summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
* Inline version macros into its users.Jay Foad2018-01-271-20/+22
* dh: document why BER decoding rules are allowsNikos Mavrogiannopoulos2018-01-231-0/+2
* pubkey: use the strict DER decoder for SubjectPublicKeyInfoNikos Mavrogiannopoulos2018-01-231-1/+1
* pk: document need for the generic BER decoderNikos Mavrogiannopoulos2018-01-231-0/+6
* tests: added unit test for _gnutls_record_overhead()Nikos Mavrogiannopoulos2018-01-163-2/+6
* DTLS: improved data MTU calculation under CBC ciphersuitesNikos Mavrogiannopoulos2018-01-163-46/+69
* gnutls_x509_crt_list_import: eliminated memory leakNikos Mavrogiannopoulos2018-01-101-3/+5
* libtasn1: updated to latest libtasn1 master branchtmp-update-libtasn1Nikos Mavrogiannopoulos2018-01-093-8/+32
* x509/verify: when verifying against a self signed certificate ignore issuerNikos Mavrogiannopoulos2017-12-301-5/+7
* gnutls_pk_self_test: include ECDSA tests on GNUTLS_PK_ECtmp-update-fips-self-testsNikos Mavrogiannopoulos2017-12-211-24/+25
* pkcs11 verification: always use the GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED...Nikos Mavrogiannopoulos2017-12-032-6/+10
* pkcs11: simplify trusted module loading stateNikos Mavrogiannopoulos2017-12-032-13/+15
* _gnutls_pkcs11_check_init: improved transition between statesNikos Mavrogiannopoulos2017-12-033-20/+59
* gnutls_aead_cipher_init: corrected potential memory leakNikos Mavrogiannopoulos2017-11-291-4/+10
* _gnutls_set_resumed_parameters: restore the group from resumed parametersNikos Mavrogiannopoulos2017-11-271-0/+1
* session state: use the right type for send_cert_req variableNikos Mavrogiannopoulos2017-11-241-1/+1
* srp: added the 8192-bit primeNikos Mavrogiannopoulos2017-11-213-15/+180
* srp: reject any parameters not in the SRP draftNikos Mavrogiannopoulos2017-11-211-113/+2
* gnutls_x509_ext_import_proxy: corrected memory leakNikos Mavrogiannopoulos2017-11-151-8/+8
* pkcs11: refuse to load modules with duplicate informationNikos Mavrogiannopoulos2017-11-031-1/+2
* tests: added PKCS#11 module loading testNikos Mavrogiannopoulos2017-11-032-5/+37
* pkcs11: allow loading trusted modules when pkcs11 was initialized in manual modeNikos Mavrogiannopoulos2017-11-033-28/+26
* pkcs11: introduce multiple levels of loadingNikos Mavrogiannopoulos2017-11-034-15/+50
* pkcs11: forward token flags to applicationsNikos Mavrogiannopoulos2017-10-212-1/+58
* gnutls_server_name_set: Clarify meaning of the name_length parameter [ci skip]Thomas Klute2017-10-191-1/+1
* doc update [ci skip]Nikos Mavrogiannopoulos2017-10-162-8/+16
* cmp_hsk_types: fixed check for SSLv2 helloNikos Mavrogiannopoulos2017-10-151-4/+4
* doc: improve documentation on provable private keysNikos Mavrogiannopoulos2017-10-093-17/+55
* _gnutls_get_key_id: introduce flag GNUTLS_KEYID_USE_SHA512Nikos Mavrogiannopoulos2017-10-012-1/+5
* signature: on client side, refuse to negotiate non-enabled signature schemesNikos Mavrogiannopoulos2017-09-251-1/+9
* _gnutls_epoch_gc: ensure there are no stray epochs after gcNikos Mavrogiannopoulos2017-09-251-3/+7
* constate: simplified allocation of epochsNikos Mavrogiannopoulos2017-09-254-53/+30
* _gnutls_epoch_get(): simplified useNikos Mavrogiannopoulos2017-09-253-5/+4
* gnutls_x509_crt/q_set_spki: always initialize the spki structureNikos Mavrogiannopoulos2017-09-242-2/+4
* server name: refuse to resume a session which server name doesn't matchNikos Mavrogiannopoulos2017-09-233-0/+46
* Ensure the SNI extension is parsed during cache-based resumptionThomas Klute2017-09-231-1/+1
* parse_handshake_header: removed duplicate checkNikos Mavrogiannopoulos2017-09-191-5/+0
* ecdh: return more appropriate error code on empty packetNikos Mavrogiannopoulos2017-09-191-0/+5
* parse_handshake_header: allow 1-byte sized fragmentsNikos Mavrogiannopoulos2017-09-191-2/+3
* gnutls.h: Remove redundant function declarationsTim Rühsen2017-09-181-14/+0
* x509: removed debugging code [ci skip]Nikos Mavrogiannopoulos2017-09-161-1/+0
* algorithms/sign: removed TLS identifiers for legacy algorithmsNikos Mavrogiannopoulos2017-09-131-6/+5
* algorithms/sign: legacy signature algorithms were moved toward the end of the...Nikos Mavrogiannopoulos2017-09-131-168/+183
* algorithms/sign: no longer enable SHA224 hash in signaturesNikos Mavrogiannopoulos2017-09-131-3/+4
* crq: doc updatetmp-sign-with-default-algoNikos Mavrogiannopoulos2017-09-081-2/+16
* gnutls_x509_crl_verify: check next update field for presenceNikos Mavrogiannopoulos2017-09-081-1/+3
* gnutls_x509_crq_sign: undeprecateNikos Mavrogiannopoulos2017-09-083-8/+2
* gnutls_x509_crl_sign: undeprecateNikos Mavrogiannopoulos2017-09-083-9/+4
* gnutls_x509_crq_sign: no longer sign with SHA1Nikos Mavrogiannopoulos2017-09-081-1/+28
* gnutls_x509_*_sign: no longer sign with SHA1Nikos Mavrogiannopoulos2017-09-083-7/+35