summaryrefslogtreecommitdiff
path: root/lib/auth/psk_passwd.c
Commit message (Collapse)AuthorAgeFilesLines
* Ensure that an incorrectly formatted password file doesn't cause invalid ↵Nikos Mavrogiannopoulos2020-03-231-1/+2
| | | | | | memory access Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* psk: Allow non-NULL PSK usernamesAnder Juaristi2020-03-231-17/+54
| | | | | | | | | | | | | | | | | | | | | | | This commit closes #586. Two new functions are introduced: gnutls_psk_server_get_username2() and gnutls_psk_set_client_username2(), which are identical in behavior to those named similarly (without the final '2'), but allow arbitrary gnutls datums (not strings) to be used as usernames. Two new callback functions are also introduced, with their respective setters: gnutls_psk_set_server_credentials_function2() and gnutls_psk_set_client_credentials_function2(). In addition, the password file format is extended so that non-string usernames can be specified. A leading '#' character tells GnuTLS that the username should be interpreted as a raw byte string (encoded in HEX). Example: #deadbeef:9e32cf7786321a828ef7668f09fb35db Signed-off-by: Ander Juaristi's avatarAnder Juaristi <a@juaristi.eus>
* Use https:// for www.gnu.org and www.example.comTim Rühsen2019-03-131-1/+1
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* Added support for out-of-band Pre-shared keys under TLS1.3Ander Juaristi2018-04-061-3/+32
| | | | | | | | | | | That adds support for pre-shared keys with and without Diffie-Hellman key exchange. That's a modified version of initial Ander's patch. Resolves #414 Resolves #125 Signed-off-by: Ander Juaristi <a@juaristi.eus> Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.org>
* deprecated _gnutls_rnd() in favor of exported gnutls_rnd()Nikos Mavrogiannopoulos2016-11-041-1/+1
|
* several spacing fixes to keep syntax-check happyNikos Mavrogiannopoulos2016-09-111-2/+2
|
* Removed the 'gnutls_' prefix from files to simplify file namingNikos Mavrogiannopoulos2015-08-231-7/+7
|
* psk: use gnutls_hex_decode2 for key decodingNikos Mavrogiannopoulos2015-07-211-11/+4
|
* removed legacy code.Nikos Mavrogiannopoulos2014-05-101-1/+1
|
* Eliminated password file descriptor leak.Nikos Mavrogiannopoulos2014-05-041-3/+2
| | | | Issue discovered using codenomicon TLS test suite.
* Fixed check for i < line_size.Jared Wong2013-12-141-2/+2
| | | | | | | | | All checks were being done where the line_size check was done last. This allows data to be read from one past teh end of the line buffer. In C, accessing data outside of an array is undefined behavior and may cause yet known problems. Additionally, the compiler may end up making some unreasonable assumptions under the pretense that the programmer is never wrong and would not access data outside of the array.
* long term keys are always overwrittenNikos Mavrogiannopoulos2013-11-271-0/+1
|
* Added zeroization of keys in several parts within gnutls.Nikos Mavrogiannopoulos2013-11-271-0/+1
|
* reduced stack size usage in several functions.Nikos Mavrogiannopoulos2013-11-101-8/+14
|
* reindented codeNikos Mavrogiannopoulos2013-11-081-156/+138
|
* Use LGPLv2.1 in the files their author's agreed to.Nikos Mavrogiannopoulos2013-02-011-1/+1
|
* session->key no longer needs to be an allocated structure.Nikos Mavrogiannopoulos2012-10-101-1/+1
|
* Fixed signed/unsigned warnings.Nikos Mavrogiannopoulos2012-01-211-1/+1
| | | | Dropped opaque type (replaced with uint8_t)
* Collapse and cleanup copyright information.Simon Josefsson2012-01-161-2/+1
|
* Run 'make update-copyright'.Simon Josefsson2012-01-161-1/+2
|
* Optimizations in DH parameter generation.Nikos Mavrogiannopoulos2011-12-121-1/+1
| | | | | | The larger prime is find first and the big loop needs to find a smaller prime, increasing performance. The _gnutls_rnd() function is now inline and GNUTLS_RND_NONCE doesn't update random generator state.
* Clarify license and copyright.Simon Josefsson2011-08-031-1/+1
|
* Upgraded to LGPLv3.Nikos Mavrogiannopoulos2011-06-231-5/+3
|
* gnutls/crypto.h no longer includes functions to register ciphers.Nikos Mavrogiannopoulos2011-06-021-1/+1
| | | | | | | | | | | | | | Thus the following functions - gnutls_crypto_bigint_register - gnutls_crypto_cipher_register - gnutls_crypto_digest_register - gnutls_crypto_mac_register - gnutls_crypto_pk_register - gnutls_crypto_rnd_register - gnutls_crypto_single_cipher_register - gnutls_crypto_single_digest_register - gnutls_crypto_single_mac_register are only available internally via crypto-backend.h.
* The auth_ and ext_ files were moved to respective directories.Nikos Mavrogiannopoulos2011-04-161-0/+226
View Lorry Controller Status