| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
| |
This directory had a makefile which was intended to calculate the cyclomatic
complexity, however that was not functional, and not related with gnutls'
documentation.
Resolves: #727
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
|
|
|
| |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
|\
| |
| |
| |
| | |
cleanup: _gnutls_recv_handshake: added explicit sanity checks
See merge request gnutls/gnutls!937
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Although, this function acts on the message provided as expected and thus
it should never call a message parsing function on unexpected
messages, we make a more explicit sanity check. This unifies the
sanity checks existing within the involved functions.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
|\ \
| | |
| | |
| | |
| | |
| | |
| | | |
TLS 1.3: utilize "certificate_required" alert
Closes #715
See merge request gnutls/gnutls!946
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This could make errors more distinguishable when the client sends no
certificates or a bad certificate.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
|
| | |
| | |
| | |
| | |
| | |
| | | |
This may be sent if the server received an empty Certificate message.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
|
|\ \ \
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
gnutls-cli: Fix --starttls-proto=xmpp
Closes #697
See merge request gnutls/gnutls!911
|
| | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Fixes two issues with gnutls-cli --starttls-proto=xmpp:
1. Print 'Timeout' on timeout instead of random errno message
2. Do not wait for linefeed when using XMPP (XML)
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | | |
Create .lgtm.yml for LGTM.com C/C++ analysis
See merge request gnutls/gnutls!945
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Bas van Schaik <gitlab.com@s.traiectum.net>
|
|\ \ \ \ \
| |_|_|/ /
|/| | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Improve documentation for gnutls_cipher_get_iv_size and AEAD ciphers
Closes #717
See merge request gnutls/gnutls!941
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Relates: #716
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| |/ / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This clarifies what is returned and what is to be expected on algorithms
with variable IV sizes.
Resolves: #717
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | | |
Fix FIPS integrity self tests
See merge request gnutls/gnutls!873
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This enables the integrity self-tests in FIPS140 test build.
Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This makes the integrity check to ignore newlines appended after the
HMAC value.
Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
|
|/ / / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
The names of the libraries haven't been updated when the soname version
were bumped.
Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Fixed operation under multiple threads
Closes #713
See merge request gnutls/gnutls!935
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This checks for unsafe uses of variables in our included threaded
tests.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
early start
This adds a double check in the sanity check of gnutls_record_send2()
for the initial_negotiation_completed value, making sure that the
check will be successful even in parallel operation of send/recv.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
An application that is sending and receiving from different threads
after handshake is complete cannot take advantage of false start because
gnutls_record_send2() detects operations during the handshake process
as invalid.
Because in early start and false start the remaining handshake process needs
only to receive data, and the sending side is already set-up, this error
detection is bogus. With this patch we remove it.
Resolves: #713
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Relates: #713
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
|\ \ \ \ \
| |_|/ / /
|/| | | |
| | | | |
| | | | | |
Update ./bootstrap from latest gnulib
See merge request gnutls/gnutls!943
|
|/ / / /
| | | |
| | | |
| | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \
| |/ / /
|/| | |
| | | |
| | | |
| | | |
| | | | |
pkcs11: clarify GNUTLS_PKCS11_TOKEN_MODNAME presence [ci skip]
Closes #633
See merge request gnutls/gnutls!938
|
|/ / /
| | |
| | |
| | |
| | |
| | | |
Resolves: #633
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
| | |
| | |
| | |
| | | |
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
|\ \ \
| | | |
| | | |
| | | |
| | | | |
gnutls-cli: fix --benchmark-ciphers type overflow
See merge request gnutls/gnutls!934
|
|/ / /
| | |
| | |
| | | |
Signed-off-by: Andreas Metzler <ametzler@bebt.de>
|
|\ \ \
| | | |
| | | |
| | | |
| | | | |
Fetch OSS-Fuzz corpora much faster [skip ci]
See merge request gnutls/gnutls!883
|
| | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | | |
Update m4/ax_code_coverage.m4
See merge request gnutls/gnutls!905
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \ \
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Automatically NULLify after gnutls_free()
See merge request gnutls/gnutls!923
|
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
| |/ / / /
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This method prevents direct use-after-free and
double-free issues.
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \ \
| |_|_|_|/
|/| | | |
| | | | |
| | | | | |
Cleanup lib/auth/cert.c as suggested by cppcheck
See merge request gnutls/gnutls!924
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|\ \ \ \ \
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
handshake: defer setting downgrade sentinel until version is selected
Closes #689
See merge request gnutls/gnutls!918
|
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Daiki Ueno <dueno@redhat.com>
|
| | |_|_|/
| |/| | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This adds a call to _gnutls_gen_server_random() in handling the
"supported_versions" extension, so that the TLS 1.3 downgrade sentinel
is set only when the earlier versions are selected.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
|
|\ \ \ \ \
| |_|_|/ /
|/| | | |
| | | | |
| | | | | |
Re-introduce topendir on Windows with Unicode support
See merge request gnutls/gnutls!932
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Hugo Beauzée-Luyssen <hugo@beauzee.fr>
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This reverts commit 681330882da19099eea360fab141cab937c45677.
Signed-off-by: Hugo Beauzée-Luyssen <hugo@beauzee.fr>
This revert also contains the fix to the original commit (invalid
utf8->utf16 conversion) and a minor simplification of the _treaddir loop.
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Hugo Beauzée-Luyssen <hugo@beauzee.fr>
|