summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
* _gnutls_figure_dh_params: do not use have_ffdhe flagNikos Mavrogiannopoulos2017-08-022-3/+8
* gnutls_priority_ecc_curve_list: avoid including groups into elliptic curves listNikos Mavrogiannopoulos2017-08-021-0/+13
* handshake: moved group negotiation after ciphersuite selectionNikos Mavrogiannopoulos2017-08-024-33/+48
* security_parameters: ease access to group information by keeping pointer to itNikos Mavrogiannopoulos2017-08-0213-51/+54
* security_parameters: simplified contents by keeping pointer to cipher_suite_e...Nikos Mavrogiannopoulos2017-08-0213-114/+54
* TLS: introduced support for RFC7919 groupsNikos Mavrogiannopoulos2017-08-0135-590/+943
* gnutls_priority_set: use reference countingNikos Mavrogiannopoulos2017-07-255-55/+29
* Introduced atomic.h to simplify handling of atomic integersNikos Mavrogiannopoulos2017-07-252-1/+82
* Revert "Documented use gnutls_priority_set2()."Nikos Mavrogiannopoulos2017-07-251-2/+0
* algorithms/mac: marked RIPEMD160 as insecure for certificatesNikos Mavrogiannopoulos2017-07-211-0/+1
* x509/verify: reject SHA1 in signature algorithms for certificate verificationNikos Mavrogiannopoulos2017-07-212-4/+4
* gnutls_sign_is_secure2: introducedNikos Mavrogiannopoulos2017-07-213-4/+28
* _gnutls_digest_is_secure_for_certs: introducedNikos Mavrogiannopoulos2017-07-213-26/+35
* mac: re-organized the hash algorithms tableNikos Mavrogiannopoulos2017-07-211-28/+109
* Ensure that public key parameters are initialized on importNikos Mavrogiannopoulos2017-07-213-1/+12
* _decode_pkcs8_eddsa_key: ensure that the key size read matches the curve sizeNikos Mavrogiannopoulos2017-07-211-0/+6
* server_name: several simplifications of the code baseNikos Mavrogiannopoulos2017-07-213-162/+92
* server_name: be strict in decoding errorsNikos Mavrogiannopoulos2017-07-181-6/+5
* ext_master_secret: return proper error code on decoding errorNikos Mavrogiannopoulos2017-07-181-1/+1
* Use gcc's attribute to mark fallthrough statementsNikos Mavrogiannopoulos2017-07-175-2/+46
* privkey_sign_and_hash_data: in pre-hashed schemes, allow empty hash algorithmNikos Mavrogiannopoulos2017-07-172-4/+12
* nettle: wrap_nettle_pk_verify_priv_params: verify whether public key matches ...Nikos Mavrogiannopoulos2017-07-171-1/+15
* priority: enabled Ed25519 signature by defaultNikos Mavrogiannopoulos2017-07-171-0/+4
* handshake: return better error code on unwanted algorithmNikos Mavrogiannopoulos2017-07-172-2/+3
* doc updateNikos Mavrogiannopoulos2017-07-172-2/+2
* privkey_sign_and_hash_data: added sanity check on param validityNikos Mavrogiannopoulos2017-07-171-0/+3
* privkey_sign_and_hash_data: handle prehashed signaturesNikos Mavrogiannopoulos2017-07-172-6/+9
* pkcs7: improved syntax in if-clauseNikos Mavrogiannopoulos2017-07-171-1/+1
* Renamed GNUTLS_PK_ECDHX to GNUTLS_PK_ECDH_X25519Nikos Mavrogiannopoulos2017-07-177-13/+14
* Allowed Ed25519 signing in TLS handshakesNikos Mavrogiannopoulos2017-07-171-0/+1
* Added support for EdDSA (Ed25519) curve keysNikos Mavrogiannopoulos2017-07-1727-177/+706
* parse_pem_cert_mem: fixed issue resulting to accessing past the input dataNikos Mavrogiannopoulos2017-07-171-1/+3
* supported_exts.h: make sure that the generated function is staticNikos Mavrogiannopoulos2017-07-171-1/+1
* x509/output: do not attempt to print the key ID on unknown SPKI algorithmsNikos Mavrogiannopoulos2017-07-131-6/+15
* _gnutls_buffer_append_data_prefix: cleanupNikos Mavrogiannopoulos2017-07-131-6/+5
* pubkey: print the failed signature algorithm when verification failsNikos Mavrogiannopoulos2017-07-131-0/+1
* tls sessions will not fail of insecure algorithms which are explicitly enabledNikos Mavrogiannopoulos2017-07-131-2/+8
* record: reject 0-byte long ciphertextNikos Mavrogiannopoulos2017-07-131-1/+4
* record: added sanity checking in the record layer version copyNikos Mavrogiannopoulos2017-07-132-6/+18
* record: more precise calculation of max recv sizeNikos Mavrogiannopoulos2017-07-136-11/+26
* decryption: use the same error code on all casesNikos Mavrogiannopoulos2017-07-131-5/+5
* max_record_recv_size: removed call to gnutls_compression_get()Nikos Mavrogiannopoulos2017-07-111-1/+1
* Print the requested CA names when in debug modeNikos Mavrogiannopoulos2017-07-112-3/+21
* doc: updated documentation on client authentication [ci skip]Nikos Mavrogiannopoulos2017-07-111-1/+1
* Documented use gnutls_priority_set2().Nikos Mavrogiannopoulos2017-07-101-0/+2
* priorities: share priority structures across sessionsNikos Mavrogiannopoulos2017-07-1022-97/+184
* set_client_ciphersuite: use the new internal APIsNikos Mavrogiannopoulos2017-07-101-10/+6
* doc: corrected typoNikos Mavrogiannopoulos2017-07-101-4/+4
* Renamed fields of sign_algorithm_stNikos Mavrogiannopoulos2017-07-106-53/+50
* handshake: simplified signature algorithm list generationNikos Mavrogiannopoulos2017-07-107-66/+56
View Lorry Controller Status