| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
| |
memory access
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This commit closes #586.
Two new functions are introduced: gnutls_psk_server_get_username2()
and gnutls_psk_set_client_username2(), which are identical in behavior
to those named similarly (without the final '2'), but allow arbitrary
gnutls datums (not strings) to be used as usernames.
Two new callback functions are also introduced, with their respective
setters: gnutls_psk_set_server_credentials_function2() and
gnutls_psk_set_client_credentials_function2().
In addition, the password file format is extended so that non-string
usernames can be specified. A leading '#' character tells GnuTLS that the
username should be interpreted as a raw byte string (encoded in HEX).
Example:
#deadbeef:9e32cf7786321a828ef7668f09fb35db
Signed-off-by: Ander Juaristi's avatarAnder Juaristi <a@juaristi.eus>
|
|
|
|
| |
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
|
|
|
|
|
|
|
|
|
|
|
| |
That adds support for pre-shared keys with and without Diffie-Hellman
key exchange. That's a modified version of initial Ander's patch.
Resolves #414
Resolves #125
Signed-off-by: Ander Juaristi <a@juaristi.eus>
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.org>
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Issue discovered using codenomicon TLS test suite.
|
|
|
|
|
|
|
|
|
| |
All checks were being done where the line_size check was done last. This
allows data to be read from one past teh end of the line buffer. In C,
accessing data outside of an array is undefined behavior and may cause
yet known problems. Additionally, the compiler may end up making some
unreasonable assumptions under the pretense that the programmer is never
wrong and would not access data outside of the array.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Dropped opaque type (replaced with uint8_t)
|
| |
|
| |
|
|
|
|
|
|
| |
The larger prime is find first and the big loop needs to
find a smaller prime, increasing performance.
The _gnutls_rnd() function is now inline and GNUTLS_RND_NONCE doesn't update random generator state.
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Thus the following functions
- gnutls_crypto_bigint_register
- gnutls_crypto_cipher_register
- gnutls_crypto_digest_register
- gnutls_crypto_mac_register
- gnutls_crypto_pk_register
- gnutls_crypto_rnd_register
- gnutls_crypto_single_cipher_register
- gnutls_crypto_single_digest_register
- gnutls_crypto_single_mac_register
are only available internally via crypto-backend.h.
|
|
|