summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
...
* Print a key's or certificate's key ID with SHA256 in addition to SHA1Nikos Mavrogiannopoulos2016-11-222-57/+60
|
* certtool: address compiler warningsNikos Mavrogiannopoulos2016-11-221-1/+1
|
* doc: document the RFC7613 normalization of passwords [ci skip]Nikos Mavrogiannopoulos2016-11-223-1/+17
|
* unistring: include only the required categoriestmp-uninorm-remove-unused-categoriesNikos Mavrogiannopoulos2016-11-21136-17261/+537
| | | | In addition fix the license text of the included library.
* server_name: log server name sentNikos Mavrogiannopoulos2016-11-211-0/+2
|
* x509/output: improve log message on embedded nullNikos Mavrogiannopoulos2016-11-211-1/+1
|
* build-aux: added unused-parameter.htmp-uninormNikos Mavrogiannopoulos2016-11-211-0/+36
|
* .gitlab-ci.yml: explicitly specify --with-included-unistring when neededNikos Mavrogiannopoulos2016-11-211-6/+6
|
* hooks.m4: corrected typoNikos Mavrogiannopoulos2016-11-211-1/+1
|
* .gitlab-ci.yml: ignore syntax-check issues caused by included unistringNikos Mavrogiannopoulos2016-11-211-1/+2
|
* more files to ignoreNikos Mavrogiannopoulos2016-11-211-0/+9
|
* unconditionally include unistring codeNikos Mavrogiannopoulos2016-11-216-385/+23
| | | | | | That simplifies internationalization support, at the cost of including a version of libunistring, which is used on systems which do not ship it.
* lib: added unistring sub-libraryNikos Mavrogiannopoulos2016-11-21159-2/+34296
|
* updated auto-generated files for gnutls_utf8_password_normalize()Nikos Mavrogiannopoulos2016-11-213-0/+4
|
* tests: enhanced str-unicode with GNUTLS_UTF8_IGNORE_ERRS flagNikos Mavrogiannopoulos2016-11-211-1/+23
| | | | That is, enhanced to check the tolerable variant of gnutls_utf8_password_normalize()
* .gitlab-ci.yml: added build without libunistringNikos Mavrogiannopoulos2016-11-211-3/+21
|
* doc: mention the RFC7613 normalization and the libunistring dependencyNikos Mavrogiannopoulos2016-11-212-2/+12
|
* tolerate non-valid UTF8 passwords when decryptingNikos Mavrogiannopoulos2016-11-208-22/+39
|
* tests: addressed compiler warningsNikos Mavrogiannopoulos2016-11-202-3/+2
|
* _gnutls_utf8_to_ucs2: normalize to NFC UTF16 outputNikos Mavrogiannopoulos2016-11-201-4/+13
|
* openssl_hash_password: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-14/+29
|
* TPM: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-7/+45
|
* _gnutls_calc_srp_sha: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-5/+18
|
* gnutls_x509_crq_set_challenge_password: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-4/+18
|
* PKCS#7/8: normalize the password according to rfc7613Nikos Mavrogiannopoulos2016-11-205-36/+77
|
* gnutls.pc: use the LT version of the lib variablesNikos Mavrogiannopoulos2016-11-201-1/+1
|
* Use libunistring when present instead of iconv()Nikos Mavrogiannopoulos2016-11-203-28/+157
| | | | | That allows us to rely to a single provider for unicode functionality.
* tests: added unit tests for gnutls_utf8_password_normalize()Nikos Mavrogiannopoulos2016-11-202-1/+84
|
* Added function for UTF-8 normalization based on RFC7613Nikos Mavrogiannopoulos2016-11-206-1/+164
| | | | This introduces gnutls_utf8_password_normalize() and a dependency on libunistring.
* tests: added test suite with PKCS#8 files that have invalid encryptiontmp-pkcs7-fixesNikos Mavrogiannopoulos2016-11-149-1/+53
|
* PKCS#5,7 decryption: verify the correctness of paddingNikos Mavrogiannopoulos2016-11-141-4/+16
| | | | | | | That is, for block ciphers (i.e., cbc), verify that all the padding bytes match the expected contents according to RFC2898. Relates #148
* PKCS#5,7 decryption: added sanity check on padding sizeNikos Mavrogiannopoulos2016-11-141-2/+8
| | | | Relates #148
* PKCS#5,7 decryption: fail without leak on unknown MACNikos Mavrogiannopoulos2016-11-141-2/+4
|
* PKCS#5,7 decryption: fail early on invalid block sizesNikos Mavrogiannopoulos2016-11-141-3/+13
|
* PKCS#5,7 decryption: enforce limits in the support parameter sizesNikos Mavrogiannopoulos2016-11-143-12/+35
| | | | | This allows to detect invalid parameters early rather than later. Relates #148
* updated auto-generated files for new functionstmp-rfc4514-updatesNikos Mavrogiannopoulos2016-11-143-0/+28
|
* pkcs7 output: use the new functions for DN outputNikos Mavrogiannopoulos2016-11-141-1/+1
|
* tests: account for the strict RFC4514 compliance reversalNikos Mavrogiannopoulos2016-11-142-4/+48
| | | | | Test the new functions only for the strict RFC4514 compliance to output strings, and test the old functions for the legacy format.
* doc updateNikos Mavrogiannopoulos2016-11-141-1/+14
|
* x509 output: use the new functions for DN outputNikos Mavrogiannopoulos2016-11-142-167/+60
|
* cleanups in _gnutls_buffer_to_datum()Nikos Mavrogiannopoulos2016-11-141-5/+9
|
* certtool: use the new APIs for DN extractionNikos Mavrogiannopoulos2016-11-141-35/+31
|
* _gnutls_x509_get_dn: when no data ensure we return ↵Nikos Mavrogiannopoulos2016-11-141-2/+6
| | | | | | GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE This aligns with the previous (prior to RFC4514 improvements) behavior of the function.
* Introduced new functions to allow multiple DN parsing modesNikos Mavrogiannopoulos2016-11-1410-176/+483
| | | | | | | | The old DN parsing functions are changed to return the original non-fully compliant with RFC4514 string format, while the new ones return the compliant string by default. This allows applications which relied on the previous format to continue functioning without changes.
* .gitlab-ci.yml: include root dir log files in all buildsNikos Mavrogiannopoulos2016-11-141-0/+7
|
* doc updateNikos Mavrogiannopoulos2016-11-141-0/+3
|
* gl: removed invalid module nameNikos Mavrogiannopoulos2016-11-141-2/+1
|
* tools: added explicit socket flag to skip TLS initializationtmp-tools-updateNikos Mavrogiannopoulos2016-11-133-7/+10
| | | | | This allows proper error recovery when SOCKET_FLAG_RAW is specified and initialize_session() fails.
* gnutls-cli-debug: terminate sessions which cannot be re-usedNikos Mavrogiannopoulos2016-11-133-6/+6
|
* sockets: only use gnutls_bye on a valid socket sessionNikos Mavrogiannopoulos2016-11-131-1/+2
|
View Lorry Controller Status