summaryrefslogtreecommitdiff
path: root/lib
Commit message (Collapse)AuthorAgeFilesLines
* added the .check function in FIPS140-2 codeNikos Mavrogiannopoulos2014-12-101-0/+10
|
* _gnutls_x509_get_dn() always return a null terminated stringNikos Mavrogiannopoulos2014-12-051-0/+4
|
* if the rnd structure doesn't provide check, _gnutls_rnd_check() will succeedNikos Mavrogiannopoulos2014-12-021-1/+4
|
* Reorganized, and eliminated memory leak in _gnutls_x509_crt_check_revocation()Nikos Mavrogiannopoulos2014-11-301-13/+15
| | | | Reported by Tim Rühsen.
* doc updateNikos Mavrogiannopoulos2014-11-282-1/+8
|
* gnutls_session_get_desc: allow proper printing of the NULL KXNikos Mavrogiannopoulos2014-11-281-9/+15
|
* gnutls_certificate_set_x509_key_*: eliminated memory leak when certificate ↵Nikos Mavrogiannopoulos2014-11-251-2/+7
| | | | | | could not be parsed Reported by Georg Richter.
* documented the limitations of the loading functionsNikos Mavrogiannopoulos2014-11-241-0/+12
|
* corrected memleak in read_key_mem()Nikos Mavrogiannopoulos2014-11-241-0/+1
| | | | Patch by Georg Richter.
* restore only the documented behaviorNikos Mavrogiannopoulos2014-11-222-3/+2
|
* treat GNUTLS_E_GOT_APPLICATION_DATA as non-fatal if initial negotiation is ↵Nikos Mavrogiannopoulos2014-11-212-4/+9
| | | | | | | complete This corrects a regression introduced in b5a0de2e6da98866cafb770c3141b7353d030ab2 Reported by Dan Winship. https://savannah.gnu.org/support/?108690
* Revert "The priority modifier %LATEST_RECORD_VERSION is now the default"Nikos Mavrogiannopoulos2014-11-211-0/+1
| | | | This reverts commit 96b408b20fe8707306f38cba6f652556b99a47e4.
* _rnd_get_event: use memset to avoid valgrind complaintsNikos Mavrogiannopoulos2014-11-211-0/+1
|
* compilation fix for FIPS140-2 modeNikos Mavrogiannopoulos2014-11-211-13/+14
|
* deinitialize the OCSP response der dataNikos Mavrogiannopoulos2014-11-211-15/+23
| | | | | That also makes sure that reinitialization of ASN1 structures are done when it is required only.
* NORMAL priority: prioritize the less than 256-bits curves at the lowest levelNikos Mavrogiannopoulos2014-11-171-4/+4
|
* properly reset the zombie mode in FIPS modeNikos Mavrogiannopoulos2014-11-163-0/+11
| | | | This amends 9158f590f4a18c84fc9eb41877b29d73b30af879
* use the original DER/BER data when verifying an OCSP responseNikos Mavrogiannopoulos2014-11-141-7/+4
| | | | | Conflicts: lib/x509/ocsp.c
* windows: updated _gnutls_ucs2_to_utf8()Nikos Mavrogiannopoulos2014-11-141-10/+31
|
* set the GNUTLS_PIN_CONTEXT_SPECIFIC flag on PIN callbackNikos Mavrogiannopoulos2014-11-131-0/+3
|
* rnd: removed the packed attribute from event_stNikos Mavrogiannopoulos2014-11-131-5/+1
| | | | | That prevents a SIGBUS on solaris sparc systems. Reported by Thomas Thorberger.
* The priority modifier %LATEST_RECORD_VERSION is now the defaultNikos Mavrogiannopoulos2014-11-131-1/+0
| | | | | This works-around issue with servers that forbit the SSL 3.0 version number from the first packet of the record protocol.
* when exporting curve coordinates to X9.63 format, perform additional sanity ↵Nikos Mavrogiannopoulos2014-11-091-0/+10
| | | | | | checks on input Reported by Sean Burford.
* pkcs11: pass the correct user type to protected authentication loginNikos Mavrogiannopoulos2014-11-071-3/+2
|
* pkcs11_login: set the correct user type on reauthenticationNikos Mavrogiannopoulos2014-11-072-4/+11
|
* pkcs11: force login on tokens that require itNikos Mavrogiannopoulos2014-11-073-8/+11
|
* added support for PKCS #11 keys that require reauthentication and simplified ↵Nikos Mavrogiannopoulos2014-11-073-8/+44
| | | | pkcs11_login
* Fix double-free in gnutls_pkcs12_simple_parse()Chen Hongzhi2014-11-051-2/+0
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* updated textNikos Mavrogiannopoulos2014-11-041-1/+1
|
* doc: Added missing reference for EMSGSIZE to inline documentation of ↵Jaak Ristioja2014-11-031-1/+1
| | | | | | gnutls_transport_set_errno(). Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* doc: Fixed typo in inline comment of gnutls_transport_set_errno().Jaak Ristioja2014-11-031-1/+1
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* updated the text for GNUTLS_E_UNSUPPORTED_VERSION_PACKETNikos Mavrogiannopoulos2014-11-021-1/+1
|
* when calling gnutls_x509_crt_get_subject_key_id set the id_sizeNikos Mavrogiannopoulos2014-11-011-0/+1
|
* deinitialize the temporary spki dataNikos Mavrogiannopoulos2014-11-011-0/+1
|
* corrected check for urandom fdNikos Mavrogiannopoulos2014-10-313-3/+7
|
* corrected exit state from gnutls_global_initNikos Mavrogiannopoulos2014-10-311-2/+4
|
* dropped gnutls_fd_in_use, it is no longer necessaryNikos Mavrogiannopoulos2014-10-314-29/+1
| | | | | Conflicts: lib/libgnutls.map
* When gnutls_global_init() is called manually from the application check the ↵Nikos Mavrogiannopoulos2014-10-316-1/+54
| | | | | | | | | | urandom fd for validity That addresses the issue where a server closes all open file descriptors and then calls gnutls_global_init(). Conflicts: lib/nettle/rnd-common.c
* _gnutls_dh_generate_key() will account the q_bitsNikos Mavrogiannopoulos2014-10-291-1/+1
|
* doc updateNikos Mavrogiannopoulos2014-10-281-0/+5
|
* do not explicitly refresh rnd state on session deinitNikos Mavrogiannopoulos2014-10-281-2/+0
| | | | It is already being refreshed during the session lifetime.
* do not use the ifdef directive in assembly files, as it isn't portableNikos Mavrogiannopoulos2014-10-2515-30/+30
|
* check and use libnsl (used in solaris)Nikos Mavrogiannopoulos2014-10-231-1/+1
|
* use the .note.GNU-stack in linux systems onlyNikos Mavrogiannopoulos2014-10-2315-0/+30
|
* corrected bug in gnutls_x509_trust_list_get_issuer() when used without the ↵Nikos Mavrogiannopoulos2014-10-231-0/+1
| | | | GNUTLS_TL_GET_COPY flag
* exported gnutls_fd_in_useNikos Mavrogiannopoulos2014-10-221-0/+1
|
* corrected FIND_OBJECT loop when the token func is usedNikos Mavrogiannopoulos2014-10-221-1/+2
|
* gnutls_fd_in_use: mention versionNikos Mavrogiannopoulos2014-10-221-0/+2
|
* added gnutls_fd_in_use() to check whether a file descriptor is in useNikos Mavrogiannopoulos2014-10-224-12/+41
|
* fips140-2: limit the FIPS code in fips modeNikos Mavrogiannopoulos2014-10-211-1/+4
|
View Lorry Controller Status