summaryrefslogtreecommitdiff
path: root/lib/x509
Commit message (Expand)AuthorAgeFilesLines
* gnutls_x509_privkey_import: allow importing ed25519 PKCS#8 keys in DER formNikos Mavrogiannopoulos2017-08-041-6/+10
* sign/digest: separate "brokenness" of signatures and hash algorithmsNikos Mavrogiannopoulos2017-08-042-8/+11
* x509_privkey: handle keys which can only have PKCS#8 form transparentlyNikos Mavrogiannopoulos2017-08-041-9/+26
* x509/output: print error on invalid public key parameters on certificateNikos Mavrogiannopoulos2017-08-042-18/+36
* spki: combined all exported functions to a single set and getNikos Mavrogiannopoulos2017-08-041-91/+29
* introduced error code GNUTLS_E_PK_INVALID_PUBKEY_PARAMSNikos Mavrogiannopoulos2017-08-041-2/+2
* gnutls_x509_privkey_generate*: allow specifying the SPKI parameters for key g...Nikos Mavrogiannopoulos2017-08-041-12/+20
* gnutls_x509_privkey_set_spki: check validity of parameters setNikos Mavrogiannopoulos2017-08-041-0/+9
* gnutls_x509_cr*_set_spki: check for validity of parameters setNikos Mavrogiannopoulos2017-08-042-54/+90
* _gnutls_x509_check_pubkey_params: removed unnecessary parameterNikos Mavrogiannopoulos2017-08-043-6/+4
* gnutls_x509_privkey_import: immediately exit on GNUTLS_E_PK_INVALID_PRIVKEYNikos Mavrogiannopoulos2017-08-041-0/+3
* gnutls_x509_*_set_spki: removed arbitrary restrictions to setting parametersNikos Mavrogiannopoulos2017-08-042-21/+1
* _gnutls_x509_read_pkalgo_params: initialize params structureNikos Mavrogiannopoulos2017-08-041-2/+4
* RSA-PSS parameter checking was moved to lower level functionsNikos Mavrogiannopoulos2017-08-042-2/+2
* signature security level check were moved to lower level functionsNikos Mavrogiannopoulos2017-08-042-7/+9
* verify_crt: translate GNUTLS_E_CONSTRAINT_ERROR to verification status flagNikos Mavrogiannopoulos2017-08-041-0/+6
* x509/sign: in debugging mode print the signature algorithmNikos Mavrogiannopoulos2017-08-041-0/+2
* _gnutls_x509_validate_sign_params: use GNUTLS_E_CONSTRAINT_ERROR for mismatch...Nikos Mavrogiannopoulos2017-08-041-2/+2
* _gnutls_x509_read_rsa_pss_params: fail early on unknown hash algorithmsNikos Mavrogiannopoulos2017-08-041-4/+12
* x509/output: Subject Public Key parameters are printed just before actual keyNikos Mavrogiannopoulos2017-08-041-65/+28
* gnutls_x509_crt_set_spki: be more verbose in parameter restrictionsNikos Mavrogiannopoulos2017-08-041-4/+14
* _gnutls_x509_write_rsa_pss_params: refuse to write RSA-PSS parameters we cann...Nikos Mavrogiannopoulos2017-08-041-0/+4
* gnutls_x509_*_get_signature_algorithm: simplified error handlingNikos Mavrogiannopoulos2017-08-034-18/+22
* _gnutls_x509_get_signature_algorithm: return negative error code on unknown a...Nikos Mavrogiannopoulos2017-08-031-3/+6
* compare_sig_algorithm: modify to work even for certs with unsupported signatu...Nikos Mavrogiannopoulos2017-08-031-9/+16
* pubkey_verify_data: accept signature entry instead of PK and hashNikos Mavrogiannopoulos2017-08-032-13/+9
* Added convention for missing SubjectPublicKeyInfo params fieldNikos Mavrogiannopoulos2017-08-039-34/+60
* *set_spki(): return error on incompatible algorithmsNikos Mavrogiannopoulos2017-08-033-0/+11
* gnutls_x509_privkey_generate2: do not hardcode the RSA-PSS hash to SHA256Nikos Mavrogiannopoulos2017-08-031-1/+1
* _decode_pkcs8_rsa_pss_key: ensure we set the PSS PK identifierNikos Mavrogiannopoulos2017-08-031-1/+1
* gnutls_x509_privkey_int: eliminated duplicate pk_algorithm fieldNikos Mavrogiannopoulos2017-08-035-51/+44
* cleanup: removed unnecessary/duplicate parameters in functionsNikos Mavrogiannopoulos2017-08-034-15/+17
* cleanup: removed unnecessary/duplicate parameters in functionsNikos Mavrogiannopoulos2017-08-0310-46/+23
* gnutls_x509_privkey_set_spki: introduced function to update SPKI on a keyNikos Mavrogiannopoulos2017-08-031-0/+24
* x509.h: Renamed SPKI related functionsNikos Mavrogiannopoulos2017-08-034-110/+96
* gnutls_pk_params_st: renamed sign field to spkiNikos Mavrogiannopoulos2017-08-035-15/+15
* Clarified the purpose of the spki params related functionsNikos Mavrogiannopoulos2017-08-0314-114/+169
* Pass the signature algorithm lower in the verification stackNikos Mavrogiannopoulos2017-08-033-5/+10
* x509/verify: reject SHA1 in signature algorithms for certificate verificationNikos Mavrogiannopoulos2017-07-212-4/+4
* Ensure that public key parameters are initialized on importNikos Mavrogiannopoulos2017-07-212-1/+9
* _decode_pkcs8_eddsa_key: ensure that the key size read matches the curve sizeNikos Mavrogiannopoulos2017-07-211-0/+6
* pkcs7: improved syntax in if-clauseNikos Mavrogiannopoulos2017-07-171-1/+1
* Renamed GNUTLS_PK_ECDHX to GNUTLS_PK_ECDH_X25519Nikos Mavrogiannopoulos2017-07-171-1/+1
* Added support for EdDSA (Ed25519) curve keysNikos Mavrogiannopoulos2017-07-1713-82/+266
* supported_exts.h: make sure that the generated function is staticNikos Mavrogiannopoulos2017-07-171-1/+1
* x509/output: do not attempt to print the key ID on unknown SPKI algorithmsNikos Mavrogiannopoulos2017-07-131-6/+15
* OCSP: find_signercert: improved DER length calculationtmp-ocsp-improvementsNikos Mavrogiannopoulos2017-07-011-7/+30
* OCSP: check the subject public key identifier field to figure issuerNikos Mavrogiannopoulos2017-07-011-2/+16
* OCSP: added more verbose debug logging on verificationNikos Mavrogiannopoulos2017-07-011-0/+10
* ocsp: print response's signature algorithm in compact listingNikos Mavrogiannopoulos2017-06-201-16/+18
View Lorry Controller Status