summaryrefslogtreecommitdiff
path: root/doc/cha-cert-auth.texi
Commit message (Collapse)AuthorAgeFilesLines
* doc: re-organized and modernized examplesNikos Mavrogiannopoulos2018-04-061-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc: removed references to openpgpNikos Mavrogiannopoulos2017-06-161-7/+6
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc: documented the inhibit any policy extensionNikos Mavrogiannopoulos2017-04-061-2/+6
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Introduced flag GNUTLS_VERIFY_ALLOW_SIGN_WITH_SHA1Nikos Mavrogiannopoulos2017-03-161-0/+1
| | | | | | | | | This allows performing a verification with only SHA1 allowed from the broken algorithms. This can be used to fine-tune verification in case default verification fails, to detect whether the failed algorithm was SHA1. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Introduced the %VERIFY_ALLOW_BROKEN priority string optionNikos Mavrogiannopoulos2017-03-161-0/+1
| | | | | | This allows enabling broken signature algorithms in certificate verification. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc: removed documentation related to OpenPGPNikos Mavrogiannopoulos2017-01-151-133/+12
| | | | | | Also added section explaining why OpenPGP is being deprecated. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc: Fix some typosAttila Molnar2016-02-061-1/+1
|
* renamed the auto-verification functionsNikos Mavrogiannopoulos2015-09-051-2/+2
| | | | The names are more consistent with the rest of the library.
* Document the new verification functionsNikos Mavrogiannopoulos2015-08-241-5/+10
|
* doc: added section about subject alternative namesNikos Mavrogiannopoulos2015-05-061-0/+20
|
* Cleaning up some awkward phrasings.Chris Barry2014-11-041-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* updated documentation on PKCS #11 trust module verificationNikos Mavrogiannopoulos2014-09-161-7/+55
|
* Added text on PKCS #11 verificationNikos Mavrogiannopoulos2014-07-281-9/+29
|
* Replaced gnutls_certificate_verify_peers3() with the extendable ↵Nikos Mavrogiannopoulos2014-04-091-1/+1
| | | | | | | gnutls_certificate_verify_peers(). That will allow adding new functionality to verification without the need to add new functions.
* Added gnutls_certificate_verify_peers4 which will verify in addition to ↵Nikos Mavrogiannopoulos2014-04-081-3/+6
| | | | hostname, the purpose of the end-certificate.
* renamed some of the newly introduced functionsNikos Mavrogiannopoulos2014-03-201-2/+2
|
* documented the new X.509 extension APINikos Mavrogiannopoulos2014-03-191-47/+102
|
* replaced ':' in anchor names (texinfo doesn't like it).Nikos Mavrogiannopoulos2013-10-301-6/+6
|
* removed unsupported RSA-EXPORTNikos Mavrogiannopoulos2013-06-261-6/+0
|
* doc updateNikos Mavrogiannopoulos2013-03-081-5/+4
|
* Documented the DANE situation in gnutls. Suggested by Gabor Toth.Nikos Mavrogiannopoulos2013-02-191-0/+7
|
* Reorganization of the authentication chapter.Nikos Mavrogiannopoulos2012-12-291-19/+19
|
* Revert "do not document low-level functions"Nikos Mavrogiannopoulos2012-11-281-0/+7
| | | | This reverts commit 7b334d581007ba4a91837edb1e0081959f32e363.
* doc updateNikos Mavrogiannopoulos2012-11-271-0/+4
|
* do not document low-level functionsNikos Mavrogiannopoulos2012-11-241-7/+0
|
* doc updateNikos Mavrogiannopoulos2012-11-211-6/+7
|
* doc updateNikos Mavrogiannopoulos2012-11-081-1/+3
|
* doc updateNikos Mavrogiannopoulos2012-11-071-0/+16
|
* removed gnutls_certificate_update_verify_flagsNikos Mavrogiannopoulos2012-11-021-2/+1
|
* Simplified certificate verification by adding ↵Nikos Mavrogiannopoulos2012-10-301-11/+5
| | | | | | gnutls_certificate_verify_peers3(). This function combines the RFC2818 hostname check and chain verification check.
* updated documentation.Nikos Mavrogiannopoulos2012-10-301-55/+10
|
* Added gnutls_certificate_update_verify_flags() to allow setting new flags ↵Nikos Mavrogiannopoulos2012-10-301-2/+3
| | | | without overriding any defaults.
* Added documentation on detecting libgnutls-dane.Nikos Mavrogiannopoulos2012-10-291-2/+23
|
* Separated DANE functionality from certtool and added danetool.Nikos Mavrogiannopoulos2012-10-121-1/+1
|
* Updates in DANE support. Allow caching of queries.Nikos Mavrogiannopoulos2012-10-101-4/+3
|
* Documentation updatesNikos Mavrogiannopoulos2012-10-091-1/+1
|
* libdane -> libgnutls-daneNikos Mavrogiannopoulos2012-10-081-1/+3
|
* Added a DANE library.Nikos Mavrogiannopoulos2012-10-061-37/+77
|
* openpgp doc updateNikos Mavrogiannopoulos2012-09-241-7/+71
|
* doc fixNikos Mavrogiannopoulos2012-08-181-1/+1
|
* do not use @euro{}Nikos Mavrogiannopoulos2012-06-051-2/+2
|
* doc updatesNikos Mavrogiannopoulos2012-06-041-0/+18
|
* updated docNikos Mavrogiannopoulos2012-05-251-2/+4
|
* Added convenience functions to load a trust list from a file or a memory buffer.Nikos Mavrogiannopoulos2012-05-091-4/+9
| | | | | | | New functions: gnutls_certificate_set_x509_system_trust, gnutls_pkcs11_obj_list_import_url2, gnutls_x509_trust_list_add_system_trust, gnutls_x509_trust_list_add_trust_file, gnutls_x509_trust_list_add_trust_mem.
* Documentation updatesNikos Mavrogiannopoulos2012-03-131-5/+4
|
* The public key storage backend was made extendable.Nikos Mavrogiannopoulos2012-02-181-19/+3
| | | | Added self test for the pubkey trust default backend.
* Modified the trust_db API to avoid dependendance on a structure.Nikos Mavrogiannopoulos2012-02-161-18/+10
|
* doc updatesNikos Mavrogiannopoulos2012-02-151-11/+14
|
* The hash in gnutls_store_commitment() is specified in raw format.Nikos Mavrogiannopoulos2012-02-151-1/+2
|
* doc updatesNikos Mavrogiannopoulos2012-02-141-5/+5
|
View Lorry Controller Status