Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | fixed more memory leaks in crywrap | Nikos Mavrogiannopoulos | 2014-03-03 | 1 | -0/+10 |
| | |||||
* | addressed memory leak in crywrap.c | Nikos Mavrogiannopoulos | 2014-03-03 | 1 | -2/+4 |
| | |||||
* | check the blacklist for certificates provided in ↵ | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -0/+8 |
| | | | | gnutls_x509_trust_list_verify_named_crt(). | ||||
* | corrected configure option. | Nikos Mavrogiannopoulos | 2014-03-02 | 3 | -20/+8 |
| | |||||
* | rsa-export is no more | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -1/+0 |
| | |||||
* | updated option for TPM | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -1/+1 |
| | |||||
* | updated | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -4/+4 |
| | |||||
* | replace select() on windows | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -13/+18 |
| | |||||
* | print message before failing when the pull timeout function isn't replaced. | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -1/+3 |
| | |||||
* | Added NULL PSK ciphersuites with SHA1; suggested by Manuel Pégourié-Gonnard. | Nikos Mavrogiannopoulos | 2014-03-02 | 1 | -0/+21 |
| | |||||
* | updated gnulib | Nikos Mavrogiannopoulos | 2014-03-01 | 495 | -724/+2822 |
| | |||||
* | Allow all ciphersuites in SSL3.0 when they are available in TLS1.0 | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -79/+79 |
| | |||||
* | The default priority is reset to NORMAL | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -1/+1 |
| | |||||
* | Revert "the default priorities are reset to be NORMAL." | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -1/+1 |
| | | | | This reverts commit 9c07f75676b6b70da10e99c409b0cb7dbc245463. | ||||
* | mention SHA384 as MAC option | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -1/+1 |
| | |||||
* | documented the defaults | Nikos Mavrogiannopoulos | 2014-02-28 | 2 | -2/+2 |
| | |||||
* | the default priorities are reset to be NORMAL. | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -1/+1 |
| | | | | Reported by Manuel Pégourié-Gonnard. | ||||
* | Add required priorities | Nikos Mavrogiannopoulos | 2014-02-28 | 1 | -4/+4 |
| | |||||
* | Preinitialize values; suggested by Sebastian Krahmer and Tomas Hoger. | Nikos Mavrogiannopoulos | 2014-02-27 | 1 | -2/+2 |
| | |||||
* | added doc on is_issuer() checks | Nikos Mavrogiannopoulos | 2014-02-27 | 1 | -0/+4 |
| | |||||
* | removed not trusted message; reported by Michel Briand. | Nikos Mavrogiannopoulos | 2014-02-26 | 1 | -4/+0 |
| | |||||
* | updated for verification updates | Nikos Mavrogiannopoulos | 2014-02-26 | 1 | -2/+2 |
| | |||||
* | Updated verification function | Nikos Mavrogiannopoulos | 2014-02-25 | 1 | -22/+33 |
| | |||||
* | New option --stricttofu for gnutls-cli | Jens Lechtenboerger | 2014-02-23 | 2 | -5/+20 |
| | | | | | | | | | | | | | | With option --tofu, gnutls-cli waits with a yes-no-question upon certificate changes. I added the option --stricttofu that omits the question and fails instead. The contribution is in accordance to the "Developer's Certificate of Origin" as found in the file doc/DCO.txt. Best wishes Jens Signed-off-by: Jens Lechtenbörger <jens.lechtenboerger@fsfe.org> | ||||
* | moved priorities check to the first call only. | Nikos Mavrogiannopoulos | 2014-02-22 | 1 | -3/+3 |
| | |||||
* | removed duplicate definition; reported by Dennis Philipps. | Nikos Mavrogiannopoulos | 2014-02-21 | 1 | -2/+0 |
| | |||||
* | updated coding style | Nikos Mavrogiannopoulos | 2014-02-21 | 1 | -3/+3 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-21 | 1 | -1/+1 |
| | |||||
* | added cert | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -0/+21 |
| | |||||
* | corrected check | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -1/+1 |
| | |||||
* | combined timeout values | Nikos Mavrogiannopoulos | 2014-02-20 | 2 | -7/+9 |
| | |||||
* | updated | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -2/+4 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -3/+3 |
| | |||||
* | When appending a name, ensure that we append to the end of the list. | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -1/+5 |
| | |||||
* | use gnutls_free() | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -4/+4 |
| | |||||
* | corrected email in texi | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -1/+1 |
| | |||||
* | srp: Add resistance against guessing usernames | Attila Molnar | 2014-02-20 | 5 | -21/+135 |
| | | | | | | | | | | | | | | | | | | When a client tries to authenticate using an unknown username, instead of generating a random salt every time, generate the salt based on the username and a secret seed. The seed is settable by the application, allowing servers to re-use the same seed after a restart. A random seed is generated for each newly allocated SRP server credentials structure, meaning that applications not using the new API to set the seed continue to work and gain limited advantage (because they use a different seed after every restart). For further information see section 2.5.1.3. in RFC 5054. Signed-off-by: Attila Molnar <attilamolnar@hush.com> | ||||
* | small artistic changes | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -25/+27 |
| | |||||
* | check against the success value | Nikos Mavrogiannopoulos | 2014-02-20 | 1 | -3/+3 |
| | |||||
* | use bool types when needed. | Nikos Mavrogiannopoulos | 2014-02-19 | 3 | -12/+14 |
| | |||||
* | ensure failure when parsing fails. | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -5/+6 |
| | |||||
* | allow ip address as constraint | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -3/+4 |
| | |||||
* | Added check for IPaddress | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -0/+6 |
| | |||||
* | doc update | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -2/+2 |
| | |||||
* | Added tests for name constraints addition. | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -8/+273 |
| | |||||
* | better error printing | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -140/+140 |
| | |||||
* | corrected empty name check | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -2/+2 |
| | |||||
* | Updated test for name constraints to include empty constraints names. | Nikos Mavrogiannopoulos | 2014-02-19 | 2 | -0/+3 |
| | |||||
* | pretty print empty DNSnames | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -6/+7 |
| | |||||
* | _gnutls_x509_read_value() can now read empty values. | Nikos Mavrogiannopoulos | 2014-02-19 | 2 | -1/+9 |
| |