Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Be compatible with libtasn1 before v1.6. | Simon Josefsson | 2009-03-04 | 2 | -1/+14 |
| | |||||
* | Update to minitasn1 v1.8. | Simon Josefsson | 2009-03-04 | 10 | -17/+17 |
| | |||||
* | Use modern libtasn1 interfaces. | Simon Josefsson | 2009-03-04 | 10 | -51/+51 |
| | |||||
* | Bump version. | Simon Josefsson | 2009-03-02 | 2 | -2/+2 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-27 | 1 | -0/+3 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-27 | 8 | -91/+875 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-27 | 1 | -0/+36 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-23 | 1 | -10/+11 |
| | |||||
* | Removed several unneeded parameters from pkix tree. | Nikos Mavrogiannopoulos | 2009-02-22 | 1 | -611/+28 |
| | | | | | This reduces initial memory usage after gnutls_global_init() from 140kb (in amd64) to 50kb. | ||||
* | Added more verbose information. | Nikos Mavrogiannopoulos | 2009-02-22 | 1 | -0/+1 |
| | |||||
* | Revert "Added more verbose debugging info" | Nikos Mavrogiannopoulos | 2009-02-22 | 3 | -12/+1391 |
| | | | | This reverts commit c2d3596cddbb54ac4f19c44b15a03ee1fcceab12. | ||||
* | Added more verbose debugging info | Nikos Mavrogiannopoulos | 2009-02-22 | 3 | -1391/+12 |
| | |||||
* | Applied patch by Martin von Gagern: | Nikos Mavrogiannopoulos | 2009-02-22 | 1 | -6/+6 |
| | | | | | | The attached patch fixes gnutls_priority_init(3), but in a very hackish way, treating a percent sign as indicating a constant only if it is not immediately preceded by a double quote. | ||||
* | Added %SSL3_RECORD_VERSION priority option that allows to specify the client ↵ | Nikos Mavrogiannopoulos | 2009-02-21 | 3 | -10/+24 |
| | | | | hello message record version. Used to overcome buggy TLS servers. Report by Martin von Gagern. | ||||
* | Corrected bit disable (was flipping instead). | Nikos Mavrogiannopoulos | 2009-02-15 | 1 | -1/+1 |
| | | | | | Initialy reported by Daniel Kahn Gillmor on 9/1/2008. Many thanks to moog@sysdev.oucs.ox.ac.uk for bringing this into my attention. | ||||
* | libgnutls: Add new priority strings for allowing RSA-MD5 and V1-CA. | Simon Josefsson | 2009-02-11 | 3 | -8/+20 |
| | |||||
* | libgnutls: gnutls_openpgp_crt_print supports oneline mode. | Simon Josefsson | 2009-02-11 | 1 | -6/+103 |
| | |||||
* | libgnutls: gnutls_x509_crt_print prints signature algorithm in oneline mode. | Simon Josefsson | 2009-02-11 | 1 | -0/+21 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-11 | 3 | -3/+20 |
| | |||||
* | Bump versions. | Simon Josefsson | 2009-02-11 | 2 | -2/+2 |
| | |||||
* | Print bit size of RSA exponents. | Simon Josefsson | 2009-02-11 | 1 | -1/+1 |
| | |||||
* | Move down revocation check to revert code to how it looked before. | Simon Josefsson | 2009-02-06 | 1 | -16/+16 |
| | | | | | | The idea is that if you have marked a cert as trusted, you may want to trust it even though some authority has revoked it. This changes back how this code used to work. | ||||
* | Make it possible to trust intermediary certificates. | Simon Josefsson | 2009-02-02 | 1 | -32/+82 |
| | | | | | Based on tiny patch from "Douglas E. Engert" <deengert@anl.gov> in <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351/focus=3376>. | ||||
* | Assert less for expected errors. | Simon Josefsson | 2009-02-02 | 1 | -3/+5 |
| | |||||
* | Simplify keyid printing to avoid allocation and asserts. | Simon Josefsson | 2009-02-02 | 1 | -20/+3 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-02-01 | 9 | -35/+80 |
| | |||||
* | gnutls_handshake when sending client hello during a | Nikos Mavrogiannopoulos | 2009-01-27 | 1 | -1/+10 |
| | | | | | rehandshake, will not offer a version number larger than the current. Reported by Tristan Hill <stan@saticed.me.uk>. | ||||
* | result_size in gnutls_hex_encode behaves as documented. It now holds the ↵ | Nikos Mavrogiannopoulos | 2009-01-27 | 1 | -2/+5 |
| | | | | size of the result. Reported by John Brooks. | ||||
* | Update gnulib files. | Simon Josefsson | 2009-01-21 | 50 | -213/+331 |
| | |||||
* | Check return value properly. | Simon Josefsson | 2009-01-13 | 1 | -3/+2 |
| | |||||
* | Fix mem leak because buffer is not expanded correctly. | Simon Josefsson | 2009-01-13 | 1 | -4/+4 |
| | |||||
* | Permit V1 Certificate Authorities properly. | Simon Josefsson | 2009-01-09 | 1 | -2/+14 |
| | | | | | | | | Before they were mistakenly rejected even though GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Reported by "Douglas E. Engert" <deengert@anl.gov> in <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351>. | ||||
* | Cleanup logger function type. | Simon Josefsson | 2009-01-07 | 5 | -23/+15 |
| | |||||
* | Bump versions. | Simon Josefsson | 2009-01-07 | 2 | -4/+4 |
| | |||||
* | Doc fixes. | Simon Josefsson | 2009-01-07 | 1 | -99/+95 |
| | |||||
* | Fix warnings. | Simon Josefsson | 2009-01-07 | 5 | -22/+13 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2009-01-07 | 38 | -190/+576 |
| | |||||
* | actually deprecate MD5 and MD2 signatures during X.509 verification by ↵ | Daniel Kahn Gillmor | 2009-01-06 | 1 | -0/+2 |
| | | | | treating them as invalid unless the GNUTLS_VERIFY_ALLOW_SIGN_RSA_{MD5,MD2} flags are present. | ||||
* | Print public key id for certificate requests too. | Simon Josefsson | 2008-12-11 | 1 | -3/+42 |
| | |||||
* | Bump versions. | Simon Josefsson | 2008-12-11 | 2 | -4/+4 |
| | |||||
* | gnutls: New interface to get key id for certificate requests. | Simon Josefsson | 2008-12-11 | 2 | -0/+162 |
| | | | | | Patch from David Marín Carreño <davefx@gmail.com> in <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3321>. | ||||
* | Disable parts of gnulib self-tests that fail on mingw. | Simon Josefsson | 2008-12-10 | 1 | -1/+2 |
| | |||||
* | Update gnulib files. | Simon Josefsson | 2008-12-10 | 1 | -3/+3 |
| | |||||
* | Revert "Fix warnings in opencdk." | Simon Josefsson | 2008-12-10 | 9 | -27/+18 |
| | | | | This reverts commit 59cddc711e55bbd094bdf95986277fb33ba964ee. | ||||
* | Revert last commit. | Simon Josefsson | 2008-12-10 | 1 | -14/+35 |
| | |||||
* | Revert Nikos revert, and fix verification hopefully better. | Simon Josefsson | 2008-12-10 | 1 | -35/+14 |
| | | | | | The new logic is to include the CA cert in validation, but short-cut full validation of trusted certificates. | ||||
* | reintroduced the self signed certificate removal code. This time shouldn't ↵ | Nikos Mavrogiannopoulos | 2008-12-05 | 1 | -0/+18 |
| | | | | have the drawbacks that used to. | ||||
* | Disable secmem rather than overriding libgcrypt memory allocators. | Simon Josefsson | 2008-12-05 | 1 | -7/+5 |
| | | | | | Suggested by Werner Koch in <http://permalink.gmane.org/gmane.comp.encryption.gpg.libgcrypt.devel/2056>. | ||||
* | rearranged initialization stuff based on Werner's suggestions. | Nikos Mavrogiannopoulos | 2008-12-04 | 1 | -13/+13 |
| | |||||
* | Fix warnings in opencdk. | Simon Josefsson | 2008-12-03 | 9 | -18/+27 |
| |