summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
* _gnutls_x509_write_uint32: ensure we prepend leading zero when writingNikos Mavrogiannopoulos2017-04-061-3/+9
* Added helper functions to parse the inhibit anyPolicy X.509 extensionNikos Mavrogiannopoulos2017-04-066-3/+126
* gnutls_x509_trust_list_add_system_trust: Add macOS keychain supportDavid Caldwell2017-04-062-0/+76
* Rename uint64 to gnutls_uint64 to avoid conflict with macOSDavid Caldwell2017-04-0610-20/+20
* mpi: openpgp integer scanning was put into conditionalNikos Mavrogiannopoulos2017-04-053-3/+15
* Moved all openpgp-related variables and definitions into ifdef blocksNikos Mavrogiannopoulos2017-04-052-7/+9
* pkcs12: increased the maximum salt sizeNikos Mavrogiannopoulos2017-04-041-1/+2
* _gnutls_pkcs12_string_to_key: allow SHA384 and SHA512Nikos Mavrogiannopoulos2017-04-041-28/+38
* PKCS#12: added support for files with zero salt length in MACNikos Mavrogiannopoulos2017-04-042-21/+19
* gnutls_pkcs8_info: return the encryption algorithm OID on failureNikos Mavrogiannopoulos2017-04-043-6/+13
* gnutls_transport_set_pull_timeout_function: doc update [ci skip]Nikos Mavrogiannopoulos2017-04-041-5/+9
* gnutls_priority_get_cipher_suite_index: fixed returned protocolsNikos Mavrogiannopoulos2017-04-011-5/+23
* gnutls_cipher_get_tag_size: document behavior on non-AEAD ciphersNikos Mavrogiannopoulos2017-03-311-0/+3
* gnutls_pkcs8_info: do not free oid on GNUTLS_E_UNKNOWN_CIPHER_TYPENikos Mavrogiannopoulos2017-03-311-1/+5
* cert: ensure that there are no leftovers in certificate msgNikos Mavrogiannopoulos2017-03-281-1/+6
* alert: return GNUTLS_A_BAD_CERTIFICATE on GNUTLS_E_PK_SIG_VERIFY_FAILEDNikos Mavrogiannopoulos2017-03-281-0/+1
* doc updateNikos Mavrogiannopoulos2017-03-271-1/+2
* gnutls.pc: Removed P11_KIT_LIBS from Libs.privateNikos Mavrogiannopoulos2017-03-251-1/+1
* gnutls.pc: don't include zlib twice in private libsNikos Mavrogiannopoulos2017-03-241-1/+1
* doc updateNikos Mavrogiannopoulos2017-03-231-4/+7
* Introduced GNUTLS_DT_IP_ADDRESSNikos Mavrogiannopoulos2017-03-232-7/+38
* gnutls_x509_crt_check_hostname2: do not fallback to CN unconditionallyNikos Mavrogiannopoulos2017-03-231-1/+12
* Introduced verification flag GNUTLS_VERIFY_DO_NOT_ALLOW_IP_MATCHESNikos Mavrogiannopoulos2017-03-232-1/+10
* Added gnutls_x509_crt_check_ip()Nikos Mavrogiannopoulos2017-03-233-3/+30
* _gnutls_check_key_cert_match: allow broken sigsNikos Mavrogiannopoulos2017-03-211-1/+1
* Use a common function to decide acceptable signaturesNikos Mavrogiannopoulos2017-03-213-7/+6
* check_ocsp_response: utilize the same flags as in certificate verificationNikos Mavrogiannopoulos2017-03-211-5/+8
* extensions: print the name/type of any unexpected extensionNikos Mavrogiannopoulos2017-03-211-0/+2
* gnutls.pc: don't pass the libtool vars to Libs.privateNikos Mavrogiannopoulos2017-03-211-1/+1
* handshake: reset cert request state on handshake initNikos Mavrogiannopoulos2017-03-215-16/+14
* Revert "nettle/rnd: use gettime() instead of gnutls_time()"Nikos Mavrogiannopoulos2017-03-211-4/+4
* nettle/rnd: use gettime() instead of gnutls_time()Nikos Mavrogiannopoulos2017-03-201-4/+4
* nettle/rnd: re-seed both key and nonce levels based on timeNikos Mavrogiannopoulos2017-03-201-12/+15
* nettle/pk: use nonce level for RSA paddingNikos Mavrogiannopoulos2017-03-201-2/+3
* Avoid deprecation warnings when including gnutls/abstract.hMartin Storsjo2017-03-181-1/+1
* gnutls.h: added definitions to obtain the maximum element in several enumerat...Nikos Mavrogiannopoulos2017-03-171-5/+10
* Introduced flag GNUTLS_VERIFY_ALLOW_SIGN_WITH_SHA1Nikos Mavrogiannopoulos2017-03-164-3/+20
* Introduced the %VERIFY_ALLOW_BROKEN priority string optionNikos Mavrogiannopoulos2017-03-162-0/+6
* Allow reverting the SHA1 ban as a signature algorithmNikos Mavrogiannopoulos2017-03-161-1/+7
* algorithms: tag SHA1 as insecure algorithmNikos Mavrogiannopoulos2017-03-161-1/+1
* nettle/rnd: introduced time limit for key generatorNikos Mavrogiannopoulos2017-03-161-9/+34
* _gnutls_pk_generate_keys: separate between ephemeral and long-term keysNikos Mavrogiannopoulos2017-03-166-17/+28
* nettle/pk: use the nonce level for digital signaturesNikos Mavrogiannopoulos2017-03-161-3/+3
* gnutls_pkcs11_privkey_init: document limitation on created object [ci skip]Nikos Mavrogiannopoulos2017-03-132-3/+18
* pkcs11: re-open privkey session handle on CKR_SESSION_HANDLE_INVALIDtmp-pkcs11-more-unit-testsNikos Mavrogiannopoulos2017-03-131-3/+11
* doc updateNikos Mavrogiannopoulos2017-03-131-12/+12
* gnutls_pkcs11_obj_get_info: don't include the terminator into output sizeNikos Mavrogiannopoulos2017-03-131-1/+4
* lib: unconditionally enable the self-check functionstmp-pkcs11-avoid-locksNikos Mavrogiannopoulos2017-03-132-7/+2
* pkcs11: re-open private key session inside a locked sectionNikos Mavrogiannopoulos2017-03-133-34/+67
* pkcs11: introduced locks to PKCS#11 private key structureNikos Mavrogiannopoulos2017-03-131-0/+24