gnutls:gnutls.git
9 years agoAvoid linking the library on librt.
Nikos Mavrogiannopoulos [Sun, 28 Apr 2013 08:15:47 +0000 (11:15 +0300)]
Avoid linking the library on librt.

9 years agotest suite: Add missing header
Stef Walter [Sat, 27 Apr 2013 13:00:00 +0000 (15:00 +0200)]
test suite: Add missing header

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9 years agoAdded test for escaping rules.
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 19:07:02 +0000 (22:07 +0300)]
Added test for escaping rules.

9 years agoAdd the standard description OID to those recognized for DNs
Stef Walter [Sat, 27 Apr 2013 13:39:05 +0000 (15:39 +0200)]
Add the standard description OID to those recognized for DNs

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
9 years agoAlways escape printable strings the LDAP way, and avoid escaping hex encoded values...
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 18:43:44 +0000 (21:43 +0300)]
Always escape printable strings the LDAP way, and avoid escaping hex encoded values. Report and initial patch from Stef Walter.

9 years agoDo not include null terminator in DN string.
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 18:29:52 +0000 (21:29 +0300)]
Do not include null terminator in DN string.

When printing an unknown DN string as hex do not include the null terminator.
Reported by Stef Walter.

9 years agoLink against pthread only when pthread_mutex_lock isn't in libc
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 14:15:49 +0000 (17:15 +0300)]
Link against pthread only when pthread_mutex_lock isn't in libc

9 years agoinitialize the digest after output on padlock.
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 12:08:55 +0000 (15:08 +0300)]
initialize the digest after output on padlock.

9 years agoread_yesno() accepts a default value. By default certificates are marked as ok for...
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 11:29:30 +0000 (14:29 +0300)]
read_yesno() accepts a default value. By default certificates are marked as ok for signing and encryption.

9 years agoupdated license
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 10:42:10 +0000 (13:42 +0300)]
updated license

9 years agoeliminate the reset ability from hashes
Nikos Mavrogiannopoulos [Sat, 27 Apr 2013 07:52:55 +0000 (10:52 +0300)]
eliminate the reset ability from hashes

9 years agoDo not handle MAC reset separately. It is implied by nettle's output function.
Nikos Mavrogiannopoulos [Fri, 26 Apr 2013 21:37:07 +0000 (00:37 +0300)]
Do not handle MAC reset separately. It is implied by nettle's output function.

9 years agoupdated documentation
Nikos Mavrogiannopoulos [Fri, 26 Apr 2013 21:29:43 +0000 (00:29 +0300)]
updated documentation

9 years agoupdated benchmark output
Nikos Mavrogiannopoulos [Wed, 24 Apr 2013 10:21:30 +0000 (13:21 +0300)]
updated benchmark output

9 years agoupdated TODO list
Nikos Mavrogiannopoulos [Tue, 23 Apr 2013 10:20:30 +0000 (13:20 +0300)]
updated TODO list

9 years agouse the pass argument on PKCS #11 keys.
Nikos Mavrogiannopoulos [Wed, 17 Apr 2013 16:19:37 +0000 (18:19 +0200)]
use the pass argument on PKCS #11 keys.

9 years agocorrected memory leak in padlock_hash_fast()
Nikos Mavrogiannopoulos [Tue, 16 Apr 2013 16:59:41 +0000 (18:59 +0200)]
corrected memory leak in padlock_hash_fast()

9 years agomention about experimental protocols
Nikos Mavrogiannopoulos [Sun, 14 Apr 2013 12:19:01 +0000 (14:19 +0200)]
mention about experimental protocols

9 years agonettle 2.7 is required
Nikos Mavrogiannopoulos [Sun, 14 Apr 2013 08:41:17 +0000 (10:41 +0200)]
nettle 2.7 is required

9 years agodoc update
Nikos Mavrogiannopoulos [Sat, 13 Apr 2013 18:22:06 +0000 (20:22 +0200)]
doc update

9 years agoAdded documentation on public key API.
Nikos Mavrogiannopoulos [Sat, 13 Apr 2013 18:17:38 +0000 (20:17 +0200)]
Added documentation on public key API.

9 years agoAdded priority string VERS-DTLS-ALL
Nikos Mavrogiannopoulos [Sat, 13 Apr 2013 15:57:43 +0000 (17:57 +0200)]
Added priority string VERS-DTLS-ALL

9 years agonettle 2.7 is required
Nikos Mavrogiannopoulos [Sat, 13 Apr 2013 11:35:26 +0000 (13:35 +0200)]
nettle 2.7 is required

9 years agocorrected doc
Nikos Mavrogiannopoulos [Sat, 13 Apr 2013 11:30:32 +0000 (13:30 +0200)]
corrected doc

9 years agorenamed HAVE_UMAC -> HAVE_NETTLE27
Nikos Mavrogiannopoulos [Thu, 11 Apr 2013 22:16:48 +0000 (00:16 +0200)]
renamed HAVE_UMAC -> HAVE_NETTLE27

9 years agoAdded ESTREAM salsa20 cipher.
Nikos Mavrogiannopoulos [Thu, 11 Apr 2013 22:14:19 +0000 (00:14 +0200)]
Added ESTREAM salsa20 cipher.

9 years agobetter naming of functions
Nikos Mavrogiannopoulos [Thu, 11 Apr 2013 21:57:41 +0000 (23:57 +0200)]
better naming of functions

9 years agoUpdated UMAC code to use nettle's new implementation
Nikos Mavrogiannopoulos [Thu, 11 Apr 2013 21:55:47 +0000 (23:55 +0200)]
Updated UMAC code to use nettle's new implementation

9 years agoadded note about LGPLv3
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 20:36:42 +0000 (22:36 +0200)]
added note about LGPLv3

9 years agodoc update
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 20:31:30 +0000 (22:31 +0200)]
doc update

9 years agouse unlikely
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 20:29:52 +0000 (22:29 +0200)]
use unlikely

9 years agodocumented update
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 15:25:41 +0000 (17:25 +0200)]
documented update

9 years agoAdded support for the ALPN extension.
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 15:18:10 +0000 (17:18 +0200)]
Added support for the ALPN extension.

9 years agoremoved unused variables
Nikos Mavrogiannopoulos [Wed, 10 Apr 2013 15:12:15 +0000 (17:12 +0200)]
removed unused variables

9 years agoremoved the RSA-EXPORT checks
Nikos Mavrogiannopoulos [Tue, 9 Apr 2013 16:50:59 +0000 (18:50 +0200)]
removed the RSA-EXPORT checks

9 years agoupdated
Nikos Mavrogiannopoulos [Mon, 8 Apr 2013 15:33:57 +0000 (17:33 +0200)]
updated

9 years agoAdded gnutls_certificate_set_x509_key_mem2() and gnutls_certificate_set_x509_key_file2()
Nikos Mavrogiannopoulos [Mon, 8 Apr 2013 15:28:20 +0000 (17:28 +0200)]
Added gnutls_certificate_set_x509_key_mem2() and gnutls_certificate_set_x509_key_file2()

9 years agodoc updates
Nikos Mavrogiannopoulos [Mon, 8 Apr 2013 15:28:09 +0000 (17:28 +0200)]
doc updates

9 years agoremoved TLS export key generation
Nikos Mavrogiannopoulos [Sun, 7 Apr 2013 11:48:48 +0000 (13:48 +0200)]
removed TLS export key generation

9 years agoRemoved the RSA-EXPORT ciphersuites.
Nikos Mavrogiannopoulos [Sun, 7 Apr 2013 11:34:11 +0000 (13:34 +0200)]
Removed the RSA-EXPORT ciphersuites.

9 years agoAdded support for DTLS 1.2
Nikos Mavrogiannopoulos [Sun, 7 Apr 2013 08:48:21 +0000 (10:48 +0200)]
Added support for DTLS 1.2

9 years agodeprecated gnutls_privkey_sign_raw_data()
Nikos Mavrogiannopoulos [Sun, 7 Apr 2013 08:30:48 +0000 (10:30 +0200)]
deprecated gnutls_privkey_sign_raw_data()

9 years agoupdated
Nikos Mavrogiannopoulos [Sun, 7 Apr 2013 07:55:51 +0000 (09:55 +0200)]
updated

9 years agoupdates in range handling code.
Nikos Mavrogiannopoulos [Sat, 6 Apr 2013 10:09:33 +0000 (12:09 +0200)]
updates in range handling code.

9 years agoAdded test for record ranges.
Nikos Mavrogiannopoulos [Sat, 6 Apr 2013 10:08:58 +0000 (12:08 +0200)]
Added test for record ranges.

9 years agoSet the curve priority to calling derive.
Nikos Mavrogiannopoulos [Sat, 6 Apr 2013 09:55:44 +0000 (11:55 +0200)]
Set the curve priority to calling derive.

9 years agoreduce the number of temp variables in ECDH
Nikos Mavrogiannopoulos [Fri, 5 Apr 2013 06:14:28 +0000 (08:14 +0200)]
reduce the number of temp variables in ECDH

9 years agoprint the signatures used.
Nikos Mavrogiannopoulos [Thu, 4 Apr 2013 17:14:58 +0000 (19:14 +0200)]
print the signatures used.

9 years agoAdded gnutls_sign_algorithm_get_client()
Nikos Mavrogiannopoulos [Thu, 4 Apr 2013 17:14:44 +0000 (19:14 +0200)]
Added gnutls_sign_algorithm_get_client()

9 years agoChanged license of heartbeat implementation to match the rest of the library
Nikos Mavrogiannopoulos [Wed, 3 Apr 2013 16:00:12 +0000 (18:00 +0200)]
Changed license of heartbeat implementation to match the rest of the library

9 years agoupdated text
Nikos Mavrogiannopoulos [Wed, 3 Apr 2013 15:59:35 +0000 (17:59 +0200)]
updated text

9 years agognutls_pong() returns zero on success.
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 22:53:22 +0000 (00:53 +0200)]
gnutls_pong() returns zero on success.

9 years agoremoved function that didn't exist
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 20:47:08 +0000 (22:47 +0200)]
removed function that didn't exist

9 years agoupdated heartbeat
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 20:46:10 +0000 (22:46 +0200)]
updated heartbeat

9 years agoCheck all error conditions.
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 20:07:11 +0000 (22:07 +0200)]
Check all error conditions.

9 years agoCorrected bug in heartbeat send (reported by Joke de Buhr).
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 20:06:35 +0000 (22:06 +0200)]
Corrected bug in heartbeat send (reported by Joke de Buhr).

9 years agoRemoved elliptic curve code from gnutls. Use nettle's implementation.
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 19:48:39 +0000 (21:48 +0200)]
Removed elliptic curve code from gnutls. Use nettle's implementation.

9 years agocorrected issue in ecccertfile option
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 19:29:22 +0000 (21:29 +0200)]
corrected issue in ecccertfile option

9 years agomake a short list of the available PK algorithms
Nikos Mavrogiannopoulos [Tue, 2 Apr 2013 18:08:42 +0000 (20:08 +0200)]
make a short list of the available PK algorithms

9 years agoAdded sign and verification flags to operate in RSA raw mode (as used in TLS).
Nikos Mavrogiannopoulos [Thu, 28 Mar 2013 08:03:59 +0000 (09:03 +0100)]
Added sign and verification flags to operate in RSA raw mode (as used in TLS).

9 years agoWhen in compatibility mode allow for a wrong version in the RSA PMS.
Nikos Mavrogiannopoulos [Wed, 27 Mar 2013 17:50:11 +0000 (18:50 +0100)]
When in compatibility mode allow for a wrong version in the RSA PMS.

9 years agoconvert gnutls versions to TLS major-minor in a single function.
Nikos Mavrogiannopoulos [Wed, 27 Mar 2013 17:08:26 +0000 (18:08 +0100)]
convert gnutls versions to TLS major-minor in a single function.

9 years agochanged license headers to 2.1. Reported by Andreas Metzler.
Nikos Mavrogiannopoulos [Sun, 24 Mar 2013 18:44:06 +0000 (19:44 +0100)]
changed license headers to 2.1. Reported by Andreas Metzler.

9 years agoupdated
Nikos Mavrogiannopoulos [Sun, 24 Mar 2013 11:41:22 +0000 (12:41 +0100)]
updated

9 years agoupdated copyright
Nikos Mavrogiannopoulos [Sat, 23 Mar 2013 20:23:28 +0000 (21:23 +0100)]
updated copyright

9 years agoAdded gnutls_mac_get_nonce_size()
Nikos Mavrogiannopoulos [Sat, 23 Mar 2013 10:49:52 +0000 (11:49 +0100)]
Added gnutls_mac_get_nonce_size()

9 years agoupdated
Nikos Mavrogiannopoulos [Fri, 22 Mar 2013 18:25:10 +0000 (19:25 +0100)]
updated

9 years agodoc update
Nikos Mavrogiannopoulos [Fri, 22 Mar 2013 17:48:11 +0000 (18:48 +0100)]
doc update

9 years agocorrected file location
Nikos Mavrogiannopoulos [Fri, 22 Mar 2013 07:50:28 +0000 (08:50 +0100)]
corrected file location

9 years agouse return instead of exit
Nikos Mavrogiannopoulos [Thu, 21 Mar 2013 20:37:29 +0000 (21:37 +0100)]
use return instead of exit

9 years agouse the proper defines
Nikos Mavrogiannopoulos [Thu, 21 Mar 2013 17:00:40 +0000 (18:00 +0100)]
use the proper defines

9 years agoFixes in openpgp handshake with fingerprints. Reported by Joke de Buhr.
Nikos Mavrogiannopoulos [Thu, 21 Mar 2013 16:50:09 +0000 (17:50 +0100)]
Fixes in openpgp handshake with fingerprints. Reported by Joke de Buhr.

9 years agoopenpgp-auth tests gnutls_openpgp_set_recv_key_function() as well.
Nikos Mavrogiannopoulos [Thu, 21 Mar 2013 16:49:20 +0000 (17:49 +0100)]
openpgp-auth tests gnutls_openpgp_set_recv_key_function() as well.

9 years agocorrect issue with the (deprecated) external key signing and TLS 1.2
Nikos Mavrogiannopoulos [Thu, 21 Mar 2013 15:46:14 +0000 (16:46 +0100)]
correct issue with the (deprecated) external key signing and TLS 1.2

9 years agouse clock_gettime when we can
Nikos Mavrogiannopoulos [Tue, 19 Mar 2013 20:57:50 +0000 (21:57 +0100)]
use clock_gettime when we can

9 years agoremoved R20
Nikos Mavrogiannopoulos [Tue, 19 Mar 2013 20:33:00 +0000 (21:33 +0100)]
removed R20

9 years agoSalsa20R20 -> Salsa20
Nikos Mavrogiannopoulos [Tue, 19 Mar 2013 07:52:14 +0000 (08:52 +0100)]
Salsa20R20 -> Salsa20

9 years agouse the exported variant of _gnutls_hmac_fast().
Nikos Mavrogiannopoulos [Tue, 19 Mar 2013 07:46:06 +0000 (08:46 +0100)]
use the exported variant of _gnutls_hmac_fast().

9 years agoThe HMAC subsystem can now be used for other MAC algorithms, like UMAC. UMAC-96 and...
Nikos Mavrogiannopoulos [Tue, 19 Mar 2013 07:13:54 +0000 (08:13 +0100)]
The HMAC subsystem can now be used for other MAC algorithms, like UMAC. UMAC-96 and UMAC-128 were conditionally added.

9 years agouse RSA ciphersuite to compare ciphers.
Nikos Mavrogiannopoulos [Sun, 17 Mar 2013 11:30:27 +0000 (12:30 +0100)]
use RSA ciphersuite to compare ciphers.

9 years agocorrected bug in stream ciphers and added new cipher to the new padding format.
Nikos Mavrogiannopoulos [Sun, 17 Mar 2013 11:22:11 +0000 (12:22 +0100)]
corrected bug in stream ciphers and added new cipher to the new padding format.

9 years agoAdded salsa20 cipher, and ciphersuites.
Nikos Mavrogiannopoulos [Sun, 17 Mar 2013 11:16:28 +0000 (12:16 +0100)]
Added salsa20 cipher, and ciphersuites.

9 years agosearch only for slots with tokens and avoid caching to prevent issues with multiple...
Nikos Mavrogiannopoulos [Sun, 17 Mar 2013 08:33:42 +0000 (09:33 +0100)]
search only for slots with tokens and avoid caching to prevent issues with multiple threads.

9 years agoupdated
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:49:06 +0000 (12:49 +0100)]
updated

9 years agoAdded gnutls_privkey_status()
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:46:58 +0000 (12:46 +0100)]
Added gnutls_privkey_status()

9 years agoavoid internal error
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:34:32 +0000 (12:34 +0100)]
avoid internal error

9 years agouse correct type for rv
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:32:57 +0000 (12:32 +0100)]
use correct type for rv

9 years agoupdated
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:03:08 +0000 (12:03 +0100)]
updated

9 years agoscan slots on PKCS #11 providers only when needed, not on initialization.
Nikos Mavrogiannopoulos [Sat, 16 Mar 2013 11:00:30 +0000 (12:00 +0100)]
scan slots on PKCS #11 providers only when needed, not on initialization.

9 years agodoc update
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 19:05:50 +0000 (20:05 +0100)]
doc update

9 years agodocumented the new configure options
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 17:15:34 +0000 (18:15 +0100)]
documented the new configure options

9 years agoPrivate key parameters are overwritten with zeros on deinitialization.
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 17:11:24 +0000 (18:11 +0100)]
Private key parameters are overwritten with zeros on deinitialization.

9 years agodoc updates
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 16:59:30 +0000 (17:59 +0100)]
doc updates

9 years agosimplified text
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 16:46:23 +0000 (17:46 +0100)]
simplified text

9 years agobumped version
Nikos Mavrogiannopoulos [Fri, 15 Mar 2013 16:29:44 +0000 (17:29 +0100)]
bumped version

9 years agoAdded gnutls_privkey_sign_raw_data()
Nikos Mavrogiannopoulos [Thu, 14 Mar 2013 22:15:36 +0000 (23:15 +0100)]
Added gnutls_privkey_sign_raw_data()

9 years agosimplified code
Nikos Mavrogiannopoulos [Thu, 14 Mar 2013 18:27:17 +0000 (19:27 +0100)]
simplified code

9 years agognutls-serv may run without certificate, but will issue a warning
Nikos Mavrogiannopoulos [Thu, 14 Mar 2013 15:03:52 +0000 (16:03 +0100)]
gnutls-serv may run without certificate, but will issue a warning

9 years agognutls-serv issues an error if no certificate and key pair was set.
Nikos Mavrogiannopoulos [Thu, 14 Mar 2013 14:35:01 +0000 (15:35 +0100)]
gnutls-serv issues an error if no certificate and key pair was set.

9 years agognutls 3.1.10 is LGPLv2.1
Nikos Mavrogiannopoulos [Thu, 14 Mar 2013 14:11:52 +0000 (15:11 +0100)]
gnutls 3.1.10 is LGPLv2.1