summaryrefslogtreecommitdiff
path: root/gnutls.c
AgeCommit message (Expand)AuthorFilesLines
2012-09-26Fix fd/memory leak on error return from openconnect_open_https()David Woodhouse1-0/+3
2012-09-26Fix token serial number matching when trying to find hidden PKCS#11 keyDavid Woodhouse1-1/+1
2012-07-20Check for system CA certificate file for GnuTLSMike Miller1-1/+1
2012-07-15Handle PKCS#11 tokens which don't list keys before loginDavid Woodhouse1-0/+81
2012-07-11Fix endless loop when multiple PKCS#11 tokens need PINsDavid Woodhouse1-3/+4
2012-07-11Use P11_KIT_URI_FOR_ANY to preserve all attributes in PKCS#11 URIsDavid Woodhouse1-4/+4
2012-07-03Fix GnuTLS password handling for PKCS#8 filesDavid Woodhouse1-4/+15
2012-06-29Advertise TLS1.0 not SSL3.0 in GnuTLS ClientHelloDavid Woodhouse1-1/+8
2012-06-29Remove hard-coded table of ciphers for PEM decryptionDavid Woodhouse1-40/+25
2012-06-29Improve cipher coverage of OpenSSL encrypted PEM support for GnuTLSDavid Woodhouse1-8/+31
2012-06-25Fix build on systems without O_CLOEXECDavid Woodhouse1-1/+1
2012-06-19Support old-style OpenSSL encrypted PEM keysDavid Woodhouse1-17/+319
2012-06-18Fix PKCS#11 cleanup when no SSL certificate is setDavid Woodhouse1-2/+2
2012-06-17Add Android keystore support for --cafileDavid Woodhouse1-0/+46
2012-06-17Switch from Android's keystore_get() to our own keystore_fetch()David Woodhouse1-13/+4
2012-06-15Add Android keystore supportDavid Woodhouse1-0/+31
2012-06-15Don't repack extra_certs[] when matching key; just cope with it being sparseDavid Woodhouse1-13/+4
2012-06-15Clean up GnuTLS load_certificate() and improve commentsDavid Woodhouse1-52/+74
2012-06-14Unify assign_privkey() function for GnuTLS 2 and 3David Woodhouse1-25/+25
2012-06-14Move setting of vpninfo->my_p11key to somewhere tidierDavid Woodhouse1-5/+11
2012-06-14Split assign_privkey_gtls2() to separate functionDavid Woodhouse1-40/+60
2012-06-14Split assign_privkey_gtls3() to separate functionDavid Woodhouse1-33/+45
2012-06-14Move TPM code out into gnutls_tpm.cDavid Woodhouse1-321/+5
2012-06-14Clean up handling of gnutls_pkcs12.cDavid Woodhouse1-6/+1
2012-06-14Fix BER encoding of hash in sign_dummy_data()David Woodhouse1-0/+1
2012-06-14Cope with lack of gnutls_certificate_set_key() in GnuTLS 2.12David Woodhouse1-39/+201
2012-06-14Fix memory leak of TPM key passwordDavid Woodhouse1-0/+2
2012-06-13Fix build with GnuTLS 2.12David Woodhouse1-3/+3
2012-06-13Allow GUI to distinguish between PIN/passphrase callbacksDavid Woodhouse1-5/+7
2012-06-13Handle TPM keys with their own authentication PINDavid Woodhouse1-24/+80
2012-06-13Give proper error reporting from tpm_sign_fn() TPM operationsDavid Woodhouse1-4/+10
2012-06-13Try null SRK key (20 bytes of zero) firstDavid Woodhouse1-11/+16
2012-06-13Fix error exits in GnuTLS load_certificate() functionDavid Woodhouse1-2/+6
2012-06-13Implement certificate matching for TPM/PKCS#11 privkeysDavid Woodhouse1-13/+56
2012-06-13Fix GnuTLS PIN cache leak when only *key* is PKCS#11 and not certificate.David Woodhouse1-1/+2
2012-06-13Remove redundancy in code which 'matches' cert to privkeyDavid Woodhouse1-24/+17
2012-06-13Add TPM support for GnuTLSDavid Woodhouse1-0/+217
2012-06-12Explicitly check for gnutls_certificate_set_key(), separate it from p11-kitDavid Woodhouse1-16/+22
2012-06-12GnuTLS: Fix password memory leaksDavid Woodhouse1-2/+7
2012-06-11Fix const char * warnings in GnuTLS pin_helper on FreeBSDDavid Woodhouse1-4/+4
2012-06-11GnuTLS: Print name of primary certificateDavid Woodhouse1-10/+17
2012-06-11Remove obsolete GnuTLS FIXME commentDavid Woodhouse1-12/+0
2012-06-11GnuTLS: Cache token PINDavid Woodhouse1-3/+42
2012-06-11Set object-type on PKCS#11 URL for key and certDavid Woodhouse1-6/+23
2012-06-10GnuTLS: Fix build with GnuTLS 2.12 and PKCS#11David Woodhouse1-4/+25
2012-06-10GnuTLS: Fix expiry check and CA chain addition for PKCS#11 certsDavid Woodhouse1-38/+183
2012-06-10Use gnutls_certificate_set_x509_system_trust() where availableDavid Woodhouse1-0/+4
2012-06-09Cope with SSL key being PKCS#11 but cert from fileDavid Woodhouse1-16/+5
2012-06-09Fix error handling when GnuTLS can't open key fileDavid Woodhouse1-5/+8
2012-06-09Don't unregister p11-kit PIN callback until vpninfo is finished withDavid Woodhouse1-10/+13
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-01 00:12:44 +0000