summaryrefslogtreecommitdiff
path: root/lib/x509
Commit message (Expand)AuthorAgeFilesLines
* x509: fixed output of pubkeyNikos Mavrogiannopoulos2016-12-021-1/+1
* doc: document the fact that certificates and CRLs are unusable after generationNikos Mavrogiannopoulos2016-12-012-0/+18
* doc: no longer list SHA1 as a safe choice in X.509 signingNikos Mavrogiannopoulos2016-12-012-4/+4
* gnutls_x509_crl_verify: always return zero on successNikos Mavrogiannopoulos2016-12-011-1/+6
* privkey: set the key parameters algorithm prior to returning successNikos Mavrogiannopoulos2016-11-301-4/+3
* When decoding a public key ensure that algorithm is written in the params structNikos Mavrogiannopoulos2016-11-301-3/+9
* x509: when printing ACE DNSnames ensure the actual name is also printedNikos Mavrogiannopoulos2016-11-251-7/+17
* Combined checks for printable characterstmp-idna-writeNikos Mavrogiannopoulos2016-11-252-20/+6
* gnutls_x509_aia_set: IDNA encode when neededNikos Mavrogiannopoulos2016-11-253-31/+47
* When writing alternative names to certificates ensure we write in ACE formatNikos Mavrogiannopoulos2016-11-257-16/+71
* pkcs7: return GNUTLS_E_PK_SIG_VERIFY_FAILED on hash mismatchNikos Mavrogiannopoulos2016-11-251-1/+5
* pkcs7: only print signer's issuer DN when DN has contentsNikos Mavrogiannopoulos2016-11-251-1/+2
* pkcs7: added recursive discovery of structure's signerNikos Mavrogiannopoulos2016-11-251-94/+282
* pkcs7: on data verification failure log the signerNikos Mavrogiannopoulos2016-11-251-0/+1
* doc: updated gnutls_x509_trust_list_verify_crt2()Nikos Mavrogiannopoulos2016-11-251-10/+13
* pkcs7: pass the verification flags down to gnutls_x509_trust_list_verify_crt2...Nikos Mavrogiannopoulos2016-11-251-2/+3
* pkcs7: corrected iteration over stored certificatesNikos Mavrogiannopoulos2016-11-251-1/+1
* pkcs7: added debug logging on verification discoveryNikos Mavrogiannopoulos2016-11-251-0/+3
* avoid the use of c_isascii() and use c_isprint()Nikos Mavrogiannopoulos2016-11-232-2/+2
* IDNA code re-organizationNikos Mavrogiannopoulos2016-11-236-91/+49
* Align the printing of a certificate's fingerprint with the key ID printingNikos Mavrogiannopoulos2016-11-221-12/+21
* Print a key's or certificate's key ID with SHA256 in addition to SHA1Nikos Mavrogiannopoulos2016-11-221-53/+46
* x509/output: improve log message on embedded nullNikos Mavrogiannopoulos2016-11-211-1/+1
* tolerate non-valid UTF8 passwords when decryptingNikos Mavrogiannopoulos2016-11-203-4/+4
* openssl_hash_password: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-14/+29
* gnutls_x509_crq_set_challenge_password: normalize the password prior to useNikos Mavrogiannopoulos2016-11-201-4/+18
* PKCS#7/8: normalize the password according to rfc7613Nikos Mavrogiannopoulos2016-11-201-34/+69
* PKCS#5,7 decryption: verify the correctness of paddingNikos Mavrogiannopoulos2016-11-141-4/+16
* PKCS#5,7 decryption: added sanity check on padding sizeNikos Mavrogiannopoulos2016-11-141-2/+8
* PKCS#5,7 decryption: fail without leak on unknown MACNikos Mavrogiannopoulos2016-11-141-2/+4
* PKCS#5,7 decryption: fail early on invalid block sizesNikos Mavrogiannopoulos2016-11-141-3/+13
* PKCS#5,7 decryption: enforce limits in the support parameter sizesNikos Mavrogiannopoulos2016-11-143-12/+35
* pkcs7 output: use the new functions for DN outputNikos Mavrogiannopoulos2016-11-141-1/+1
* x509 output: use the new functions for DN outputNikos Mavrogiannopoulos2016-11-142-167/+60
* _gnutls_x509_get_dn: when no data ensure we return GNUTLS_E_REQUESTED_DATA_NO...Nikos Mavrogiannopoulos2016-11-141-2/+6
* Introduced new functions to allow multiple DN parsing modesNikos Mavrogiannopoulos2016-11-147-176/+456
* fips140-2: moved PCT-test in wrap_nettle_generate_keysNikos Mavrogiannopoulos2016-11-071-93/+1
* deprecated _gnutls_rnd() in favor of exported gnutls_rnd()Nikos Mavrogiannopoulos2016-11-042-4/+4
* x509: removed unused IDNA fileNikos Mavrogiannopoulos2016-11-021-41/+0
* x509_dn: forbid non-supported escaped chars on DN encodingNikos Mavrogiannopoulos2016-10-311-14/+21
* x509_dn: allow arbitrary escaped stringsNikos Mavrogiannopoulos2016-10-311-3/+15
* gnutls_x509_crt_set_*dn, gnutls_x509_dn_set_str: honor the reverse property o...Nikos Mavrogiannopoulos2016-10-311-12/+64
* Encode string DNs backwards according to RFC4514Nikos Mavrogiannopoulos2016-10-311-28/+36
* doc update [ci skip]Nikos Mavrogiannopoulos2016-10-182-0/+6
* doc updateNikos Mavrogiannopoulos2016-10-181-1/+2
* x509: introduced gnutls_x509_crt_check_key_purpose()Nikos Mavrogiannopoulos2016-10-181-1/+23
* gnutls_x509_crt_verify_data2: introduce constraints checks on the provided ce...Nikos Mavrogiannopoulos2016-10-183-12/+91
* gnutls_pkcs7_get_embedded_data: added GNUTLS_PKCS7_EDATA_GET_RAW flagNikos Mavrogiannopoulos2016-10-121-5/+15
* pkcs7: print the eContent type in output functions if it does not match the d...Nikos Mavrogiannopoulos2016-10-113-6/+18
* pkcs7: allow unknown and legacy signature data OIDs to be importedNikos Mavrogiannopoulos2016-10-112-92/+98
View Lorry Controller Status