| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Introduced GNUTLS_E_ASN1_EMBEDDED_NULL_IN_STRINGnew-code-null | Nikos Mavrogiannopoulos | 2016-02-11 | 1 | -1/+1 |
| | | | | | | This error code is returned when an embedded NULL is detected in a string. | ||||
| * | x509: moved virtual subject alternative name othername support to virt-san.c | Nikos Mavrogiannopoulos | 2016-01-10 | 1 | -21/+0 |
| | | |||||
| * | Allow assigning 'virtual' SAN types via *_set_subject_alt_name() | Nikos Mavrogiannopoulos | 2016-01-10 | 1 | -1/+11 |
| | | |||||
| * | Removed the 'gnutls_' prefix from files to simplify file naming | Nikos Mavrogiannopoulos | 2015-08-23 | 1 | -7/+7 |
| | | |||||
| * | made data2hex() safer, and eliminated mem leak | Nikos Mavrogiannopoulos | 2015-07-31 | 1 | -8/+12 |
| | | |||||
| * | DN decoding: use gnutls_hex_encode | Nikos Mavrogiannopoulos | 2015-07-21 | 1 | -8/+14 |
| | | |||||
| * | x509: simplified data to hex conversion in unknown DN names | Nikos Mavrogiannopoulos | 2015-07-20 | 1 | -47/+13 |
| | | |||||
| * | Exported functions to convert from and to OIDs | Nikos Mavrogiannopoulos | 2015-06-18 | 1 | -3/+3 |
| | | |||||
| * | When writing the Time ASN.1 structure follow the RFC5280 recommendations | Nikos Mavrogiannopoulos | 2015-06-17 | 1 | -15/+22 |
| | | |||||
| * | Set time in PKCS #7 structures properly (in UTCTime format). | Nikos Mavrogiannopoulos | 2015-06-17 | 1 | -6/+49 |
| | | |||||
| * | pkcs7: write the DER encoded time | Nikos Mavrogiannopoulos | 2015-06-16 | 1 | -0/+28 |
| | | |||||
| * | Added gnutls_pkcs7_sign() | Nikos Mavrogiannopoulos | 2015-06-02 | 1 | -0/+1 |
| | | |||||
| * | pkcs7 verification: parse the signing time | Nikos Mavrogiannopoulos | 2015-06-02 | 1 | -6/+13 |
| | | |||||
| * | x509: use libtasn1's strict DER decoding rules in network obtained structures | Nikos Mavrogiannopoulos | 2015-03-09 | 1 | -2/+2 |
| | | |||||
| * | depend on libtasn1 4.3 | Nikos Mavrogiannopoulos | 2015-03-09 | 1 | -4/+0 |
| | | |||||
| * | use asn1_decode_simple_ber if available | Nikos Mavrogiannopoulos | 2015-03-04 | 1 | -7/+18 |
| | | |||||
| * | corrected typo | Nikos Mavrogiannopoulos | 2014-12-08 | 1 | -1/+1 |
| | | |||||
| * | GNUTLS_E_CERTIFICATE_LIST_UNSORTED can be returned from ↵ | Nikos Mavrogiannopoulos | 2014-11-27 | 1 | -0/+33 |
| | | | | | | | gnutls_pcert_import_x509_list That is when it cannot sort the list and GNUTLS_X509_CRT_LIST_SORT is specified. | ||||
| * | Added flag GNUTLS_X509_CRT_LIST_SORT for gnutls_x509_crt_list_import* | Nikos Mavrogiannopoulos | 2014-11-27 | 1 | -0/+70 |
| | | | | | | That also allows automatically sorting input chains to the gnutls_certificate_credentials_t structure. | ||||
| * | _gnutls_ucs2_to_utf8() can handle little endian strings. | Nikos Mavrogiannopoulos | 2014-11-12 | 1 | -1/+1 |
| | | |||||
| * | when calling gnutls_x509_crt_get_subject_key_id set the id_size | Nikos Mavrogiannopoulos | 2014-11-01 | 1 | -0/+1 |
| | | |||||
| * | _gnutls_check_valid_key_id: corrected activation/expiration check | Nikos Mavrogiannopoulos | 2014-10-09 | 1 | -1/+1 |
| | | |||||
| * | pkcs11: simplified and optimized loop | Nikos Mavrogiannopoulos | 2014-10-09 | 1 | -13/+1 |
| | | |||||
| * | pkcs11: always check for a valid subjectKeyIdentifier match | Nikos Mavrogiannopoulos | 2014-10-07 | 1 | -2/+9 |
| | | | | | That way, expired certificates can co-exist with their replacements. | ||||
| * | pkcs11: when no CKA_ID can be relied on fallback on checking the ↵ | Nikos Mavrogiannopoulos | 2014-10-07 | 1 | -0/+32 |
| | | | | | | | SubjectKeyIdentifier Patch by David Woodhouse. | ||||
| * | added gnutls_pkcs11_copy_attached_extension() | Nikos Mavrogiannopoulos | 2014-09-12 | 1 | -0/+55 |
| | | |||||
| * | simplified _gnutls_x509_get_signed_data() | Nikos Mavrogiannopoulos | 2014-09-04 | 1 | -18/+5 |
| | | |||||
| * | The get_raw_dn() functions were modified to work even if the certificate is ↵ | Nikos Mavrogiannopoulos | 2014-09-04 | 1 | -3/+4 |
| | | | | | generated (not imported) | ||||
| * | when comparing a CA certificate with the trusted list compare the name and key | Nikos Mavrogiannopoulos | 2014-09-02 | 1 | -1/+1 |
| | | | | | | | That is to handle cases where a CA certificate was superceded by a different one with the same name and the same key. That can happen when an intermediate CA certificate is replaced by a self-signed one. | ||||
| * | avoid new allocations and keep a pointer to the DER data for DN | Nikos Mavrogiannopoulos | 2014-08-29 | 1 | -6/+3 |
| | | |||||
| * | when importing a certificate, keep the DER data | Nikos Mavrogiannopoulos | 2014-08-29 | 1 | -7/+14 |
| | | |||||
| * | When decoding of a DN string fails, treat it as unknown string and print its ↵ | Nikos Mavrogiannopoulos | 2014-06-06 | 1 | -4/+9 |
| | | | | | hex value. | ||||
| * | avoid cleanup when there are no allocations in _gnutls_x509_der_encode(). | Nikos Mavrogiannopoulos | 2014-05-29 | 1 | -5/+3 |
| | | |||||
| * | Do not allow null strings to be read from ASN.1 structures. | Nikos Mavrogiannopoulos | 2014-05-22 | 1 | -3/+2 |
| | | | | | | | This corrects a null pointer dereference when parsing some specially crafted certificates. Issue discovered using the Codenomicon TLS test suite. | ||||
| * | removed redundant null termination | Nikos Mavrogiannopoulos | 2014-05-22 | 1 | -1/+1 |
| | | |||||
| * | use a signed value for bits. | Nikos Mavrogiannopoulos | 2014-05-20 | 1 | -2/+2 |
| | | |||||
| * | more sanity checks on signature size | Nikos Mavrogiannopoulos | 2014-05-17 | 1 | -1/+1 |
| | | |||||
| * | Corrected decoding of XMPP SAN othername. | Nikos Mavrogiannopoulos | 2014-04-19 | 1 | -1/+13 |
| | | | | | | This also corrects the semantics of the get_*_othername_oid() functions, such as gnutls_x509_crt_get_subject_alt_othername_oid(). | ||||
| * | copy_string() and copy_data() are more resilient on null input | Nikos Mavrogiannopoulos | 2014-04-18 | 1 | -2/+4 |
| | | |||||
| * | Added new API to handle X.509 extensions. | Nikos Mavrogiannopoulos | 2014-03-19 | 1 | -0/+37 |
| | | | | | | | | | | | | | This API handles the X.509 extensions in separate, allowing to parse similarly formatted extensions stored in other structures. In addition functions that simplify the extraction of extensions from known structures were added: - gnutls_x509_crq_get_extension_data2() - gnutls_x509_crl_get_extension_data2() - gnutls_x509_crt_get_extension_data2() The old functions were rewritten to use the new API. | ||||
| * | silence some warnings | Nikos Mavrogiannopoulos | 2014-03-08 | 1 | -2/+2 |
| | | |||||
| * | _gnutls_x509_read_value() can now read empty values. | Nikos Mavrogiannopoulos | 2014-02-19 | 1 | -0/+6 |
| | | |||||
| * | ensure that _gnutls_x509_read_value works as documented. | Nikos Mavrogiannopoulos | 2014-02-13 | 1 | -5/+3 |
| | | |||||
| * | optimized string search in _oid2str table. | Nikos Mavrogiannopoulos | 2014-01-26 | 1 | -60/+73 |
| | | |||||
| * | fixed null pointer derefence when printing a name and an LDAP description ↵ | Nikos Mavrogiannopoulos | 2014-01-26 | 1 | -2/+2 |
| | | | | | isn't present for the OID | ||||
| * | Added userPrincipalName | Nikos Mavrogiannopoulos | 2013-12-23 | 1 | -0/+2 |
| | | |||||
| * | Dates and time that would overflow the GeneralTime are also truncated. We ↵ | Nikos Mavrogiannopoulos | 2013-11-16 | 1 | -2/+5 |
| | | | | | may need to revise that around 9999 CE. | ||||
| * | An expiration time of (time_t)-1 will set to the no well-defined expiration ↵ | Nikos Mavrogiannopoulos | 2013-11-16 | 1 | -0/+5 |
| | | | | | date value. | ||||
| * | simplified functions. | Nikos Mavrogiannopoulos | 2013-11-10 | 1 | -2/+2 |
| | | |||||
| * | reindented code | Nikos Mavrogiannopoulos | 2013-11-08 | 1 | -1482/+1409 |
| | | |||||
 |
index : delta/gnutls.git | |
| gitlab.com: gnutls/gnutls.git |
| summaryrefslogtreecommitdiff |