes with limited bufferstmp-fix-sed-portabilityNikos Mavrogiannopoulos2017-08-201-1/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* pull/push backends: ECONNRESET is translated to GNUTLS_E_PREMATURE_TERMINATIONNikos Mavrogiannopoulos2017-08-201-0/+2
| | | | | | | This returns a more reasonable error code on platforms where this errno is set. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* tests: gnutls_x509_privkey_import: address issue on error pathNikos Mavrogiannopoulos2017-08-201-2/+3
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* sed: use it in a portable way in makefilesNikos Mavrogiannopoulos2017-08-202-4/+6
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* configure: disable hardware acceleration on aarch64/ilp32 modetmp-disable-aarch64-ilp32Nikos Mavrogiannopoulos2017-08-191-0/+6
| | | | | | | | | Our included assembly code for aarch64 is not suitable for that data mode. Resolves #252 Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* create_tls_random: avoid warning in fuzzying modeNikos Mavrogiannopoulos2017-08-191-2/+3
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* configure.ac: removed conditional FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTIONtmp-conditional-fuzzer-targetNikos Mavrogiannopoulos2017-08-191-1/+0
| | | | | | | | Instead rely only on the definition, to make fuzzying mode to be enabled even if --enable-fuzzer-target is not specified, but defined b the compiler. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* rnd-fuzzer: use ifdef instead of conditional compilationNikos Mavrogiannopoulos2017-08-192-5/+3
| | | | | | | This allows compiling in fuzzying mode even when --enable-fuzzer-target is not specified on configure, but the definition is present. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* fuzzer: Update base64 fuzzers + corporaTim Rühsen2017-08-1923-0/+27
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* fuzzer: Fix include path in run-clang.sh [skip ci]Tim Rühsen2017-08-191-1/+1
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* gnutls_x509_privkey_export: use _gnutls_copy_string on PEM datatmp-check-for-rfc7919Nikos Mavrogiannopoulos2017-08-181-1/+4
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Corrected argument names of functions to correspond to declarationNikos Mavrogiannopoulos2017-08-183-7/+7
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* lib: use casts and be explicit on intentional enumeration useNikos Mavrogiannopoulos2017-08-183-8/+12
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls-cli-debug: do not run non-FIPS cipher tests when in FIPS modeNikos Mavrogiannopoulos2017-08-181-0/+16
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc updateNikos Mavrogiannopoulos2017-08-181-0/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc updateNikos Mavrogiannopoulos2017-08-181-0/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* tests: added basic test for the operation of gnutls-cli-debugNikos Mavrogiannopoulos2017-08-182-1/+75
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* tests: verify the presence of GNUTLS_SFLAGS_RFC7919 flag in server and ↵Nikos Mavrogiannopoulos2017-08-181-0/+12
| | | | | | client mode Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls-cli-debug: check whether RFC7919 is supportedNikos Mavrogiannopoulos2017-08-183-0/+26
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls_session_get_flags: introduced GNUTLS_SFLAGS_RFC7919Nikos Mavrogiannopoulos2017-08-185-6/+14
| | | | | | | This allows checking whether the DHE parameters used were negotiated using RFC7919. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls_auth_*: check cs parameter for validity prior to useNikos Mavrogiannopoulos2017-08-181-1/+16
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* certtool: simplified certificate PEM printingNikos Mavrogiannopoulos2017-08-181-20/+5
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls-cli: fixed bounds check on benchmark-tlsNikos Mavrogiannopoulos2017-08-181-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* lib: removed legacy debugging codetmp-remove-debugging-codeNikos Mavrogiannopoulos2017-08-182-41/+0
| | | | | | | | | That code was code from the initial versions of gnutls. It was neither used nor updated for long time. Relates #248 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* fuzz: added missing files into dist [ci skip]Nikos Mavrogiannopoulos2017-08-181-6/+6
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* tests: added missing files in dist [ci skip]Nikos Mavrogiannopoulos2017-08-182-2/+3
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* tests: do not suppress stderr errors on servers startupNikos Mavrogiannopoulos2017-08-181-2/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc updateNikos Mavrogiannopoulos2017-08-181-1/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* abi-check: added check for 3.6.0 ABI compatibilityNikos Mavrogiannopoulos2017-08-182-1/+39892
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* gnutls_x509_crl_get_issuer_dn: removed unnecessary constNikos Mavrogiannopoulos2017-08-181-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* certtool: fixed documentation of sign-paramsNikos Mavrogiannopoulos2017-08-171-2/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* README.md: mention lockfile-progs dependencytmp-sign-rsa-rawNikos Mavrogiannopoulos2017-08-171-2/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* tests: tls-neg-ext4-key: explicitly restrict to TLS 1.2, 1.1 and 1.0Nikos Mavrogiannopoulos2017-08-172-11/+40
| | | | | | This allows testing all signature types used in the protocol. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* sign APIs: introduce RSA-RAW signing algorithmNikos Mavrogiannopoulos2017-08-1710-41/+97
| | | | | | | | | This ensures that there is a signing algorithm for all the operations we support. Previously, we required GNUTLS_SIGN_UNKNOWN to be acceptable by signing functions to accomodate for raw RSA operations. Now we make that explicit and in the process clean-up the API. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* removed devel/fuzz; functionality moved to fuzz/ [ci skip]Nikos Mavrogiannopoulos2017-08-179920-2081/+0
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* fuzzer: Add 'make -C fuzz coverage' [ci skip]Tim Rühsen2017-08-161-0/+16
| | | | | | This reports how much code is covered by fuzzing. Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* _gnutls_recv_server_certificate_status: use the same type in subtracted valuesNikos Mavrogiannopoulos2017-08-161-2/+2
| | | | | | | | | | This ensures that there are no issues with subtracting those values. Note that the second is read from an uint24_t and thus it is always positive regardless its type. Resolves #245 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* _gnutls_proc_srp_client_kx: use same type in subtracted valuesNikos Mavrogiannopoulos2017-08-161-1/+1
| | | | | | | | | | This ensures that there are no issues with subtracting those values. Note that the second is read from an uint16_t and thus it is always positive regardless its type. Resolves #244 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* fuzzer: Move regression corpora from tests/ to fuzz/Tim Rühsen2017-08-1621-800/+5
| | | | | | See fuzz/README.md for the corresponding paths. Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* fuzzer: Suppress leak in libgmp <= 6.1.2Tim Rühsen2017-08-162-1/+2
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* fuzzer: Suppress unsigned integer overflow in rnd-fuzzer.cTim Rühsen2017-08-161-0/+6
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* fuzzer: Initial check in for improved fuzzingTim Rühsen2017-08-168444-3/+3506
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* fuzzer: added a fuzzer targetNikos Mavrogiannopoulos2017-08-167-3/+189
| | | | | | | | This allows to compile the library with flags which will add predictable random generation and eliminate some crypto checks, in order for the library to be used for testing (fuzzying). Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* updated auto-generated filestmp-to-rsaNikos Mavrogiannopoulos2017-08-152-636/+668
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* gnutls_x509_privkey_export: made a wrapper over gnutls_x509_privkey_export2()Nikos Mavrogiannopoulos2017-08-151-30/+18
| | | | | | In addition, improved function description. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
View Lorry Controller Status