summaryrefslogtreecommitdiff
path: root/lib
Commit message (Expand)AuthorAgeFilesLines
...
* _decode_pkcs8_rsa_key: signal error in RSA privkey decodingNikos Mavrogiannopoulos2017-08-061-0/+1
* base64: reverted the raw semantics from the PEM encoding/decoding functionsNikos Mavrogiannopoulos2017-08-041-22/+0
* base64: uniformly use GNUTLS_E_BASE64_DECODING_ERROR for decoding errorsNikos Mavrogiannopoulos2017-08-041-3/+3
* base64: introduced new functions for base64 encodingNikos Mavrogiannopoulos2017-08-043-1/+73
* gnutls_x509_privkey_import: allow importing ed25519 PKCS#8 keys in DER formNikos Mavrogiannopoulos2017-08-041-6/+10
* sign/digest: separate "brokenness" of signatures and hash algorithmsNikos Mavrogiannopoulos2017-08-047-51/+57
* sign: use C99 syntax for signature algorithm's tableNikos Mavrogiannopoulos2017-08-041-97/+252
* x509_privkey: handle keys which can only have PKCS#8 form transparentlyNikos Mavrogiannopoulos2017-08-041-9/+26
* privkey: reject signing with ext keys and GNUTLS_PK_RSA_PSS or GNUTLS_PK_EDDS...Nikos Mavrogiannopoulos2017-08-041-0/+3
* _gnutls_check_key_cert_match: use the new API for signingNikos Mavrogiannopoulos2017-08-041-7/+9
* privkey: return less specific but more appropriate error on invalid pks for e...Nikos Mavrogiannopoulos2017-08-041-1/+1
* prior to negotiating a signature check compatibility with private keyNikos Mavrogiannopoulos2017-08-048-23/+85
* pkcs11: mark RSA PKCS#11 key which can do RSA-PSSNikos Mavrogiannopoulos2017-08-041-1/+12
* handshake: select a signature algorithm earlyNikos Mavrogiannopoulos2017-08-043-6/+60
* gnutls_pkcs11_token_check_mechanism: introduced function to check token for a...Nikos Mavrogiannopoulos2017-08-045-0/+83
* x509/output: print error on invalid public key parameters on certificateNikos Mavrogiannopoulos2017-08-042-18/+36
* gnutls_pk_get_oid: return early on unknown algorithmNikos Mavrogiannopoulos2017-08-041-0/+3
* spki: combined all exported functions to a single set and getNikos Mavrogiannopoulos2017-08-043-106/+37
* introduced error code GNUTLS_E_PK_INVALID_PUBKEY_PARAMSNikos Mavrogiannopoulos2017-08-044-5/+8
* gnutls_x509_privkey_generate*: allow specifying the SPKI parameters for key g...Nikos Mavrogiannopoulos2017-08-043-16/+26
* gnutls_x509_privkey_set_spki: check validity of parameters setNikos Mavrogiannopoulos2017-08-041-0/+9
* gnutls_x509_cr*_set_spki: check for validity of parameters setNikos Mavrogiannopoulos2017-08-042-54/+90
* _gnutls_x509_check_pubkey_params: removed unnecessary parameterNikos Mavrogiannopoulos2017-08-043-6/+4
* gnutls_pubkey_import_x509: propagate errors from gnutls_x509_crt_get_pk_algor...Nikos Mavrogiannopoulos2017-08-041-1/+5
* _rsa_pss_verify_digest: verify the validity of the salt_size length on verifi...Nikos Mavrogiannopoulos2017-08-041-0/+2
* gnutls_x509_privkey_import: immediately exit on GNUTLS_E_PK_INVALID_PRIVKEYNikos Mavrogiannopoulos2017-08-041-0/+3
* wrap_nettle_pk_fixup: check RSA PSS parameters for validity on importNikos Mavrogiannopoulos2017-08-041-2/+14
* gnutls_x509_*_set_spki: removed arbitrary restrictions to setting parametersNikos Mavrogiannopoulos2017-08-042-21/+1
* pct_test: use local SPKI structure to override parameters if not setNikos Mavrogiannopoulos2017-08-041-3/+9
* fixup_spki_params: use GNUTLS_E_CONSTRAINT_ERROR for RSA-PSS violationsNikos Mavrogiannopoulos2017-08-041-3/+3
* _gnutls_x509_read_pkalgo_params: initialize params structureNikos Mavrogiannopoulos2017-08-041-2/+4
* RSA-PSS parameter checking was moved to lower level functionsNikos Mavrogiannopoulos2017-08-044-36/+34
* signature security level check were moved to lower level functionsNikos Mavrogiannopoulos2017-08-044-25/+31
* _wrap_nettle_pk_encrypt: return GNUTLS_E_INVALID_REQUEST on unsupported algor...Nikos Mavrogiannopoulos2017-08-041-2/+2
* verify_crt: translate GNUTLS_E_CONSTRAINT_ERROR to verification status flagNikos Mavrogiannopoulos2017-08-041-0/+6
* x509/sign: in debugging mode print the signature algorithmNikos Mavrogiannopoulos2017-08-041-0/+2
* _gnutls_x509_validate_sign_params: use GNUTLS_E_CONSTRAINT_ERROR for mismatch...Nikos Mavrogiannopoulos2017-08-041-2/+2
* _gnutls_x509_read_rsa_pss_params: fail early on unknown hash algorithmsNikos Mavrogiannopoulos2017-08-041-4/+12
* gnutls_pubkey_get_preferred_hash_algorithm: will take into account the RSA-PS...Nikos Mavrogiannopoulos2017-08-041-2/+14
* x509/output: Subject Public Key parameters are printed just before actual keyNikos Mavrogiannopoulos2017-08-041-65/+28
* gnutls_x509_crt_set_spki: be more verbose in parameter restrictionsNikos Mavrogiannopoulos2017-08-041-4/+14
* _gnutls_privkey_update_spki_params: use GNUTLS_E_CONSTRAINT_ERROR on mismatch...Nikos Mavrogiannopoulos2017-08-041-3/+2
* _gnutls_x509_write_rsa_pss_params: refuse to write RSA-PSS parameters we cann...Nikos Mavrogiannopoulos2017-08-041-0/+4
* gnutls_x509_*_get_signature_algorithm: simplified error handlingNikos Mavrogiannopoulos2017-08-034-18/+22
* _gnutls_x509_get_signature_algorithm: return negative error code on unknown a...Nikos Mavrogiannopoulos2017-08-031-3/+6
* compare_sig_algorithm: modify to work even for certs with unsupported signatu...Nikos Mavrogiannopoulos2017-08-031-9/+16
* pubkey_verify_hashed_data: simplified and made staticNikos Mavrogiannopoulos2017-08-033-29/+38
* pubkey_verify_data: accept signature entry instead of PK and hashNikos Mavrogiannopoulos2017-08-034-22/+26
* Added convention for missing SubjectPublicKeyInfo params fieldNikos Mavrogiannopoulos2017-08-0313-44/+83
* *set_spki(): return error on incompatible algorithmsNikos Mavrogiannopoulos2017-08-036-0/+29