summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
...
* tests: fail() function will also print function and line informationNikos Mavrogiannopoulos2016-04-292-2/+5
|
* _gnutls_hex2bin: refuse to decode odd-sized hex dataNikos Mavrogiannopoulos2016-04-291-0/+3
|
* tests: added unit tests on the HEX encoding/decoding functionsNikos Mavrogiannopoulos2016-04-292-1/+226
|
* certtool: eliminated memory leaks in DH parameter printing/generation.Nikos Mavrogiannopoulos2016-04-283-1/+10
|
* certtool: combined all the seed decoding methods to a single oneNikos Mavrogiannopoulos2016-04-283-43/+44
| | | | | That not only simplifies the code, but also allows decoding hex strings which contain not hex chars (and that allows decoding hex of the form XX:XX:XX)
* Revert "tests: ensure the seed is provided in plain hex"Nikos Mavrogiannopoulos2016-04-281-5/+5
| | | | This reverts commit 0ea7206e12f52f6ed50c4a76ea0a23f5470115b2.
* tests: check certtool dh-parameter generation with --provable optionNikos Mavrogiannopoulos2016-04-282-1/+86
|
* tests: ensure the seed is provided in plain hexNikos Mavrogiannopoulos2016-04-281-5/+5
|
* certtool: allow specifying seed size when generating provable DH parametersNikos Mavrogiannopoulos2016-04-283-12/+49
|
* doc updateNikos Mavrogiannopoulos2016-04-281-0/+3
|
* tests: simplified custom-urls checkNikos Mavrogiannopoulos2016-04-281-56/+1
|
* tests: added check on whether builtin URLs cannot be overridenNikos Mavrogiannopoulos2016-04-282-1/+289
|
* keys: custom URLs take precedence over pre-defined URLsNikos Mavrogiannopoulos2016-04-284-32/+36
| | | | | | | This allows applications to define the own 'system:' or 'pkcs11:' URLs. Resolves #89
* x25519: ensure that a valid private key is present on key derivationNikos Mavrogiannopoulos2016-04-281-1/+1
|
* doc updateNikos Mavrogiannopoulos2016-04-281-0/+1
|
* tests: added check for GNUTLS_FORCE_CLIENT_CERT init flagNikos Mavrogiannopoulos2016-04-281-12/+20
|
* instead of assigning a variable per flag use the init flags directlyNikos Mavrogiannopoulos2016-04-288-41/+17
| | | | | That is store the flags provided in gnutls_init() in the session structure and use these flags directly when required.
* added flag in session to force sending a client certificateNikos Mavrogiannopoulos2016-04-284-8/+16
| | | | | | | | | This handles the use case of a client connecting to a server which incorrectly lists the CA certificates it supports. Without that change the only option was to avoid using the "automatic" client certificate functions, but rather utilize callbacks. With that approach this use case is handled by the "automatic" certificate selection functions.
* .gitlab-ci.yml: do not load submodules on CI since they are not usedNikos Mavrogiannopoulos2016-04-281-10/+10
| | | | This reduces the CI running time.
* tests: check client behavior of sending CA certificatesNikos Mavrogiannopoulos2016-04-283-1/+434
|
* doc: removed news about feature already backported in 3.4.6Nikos Mavrogiannopoulos2016-04-271-4/+0
|
* examples: introduced basic error checking in more examplesNikos Mavrogiannopoulos2016-04-276-141/+103
|
* examples: simplified the basic client exampleNikos Mavrogiannopoulos2016-04-271-11/+10
|
* examples: introduced basic error checking in main client examplesNikos Mavrogiannopoulos2016-04-272-47/+36
|
* examples: corrected the required version of exampleNikos Mavrogiannopoulos2016-04-271-2/+2
|
* tests: enhanced dane testing with offline verification checksNikos Mavrogiannopoulos2016-04-261-34/+573
|
* dane: verification will not fail if a CA entry is encountered but cannot be ↵Nikos Mavrogiannopoulos2016-04-261-3/+5
| | | | | | | | | verified That addresses the issue of verifying a single certificate against a list of TLSA entries that contain an entry with CA usage (cert usage 0). With the previous behavior verification would have failed, while now this entry will be skipped.
* doc: improved documentation on certificate and DANE verification functionsNikos Mavrogiannopoulos2016-04-262-10/+17
|
* dane: updated documentation of dane_verify_crt_rawNikos Mavrogiannopoulos2016-04-261-19/+4
|
* doc: added clarifications on documentation for dane_state_tNikos Mavrogiannopoulos2016-04-262-3/+7
|
* manpages: include the dane functions into the distributed pagesNikos Mavrogiannopoulos2016-04-261-2/+20
|
* ecdhe: eliminated unneeded checks for zero of public parametersNikos Mavrogiannopoulos2016-04-241-6/+0
| | | | | There were not required by either draft-ietf-tls-rfc4492bis-07 or rfc7748.
* doc: added example client application utilizing the 3.1.x APIsNikos Mavrogiannopoulos2016-04-243-5/+214
|
* examples: added explicit 3.5.0 dependency in ex-client-x509Nikos Mavrogiannopoulos2016-04-241-2/+2
|
* examples: added error checks and updated verify_certificate_chain()Nikos Mavrogiannopoulos2016-04-241-24/+26
|
* .gitlab-ci.yml: made the linux tag explicit for our runnersNikos Mavrogiannopoulos2016-04-241-0/+9
|
* doc updateNikos Mavrogiannopoulos2016-04-241-15/+19
|
* doc: document curve X25519Nikos Mavrogiannopoulos2016-04-241-1/+2
|
* doc: clarify what catch all means in all scenariosNikos Mavrogiannopoulos2016-04-241-3/+6
|
* gnutls-cli-debug: added tests for supported curvesNikos Mavrogiannopoulos2016-04-243-17/+56
|
* tests: include self tests with CURVE-X25519Nikos Mavrogiannopoulos2016-04-243-64/+117
|
* gnutls-cli: enhanced KX benchmark with X25519Nikos Mavrogiannopoulos2016-04-241-11/+12
|
* handshake: added support for ECDH with curve X25519Nikos Mavrogiannopoulos2016-04-2416-86/+333
| | | | This follows draft-ietf-tls-rfc4492bis-07 and rfc7748
* tests: updated the openssl compat check to make explicit the used curvesNikos Mavrogiannopoulos2016-04-241-23/+32
|
* ecdhe: print the received curve from the server on debug modeNikos Mavrogiannopoulos2016-04-241-0/+7
|
* gnutls-cli-debug: added CHACHA20-POLY1305 detectionNikos Mavrogiannopoulos2016-04-243-6/+23
|
* tests: on out of memory conditions do not fail the hash-large testNikos Mavrogiannopoulos2016-04-231-0/+13
| | | | | | This test may require a large amount of memory which some CI systems cannot provide. When an out-of-memory-error is detected skip the test instead of failing.
* session: removed unused parameters from RSA-EXPORT eraNikos Mavrogiannopoulos2016-04-232-7/+0
|
* README-alpha.md: updated badges with the new gitlab URLsNikos Mavrogiannopoulos2016-04-231-3/+3
|
* doc: document the TPM 1.2 limitationNikos Mavrogiannopoulos2016-04-221-0/+1
|
View Lorry Controller Status