summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
* moved _gnutls_prf_raw to FIPS140 symbolsNikos Mavrogiannopoulos2014-07-221-1/+1
* Added sanity check on padlock AES IV set.Nikos Mavrogiannopoulos2014-07-222-1/+4
* fips140-2: Added _gnutls_prf_raw() which can calculate the TLS PRF without de...Nikos Mavrogiannopoulos2014-07-222-13/+84
* fips140-2: do not check the libtasn1's integrityNikos Mavrogiannopoulos2014-07-221-7/+0
* RSA-PSK ciphersuites are only allowed in TLS 1.0.Nikos Mavrogiannopoulos2014-07-221-5/+5
* gnutls_priority_init: set err_pos prior to any actionNikos Mavrogiannopoulos2014-07-221-4/+4
* minimum version was changed to TLS 1.0 for ciphersuites with SHA2Nikos Mavrogiannopoulos2014-07-221-10/+10
* ignore CKR_CRYPTOKI_ALREADY_INITIALIZED when returned on reinitializationNikos Mavrogiannopoulos2014-07-211-1/+1
* doc updateNikos Mavrogiannopoulos2014-07-211-4/+5
* Added gnutls_certificate_set_x509_trust_dir()Nikos Mavrogiannopoulos2014-07-213-0/+35
* Added gnutls_x509_trust_list_add_trust_dir()Nikos Mavrogiannopoulos2014-07-214-41/+105
* Allow specifying a directory as trust storeNikos Mavrogiannopoulos2014-07-211-21/+30
* FIPS140-2 tests: no need for MD5 checkNikos Mavrogiannopoulos2014-07-081-6/+0
* FIPS140-2 tests: removed redundant checksNikos Mavrogiannopoulos2014-07-081-25/+1
* Allow specifying GNUTLS_CPUID_OVERRIDE in either hex or decimal.Nikos Mavrogiannopoulos2014-07-081-1/+1
* Added option to disable any cpu optimizationsNikos Mavrogiannopoulos2014-07-081-6/+13
* simplified housekeeping of CPUID registersNikos Mavrogiannopoulos2014-07-082-19/+21
* Allow overriding the detected CPUID using the GNUTLS_CPUID_OVERRIDE environme...Nikos Mavrogiannopoulos2014-07-081-25/+90
* FIPS140-2 tests: Added pairwise consistency check for RSA encryptionNikos Mavrogiannopoulos2014-07-081-4/+27
* FIPS140-2 tests: check with DSA-2048 and DSA-3072 bit keys, as well as SHA256.Nikos Mavrogiannopoulos2014-07-081-14/+24
* FIPS140-2 tests: check with RSA-2048 and RSA-3072 bit keysNikos Mavrogiannopoulos2014-07-081-26/+34
* tests: check RSA with SHA256Nikos Mavrogiannopoulos2014-07-081-5/+6
* FIPS140-2 mode: test whether RSA encrypted data differ from plaintextNikos Mavrogiannopoulos2014-07-081-0/+7
* FIPS140-2 mode: enforce the minimum GCM IV size required by SP800-38D (sectio...Nikos Mavrogiannopoulos2014-07-071-0/+2
* set CKA_EC_PARAMS when generating an ECDSA keyNikos Mavrogiannopoulos2014-07-076-22/+37
* mpi: use zeroize_key() instead of memset()Nikos Mavrogiannopoulos2014-07-072-3/+3
* pkcs11: Removed length check of attribute as a sanity check for valid keys.Nikos Mavrogiannopoulos2014-07-041-2/+2
* Increased number of attributesNikos Mavrogiannopoulos2014-07-041-1/+1
* try to restart on session errors, to avoid having a failed call.Nikos Mavrogiannopoulos2014-07-031-1/+5
* corrected pkcs11 reinitializationNikos Mavrogiannopoulos2014-07-031-1/+1
* If we get a PKCS #11 session error, invalidate the cached session.Nikos Mavrogiannopoulos2014-07-031-0/+15
* set the maximum value when printing library_descriptionNikos Mavrogiannopoulos2014-07-031-2/+2
* On fork invalidate the PKCS #11 privkey cached sessionNikos Mavrogiannopoulos2014-07-032-4/+21
* removed pbits=1024, qbits=160 from the acceptable bit sizes in FIPS140-2 DSA ...Nikos Mavrogiannopoulos2014-07-021-4/+0
* updated commentNikos Mavrogiannopoulos2014-07-021-1/+1
* gnutls_pkcs11_privkey_generate2(): corrected public key extraction (for ECDSA...Nikos Mavrogiannopoulos2014-07-013-6/+12
* Added explicit documentation on IPv4 and IPv6 address matching.Nikos Mavrogiannopoulos2014-06-301-7/+10
* do not exit the loop in case a name doesn't fit into our buffer.Nikos Mavrogiannopoulos2014-06-271-0/+2
* when verifying an IP, also verify it as a hostnameNikos Mavrogiannopoulos2014-06-271-2/+11
* supress warningsNikos Mavrogiannopoulos2014-06-271-17/+20
* check of inet_pton instead for AF_INET6Nikos Mavrogiannopoulos2014-06-271-1/+1
* Use inet_ntop() for printing IP addresses.Nikos Mavrogiannopoulos2014-06-271-1/+11
* gnutls_x509_crt_check_hostname() checks text ip addresses as well.Nikos Mavrogiannopoulos2014-06-271-0/+57
* initialize str to NULLNikos Mavrogiannopoulos2014-06-271-1/+1
* fixed documentationNikos Mavrogiannopoulos2014-06-261-6/+6
* minitasn1: updated to version 4.0Nikos Mavrogiannopoulos2014-06-269-477/+244
* pkcs11: avoid callig _gnutls_bin2hex() when length is zero.Nikos Mavrogiannopoulos2014-06-251-1/+1
* doc: more consistent use of pointer star.Nikos Mavrogiannopoulos2014-06-171-3/+3
* doc: Explain post-callback deallocation behavior for the SRP server callbackAttila Molnar2014-06-171-0/+5
* gnutls_packet_get() was introduced to avoid exporting a structure on the API.Nikos Mavrogiannopoulos2014-06-166-22/+51
View Lorry Controller Status