gnutls:gnutls.git
8 years agoupdated perlasm files
Nikos Mavrogiannopoulos [Tue, 26 Nov 2013 22:19:01 +0000 (23:19 +0100)]
updated perlasm files

8 years agoDo not link gnutls against librt unlress it is really necessary.
Nikos Mavrogiannopoulos [Tue, 26 Nov 2013 16:19:43 +0000 (17:19 +0100)]
Do not link gnutls against librt unlress it is really necessary.

Conflicts:
configure.ac
lib/Makefile.am

8 years agoremoved the UMAC96 ciphersuites
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 13:59:38 +0000 (14:59 +0100)]
removed the UMAC96 ciphersuites

8 years agomore files to ignore
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 10:58:18 +0000 (11:58 +0100)]
more files to ignore

8 years agoupdated e-mail address
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 10:53:10 +0000 (11:53 +0100)]
updated e-mail address

8 years agouse $shell()
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 10:50:20 +0000 (11:50 +0100)]
use $shell()

8 years agohandle centrally more variables
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 10:50:08 +0000 (11:50 +0100)]
handle centrally more variables

8 years agoUpdated manpage generation (and information stored to it).
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 10:34:43 +0000 (11:34 +0100)]
Updated manpage generation (and information stored to it).

8 years agoremoved auto-generated doc files.
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 08:52:01 +0000 (09:52 +0100)]
removed auto-generated doc files.

8 years agocerttool's --verify option if not supplied with a CA list, will use the system's...
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 08:47:54 +0000 (09:47 +0100)]
certtool's --verify option if not supplied with a CA list, will use the system's CA list.

8 years agocast the expiration time to time_t
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 07:57:01 +0000 (08:57 +0100)]
cast the expiration time to time_t

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 07:55:35 +0000 (08:55 +0100)]
doc update

8 years agoAdded macro to check for the 'no well defined' expiration time.
Nikos Mavrogiannopoulos [Sun, 24 Nov 2013 07:52:07 +0000 (08:52 +0100)]
Added macro to check for the 'no well defined' expiration time.

8 years agoAdded strerror module.
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 16:19:10 +0000 (17:19 +0100)]
Added strerror module.

8 years agobetter use of errno
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 16:17:53 +0000 (17:17 +0100)]
better use of errno

8 years agouse eurosym package for euro symbol
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 15:38:00 +0000 (16:38 +0100)]
use eurosym package for euro symbol

8 years agoCorrected check of usage of local libopts when autogen isn't present
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 09:12:23 +0000 (10:12 +0100)]
Corrected check of usage of local libopts when autogen isn't present

8 years agoVerify failure of DN parsing in a wrong DN.
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 08:50:48 +0000 (09:50 +0100)]
Verify failure of DN parsing in a wrong DN.

8 years agodisallow any compression in DTLS
Nikos Mavrogiannopoulos [Sat, 23 Nov 2013 07:35:34 +0000 (08:35 +0100)]
disallow any compression in DTLS

8 years agomini-deflate was combined with mini-record-2
Nikos Mavrogiannopoulos [Fri, 22 Nov 2013 21:55:32 +0000 (22:55 +0100)]
mini-deflate was combined with mini-record-2

8 years agoCorrected bug which affected compressed records.
Nikos Mavrogiannopoulos [Fri, 22 Nov 2013 21:28:38 +0000 (22:28 +0100)]
Corrected bug which affected compressed records.

Less space was provided for decryption than the required
causing disconnection issues when compression was used.
The issue was pointed by Frank Zschockelt.

Also replaced the macros MAX_RECORD_RECV_SIZE and MAX_RECV_SIZE
with max_decrypted_size() and max_record_recv_size().

8 years agocheck return code of gnutls_rnd().
Nikos Mavrogiannopoulos [Fri, 22 Nov 2013 17:28:59 +0000 (18:28 +0100)]
check return code of gnutls_rnd().

8 years agoUse AES-GCM to encrypt session tickets.
Nikos Mavrogiannopoulos [Fri, 22 Nov 2013 17:19:12 +0000 (18:19 +0100)]
Use AES-GCM to encrypt session tickets.

8 years agoupdated cross.mk
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 22:09:26 +0000 (23:09 +0100)]
updated cross.mk

8 years agofixed for win32
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 21:15:27 +0000 (22:15 +0100)]
fixed for win32

8 years agoadded assert to trace errors.
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 21:15:18 +0000 (22:15 +0100)]
added assert to trace errors.

8 years agoupdated
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 20:13:41 +0000 (21:13 +0100)]
updated

8 years agolink all programs with libgnu_gpl to avoid conflicts from header files.
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:52:37 +0000 (20:52 +0100)]
link all programs with libgnu_gpl to avoid conflicts from header files.

8 years agoAdded progname module which is used by error().
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:44:46 +0000 (20:44 +0100)]
Added progname module which is used by error().

8 years agosafer usage of strerror
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:31:16 +0000 (20:31 +0100)]
safer usage of strerror

8 years agouse the AUTOGEN variable
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:26:18 +0000 (20:26 +0100)]
use the AUTOGEN variable

8 years agouse libtool to generate libopts
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:21:00 +0000 (20:21 +0100)]
use libtool to generate libopts

8 years agocorrected libopts patch
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 19:07:11 +0000 (20:07 +0100)]
corrected libopts patch

8 years agoremoved unneed line
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 18:57:43 +0000 (19:57 +0100)]
removed unneed line

8 years agoignore xssl manpages
Nikos Mavrogiannopoulos [Thu, 21 Nov 2013 18:54:10 +0000 (19:54 +0100)]
ignore xssl manpages

8 years agoprioritize any GCM ciphersuite over CBC in secure128 level.
Nikos Mavrogiannopoulos [Tue, 19 Nov 2013 17:39:46 +0000 (18:39 +0100)]
prioritize any GCM ciphersuite over CBC in secure128 level.

8 years agogenerate ChangeLog after doc/ is checked.
Nikos Mavrogiannopoulos [Sun, 17 Nov 2013 17:09:40 +0000 (18:09 +0100)]
generate ChangeLog after doc/ is checked.

8 years agoupdated Makefiles
Nikos Mavrogiannopoulos [Sun, 17 Nov 2013 17:03:43 +0000 (18:03 +0100)]
updated Makefiles

8 years agomade more clever to ignore inline function body.
Nikos Mavrogiannopoulos [Sun, 17 Nov 2013 16:44:22 +0000 (17:44 +0100)]
made more clever to ignore inline function body.

8 years agoremoved auto-generated files
Nikos Mavrogiannopoulos [Sun, 17 Nov 2013 11:30:55 +0000 (12:30 +0100)]
removed auto-generated files

8 years agodoc update
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 21:43:04 +0000 (22:43 +0100)]
doc update

8 years agoexported gnutls_est_record_overhead_size
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 21:26:08 +0000 (22:26 +0100)]
exported gnutls_est_record_overhead_size

8 years agodo not add newline (it's already in the printed string)
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 20:07:00 +0000 (21:07 +0100)]
do not add newline (it's already in the printed string)

8 years agoif GNUTLS_DEBUG_LEVEL is specified the log function is not updated if it is already...
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 16:17:55 +0000 (17:17 +0100)]
if GNUTLS_DEBUG_LEVEL is specified the log function is not updated if it is already set.

8 years agodoc update
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 16:12:00 +0000 (17:12 +0100)]
doc update

8 years agoupdated
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 16:07:27 +0000 (17:07 +0100)]
updated

8 years agobumped version
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 16:06:40 +0000 (17:06 +0100)]
bumped version

8 years agoupdated glimport
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 16:02:59 +0000 (17:02 +0100)]
updated glimport

8 years agodoc update
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 15:39:20 +0000 (16:39 +0100)]
doc update

8 years agoAdded self checks for new date reading functionality
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 15:33:58 +0000 (16:33 +0100)]
Added self checks for new date reading functionality

8 years agoAdded activation_date and expiration_date options to certtool template file.
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 15:31:25 +0000 (16:31 +0100)]
Added activation_date and expiration_date options to certtool template file.

8 years agoAdded a gnulib with GPL components for use by applications.
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 14:33:25 +0000 (15:33 +0100)]
Added a gnulib with GPL components for use by applications.

8 years agocorrected bug reporting address.
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 09:53:13 +0000 (10:53 +0100)]
corrected bug reporting address.

8 years agoCheck for overflows when setting time and allow a time of -1.
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 09:22:22 +0000 (10:22 +0100)]
Check for overflows when setting time and allow a time of -1.

8 years agoDates and time that would overflow the GeneralTime are also truncated. We may need...
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 09:13:56 +0000 (10:13 +0100)]
Dates and time that would overflow the GeneralTime are also truncated. We may need to revise that around 9999 CE.

8 years agoforce serialized generation of invoke-*texi, to avoid autogen issue.
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 08:36:56 +0000 (09:36 +0100)]
force serialized generation of invoke-*texi, to avoid autogen issue.

8 years agoAn expiration time of (time_t)-1 will set to the no well-defined expiration date...
Nikos Mavrogiannopoulos [Sat, 16 Nov 2013 08:33:58 +0000 (09:33 +0100)]
An expiration time of (time_t)-1 will set to the no well-defined expiration date value.

8 years agocorrectly set the ciphersuite when the set_premaster interface is used.
Nikos Mavrogiannopoulos [Fri, 15 Nov 2013 08:54:52 +0000 (09:54 +0100)]
correctly set the ciphersuite when the set_premaster interface is used.

8 years agocheck for a valid blocksize prior to entering loop
Nikos Mavrogiannopoulos [Fri, 15 Nov 2013 08:54:26 +0000 (09:54 +0100)]
check for a valid blocksize prior to entering loop

8 years agoThe environment variable GNUTLS_DEBUG_LEVEL if set to a number will enable logging...
Nikos Mavrogiannopoulos [Fri, 15 Nov 2013 08:53:21 +0000 (09:53 +0100)]
The environment variable GNUTLS_DEBUG_LEVEL if set to a number will enable logging to stderr.

8 years agocorrected issue with a not-yet-valid certificate
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 15:47:32 +0000 (16:47 +0100)]
corrected issue with a not-yet-valid certificate

8 years agocorrected bug in gnutls-cli when used on IPv6 addresses.
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 15:42:18 +0000 (16:42 +0100)]
corrected bug in gnutls-cli when used on IPv6 addresses.

8 years agosimplified function
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 15:40:43 +0000 (16:40 +0100)]
simplified function

8 years agohacks to work with fedora's openssl
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 15:08:24 +0000 (16:08 +0100)]
hacks to work with fedora's openssl

8 years agoprint whether the local libopts or libtasn1 are being used.
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 13:20:50 +0000 (14:20 +0100)]
print whether the local libopts or libtasn1 are being used.

8 years agoAdded intprops module (which is needed by newer libtasn1 versions)
Nikos Mavrogiannopoulos [Wed, 13 Nov 2013 13:27:03 +0000 (14:27 +0100)]
Added intprops module (which is needed by newer libtasn1 versions)

8 years agouse the bool expression instead of unsigned int:1.
Nikos Mavrogiannopoulos [Tue, 12 Nov 2013 12:42:02 +0000 (13:42 +0100)]
use the bool expression instead of unsigned int:1.

8 years agodoc update
Nikos Mavrogiannopoulos [Tue, 12 Nov 2013 12:02:19 +0000 (13:02 +0100)]
doc update

8 years agodefine GNUTLS_PATH_MAX globally.
Nikos Mavrogiannopoulos [Mon, 11 Nov 2013 20:00:54 +0000 (21:00 +0100)]
define GNUTLS_PATH_MAX globally.

8 years agodoc update
Nikos Mavrogiannopoulos [Mon, 11 Nov 2013 07:57:11 +0000 (08:57 +0100)]
doc update

8 years agodo not run on clippled versions of openssl
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 17:56:44 +0000 (18:56 +0100)]
do not run on clippled versions of openssl

8 years agosimplified functions.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 17:42:43 +0000 (18:42 +0100)]
simplified functions.

8 years agoimproved ciphersuite test
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 17:19:28 +0000 (18:19 +0100)]
improved ciphersuite test

8 years agoreduced stack size usage in several functions.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 17:17:43 +0000 (18:17 +0100)]
reduced stack size usage in several functions.

8 years agoalways exit when fail is called.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 17:12:51 +0000 (18:12 +0100)]
always exit when fail is called.

8 years agoreduced the stack size warning size.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 16:56:17 +0000 (17:56 +0100)]
reduced the stack size warning size.

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 10:23:24 +0000 (11:23 +0100)]
doc update

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 10:12:45 +0000 (11:12 +0100)]
doc update

8 years agoAdded %DUMBFW priority string option.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 10:09:49 +0000 (11:09 +0100)]
Added %DUMBFW priority string option.

This works around issues when connecting behind some firewalls.

8 years agoIgnore SIGPIPE.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:20:35 +0000 (10:20 +0100)]
Ignore SIGPIPE.

Diagnosed by Petr Salinger and Steven Chamberlain. Reported by Andreas Metzler.

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:09:11 +0000 (10:09 +0100)]
doc update

8 years agouse GNUTLS_PIN instead of GNUTLS_PKCS11_PIN.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:07:19 +0000 (10:07 +0100)]
use GNUTLS_PIN instead of GNUTLS_PKCS11_PIN.

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:02:27 +0000 (10:02 +0100)]
doc update

8 years agodoc update
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:01:21 +0000 (10:01 +0100)]
doc update

8 years agoAdded test suite for PKCS #11 cards (not executed automatically).
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 09:00:59 +0000 (10:00 +0100)]
Added test suite for PKCS #11 cards (not executed automatically).

8 years agoAvoid infinite loops with self-signed certificates present in the chain
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 08:17:07 +0000 (09:17 +0100)]
Avoid infinite loops with self-signed certificates present in the chain

8 years agosimplified checks
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 07:50:17 +0000 (08:50 +0100)]
simplified checks

8 years agoAllow getting the PIN from the GNUTLS_PKCS11_PIN environment variable.
Nikos Mavrogiannopoulos [Sun, 10 Nov 2013 07:23:37 +0000 (08:23 +0100)]
Allow getting the PIN from the GNUTLS_PKCS11_PIN environment variable.

8 years agoupdated
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 22:05:22 +0000 (23:05 +0100)]
updated

8 years agodoc update
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 22:01:14 +0000 (23:01 +0100)]
doc update

8 years agoWhen importing a certificate PKCS #11 try to import the whole chain.
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 21:56:59 +0000 (22:56 +0100)]
When importing a certificate PKCS #11 try to import the whole chain.

This affects gnutls_certificate_set_x509_key_file*().

8 years agoAdded export-chain option to p11tool
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 21:41:02 +0000 (22:41 +0100)]
Added export-chain option to p11tool

8 years agoImprovements in PKCS #11 support.
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 21:39:35 +0000 (22:39 +0100)]
Improvements in PKCS #11 support.

Added gnutls_pkcs11_obj_export3 and gnutls_pkcs11_get_raw_issuer.
The latter function allows to obtain the issuer of a certificate stored in a token.

While traversing tokens, use the URL provided by the user, to avoid looking
for objects in unrelated tokens.

8 years agotest before copy
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 18:52:30 +0000 (19:52 +0100)]
test before copy

8 years agosimplified gnutls_pkcs11_copy_x509_crt()
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 18:50:50 +0000 (19:50 +0100)]
simplified gnutls_pkcs11_copy_x509_crt()

8 years agoImprovements in the detection of function prototypes to account for the new indentation.
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 17:08:55 +0000 (18:08 +0100)]
Improvements in the detection of function prototypes to account for the new indentation.

8 years agodoc update
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 15:10:56 +0000 (16:10 +0100)]
doc update

8 years agoimproved indentation in headers.
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 15:09:05 +0000 (16:09 +0100)]
improved indentation in headers.

8 years agostribute the autogen'erated files as .bak and enable them only if local libopts is...
Nikos Mavrogiannopoulos [Sat, 9 Nov 2013 12:15:04 +0000 (13:15 +0100)]
stribute the autogen'erated files as .bak and enable them only if local libopts is being used.

8 years agoreindented code
Nikos Mavrogiannopoulos [Fri, 8 Nov 2013 21:14:07 +0000 (22:14 +0100)]
reindented code