summaryrefslogtreecommitdiff
path: root/lib/auth
Commit message (Expand)AuthorAgeFilesLines
* auth rsa: eliminated memory leak on pkcs-1 formatting attack pathNikos Mavrogiannopoulos2017-01-041-1/+5
* proc_server_kx: eliminated leak on error pathNikos Mavrogiannopoulos2017-01-031-0/+3
* Removed redundant certificate key usage checks.Nikos Mavrogiannopoulos2016-12-011-14/+0
* deprecated _gnutls_rnd() in favor of exported gnutls_rnd()Nikos Mavrogiannopoulos2016-11-044-6/+6
* DH: introduced gnutls_*_set_known_dh_params()Nikos Mavrogiannopoulos2016-10-143-0/+5
* Added gnutls_certificate_set_ocsp_status_request_function2Nikos Mavrogiannopoulos2016-09-122-16/+36
* several spacing fixes to keep syntax-check happyNikos Mavrogiannopoulos2016-09-116-20/+20
* lib: eliminated the use of deprecated variablesNikos Mavrogiannopoulos2016-06-061-2/+2
* doc updateNikos Mavrogiannopoulos2016-05-171-1/+1
* Allow for conditional compilation of SSL 3.0 protocolNikos Mavrogiannopoulos2016-05-141-4/+9
* call_get_cert_callback: removed dead codeNikos Mavrogiannopoulos2016-05-101-5/+0
* auth/cert: log the server name requested by clientNikos Mavrogiannopoulos2016-05-101-1/+3
* srp base64: return proper gnutls errors codes on error rather than -1Nikos Mavrogiannopoulos2016-04-291-4/+4
* instead of assigning a variable per flag use the init flags directlyNikos Mavrogiannopoulos2016-04-281-1/+1
* added flag in session to force sending a client certificateNikos Mavrogiannopoulos2016-04-281-5/+7
* ecdhe: eliminated unneeded checks for zero of public parametersNikos Mavrogiannopoulos2016-04-241-6/+0
* handshake: added support for ECDH with curve X25519Nikos Mavrogiannopoulos2016-04-241-65/+152
* ecdhe: print the received curve from the server on debug modeNikos Mavrogiannopoulos2016-04-241-0/+7
* client key exchange: fail if the client KX message is padded with additional ...Nikos Mavrogiannopoulos2016-04-182-1/+7
* Makefile.am: moved common rules (AM_CFLAGS) to common.mkNikos Mavrogiannopoulos2016-04-121-1/+2
* Added gnutls_certificate_flags() and GNUTLS_CERTIFICATE_SKIP_KEY_CERT_MATCHNikos Mavrogiannopoulos2015-11-181-0/+1
* Allow switching a ciphersuite to DHE and ECDHE on a rehandshakeNikos Mavrogiannopoulos2015-11-112-2/+2
* Removed the 'gnutls_' prefix from files to simplify file namingNikos Mavrogiannopoulos2015-08-2322-139/+137
* PSK: save the username in client side in the auth structureNikos Mavrogiannopoulos2015-08-211-1/+18
* Enable key usage checks in the client side of RSA ciphersuitesNikos Mavrogiannopoulos2015-08-141-0/+28
* psk: use gnutls_hex_decode2 for key decodingNikos Mavrogiannopoulos2015-07-211-11/+4
* PSK: set the hint in DHE-PSK and ECDHE-PSK ciphersuitesNikos Mavrogiannopoulos2015-07-101-10/+74
* set the value used by gnutls_certificate_client_get_request_status prior to s...Nikos Mavrogiannopoulos2015-04-251-5/+5
* tls-rsa: keep a common code path when doing RSA decryptionNikos Mavrogiannopoulos2015-04-211-28/+29
* the base64 xxx_alloc functions were renamed to xxx2Nikos Mavrogiannopoulos2015-04-041-4/+4
* DH: do not warn on zero q_bitsNikos Mavrogiannopoulos2015-04-041-1/+1
* added gnutls_ext_set_data() and gnutls_ext_get_data()Nikos Mavrogiannopoulos2015-03-201-3/+3
* removed the old gnutls_retr_st compatibility functionsNikos Mavrogiannopoulos2014-12-032-56/+4
* cleanup in the initialization of ECDH parameters.Nikos Mavrogiannopoulos2014-05-141-7/+7
* removed legacy code.Nikos Mavrogiannopoulos2014-05-1012-33/+32
* Addressed memory leaks in DHE and ECDHE rehandshakes.Nikos Mavrogiannopoulos2014-05-092-0/+16
* Ensure that there is no remainders in the TLS handshake packets.Nikos Mavrogiannopoulos2014-05-051-7/+11
* Eliminated password file descriptor leak.Nikos Mavrogiannopoulos2014-05-041-3/+2
* Use unsigned type for encode(). Based on suggestion by Shawn (sth0r2046 [at] ...Nikos Mavrogiannopoulos2014-04-271-2/+2
* Removed the already unused secure alloc functions.Nikos Mavrogiannopoulos2014-04-181-1/+1
* corrected get_auth_info() for SRP-RSA.Nikos Mavrogiannopoulos2014-04-181-1/+1
* Avoid dual generation of key.Nikos Mavrogiannopoulos2014-04-182-12/+6
* use custom proc_server_kx for RSA-PSKNikos Mavrogiannopoulos2014-04-181-1/+18
* Made _gnutls_get_auth_info() safer to use.Nikos Mavrogiannopoulos2014-04-187-12/+36
* several bug fixes due to coverity.Nikos Mavrogiannopoulos2014-04-151-4/+5
* add a check for invalid DH parameters.Nikos Mavrogiannopoulos2014-03-261-0/+6
* Only check PK compatibility in client side but also when using openpgp certs.Nikos Mavrogiannopoulos2014-03-111-0/+9
* shortend static function names.Nikos Mavrogiannopoulos2014-03-111-190/+121
* verify that the algorithm of the received certificate matches the expected.Nikos Mavrogiannopoulos2014-03-111-1/+33
* more fixes due to clangNikos Mavrogiannopoulos2014-03-083-4/+4