Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Print a key's or certificate's key ID with SHA256 in addition to SHA1 | Nikos Mavrogiannopoulos | 2016-11-22 | 2 | -57/+60 | |
| | ||||||
* | certtool: address compiler warnings | Nikos Mavrogiannopoulos | 2016-11-22 | 1 | -1/+1 | |
| | ||||||
* | doc: document the RFC7613 normalization of passwords [ci skip] | Nikos Mavrogiannopoulos | 2016-11-22 | 3 | -1/+17 | |
| | ||||||
* | unistring: include only the required categoriestmp-uninorm-remove-unused-categories | Nikos Mavrogiannopoulos | 2016-11-21 | 136 | -17261/+537 | |
| | | | | In addition fix the license text of the included library. | |||||
* | server_name: log server name sent | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -0/+2 | |
| | ||||||
* | x509/output: improve log message on embedded null | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -1/+1 | |
| | ||||||
* | build-aux: added unused-parameter.htmp-uninorm | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -0/+36 | |
| | ||||||
* | .gitlab-ci.yml: explicitly specify --with-included-unistring when needed | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -6/+6 | |
| | ||||||
* | hooks.m4: corrected typo | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -1/+1 | |
| | ||||||
* | .gitlab-ci.yml: ignore syntax-check issues caused by included unistring | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -1/+2 | |
| | ||||||
* | more files to ignore | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -0/+9 | |
| | ||||||
* | unconditionally include unistring code | Nikos Mavrogiannopoulos | 2016-11-21 | 6 | -385/+23 | |
| | | | | | | That simplifies internationalization support, at the cost of including a version of libunistring, which is used on systems which do not ship it. | |||||
* | lib: added unistring sub-library | Nikos Mavrogiannopoulos | 2016-11-21 | 159 | -2/+34296 | |
| | ||||||
* | updated auto-generated files for gnutls_utf8_password_normalize() | Nikos Mavrogiannopoulos | 2016-11-21 | 3 | -0/+4 | |
| | ||||||
* | tests: enhanced str-unicode with GNUTLS_UTF8_IGNORE_ERRS flag | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -1/+23 | |
| | | | | That is, enhanced to check the tolerable variant of gnutls_utf8_password_normalize() | |||||
* | .gitlab-ci.yml: added build without libunistring | Nikos Mavrogiannopoulos | 2016-11-21 | 1 | -3/+21 | |
| | ||||||
* | doc: mention the RFC7613 normalization and the libunistring dependency | Nikos Mavrogiannopoulos | 2016-11-21 | 2 | -2/+12 | |
| | ||||||
* | tolerate non-valid UTF8 passwords when decrypting | Nikos Mavrogiannopoulos | 2016-11-20 | 8 | -22/+39 | |
| | ||||||
* | tests: addressed compiler warnings | Nikos Mavrogiannopoulos | 2016-11-20 | 2 | -3/+2 | |
| | ||||||
* | _gnutls_utf8_to_ucs2: normalize to NFC UTF16 output | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -4/+13 | |
| | ||||||
* | openssl_hash_password: normalize the password prior to use | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -14/+29 | |
| | ||||||
* | TPM: normalize the password prior to use | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -7/+45 | |
| | ||||||
* | _gnutls_calc_srp_sha: normalize the password prior to use | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -5/+18 | |
| | ||||||
* | gnutls_x509_crq_set_challenge_password: normalize the password prior to use | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -4/+18 | |
| | ||||||
* | PKCS#7/8: normalize the password according to rfc7613 | Nikos Mavrogiannopoulos | 2016-11-20 | 5 | -36/+77 | |
| | ||||||
* | gnutls.pc: use the LT version of the lib variables | Nikos Mavrogiannopoulos | 2016-11-20 | 1 | -1/+1 | |
| | ||||||
* | Use libunistring when present instead of iconv() | Nikos Mavrogiannopoulos | 2016-11-20 | 3 | -28/+157 | |
| | | | | | That allows us to rely to a single provider for unicode functionality. | |||||
* | tests: added unit tests for gnutls_utf8_password_normalize() | Nikos Mavrogiannopoulos | 2016-11-20 | 2 | -1/+84 | |
| | ||||||
* | Added function for UTF-8 normalization based on RFC7613 | Nikos Mavrogiannopoulos | 2016-11-20 | 6 | -1/+164 | |
| | | | | This introduces gnutls_utf8_password_normalize() and a dependency on libunistring. | |||||
* | tests: added test suite with PKCS#8 files that have invalid encryptiontmp-pkcs7-fixes | Nikos Mavrogiannopoulos | 2016-11-14 | 9 | -1/+53 | |
| | ||||||
* | PKCS#5,7 decryption: verify the correctness of padding | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -4/+16 | |
| | | | | | | | That is, for block ciphers (i.e., cbc), verify that all the padding bytes match the expected contents according to RFC2898. Relates #148 | |||||
* | PKCS#5,7 decryption: added sanity check on padding size | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -2/+8 | |
| | | | | Relates #148 | |||||
* | PKCS#5,7 decryption: fail without leak on unknown MAC | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -2/+4 | |
| | ||||||
* | PKCS#5,7 decryption: fail early on invalid block sizes | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -3/+13 | |
| | ||||||
* | PKCS#5,7 decryption: enforce limits in the support parameter sizes | Nikos Mavrogiannopoulos | 2016-11-14 | 3 | -12/+35 | |
| | | | | | This allows to detect invalid parameters early rather than later. Relates #148 | |||||
* | updated auto-generated files for new functionstmp-rfc4514-updates | Nikos Mavrogiannopoulos | 2016-11-14 | 3 | -0/+28 | |
| | ||||||
* | pkcs7 output: use the new functions for DN output | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -1/+1 | |
| | ||||||
* | tests: account for the strict RFC4514 compliance reversal | Nikos Mavrogiannopoulos | 2016-11-14 | 2 | -4/+48 | |
| | | | | | Test the new functions only for the strict RFC4514 compliance to output strings, and test the old functions for the legacy format. | |||||
* | doc update | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -1/+14 | |
| | ||||||
* | x509 output: use the new functions for DN output | Nikos Mavrogiannopoulos | 2016-11-14 | 2 | -167/+60 | |
| | ||||||
* | cleanups in _gnutls_buffer_to_datum() | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -5/+9 | |
| | ||||||
* | certtool: use the new APIs for DN extraction | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -35/+31 | |
| | ||||||
* | _gnutls_x509_get_dn: when no data ensure we return ↵ | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -2/+6 | |
| | | | | | | GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE This aligns with the previous (prior to RFC4514 improvements) behavior of the function. | |||||
* | Introduced new functions to allow multiple DN parsing modes | Nikos Mavrogiannopoulos | 2016-11-14 | 10 | -176/+483 | |
| | | | | | | | | The old DN parsing functions are changed to return the original non-fully compliant with RFC4514 string format, while the new ones return the compliant string by default. This allows applications which relied on the previous format to continue functioning without changes. | |||||
* | .gitlab-ci.yml: include root dir log files in all builds | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -0/+7 | |
| | ||||||
* | doc update | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -0/+3 | |
| | ||||||
* | gl: removed invalid module name | Nikos Mavrogiannopoulos | 2016-11-14 | 1 | -2/+1 | |
| | ||||||
* | tools: added explicit socket flag to skip TLS initializationtmp-tools-update | Nikos Mavrogiannopoulos | 2016-11-13 | 3 | -7/+10 | |
| | | | | | This allows proper error recovery when SOCKET_FLAG_RAW is specified and initialize_session() fails. | |||||
* | gnutls-cli-debug: terminate sessions which cannot be re-used | Nikos Mavrogiannopoulos | 2016-11-13 | 3 | -6/+6 | |
| | ||||||
* | sockets: only use gnutls_bye on a valid socket session | Nikos Mavrogiannopoulos | 2016-11-13 | 1 | -1/+2 | |
| |