Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | gnutls-cli: allow operation with stdin input | Nikos Mavrogiannopoulos | 2016-05-19 | 1 | -3/+33 |
| | | | | | | | That is once commands from stdin are given, they are not only sent to server, but we also wait for a response prior to exiting. Resolves #96 | ||||
* | gnutls-cli: corrected check for OCSP verification success | Nikos Mavrogiannopoulos | 2016-05-17 | 1 | -1/+1 |
| | |||||
* | gnutls-cli: fix invalid initialization in cert_verify_ocsp() | Nikos Mavrogiannopoulos | 2016-03-11 | 1 | -1/+1 |
| | |||||
* | tools: when the starttls-proto is specified automatically detect the port if ↵ | Nikos Mavrogiannopoulos | 2015-10-16 | 1 | -1/+4 |
| | | | | not given | ||||
* | gnutls-cli: Fixed Possible Memory Leak | Saurav Babu | 2015-06-18 | 1 | -0/+1 |
| | | | | | | | | This patch fixes possible memory leak in psk_callback() function, rawkey is allocated memory by gnutls_malloc() and is not freed when gnutls_hex_decode() returns with error Signed-off-by: Saurav Babu <saurav.babu@samsung.com> | ||||
* | gnutls-cli: when no certificate is sent, notify the user | Nikos Mavrogiannopoulos | 2015-04-20 | 1 | -1/+1 |
| | |||||
* | gnutls-cli: added --save-cert option | Nikos Mavrogiannopoulos | 2015-02-06 | 1 | -0/+41 |
| | |||||
* | handle differently OCSP responses that are revoked and of unknown status | Nikos Mavrogiannopoulos | 2015-02-04 | 1 | -1/+6 |
| | |||||
* | don't be so verbose about the OCSP nonce; it is universally unsupported | Nikos Mavrogiannopoulos | 2015-01-19 | 1 | -1/+1 |
| | |||||
* | OCSP check the whole cert chain | Tim Ruehsen | 2015-01-19 | 1 | -55/+65 |
| | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> | ||||
* | gnutls-cli: added --starttls-proto option | Nikos Mavrogiannopoulos | 2015-01-12 | 1 | -0/+6 |
| | |||||
* | gnutls_priority_string_list: allow printing the special keywords as well. | Nikos Mavrogiannopoulos | 2014-11-21 | 1 | -2/+25 |
| | |||||
* | Fixed SRTP profile configuration in cli.c and serv.c. | David Weber | 2014-11-14 | 1 | -12/+16 |
| | | | | | | | I have tested the fix in 3.3.10. This commit is UNTESTED as i am unable to compile gnutls (./configure complains about gl_INIT and ggl_INIT). Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | gnutls-cli: allow printing the certificates in OCSP responses when ↵ | Nikos Mavrogiannopoulos | 2014-11-14 | 1 | -2/+6 |
| | | | | --print-cert is specified | ||||
* | gnutls-cli: print the OCSP response in verbose mode | Nikos Mavrogiannopoulos | 2014-11-13 | 1 | -5/+34 |
| | |||||
* | gnutls-cli: added option to save the OCSP response | Nikos Mavrogiannopoulos | 2014-11-13 | 1 | -0/+20 |
| | |||||
* | gnutls-cli: added option --priority-list | Nikos Mavrogiannopoulos | 2014-10-16 | 1 | -0/+23 |
| | |||||
* | fixed compilation warnings | Nikos Mavrogiannopoulos | 2014-09-25 | 1 | -12/+12 |
| | |||||
* | gnutls-cli: added --fips140-mode command line option | Nikos Mavrogiannopoulos | 2014-08-14 | 1 | -0/+10 |
| | | | | That option will report the status of the FIPS140-2 mode in the library. | ||||
* | gnutls-cli/danetool: added a common check for hostname being an IP | Nikos Mavrogiannopoulos | 2014-08-13 | 1 | -1/+1 |
| | |||||
* | danetool: if the certificate to verify against is not provide it try to ↵ | Nikos Mavrogiannopoulos | 2014-08-08 | 1 | -47/+5 |
| | | | | obtain it | ||||
* | gnutls-cli: Do not try to load the system CA trust if --insecure is specified. | Nikos Mavrogiannopoulos | 2014-06-17 | 1 | -1/+5 |
| | |||||
* | gnutls-cli's benchmark-soft-ciphers is no more. | Nikos Mavrogiannopoulos | 2014-05-27 | 1 | -6/+1 |
| | | | | It could not be emulated with the new library. | ||||
* | gnutls-cli: if dane verification is used but not PKIX only check the end ↵ | Nikos Mavrogiannopoulos | 2014-05-13 | 1 | -1/+7 |
| | | | | certificate. | ||||
* | Do not set "NORMAL" as default priority string. | Nikos Mavrogiannopoulos | 2014-05-05 | 1 | -3/+0 |
| | | | | That is, allow the library to select the appropriate default. | ||||
* | only fail DANE verification if status is non-zero | Nikos Mavrogiannopoulos | 2014-04-28 | 1 | -1/+1 |
| | |||||
* | gnutls-cli will no longer allow the session to proceed if DANE verification ↵ | Nikos Mavrogiannopoulos | 2014-04-19 | 1 | -4/+5 |
| | | | | fails. | ||||
* | Both DANE and PKI verification are advisory when --tofu is being used. | Nikos Mavrogiannopoulos | 2014-04-18 | 1 | -40/+44 |
| | |||||
* | documentation update. | Nikos Mavrogiannopoulos | 2014-04-17 | 1 | -2/+2 |
| | |||||
* | Do not print certificates twice. | Nikos Mavrogiannopoulos | 2014-04-17 | 1 | -2/+0 |
| | | | | That will improve the visibility of messages of the various verification methods. | ||||
* | Replaced gnutls_certificate_verify_peers3() with the extendable ↵ | Nikos Mavrogiannopoulos | 2014-04-09 | 1 | -1/+1 |
| | | | | | | | gnutls_certificate_verify_peers(). That will allow adding new functionality to verification without the need to add new functions. | ||||
* | Allow using the --provider parameter in gnutls-cli and certtool to specify a ↵ | Nikos Mavrogiannopoulos | 2014-04-05 | 1 | -1/+21 |
| | | | | PKCS #11 module. | ||||
* | New option --stricttofu for gnutls-cli | Jens Lechtenboerger | 2014-02-23 | 1 | -4/+12 |
| | | | | | | | | | | | | | | With option --tofu, gnutls-cli waits with a yes-no-question upon certificate changes. I added the option --stricttofu that omits the question and fails instead. The contribution is in accordance to the "Developer's Certificate of Origin" as found in the file doc/DCO.txt. Best wishes Jens Signed-off-by: Jens Lechtenbörger <jens.lechtenboerger@fsfe.org> | ||||
* | When sending a nonce in OCSP check if it is available on the reply. | Nikos Mavrogiannopoulos | 2014-02-18 | 1 | -2/+14 |
| | |||||
* | corrected key ID size check | Nikos Mavrogiannopoulos | 2013-12-23 | 1 | -1/+1 |
| | |||||
* | explicitly set the gnulib functions for recv and send. | Nikos Mavrogiannopoulos | 2013-12-21 | 1 | -0/+2 |
| | |||||
* | reindented code | Nikos Mavrogiannopoulos | 2013-11-08 | 1 | -1516/+1456 |
| | |||||
* | removed warnings | Nikos Mavrogiannopoulos | 2013-10-26 | 1 | -7/+9 |
| | |||||
* | cli: add missing stdbool.h | Alon Bar-Lev | 2013-10-25 | 1 | -0/+1 |
| | | | | | Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com> Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> | ||||
* | support inline command infrastructure in gnutls-cli | Raj Raman | 2013-10-04 | 1 | -76/+306 |
| | | | | Signed-off-by: Raj Raman <rajramanca@gmail.com> | ||||
* | included programs no longer depend on GPL/LGPLv3 elements of gnulib to ↵ | Nikos Mavrogiannopoulos | 2013-08-05 | 1 | -1/+0 |
| | | | | prevent their accidental inclusion in the library. | ||||
* | gnulib only contains lgplv2 modules | Nikos Mavrogiannopoulos | 2013-08-05 | 1 | -2/+0 |
| | |||||
* | removed unused var | Nikos Mavrogiannopoulos | 2013-06-10 | 1 | -1/+1 |
| | |||||
* | avoid struct sigaction in win32 | Nikos Mavrogiannopoulos | 2013-06-02 | 1 | -0/+2 |
| | |||||
* | use sigaction instead of signal in gnutls-cli | Nikos Mavrogiannopoulos | 2013-05-21 | 1 | -1/+6 |
| | |||||
* | Revert "break the loop when a SIGALRM has been received" | Nikos Mavrogiannopoulos | 2013-05-21 | 1 | -3/+2 |
| | | | | This reverts commit c3b3a0c6bd14a542e11873ebe0975a5ddd0ab46b. | ||||
* | break the loop when a SIGALRM has been received | Nikos Mavrogiannopoulos | 2013-05-18 | 1 | -2/+3 |
| | |||||
* | corrected API usage. | Nikos Mavrogiannopoulos | 2013-05-05 | 1 | -1/+1 |
| | |||||
* | Improved ALPN support in gnutls-cli | Nikos Mavrogiannopoulos | 2013-05-05 | 1 | -2/+11 |
| | |||||
* | Added --alpn option to cli | Nikos Mavrogiannopoulos | 2013-05-05 | 1 | -0/+6 |
| |