summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* inet_ntop4: casted signed/unsigned comparisonminor-cleanupsNikos Mavrogiannopoulos2016-09-101-1/+1
|
* system.h: undefine macros before defining themNikos Mavrogiannopoulos2016-09-101-0/+3
|
* _gnutls_fbase64_decode: use memsub macro instead of castsNikos Mavrogiannopoulos2016-09-101-3/+3
|
* gnutls-cli: use gnutls_set_default_priority if no priorities are givenNikos Mavrogiannopoulos2016-09-091-8/+17
|
* gnutls-serv: removed '...' from documentationNikos Mavrogiannopoulos2016-09-091-6/+1
| | | | That caused caused problems in generated manpage.
* configure: better document the random generator variant usedNikos Mavrogiannopoulos2016-09-091-5/+5
|
* released 3.5.4gnutls_3_5_4Nikos Mavrogiannopoulos2016-09-081-2/+3
|
* .gitlab-ci.yml: corrected wrong operation in minimal buildNikos Mavrogiannopoulos2016-09-071-1/+1
|
* updated auto-generated filesNikos Mavrogiannopoulos2016-09-073-0/+8
|
* doc updateNikos Mavrogiannopoulos2016-09-072-6/+8
|
* bumped versionsNikos Mavrogiannopoulos2016-09-072-3/+3
|
* doc updateNikos Mavrogiannopoulos2016-09-071-0/+2
|
* tests: do not run pkcs12-utf8 under windowspkcs12-ucs2Nikos Mavrogiannopoulos2016-09-072-2/+5
| | | | | This test required to pass UTF8 data under command line, and that doesn't seem to work under windows.
* _gnutls_ucs2_to_utf8: corrected use of WideCharToMultiByte in windowsNikos Mavrogiannopoulos2016-09-071-2/+3
|
* tests: added debugging info in conv-utf8Nikos Mavrogiannopoulos2016-09-071-1/+24
|
* tests: don't build cmocka tests with libutils - they conflictNikos Mavrogiannopoulos2016-09-062-13/+17
|
* .gitlab-ci.yml: keep config.log in windows buildsNikos Mavrogiannopoulos2016-09-061-2/+2
|
* .gitlab-ci.yml: corrected typo for libidn installation in windows64Nikos Mavrogiannopoulos2016-09-061-1/+1
|
* .gitlab-ci.yml: install our internal cmocka for windowsNikos Mavrogiannopoulos2016-09-061-0/+2
|
* tests: added unit tests of _gnutls_utf8_to_ucs2 and _gnutls_ucs2_to_utf8Nikos Mavrogiannopoulos2016-09-062-1/+113
|
* libgnutls.map: export _gnutls_utf8_to_ucs2 and _gnutls_ucs2_to_utf8 for testingNikos Mavrogiannopoulos2016-09-061-0/+3
|
* pkcs12: enhanced to allow encrypting using UCS2 passwordsNikos Mavrogiannopoulos2016-09-061-40/+42
| | | | | That is use _gnutls_utf8_to_ucs2() to convert the provided password to UCS2.
* _gnutls_ucs2_to_utf8: fixed null termination check in windows codeNikos Mavrogiannopoulos2016-09-061-1/+1
|
* Added _gnutls_utf8_to_ucs2()Nikos Mavrogiannopoulos2016-09-062-1/+153
| | | | This function allows to convert between UTF8 to UCS2 big-endian.
* tests: added tests for PKCS#12 decoding with UTF8 passwordsNikos Mavrogiannopoulos2016-09-064-2/+82
|
* pkcs7 encryption: corrected memory leaksNikos Mavrogiannopoulos2016-09-061-2/+2
|
* Makefile: local-code-coverage-output always succeedsNikos Mavrogiannopoulos2016-09-061-1/+1
|
* x509: Adjust IP name constraints behaviorMartin Ukrop2016-09-062-46/+24
| | | | | | | - Modified IPv4/IPv6 interaction in name constraints -- IPv4 and IPv6 no have empty intersection (previously: were treated independently). - Current behavior is more conservative -- in case of IPv4 constraint cert, subcerts will not be able to have IPv6 addresses. - Tests updated accordingly. - Behavior now matches NSS.
* tests: added checks to verify behavior in writing pkcs11 objectsNikos Mavrogiannopoulos2016-09-061-0/+20
| | | | | That is, verify that private keys are marked as private by default, and public objects are marked as non-private by default.
* p11tool: eliminated memory leak in --list optionsNikos Mavrogiannopoulos2016-09-061-0/+2
|
* p11tool: do not mark written objects as private by defaultNikos Mavrogiannopoulos2016-09-062-5/+10
| | | | | That is, when --mark-private or --no-mark-private are not specified, set non-private for public objects and private for private ones.
* doc updateNikos Mavrogiannopoulos2016-09-051-0/+4
|
* minitasn1: updated to latest git versionNikos Mavrogiannopoulos2016-09-052-8/+8
|
* _gnutls_encode_ber_rs_raw: simplifiedNikos Mavrogiannopoulos2016-09-051-15/+10
| | | | That is, use a single allocation for temporary data.
* .gitlab-ci.yml: use fedora24 with address sanitizerNikos Mavrogiannopoulos2016-09-051-20/+18
| | | | | The fix in fbb9618b25b77c65e24a6ce224d53bc9a0b81457 addresses the problems with asan in fedora24.
* tests: use LSAN_OPTIONS instead of ASAN_OPTIONSNikos Mavrogiannopoulos2016-09-052-2/+2
| | | | | New versions of address sanitizer do not parse this file otherwise.
* doc updateNikos Mavrogiannopoulos2016-09-051-0/+5
|
* tests: corrected detection of 64-bit systems in softhsm.hNikos Mavrogiannopoulos2016-09-051-2/+2
|
* tests: added check for PKCS#11 signature validityNikos Mavrogiannopoulos2016-09-052-1/+240
| | | | | | That is, tests whether our generated DSASignatureValue with PKCS#11 contains r, s values that are non-negative, i.e., are zero padded when necessary. This utilizes _gnutls_decode_ber_rs_raw().
* Introduced helper function _gnutls_decode_ber_rs_raw()Nikos Mavrogiannopoulos2016-09-053-0/+49
|
* _gnutls_encode_ber_rs_raw: zero-pad values when necessaryNikos Mavrogiannopoulos2016-09-051-13/+46
| | | | | | | This addresses issue when encoding values obtained via PKCS#11 which may not be necessarily padded. Resolves #122
* tests: template-test: use uniform way to detect 32-bit systemsNikos Mavrogiannopoulos2016-09-031-1/+1
|
* .gitlab-ci.yml: use the gitlab.com shared runnersNikos Mavrogiannopoulos2016-09-022-79/+154
| | | | | | | This removes the need to administer custom runners (except for the FreeBSD runner which cannot run under Linux), makes the testing on other platforms such as Debian simpler, and allows merge requests to pass through the CI.
* Import DTLS sliding window validation from OpenConnect ESP codeDavid Woodhouse2016-09-024-79/+123
| | | | | | | | | | | In this implementation, the end of the sliding window is always advanced to the latest received packet, and we accept up to 64 packets before that one. We no longer refuse to accept packets because they are *too* far ahead of what we've already seen. Some of the test cases are fixed up accordingly. This matches the code in OpenConnect esp-seqno.c at commit 314ac65.
* tools: Use correct include dir with minitasnJussi Kukkonen2016-08-311-0/+1
| | | | This allows compiling certtool without libtasn headers.
* nettle: removed unused variable in windows rngNikos Mavrogiannopoulos2016-08-291-2/+0
|
* tests: don't run danetool.sh when not compiled with dane supportNikos Mavrogiannopoulos2016-08-291-1/+4
|
* tests: mini-dtls-record: modified expected order to account for new SW behaviorNikos Mavrogiannopoulos2016-08-291-1/+1
|
* dtls: ensure that the DTLS window doesn't get stalledNikos Mavrogiannopoulos2016-08-291-1/+9
| | | | | That is ensure that it is forwarded at least one place if more than 16 packets have been received since the first one.
* tests: enhance the DTLS window unit test to account for lost packetsNikos Mavrogiannopoulos2016-08-291-1/+35
| | | | | | This adds tests for cases where many lost packets are encountered, such as 50% of the packets received, as well as 3 consequent packets being lost.
View Lorry Controller Status