summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* released 3.2.11gnutls_3_2_11Nikos Mavrogiannopoulos2014-02-131-1/+1
|
* bumped versionNikos Mavrogiannopoulos2014-02-132-2/+2
|
* ensure that the issuer in present in a trusted module.Nikos Mavrogiannopoulos2014-02-131-1/+1
|
* doc updateNikos Mavrogiannopoulos2014-02-131-1/+3
|
* removed flag GNUTLS_PKCS11_TOKEN_TRUSTED_UINTNikos Mavrogiannopoulos2014-02-132-27/+1
|
* doc updateNikos Mavrogiannopoulos2014-02-131-1/+2
|
* Added flag GNUTLS_PKCS11_TOKEN_TRUSTED for gnutls_pkcs11_token_get_flags().Nikos Mavrogiannopoulos2014-02-132-2/+11
|
* Use the GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED_MODULE to ensure that only ↵Nikos Mavrogiannopoulos2014-02-131-19/+2
| | | | | | | trusted modules are used. Conflicts: lib/x509/verify.c
* Added flag GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED_MODULE.Nikos Mavrogiannopoulos2014-02-133-8/+19
| | | | | | This flag can be used to ensure that the object request lies on a marked as trusted PKCS #11 module. The marking is done on p11-kit configuration.
* mark trusted p11-kit modules as trusted.Nikos Mavrogiannopoulos2014-02-131-0/+5
| | | | | Conflicts: lib/pkcs11.c
* fixed socket existance checkingMarcus Meissner2014-02-121-2/+4
| | | | | | | | If getaddrinfo returns: ipv4 address, ipv6 address ... and socket() for the ipv6 address fails, this loop would fail and abort the socket listen code. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* doc updateNikos Mavrogiannopoulos2014-02-121-1/+1
|
* Applied part of Ted Zlatanov's patch.Nikos Mavrogiannopoulos2014-02-121-6/+9
|
* doc updateNikos Mavrogiannopoulos2014-02-121-0/+3
|
* Added test for pathlen constraints.Nikos Mavrogiannopoulos2014-02-121-0/+60
|
* Added check for v1 intermediate CA certificateNikos Mavrogiannopoulos2014-02-121-0/+109
|
* Fix bug that prevented the rejection of v1 intermediate CA certificates.Nikos Mavrogiannopoulos2014-02-121-1/+4
| | | | Reported by Suman Jana.
* updated indent cmdNikos Mavrogiannopoulos2014-02-101-2/+2
|
* corrected indent parametersNikos Mavrogiannopoulos2014-02-101-1/+1
|
* do not redefine the _gnutls_x86_cpuid_s symbolNikos Mavrogiannopoulos2014-02-103-5/+2
|
* only test ZLIB if it is enabledNikos Mavrogiannopoulos2014-02-061-0/+2
|
* check errors from gnutls_priority_set_direct().Nikos Mavrogiannopoulos2014-02-061-2/+12
|
* Sync with TP.Nikos Mavrogiannopoulos2014-02-0513-13/+13
|
* doc updateNikos Mavrogiannopoulos2014-02-051-0/+2
|
* Added --ask-pass certtool option to allow asking for passwords even when in ↵Nikos Mavrogiannopoulos2014-02-056-4/+18
| | | | batch mode.
* use newlines in error printingNikos Mavrogiannopoulos2014-02-051-36/+36
|
* doc updateNikos Mavrogiannopoulos2014-02-031-1/+5
|
* removed unimplemented API.Nikos Mavrogiannopoulos2014-02-031-2/+0
|
* when using a PKCS #11 module for verification ensure that it has been marked ↵Nikos Mavrogiannopoulos2014-02-031-0/+19
| | | | a trusted module in p11-kit.
* Added flag GNUTLS_PKCS11_TOKEN_TRUSTED_UINT that can be used to obtain ↵Nikos Mavrogiannopoulos2014-02-032-6/+37
| | | | p11-kit's P11_KIT_MODULE_TRUSTED flag.
* When setting multiple initial keywords in a priority string, the security ↵Nikos Mavrogiannopoulos2014-02-031-16/+12
| | | | level set is the one of the lowest security.
* updated reference manual to remove individual indexes that were not working.Nikos Mavrogiannopoulos2014-02-022-3/+5
|
* doc updateNikos Mavrogiannopoulos2014-02-021-1/+1
|
* consider the initial keyword set even when it's set to NONE.Nikos Mavrogiannopoulos2014-02-021-0/+1
|
* doc updateNikos Mavrogiannopoulos2014-02-021-0/+3
|
* When two initial keywords are specified then treat the second as having the ↵Nikos Mavrogiannopoulos2014-02-021-1/+3
| | | | | | '+' modifier. This will handle SECURE256:SECURE128 the same way as SECURE256:+SECURE128.
* doc updateNikos Mavrogiannopoulos2014-02-011-0/+11
|
* corrected typoNikos Mavrogiannopoulos2014-02-011-1/+1
|
* tolerate servers that included the SUPPORTED ECC extension.Nikos Mavrogiannopoulos2014-02-011-3/+4
| | | | | | This is an extension that is defined to be sent by the client but there are servers that include it as well. Most other implementations tolerate this behavior so we do.
* reduced the TLS and DTLS version requirements for all ciphersuites that are ↵Nikos Mavrogiannopoulos2014-01-311-44/+44
| | | | not GCM.
* released 3.2.10gnutls_3_2_10Nikos Mavrogiannopoulos2014-01-313-1/+4
|
* Corrected prototype.Nikos Mavrogiannopoulos2014-01-311-1/+1
|
* Added sanity check in hash_init() and mac_init().Nikos Mavrogiannopoulos2014-01-311-0/+6
| | | | | Conflicts: lib/gnutls_hash_int.c
* doc update + rename of functionNikos Mavrogiannopoulos2014-01-283-3/+4
|
* Added gnutls_db_get_cache_expiration()Nikos Mavrogiannopoulos2014-01-283-0/+14
| | | | | Conflicts: lib/libgnutls.map
* reduce nonce overhead generation.Nikos Mavrogiannopoulos2014-01-271-1/+11
|
* corrected typoNikos Mavrogiannopoulos2014-01-271-1/+1
|
* doc updateNikos Mavrogiannopoulos2014-01-271-0/+3
|
* correctly read the magic number and timestamp; report and patch by Jonathan ↵Nikos Mavrogiannopoulos2014-01-271-2/+2
| | | | Roudiere
* doc updateNikos Mavrogiannopoulos2014-01-261-0/+3
|
View Lorry Controller Status