Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Move definitions in gnutls_auth_int.h to gnutls_auth.h and update callers. | Simon Josefsson | 2008-09-01 | 1 | -1/+1 |
| | |||||
* | Indent code. | Simon Josefsson | 2008-07-02 | 1 | -3/+2 |
| | |||||
* | Initial merge attempt with gnutls_with_ext_mpi | Nikos Mavrogiannopoulos | 2008-06-28 | 1 | -4/+4 |
| | |||||
* | Several updates in the openpgp code. Now it uses subkeys only when requested. | Nikos | 2008-02-18 | 1 | -2/+2 |
| | | | | When using subkeys we follow the draft-mavrogiannopoulos-rfc5081bis-00.txt. | ||||
* | Changed my name to my "official" name. | Nikos Mavrogiannopoulos | 2007-10-30 | 1 | -1/+1 |
| | |||||
* | External signing callback interface. | Simon Josefsson | 2007-08-10 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * includes/gnutls/gnutls.h.in (gnutls_sign_func): New type. (gnutls_sign_callback_set): New function. * includes/gnutls/x509.h (gnutls_x509_privkey_sign_hash): New function. * lib/gnutls_x509.c (gnutls_certificate_set_x509_key_mem): Handle NULL key. Doc fix. * lib/gnutls_sig.c (_gnutls_tls_sign_hdata): Pass session to _gnutls_tls_sign. (_gnutls_tls_sign_params): Likewise. (_gnutls_tls_sign): Add new parameter 'session'. Call sign callback if appropriate. (gnutls_sign_callback_set): New function. * lib/gnutls_x509.c (read_key_mem): Support a NULL key. * lib/gnutls_int.h (internals_st): Add sign_func, sign_func_userdata. * lib/auth_dhe.c (gen_dhe_server_kx): Use length of certificate list to decide wheter to sign, not presence of private key. * lib/auth_cert.c (_gnutls_gen_cert_client_cert_vrfy): Likewise. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Likewise. * lib/auth_cert.c(_gnutls_get_selected_cert): Don't require that private key is present. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Don't check key size when key is not present, assume it is > 512 bits. * lib/x509/privkey.c (gnutls_x509_privkey_sign_hash): New function. * tests/Makefile.am: Add x509signself. | ||||
* | Cleanup gnutls vs gnutls-extra integration, for OpenPGP certs. | Simon Josefsson | 2007-01-11 | 1 | -2/+1 |
| | |||||
* | Indent more. | Simon Josefsson | 2005-12-15 | 1 | -2/+4 |
| | |||||
* | Completed the DHE-PSK ciphersuite additions. | Nikos Mavrogiannopoulos | 2005-11-16 | 1 | -2/+2 |
| | |||||
* | added DHE-PSK ciphersuites and some cleanups. | Nikos Mavrogiannopoulos | 2005-11-15 | 1 | -4/+4 |
| | |||||
* | Use GNU coding style. | Simon Josefsson | 2005-11-07 | 1 | -161/+176 |
| | |||||
* | eliminated some warnings. | Nikos Mavrogiannopoulos | 2005-05-27 | 1 | -2/+4 |
| | |||||
* | Update FSF office address in license. | Simon Josefsson | 2005-05-26 | 1 | -1/+1 |
| | |||||
* | Clean up #include situation, merge from gnutls_1_2_1_with_include_fixes. | Simon Josefsson | 2005-04-14 | 1 | -2/+2 |
| | | | | | | Now lib/gnutls_int.h start by including gnutls/gnutls.h, to check prototypes during compile time. More cleanups are expected. | ||||
* | Clean up license templates. | Simon Josefsson | 2005-01-22 | 1 | -15/+17 |
| | |||||
* | Added the '_t' suffix to all exported symbols. | Nikos Mavrogiannopoulos | 2004-06-13 | 1 | -12/+12 |
| | |||||
* | changed indentation to 4 spaces instead of tabs. | Nikos Mavrogiannopoulos | 2004-06-07 | 1 | -171/+171 |
| | |||||
* | some other changes to the internal types names. | Nikos Mavrogiannopoulos | 2004-06-05 | 1 | -2/+2 |
| | |||||
* | several internal types fix. | Nikos Mavrogiannopoulos | 2004-06-05 | 1 | -6/+6 |
| | |||||
* | Allow access to the RSA-EXPORT parameters. | Nikos Mavrogiannopoulos | 2004-06-05 | 1 | -8/+1 |
| | |||||
* | Added news functions to allow access to the ephemeral | Nikos Mavrogiannopoulos | 2004-06-04 | 1 | -5/+2 |
| | | | | Diffie Hellman parameters. | ||||
* | Added gnutls_certificate_set_params_function() and | Nikos Mavrogiannopoulos | 2004-03-11 | 1 | -2/+6 |
| | | | | | gnutls_anon_set_params_function() that set the RSA or DH parameters using a callback. | ||||
* | * Added CRL verification functionality to certtool. | Nikos Mavrogiannopoulos | 2003-12-26 | 1 | -0/+1 |
| | | | | | | * Added the FSF copyright notices. * Moved all the compatibility interface to the openssl compatibility library. | ||||
* | several cleanups. | Nikos Mavrogiannopoulos | 2003-12-20 | 1 | -2/+2 |
| | |||||
* | Added the callbacks gnutls_certificate_client_retrieve_function() and | Nikos Mavrogiannopoulos | 2003-12-18 | 1 | -30/+6 |
| | | | | | | gnutls_certificate_server_retrieve_function(), to allow a client or a server to specify certificates for the handshake without storing them to the credentials structure. | ||||
* | * The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and ↵ | Nikos Mavrogiannopoulos | 2003-12-16 | 1 | -9/+15 |
| | | | | | | | | | GNUTLS_E_NO_TEMPORARY_RSA_PARAMS are no longer returned by the handshake function. Ciphersuites that require temporary parameters are removed when such parameters do not exist. * Several internal changes to allow adding the callback function to retrieve the certificate and the private key. | ||||
* | Applied patch from Arne Thomassen <arne@arne-thomassen.de>, which | Nikos Mavrogiannopoulos | 2003-08-09 | 1 | -2/+2 |
| | | | | corrects several things in the library. | ||||
* | Added some stuff needed in PKCS#10 certificate request generation. Some ↵ | Nikos Mavrogiannopoulos | 2003-03-14 | 1 | -3/+3 |
| | | | | other fixes as well. | ||||
* | * Added ability to generate RSA keys. | Nikos Mavrogiannopoulos | 2003-03-12 | 1 | -1/+1 |
| | | | | | | | * Increased the maximum parameter size in order to read some large keys by some CAs. Patch by Ian Peters <itp@ximian.com>. * Rolled back some of yesterdays changes. The gnutls_x509_privkey, was replaced (again) by the gnutls_privkey. | ||||
* | some improvements in the private key handling api. It is now used internally. | Nikos Mavrogiannopoulos | 2003-03-11 | 1 | -1/+1 |
| | |||||
* | Several internal changes to use the new certificate API. CRL support is ↵ | Nikos Mavrogiannopoulos | 2003-02-09 | 1 | -4/+3 |
| | | | | complete. | ||||
* | * gnutls_dh_params_generate() and gnutls_rsa_params_generate() now use | Nikos Mavrogiannopoulos | 2003-02-03 | 1 | -6/+5 |
| | | | | | | | | | | | | gnutls_malloc() to allocate the output parameters. * Added gnutls_pkcs3_extract_dh_params() which extracts parameters from PKCS#3 encoded structures. This was in order to read parameters generated using the openssl dhparam tool. * Several changes in the temporary (DH/RSA) parameter codebase. No DH parameters are now included in the library. Also a credentials structure can now hold only one temporary parameter. | ||||
* | *** empty log message *** | Nikos Mavrogiannopoulos | 2003-01-20 | 1 | -1/+1 |
| | |||||
* | Dropped the support for the client key exchange message 0, and server key ↵ | Nikos Mavrogiannopoulos | 2002-12-16 | 1 | -8/+0 |
| | | | | exchange message 2. | ||||
* | Cleanups. Prefixed some internal function with underscore. | Nikos Mavrogiannopoulos | 2002-12-02 | 1 | -3/+3 |
| | |||||
* | The session->gnutls_key was renamed to session->key. | Nikos Mavrogiannopoulos | 2002-11-12 | 1 | -2/+2 |
| | |||||
* | GNUTLS_E_UNKNOWN_ERROR was removed, and was replaced by GNUTLS_E_INTERNAL_ERROR. | Nikos Mavrogiannopoulos | 2002-10-28 | 1 | -2/+2 |
| | |||||
* | Merged common stuff in DHE and anonymous DH key exchange. | Nikos Mavrogiannopoulos | 2002-10-23 | 1 | -246/+30 |
| | |||||
* | several fixes in the codebase, mostly in signed/unsigned checkings. | Nikos Mavrogiannopoulos | 2002-10-13 | 1 | -6/+13 |
| | |||||
* | Some fixes for the used realloc() function. Now we have ↵ | Nikos Mavrogiannopoulos | 2002-09-09 | 1 | -1/+1 |
| | | | | gnutls_realloc_fast() which frees the given pointer if the new allocation failed. | ||||
* | *** empty log message *** | Nikos Mavrogiannopoulos | 2002-09-03 | 1 | -2/+2 |
| | |||||
* | several clean ups | Nikos Mavrogiannopoulos | 2002-09-01 | 1 | -2/+2 |
| | |||||
* | Renamed all the constructed types to have more consisten names, and some ↵ | Nikos Mavrogiannopoulos | 2002-08-29 | 1 | -55/+55 |
| | | | | other minor improvements. | ||||
* | Corrected bug in DHE key exchange which prevented from parsing the given ↵ | Nikos Mavrogiannopoulos | 2002-08-25 | 1 | -1/+1 |
| | | | | certificates properly. | ||||
* | Fixes in zlib compression code. gnutls_global_init_extra() in ↵ | Nikos Mavrogiannopoulos | 2002-07-15 | 1 | -1/+1 |
| | | | | libgnutls-extra fails if library versions do not match. Semantic changes in gnutls_record_set_max_size(). The requested size is now immediately enforced at the output buffers. | ||||
* | Added some hints on the file purpose, and some other cleanups. | Nikos Mavrogiannopoulos | 2002-07-10 | 1 | -1/+6 |
| | |||||
* | Now certificate decoding makes use of partial DER decoding of the libtasn1 ↵ | Nikos Mavrogiannopoulos | 2002-06-28 | 1 | -1/+1 |
| | | | | library. It speedups a bit the handshake in client side, which needs to decode the certificate, in order to read the public key parameters. | ||||
* | The TLS handshake no longer fails if the X.509 extensions in the Certificate ↵ | Nikos Mavrogiannopoulos | 2002-06-22 | 1 | -1/+1 |
| | | | | are critical and unsupported. The unsupported critical extensions are now only catched by the verification functions. | ||||
* | Prefixed internal functions with _gnutls_ | Nikos Mavrogiannopoulos | 2002-05-21 | 1 | -10/+10 |
| | |||||
* | Separated the library to gnutls and gnutls-extra. gnutls-extra library ↵ | Nikos Mavrogiannopoulos | 2002-05-20 | 1 | -2/+8 |
| | | | | contains the GPL parts of gnutls |