summaryrefslogtreecommitdiff
path: root/lib/auth_dhe.c
Commit message (Collapse)AuthorAgeFilesLines
* Move definitions in gnutls_auth_int.h to gnutls_auth.h and update callers.Simon Josefsson2008-09-011-1/+1
|
* Indent code.Simon Josefsson2008-07-021-3/+2
|
* Initial merge attempt with gnutls_with_ext_mpiNikos Mavrogiannopoulos2008-06-281-4/+4
|
* Several updates in the openpgp code. Now it uses subkeys only when requested.Nikos2008-02-181-2/+2
| | | | When using subkeys we follow the draft-mavrogiannopoulos-rfc5081bis-00.txt.
* Changed my name to my "official" name.Nikos Mavrogiannopoulos2007-10-301-1/+1
|
* External signing callback interface.Simon Josefsson2007-08-101-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * includes/gnutls/gnutls.h.in (gnutls_sign_func): New type. (gnutls_sign_callback_set): New function. * includes/gnutls/x509.h (gnutls_x509_privkey_sign_hash): New function. * lib/gnutls_x509.c (gnutls_certificate_set_x509_key_mem): Handle NULL key. Doc fix. * lib/gnutls_sig.c (_gnutls_tls_sign_hdata): Pass session to _gnutls_tls_sign. (_gnutls_tls_sign_params): Likewise. (_gnutls_tls_sign): Add new parameter 'session'. Call sign callback if appropriate. (gnutls_sign_callback_set): New function. * lib/gnutls_x509.c (read_key_mem): Support a NULL key. * lib/gnutls_int.h (internals_st): Add sign_func, sign_func_userdata. * lib/auth_dhe.c (gen_dhe_server_kx): Use length of certificate list to decide wheter to sign, not presence of private key. * lib/auth_cert.c (_gnutls_gen_cert_client_cert_vrfy): Likewise. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Likewise. * lib/auth_cert.c(_gnutls_get_selected_cert): Don't require that private key is present. * lib/auth_rsa_export.c (gen_rsa_export_server_kx): Don't check key size when key is not present, assume it is > 512 bits. * lib/x509/privkey.c (gnutls_x509_privkey_sign_hash): New function. * tests/Makefile.am: Add x509signself.
* Cleanup gnutls vs gnutls-extra integration, for OpenPGP certs.Simon Josefsson2007-01-111-2/+1
|
* Indent more.Simon Josefsson2005-12-151-2/+4
|
* Completed the DHE-PSK ciphersuite additions.Nikos Mavrogiannopoulos2005-11-161-2/+2
|
* added DHE-PSK ciphersuites and some cleanups.Nikos Mavrogiannopoulos2005-11-151-4/+4
|
* Use GNU coding style.Simon Josefsson2005-11-071-161/+176
|
* eliminated some warnings.Nikos Mavrogiannopoulos2005-05-271-2/+4
|
* Update FSF office address in license.Simon Josefsson2005-05-261-1/+1
|
* Clean up #include situation, merge from gnutls_1_2_1_with_include_fixes.Simon Josefsson2005-04-141-2/+2
| | | | | | Now lib/gnutls_int.h start by including gnutls/gnutls.h, to check prototypes during compile time. More cleanups are expected.
* Clean up license templates.Simon Josefsson2005-01-221-15/+17
|
* Added the '_t' suffix to all exported symbols.Nikos Mavrogiannopoulos2004-06-131-12/+12
|
* changed indentation to 4 spaces instead of tabs.Nikos Mavrogiannopoulos2004-06-071-171/+171
|
* some other changes to the internal types names.Nikos Mavrogiannopoulos2004-06-051-2/+2
|
* several internal types fix.Nikos Mavrogiannopoulos2004-06-051-6/+6
|
* Allow access to the RSA-EXPORT parameters.Nikos Mavrogiannopoulos2004-06-051-8/+1
|
* Added news functions to allow access to the ephemeralNikos Mavrogiannopoulos2004-06-041-5/+2
| | | | Diffie Hellman parameters.
* Added gnutls_certificate_set_params_function() andNikos Mavrogiannopoulos2004-03-111-2/+6
| | | | | gnutls_anon_set_params_function() that set the RSA or DH parameters using a callback.
* * Added CRL verification functionality to certtool.Nikos Mavrogiannopoulos2003-12-261-0/+1
| | | | | | * Added the FSF copyright notices. * Moved all the compatibility interface to the openssl compatibility library.
* several cleanups.Nikos Mavrogiannopoulos2003-12-201-2/+2
|
* Added the callbacks gnutls_certificate_client_retrieve_function() andNikos Mavrogiannopoulos2003-12-181-30/+6
| | | | | | gnutls_certificate_server_retrieve_function(), to allow a client or a server to specify certificates for the handshake without storing them to the credentials structure.
* * The error codes GNUTLS_E_NO_TEMPORARY_DH_PARAMS and ↵Nikos Mavrogiannopoulos2003-12-161-9/+15
| | | | | | | | | GNUTLS_E_NO_TEMPORARY_RSA_PARAMS are no longer returned by the handshake function. Ciphersuites that require temporary parameters are removed when such parameters do not exist. * Several internal changes to allow adding the callback function to retrieve the certificate and the private key.
* Applied patch from Arne Thomassen <arne@arne-thomassen.de>, whichNikos Mavrogiannopoulos2003-08-091-2/+2
| | | | corrects several things in the library.
* Added some stuff needed in PKCS#10 certificate request generation. Some ↵Nikos Mavrogiannopoulos2003-03-141-3/+3
| | | | other fixes as well.
* * Added ability to generate RSA keys.Nikos Mavrogiannopoulos2003-03-121-1/+1
| | | | | | | * Increased the maximum parameter size in order to read some large keys by some CAs. Patch by Ian Peters <itp@ximian.com>. * Rolled back some of yesterdays changes. The gnutls_x509_privkey, was replaced (again) by the gnutls_privkey.
* some improvements in the private key handling api. It is now used internally.Nikos Mavrogiannopoulos2003-03-111-1/+1
|
* Several internal changes to use the new certificate API. CRL support is ↵Nikos Mavrogiannopoulos2003-02-091-4/+3
| | | | complete.
* * gnutls_dh_params_generate() and gnutls_rsa_params_generate() now useNikos Mavrogiannopoulos2003-02-031-6/+5
| | | | | | | | | | | | gnutls_malloc() to allocate the output parameters. * Added gnutls_pkcs3_extract_dh_params() which extracts parameters from PKCS#3 encoded structures. This was in order to read parameters generated using the openssl dhparam tool. * Several changes in the temporary (DH/RSA) parameter codebase. No DH parameters are now included in the library. Also a credentials structure can now hold only one temporary parameter.
* *** empty log message ***Nikos Mavrogiannopoulos2003-01-201-1/+1
|
* Dropped the support for the client key exchange message 0, and server key ↵Nikos Mavrogiannopoulos2002-12-161-8/+0
| | | | exchange message 2.
* Cleanups. Prefixed some internal function with underscore.Nikos Mavrogiannopoulos2002-12-021-3/+3
|
* The session->gnutls_key was renamed to session->key.Nikos Mavrogiannopoulos2002-11-121-2/+2
|
* GNUTLS_E_UNKNOWN_ERROR was removed, and was replaced by GNUTLS_E_INTERNAL_ERROR.Nikos Mavrogiannopoulos2002-10-281-2/+2
|
* Merged common stuff in DHE and anonymous DH key exchange.Nikos Mavrogiannopoulos2002-10-231-246/+30
|
* several fixes in the codebase, mostly in signed/unsigned checkings.Nikos Mavrogiannopoulos2002-10-131-6/+13
|
* Some fixes for the used realloc() function. Now we have ↵Nikos Mavrogiannopoulos2002-09-091-1/+1
| | | | gnutls_realloc_fast() which frees the given pointer if the new allocation failed.
* *** empty log message ***Nikos Mavrogiannopoulos2002-09-031-2/+2
|
* several clean upsNikos Mavrogiannopoulos2002-09-011-2/+2
|
* Renamed all the constructed types to have more consisten names, and some ↵Nikos Mavrogiannopoulos2002-08-291-55/+55
| | | | other minor improvements.
* Corrected bug in DHE key exchange which prevented from parsing the given ↵Nikos Mavrogiannopoulos2002-08-251-1/+1
| | | | certificates properly.
* Fixes in zlib compression code. gnutls_global_init_extra() in ↵Nikos Mavrogiannopoulos2002-07-151-1/+1
| | | | libgnutls-extra fails if library versions do not match. Semantic changes in gnutls_record_set_max_size(). The requested size is now immediately enforced at the output buffers.
* Added some hints on the file purpose, and some other cleanups.Nikos Mavrogiannopoulos2002-07-101-1/+6
|
* Now certificate decoding makes use of partial DER decoding of the libtasn1 ↵Nikos Mavrogiannopoulos2002-06-281-1/+1
| | | | library. It speedups a bit the handshake in client side, which needs to decode the certificate, in order to read the public key parameters.
* The TLS handshake no longer fails if the X.509 extensions in the Certificate ↵Nikos Mavrogiannopoulos2002-06-221-1/+1
| | | | are critical and unsupported. The unsupported critical extensions are now only catched by the verification functions.
* Prefixed internal functions with _gnutls_Nikos Mavrogiannopoulos2002-05-211-10/+10
|
* Separated the library to gnutls and gnutls-extra. gnutls-extra library ↵Nikos Mavrogiannopoulos2002-05-201-2/+8
| | | | contains the GPL parts of gnutls
View Lorry Controller Status