Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | released 3.2.11gnutls_3_2_11 | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -1/+1 |
| | |||||
* | bumped version | Nikos Mavrogiannopoulos | 2014-02-13 | 2 | -2/+2 |
| | |||||
* | ensure that the issuer in present in a trusted module. | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -1/+1 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -1/+3 |
| | |||||
* | removed flag GNUTLS_PKCS11_TOKEN_TRUSTED_UINT | Nikos Mavrogiannopoulos | 2014-02-13 | 2 | -27/+1 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -1/+2 |
| | |||||
* | Added flag GNUTLS_PKCS11_TOKEN_TRUSTED for gnutls_pkcs11_token_get_flags(). | Nikos Mavrogiannopoulos | 2014-02-13 | 2 | -2/+11 |
| | |||||
* | Use the GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED_MODULE to ensure that only ↵ | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -19/+2 |
| | | | | | | | trusted modules are used. Conflicts: lib/x509/verify.c | ||||
* | Added flag GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED_MODULE. | Nikos Mavrogiannopoulos | 2014-02-13 | 3 | -8/+19 |
| | | | | | | This flag can be used to ensure that the object request lies on a marked as trusted PKCS #11 module. The marking is done on p11-kit configuration. | ||||
* | mark trusted p11-kit modules as trusted. | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -0/+5 |
| | | | | | Conflicts: lib/pkcs11.c | ||||
* | fixed socket existance checking | Marcus Meissner | 2014-02-12 | 1 | -2/+4 |
| | | | | | | | | If getaddrinfo returns: ipv4 address, ipv6 address ... and socket() for the ipv6 address fails, this loop would fail and abort the socket listen code. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -1/+1 |
| | |||||
* | Applied part of Ted Zlatanov's patch. | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -6/+9 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -0/+3 |
| | |||||
* | Added test for pathlen constraints. | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -0/+60 |
| | |||||
* | Added check for v1 intermediate CA certificate | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -0/+109 |
| | |||||
* | Fix bug that prevented the rejection of v1 intermediate CA certificates. | Nikos Mavrogiannopoulos | 2014-02-12 | 1 | -1/+4 |
| | | | | Reported by Suman Jana. | ||||
* | updated indent cmd | Nikos Mavrogiannopoulos | 2014-02-10 | 1 | -2/+2 |
| | |||||
* | corrected indent parameters | Nikos Mavrogiannopoulos | 2014-02-10 | 1 | -1/+1 |
| | |||||
* | do not redefine the _gnutls_x86_cpuid_s symbol | Nikos Mavrogiannopoulos | 2014-02-10 | 3 | -5/+2 |
| | |||||
* | only test ZLIB if it is enabled | Nikos Mavrogiannopoulos | 2014-02-06 | 1 | -0/+2 |
| | |||||
* | check errors from gnutls_priority_set_direct(). | Nikos Mavrogiannopoulos | 2014-02-06 | 1 | -2/+12 |
| | |||||
* | Sync with TP. | Nikos Mavrogiannopoulos | 2014-02-05 | 13 | -13/+13 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-05 | 1 | -0/+2 |
| | |||||
* | Added --ask-pass certtool option to allow asking for passwords even when in ↵ | Nikos Mavrogiannopoulos | 2014-02-05 | 6 | -4/+18 |
| | | | | batch mode. | ||||
* | use newlines in error printing | Nikos Mavrogiannopoulos | 2014-02-05 | 1 | -36/+36 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-03 | 1 | -1/+5 |
| | |||||
* | removed unimplemented API. | Nikos Mavrogiannopoulos | 2014-02-03 | 1 | -2/+0 |
| | |||||
* | when using a PKCS #11 module for verification ensure that it has been marked ↵ | Nikos Mavrogiannopoulos | 2014-02-03 | 1 | -0/+19 |
| | | | | a trusted module in p11-kit. | ||||
* | Added flag GNUTLS_PKCS11_TOKEN_TRUSTED_UINT that can be used to obtain ↵ | Nikos Mavrogiannopoulos | 2014-02-03 | 2 | -6/+37 |
| | | | | p11-kit's P11_KIT_MODULE_TRUSTED flag. | ||||
* | When setting multiple initial keywords in a priority string, the security ↵ | Nikos Mavrogiannopoulos | 2014-02-03 | 1 | -16/+12 |
| | | | | level set is the one of the lowest security. | ||||
* | updated reference manual to remove individual indexes that were not working. | Nikos Mavrogiannopoulos | 2014-02-02 | 2 | -3/+5 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-02 | 1 | -1/+1 |
| | |||||
* | consider the initial keyword set even when it's set to NONE. | Nikos Mavrogiannopoulos | 2014-02-02 | 1 | -0/+1 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-02 | 1 | -0/+3 |
| | |||||
* | When two initial keywords are specified then treat the second as having the ↵ | Nikos Mavrogiannopoulos | 2014-02-02 | 1 | -1/+3 |
| | | | | | | '+' modifier. This will handle SECURE256:SECURE128 the same way as SECURE256:+SECURE128. | ||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-01 | 1 | -0/+11 |
| | |||||
* | corrected typo | Nikos Mavrogiannopoulos | 2014-02-01 | 1 | -1/+1 |
| | |||||
* | tolerate servers that included the SUPPORTED ECC extension. | Nikos Mavrogiannopoulos | 2014-02-01 | 1 | -3/+4 |
| | | | | | | This is an extension that is defined to be sent by the client but there are servers that include it as well. Most other implementations tolerate this behavior so we do. | ||||
* | reduced the TLS and DTLS version requirements for all ciphersuites that are ↵ | Nikos Mavrogiannopoulos | 2014-01-31 | 1 | -44/+44 |
| | | | | not GCM. | ||||
* | released 3.2.10gnutls_3_2_10 | Nikos Mavrogiannopoulos | 2014-01-31 | 3 | -1/+4 |
| | |||||
* | Corrected prototype. | Nikos Mavrogiannopoulos | 2014-01-31 | 1 | -1/+1 |
| | |||||
* | Added sanity check in hash_init() and mac_init(). | Nikos Mavrogiannopoulos | 2014-01-31 | 1 | -0/+6 |
| | | | | | Conflicts: lib/gnutls_hash_int.c | ||||
* | doc update + rename of function | Nikos Mavrogiannopoulos | 2014-01-28 | 3 | -3/+4 |
| | |||||
* | Added gnutls_db_get_cache_expiration() | Nikos Mavrogiannopoulos | 2014-01-28 | 3 | -0/+14 |
| | | | | | Conflicts: lib/libgnutls.map | ||||
* | reduce nonce overhead generation. | Nikos Mavrogiannopoulos | 2014-01-27 | 1 | -1/+11 |
| | |||||
* | corrected typo | Nikos Mavrogiannopoulos | 2014-01-27 | 1 | -1/+1 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-01-27 | 1 | -0/+3 |
| | |||||
* | correctly read the magic number and timestamp; report and patch by Jonathan ↵ | Nikos Mavrogiannopoulos | 2014-01-27 | 1 | -2/+2 |
| | | | | Roudiere | ||||
* | doc update | Nikos Mavrogiannopoulos | 2014-01-26 | 1 | -0/+3 |
| |