summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
* x509/output: simplified cidr_to_string()Nikos Mavrogiannopoulos2016-03-301-33/+4
* x509/output: print RFC5280 CIDRs in name constraintsNikos Mavrogiannopoulos2016-03-301-9/+98
* system_recv_timeout(): verify that the file descriptor is acceptable for sele...Nikos Mavrogiannopoulos2016-03-301-0/+5
* x86-common: CPUID override will only work if CPU has already the capability p...Nikos Mavrogiannopoulos2016-03-181-10/+56
* handshake: parse the mandatory to parse extension prior to any callback callNikos Mavrogiannopoulos2016-03-181-7/+7
* alpn: ALPN state is per-connection, it should not be saved with session dataYuriy M. Kaminskiy2016-03-181-48/+2
* Remove SSL 3.0 from the default priority stringsNikos Mavrogiannopoulos2016-03-031-0/+2
* gnutls_openpgp_keyring_import: backported mem leak fixNikos Mavrogiannopoulos2016-03-011-3/+11
* ecc: optimized extension parsingNikos Mavrogiannopoulos2016-02-291-1/+8
* timespec_sub_ms: fixed operation in 32-bit systemsNikos Mavrogiannopoulos2016-02-291-2/+9
* pkcs11: Fixes to prevent undefined behavior (found with libubsan)Nikos Mavrogiannopoulos2016-02-291-1/+2
* gnutls.h: Fixes to prevent undefined behavior (found with libubsan)Nikos Mavrogiannopoulos2016-02-291-3/+3
* x509: Fixes to prevent undefined behavior (found with libubsan)Nikos Mavrogiannopoulos2016-02-292-1/+14
* gnutls_x509_privkey_import: add missing algorithm setting for DSA keysJan Vcelak2016-02-261-0/+1
* When writing the Time ASN.1 structure follow the RFC5280 recommendationsNikos Mavrogiannopoulos2016-02-252-23/+76
* Prevent the encryption or decryption of more than 2^32 bytes with nettle2Nikos Mavrogiannopoulos2016-02-191-0/+11
* nettle: use the correct type for hash and MAC functionsNikos Mavrogiannopoulos2016-02-139-69/+103
* Revert "Fix out-of-bounds read in gnutls_x509_ext_export_key_usage"Nikos Mavrogiannopoulos2016-01-301-1/+1
* Added configure flag --with-arcfour128Nikos Mavrogiannopoulos2016-01-211-0/+6
* Revert "Revert "ARCFOUR is disabled from the default priority strings""Nikos Mavrogiannopoulos2016-01-201-2/+0
* gnutls_pubkey_import_x509_raw: fixed memory leakNikos Mavrogiannopoulos2016-01-131-1/+1
* x509: place newline when printing unsupported othernamesNikos Mavrogiannopoulos2016-01-121-0/+1
* alpn: when parsing the list of protocols return at the first mutually commonNikos Mavrogiannopoulos2016-01-101-1/+2
* alpn: document how the selected protocol is selected [ci skip]Nikos Mavrogiannopoulos2016-01-101-0/+3
* Revert "ARCFOUR is disabled from the default priority strings"Nikos Mavrogiannopoulos2016-01-081-0/+2
* Fix out-of-bounds read in gnutls_x509_ext_export_key_usageTim Kosse2016-01-041-1/+1
* pkcs11: fixes to store the imported URLNikos Mavrogiannopoulos2015-12-311-1/+12
* pkcs11: import public keys from any available objectNikos Mavrogiannopoulos2015-12-311-15/+56
* gnutls_pkcs11_copy_x509_privkey2: corrected the writing of ECC private keyNikos Mavrogiannopoulos2015-12-311-1/+1
* gnutls_pkcs11_copy_x509_privkey2: corrected the type of the written objectNikos Mavrogiannopoulos2015-12-311-5/+5
* max_record: don't consider this extension on DTLSNikos Mavrogiannopoulos2015-12-231-0/+6
* Handle DNS name constraints with leading dotNikos Mavrogiannopoulos2015-12-201-7/+12
* ARCFOUR is disabled from the default priority stringsNikos Mavrogiannopoulos2015-12-151-2/+0
* Do not allow importing public keys from PKCS #11 private keys for DSA and ECDSANikos Mavrogiannopoulos2015-12-081-0/+8
* Revert "Do not allow importing public keys from PKCS #11 private keys for DSA...Nikos Mavrogiannopoulos2015-12-084-45/+13
* Do not allow importing public keys from PKCS #11 private keys for DSA and ECDSANikos Mavrogiannopoulos2015-12-064-13/+45
* pkcs11: avoid setting a variable which isn't usedNikos Mavrogiannopoulos2015-12-061-2/+1
* pkcs11: deinitialize gnutls_pkcs11_obj_t's pubkey on deinitNikos Mavrogiannopoulos2015-12-063-21/+32
* pkcs11: fix passing of incorrect variable in privkey_get_pubkeyJan Vcelak2015-12-061-1/+1
* allow specifying NULL buffer in gnutls_x509_crt_get_*_unique_id()Nikos Mavrogiannopoulos2015-11-301-2/+0
* gnutls_global_init_skip: prefixed with an underscoreNikos Mavrogiannopoulos2015-11-213-7/+7
* Added GNUTLS_SKIP_GLOBAL_INIT macro to allow programs skip implicit global in...Nikos Mavrogiannopoulos2015-11-193-0/+35
* disable_optional_stuff: don't disable unique IDs if setNikos Mavrogiannopoulos2015-11-151-4/+18
* Require TLS 1.2 for all the ciphersuites which are defined for it onlyNikos Mavrogiannopoulos2015-11-151-97/+97
* Allow switching a ciphersuite to DHE and ECDHE on a rehandshakeNikos Mavrogiannopoulos2015-11-112-2/+2
* gnutls.pc: don't use the libtool version of the link optionsNikos Mavrogiannopoulos2015-11-031-1/+1
* Disable the NULL cipher on runtime when FIPS140 mode is enabled instead of st...Nikos Mavrogiannopoulos2015-10-233-5/+12
* backport: Tolerate priority strings with names of legacy ciphers and key exch...Nikos Mavrogiannopoulos2015-10-235-11/+53
* pkcs11: write CKA_ISSUER and CKA_SERIAL_NUMBER when writing on a certificateNikos Mavrogiannopoulos2015-10-151-2/+16
* Fix memory leak in wrap_nettle_hash_algorithm().Lennert Buytenhek2015-10-121-1/+2
View Lorry Controller Status