| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| |\
| |
| |
| |
| |
| |
| | |
Fix cipher-openssl-compat failing with LibreSSL
Closes #658
See merge request gnutls/gnutls!846
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
There is no need to call EVP_CIPHER_CTX_init() after
EVP_CIPHER_CTX_new().
Fixes #658
Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
|
| |/
|
|
|
|
|
| |
LibreSSL does not provide ChaCha20-Poly1305 through EVP_CIPHER
interface, so let's skip the test if cipher is not available.
Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
|
| |\
| |
| |
| |
| |
| |
| | |
gnutls_pubkey_import_ecc_raw: set the public key bits
Closes #640
See merge request gnutls/gnutls!843
|
| |/
|
|
|
|
|
|
| |
This sets the number of key bits once an ECC key is imported.
Resolves #640
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| |\
| |
| |
| |
| | |
GNUTLS_X509_NO_WELL_DEFINED_EXPIRATION: deprecated
See merge request gnutls/gnutls!844
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This removes the documented use of this macro. It was non-functional.
Given the nature of the definition of the non-well defined date for
certificates, it may be wise not to use a special macro at all. The
reason is that the no-well defined date is a real date (~year 9999),
and any approximation with seconds will be unstable due to irregular
leap seconds.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| |/
|
|
| |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| |\
| |
| |
| |
| |
| |
| | |
testrandom.sh: Fix endless loop
Closes #656
See merge request gnutls/gnutls!842
|
| | |
| |
| |
| | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| |\ \
| |/
|/|
| |
| | |
win32: Use CertOpenStore instead of CertOpenSystemStore
See merge request gnutls/gnutls!839
|
| | |
| |
| |
| |
| | |
The test isn't located in tests/windows since we need the actual
libcrypt32 implementations.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
CertOpenSystemStore is not available when building for windows store.
Both functions are available since windows XP, so there is no
compatibility change.
CertOpenSystemStore documentation states "Only current user certificates
are accessible using this method, not the local machine store." hence we
pass CERT_SYSTEM_STORE_CURRENT_USER.
We also use the wide chars variants, in the event the ansi ones are
silently rejected by windows store applications (which is not
documented, but which I strongly suspect)
This is equivalent to Wine's implementation of CertOpenSystemStore:
https://github.com/wine-mirror/wine/blob/master/dlls/crypt32/store.c#L904
|
| |\ \
| | |
| | |
| | |
| | | |
CONTRIBUTING.md: added proposal on commenting style and new features
See merge request gnutls/gnutls!816
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| |\ \ \
| | | |
| | | |
| | | |
| | | | |
Windows & Windows Store store patches
See merge request gnutls/gnutls!835
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Windows store drastically limits the available functions.
In this case, at least CryptSetProvParam and the NCrypt* functions
can't be used
Signed-off-by: Hugo Beauzée-Luyssen <hugo@beauzee.fr>
|
| | | | |
| | | |
| | | |
| | | |
| | | | |
And especially when building for windows store, which only allows
unicode version of opendir & friends functions.
|
| | | |/
| |/|
| | |
| | |
| | |
| | | |
Those functions are forbidden when building for Windows Store
Signed-off-by: Hugo Beauzée-Luyssen <hugo@beauzee.fr>
|
| |\ \ \
| |/ /
|/| |
| | |
| | | |
vasprintf: use from gnulib; don't bundle twice
See merge request gnutls/gnutls!841
|
| |/ /
| |
| |
| |
| |
| | |
Relates #653
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| |\ \
| | |
| | |
| | |
| | | |
Make some tests more portable
See merge request gnutls/gnutls!819
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
A bug made our CI cross builds fail.
See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916779
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| |/ /
| |
| |
| |
| |
| |
| |
| |
| | |
On busybox 'date +%N' returns an empty value.
On 'dash' (Debian shell) $RANDOM doesn't work.
This commit works first tries $RANDOM and then falls back to 'date +%N'.
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| |\ \
| | |
| | |
| | |
| | | |
Fix gnutls_pkcs11_token_get_info for short output buffers and fix a memleak
See merge request gnutls/gnutls!827
|
| | | |
| | |
| | |
| | |
| | | |
find_token_modname_cb uses p11_kit_config_option to retrieve the module
name, but its return value (stored in tn.modname) must be freed.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
find_token_modname_cb uses p11_kit_config_option to retrieve the module
name, but its return value must be free'd.
Other fixes:
- Do not silently truncate the output buffer, return an error instead.
- If the module name is unavailable, do not write "(null)" to the
output. Write an empty string instead.
- The module path can be of arbitrary length, so passing output=NULL to
learn the length seems reasonable, except that snprintf crashed on a
NULL pointer dereference.
Fixes: 241f9f0b1 ("Added GNUTLS_PKCS11_TOKEN_MODNAME for gnutls_pkcs11_token_get_info")
Signed-off-by: Peter Wu <peter@lekensteyn.nl>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
It was not clear whether @output_size contains the actual string length
or the buffer length (including null terminator).
Signed-off-by: Peter Wu <peter@lekensteyn.nl>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
Created NEWS entry for 3.6.6 and unified the listing of gnutls_init_flags_t
items.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| |\ \ \
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
RFC7250 Raw public keys
Closes #280 and #26
See merge request gnutls/gnutls!650
|
| | |/ /
| | |
| | |
| | | |
Signed-off-by: Tom Vrancken <dev@tomvrancken.nl>
|
| |\ \ \
| |/ /
|/| |
| | |
| | | |
Unicode support
See merge request gnutls/gnutls!838
|
| | | | |
|
| |\ \ \
| | | |
| | | |
| | | |
| | | | |
build: remove src/*.bak from distribution
See merge request gnutls/gnutls!808
|
| |/ / /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Instead, include the autogen-generated *.c, *.h and the stamp files in
the distribution.
To prevent the bundled files being linked with incompatible autogen
libopts, this adds an extra check in configure. If the detected
system libopts version is too old, it will use the included libopts
implementation.
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
Signed-off-by: Daiki Ueno <dueno@redhat.com>
|
| |\ \ \
| | | |
| | | |
| | | |
| | | | |
GNUTLS_PCERT_NO_CERT: marked as unused/ignored
See merge request gnutls/gnutls!837
|
| |/ / /
| | |
| | |
| | |
| | |
| | | |
This flag was already a no-op.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
