Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Common code for calculation of RSA exp1 and exp2. Also update the openpgp | Nikos Mavrogiannopoulos | 2010-05-23 | 6 | -41/+69 | |
| | | | | code to calculate those values. | |||||
* | More fixes. | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -65/+87 | |
| | ||||||
* | Corrected nicely hidden bug that caused accesses to uninitialized variables | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -6/+12 | |
| | | | | | if the gcry_mpi_print() functions were pessimists and returned more size than actually needed for the print. | |||||
* | Added some sanity checks. | Nikos Mavrogiannopoulos | 2010-05-23 | 1 | -2/+8 | |
| | ||||||
* | Documentation updates. Separated big gnutls.texi to chapter to allow easier | Nikos Mavrogiannopoulos | 2010-05-23 | 17 | -4257/+3980 | |
| | | | | maintainance. | |||||
* | Added support to copy certificates and private keys to tokens. | Nikos Mavrogiannopoulos | 2010-05-23 | 21 | -331/+1269 | |
| | | | | | | | | | | | New functions: gnutls_pkcs11_copy_x509_crt() gnutls_pkcs11_copy_x509_privkey() gnutls_pkcs11_delete_url() Certtool was updated to allow copying certificates and private keys to tokens. Deleting an object has issues (segfault) but it seems to be related with libopensc and its pkcs11 API. | |||||
* | Merge branch 'new' of ssh://git.sv.gnu.org/srv/git/gnutls into new | Nikos Mavrogiannopoulos | 2010-05-23 | 1 | -0/+1 | |
|\ | ||||||
| * | Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). | Nikos Mavrogiannopoulos | 2010-05-22 | 8 | -32/+147 | |
| | | ||||||
| * | Added gnutls_pubkey_import_pkcs11(), gnutls_pubkey_import_rsa_raw(), | Nikos Mavrogiannopoulos | 2010-05-22 | 10 | -134/+591 | |
| | | | | | | | | gnutls_pubkey_import_dsa_raw(), gnutls_pkcs11_obj_export(). | |||||
| * | Ignore files that should be ignored. | Nikos Mavrogiannopoulos | 2010-05-22 | 1 | -0/+8 | |
| | | ||||||
| * | Tried to document recent changes. | Nikos Mavrogiannopoulos | 2010-05-22 | 3 | -5/+89 | |
| | | ||||||
| * | Added gnutls_pubkey_t abstract type to handle public keys. It can currently | Nikos Mavrogiannopoulos | 2010-05-22 | 20 | -429/+1578 | |
| | | | | | | | | | | | | | | | | | | import/export public keys from existing certificate types as well as from PKCS #11 URL. This allows generating a certificate or certificate request from a given public key (currently one could only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of just certificates. Certtool updated to list those objects. | |||||
| * | Added gnutls_pkcs11_token_get_flags() to distinguish between hardware and ↵ | Nikos Mavrogiannopoulos | 2010-05-22 | 2 | -3/+87 | |
| | | | | | | | | soft tokens. | |||||
| * | Export all symbols from C++ library. This library doesn't contain any | Nikos Mavrogiannopoulos | 2010-05-22 | 3 | -14/+9 | |
| | | | | | | | | | | internal symbols anyway and there is no reason to mess with the C++ ABI that hasn't got the problems of C. | |||||
| * | Added support for libnettle backend. This uses gmp for big number operations. | Nikos Mavrogiannopoulos | 2010-05-21 | 27 | -85/+1870 | |
| | | | | | | | | It is not currently completed. It lacks RSA blinding as well as optimizations. | |||||
| * | Documented that the --file options in gnutls-cli and gnutls-serv can accept ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 5 | -15/+16 | |
| | | | | | | | | a PKCS #11 URL. | |||||
| * | Corrected bug in DSA signature generation. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -12/+21 | |
| | | ||||||
| * | Added operations to sign CRLs, certificates and requests with an abstract ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 9 | -79/+288 | |
| | | | | | | | | key and thus with a PKCS #11 key as well. | |||||
| * | privkey.h -> abstract.h | Nikos Mavrogiannopoulos | 2010-05-18 | 7 | -6/+6 | |
| | | ||||||
| * | The gnutls-cli --x509cafile can now be a PKCS #11 URL. It can read ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 4 | -8/+79 | |
| | | | | | | | | | | | | gnome-keyring's certificates and use them in the trusted list. | |||||
| * | Documented that gnutls_global_init calls gnutls_pkcs11_init. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -0/+3 | |
| | | ||||||
| * | Documented behavioral change. | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -2/+4 | |
| | | ||||||
| * | Because we want to differentiate the behavior of server | Nikos Mavrogiannopoulos | 2010-05-18 | 2 | -3/+33 | |
| | | | | | | | | | | | | | | | | and client with regards to safe renegotiation. If a server didn't have either SAFE_RENEGOTIATION or UNSAFE_RENEGOTIATION set the safe renegotiation will be the default. This (as well as the safe_renegotiation_set flag) has to be removed once safe renegotiation is default in both server and client side. | |||||
| * | Emulate old gnutls behavior regarding safe renegotiation if the priority_* ↵ | Nikos Mavrogiannopoulos | 2010-05-18 | 1 | -0/+5 | |
| | | | | | | | | functions are not called. | |||||
| * | Only send termination request to avoid stalling on servers that do not reply. | Nikos Mavrogiannopoulos | 2010-05-16 | 1 | -1/+1 | |
| | | ||||||
| * | Corrected issue on the %SSL3_RECORD_VERSION priority string. It now | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -10/+5 | |
| | | | | | | | | works even when resuming a session. | |||||
| * | Added initial example. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -1/+279 | |
| | | ||||||
| * | Corrections in openpgp private key usage. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -48/+33 | |
| | | ||||||
| * | Updated self tests and examples to avoid using deprecated functions such as | Nikos Mavrogiannopoulos | 2010-05-16 | 5 | -520/+12 | |
| | | | | | | | | gnutls_certificate_server_set_retrieve_function and the sign callback. | |||||
| * | Use the new callback function. | Nikos Mavrogiannopoulos | 2010-05-16 | 3 | -16/+9 | |
| | | ||||||
| * | Added documentation for most of the new functions. | Nikos Mavrogiannopoulos | 2010-05-16 | 8 | -18/+370 | |
| | | ||||||
| * | Documented that it was initially based on neon pkcs11 and got ideas from ↵ | Nikos Mavrogiannopoulos | 2010-05-16 | 1 | -24/+3 | |
| | | | | | | | | pkcs11-helper library. | |||||
| * | Corrections to properly handle token removal and insert. | Nikos Mavrogiannopoulos | 2010-05-15 | 6 | -6/+38 | |
| | | ||||||
| * | Deprecated the sign callback. | Nikos Mavrogiannopoulos | 2010-05-15 | 2 | -14/+29 | |
| | | ||||||
| * | Added gnutls_pkcs11_privkey_t and gnutls_privkey_t types. Those are | Nikos Mavrogiannopoulos | 2010-05-15 | 41 | -1054/+2147 | |
| | | | | | | | | | | an abstract private key type that can be used to sign/encrypt any private key of pkcs11,x509 or openpgp types. Added support for PKCS11 in gnutls-cli/gnutls-serv. | |||||
| * | ignore unrelated to gnutls files. | Nikos Mavrogiannopoulos | 2010-05-15 | 1 | -34/+4 | |
| | | ||||||
| * | Added several helper functions, to allow printing of tokens. | Nikos Mavrogiannopoulos | 2010-05-11 | 9 | -90/+448 | |
| | | ||||||
| * | Added ability to export certificates from PKCS #11 tokens. | Nikos Mavrogiannopoulos | 2010-05-11 | 11 | -397/+655 | |
| | | | | | | | | | | Added ability to list trusted certificates, or only certificates with a corresponding private key or just all. | |||||
| * | Added initial PKCS #11 support. Certtool can now print lists of certificates | Nikos Mavrogiannopoulos | 2010-05-11 | 25 | -132/+1938 | |
| | | | | | | | | available in system. | |||||
| * | Optimized the check_if_same(). | Nikos Mavrogiannopoulos | 2010-05-11 | 1 | -3/+26 | |
| | | ||||||
| * | Added a forgoten by god OID for RSA. Warn using the actual OID | Nikos Mavrogiannopoulos | 2010-05-11 | 3 | -6/+11 | |
| | | | | | | | | on unknown public key algorithms. | |||||
* | | Added gnutls_pubkey_verify_hash(), gnutls_pubkey_get_verify_algorithm(). | Nikos Mavrogiannopoulos | 2010-05-23 | 8 | -32/+147 | |
| | | ||||||
* | | Added gnutls_pubkey_import_pkcs11(), gnutls_pubkey_import_rsa_raw(), | Nikos Mavrogiannopoulos | 2010-05-23 | 10 | -134/+591 | |
| | | | | | | | | gnutls_pubkey_import_dsa_raw(), gnutls_pkcs11_obj_export(). | |||||
* | | Ignore files that should be ignored. | Nikos Mavrogiannopoulos | 2010-05-23 | 1 | -0/+8 | |
| | | ||||||
* | | Tried to document recent changes. | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -20/+89 | |
| | | ||||||
* | | Added gnutls_pubkey_t abstract type to handle public keys. It can currently | Nikos Mavrogiannopoulos | 2010-05-23 | 20 | -429/+1578 | |
| | | | | | | | | | | | | | | | | | | import/export public keys from existing certificate types as well as from PKCS #11 URL. This allows generating a certificate or certificate request from a given public key (currently one could only generate them from a given private key). PKCS#11 API augmented to allow reading arbitrary objects instead of just certificates. Certtool updated to list those objects. | |||||
* | | Added gnutls_pkcs11_token_get_flags() to distinguish between hardware and ↵ | Nikos Mavrogiannopoulos | 2010-05-23 | 2 | -3/+87 | |
| | | | | | | | | soft tokens. | |||||
* | | Export all symbols from C++ library. This library doesn't contain any | Nikos Mavrogiannopoulos | 2010-05-23 | 3 | -14/+9 | |
| | | | | | | | | | | internal symbols anyway and there is no reason to mess with the C++ ABI that hasn't got the problems of C. | |||||
* | | Added support for libnettle backend. This uses gmp for big number operations. | Nikos Mavrogiannopoulos | 2010-05-23 | 27 | -85/+1870 | |
| | | | | | | | | It is not currently completed. It lacks RSA blinding as well as optimizations. | |||||
* | | Documented that the --file options in gnutls-cli and gnutls-serv can accept ↵ | Nikos Mavrogiannopoulos | 2010-05-23 | 5 | -15/+16 | |
| | | | | | | | | a PKCS #11 URL. |