yogsototh/hs-tls
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
718 commits 1 branch 11 tags 1.7 MiB
Commit graph

718 commits

This branch
This branch
All branches
Author SHA1 Message Date
Vincent Hanquez
68e45d829f use a CPRG when signing with RSA. 2012-12-05 08:19:40 +00:00
Vincent Hanquez
bd2883683b use a CPRG when using decrypt RSA. 2012-12-05 08:16:32 +00:00
Vincent Hanquez
7a03dc1834 create a test-suite that use tls as a library instead of using directly. 
use the secret Network.TLS.Internal module, and as a result,
compile tls modules once now instead of twice each.
 2012-12-05 07:57:13 +00:00
Vincent Hanquez
cedd5b2c86 switch to CPRG instead of CryptoRandomGen 2012-12-05 07:48:11 +00:00
Vincent Hanquez
ce421b40c8 add simpleclient information 2012-12-04 14:15:51 +00:00
Vincent Hanquez
01c1c6e045 bump version 2012-12-04 08:59:43 +00:00
Vincent Hanquez
39a1a8b4b5 bump version 2012-12-04 08:59:20 +00:00
Vincent Hanquez
3282b61e02 bump version 2012-12-04 08:58:14 +00:00
Vincent Hanquez
1ee62330ee fix issue with the HTTP protocol version missing the required / between HTTP and version. 2012-12-04 08:57:51 +00:00
Vincent Hanquez
6b2d1bc89d add better usage. 
also add a -h / --help flag to request the usage.
 2012-12-04 08:56:55 +00:00
Vincent Hanquez
c0bdb30482 fix client hello relative to the new deprecated record field. 2012-12-04 08:56:15 +00:00
Vincent Hanquez
8b022c48e9 bump minimum required cprng-aes to 0.3.0 2012-12-04 08:55:59 +00:00
Vincent Hanquez
d614eb09e2 requires cprng-aes >= 0.3.0 and fix api change. 2012-12-04 08:35:21 +00:00
Vincent Hanquez
cfa2c2e1dc Merge branch 'SSLv2Hello' 2012-12-04 08:33:02 +00:00
Vincent Hanquez
1e690cf8fb add a SSLv2 compat flag to enable reception of compat Client Hello only 
for the first packet received in a server context.

The client side never try to use the compat code.
 2012-12-04 08:31:22 +00:00
Vincent Hanquez
cf63849c9d add the SSLv2_COMPATIBLE flag to the tests. 
add flag default to true.
 2012-12-04 08:13:54 +00:00
Vincent Hanquez
c048a97d1b Add a flag to recvRecord to enable SSLv2 compat reception. 2012-12-03 18:56:14 +00:00
Vincent Hanquez
b8e3000ef9 remove warning for useless binding 2012-12-03 18:55:30 +00:00
Vincent Hanquez
db1232aea8 remove warnings, add some more #ifdef. 2012-12-03 17:26:50 +00:00
Vincent Hanquez
ee92845b03 bump version 2012-11-19 09:55:07 +00:00
Vincent Hanquez
523e12c259 remove validateCert global binding. 2012-11-19 09:54:46 +00:00
Vincent Hanquez
3e82cc744a fix issue when re-handshaking with a different cipher. 
tls was correctly accounting for the difference between pending state
and active state in most place except for the actual cipher
encryption/decryption functions in use.

Hence when re-negociating with a different cipher than the current
cipher, which is fairly unusual but perfectly allowed, the lowlevel
function were switch at the server hello instead of being switch at the
switch(Tx/Rx).
 2012-11-19 09:39:35 +00:00
Vincent Hanquez
4bb23c586b add more options to simpleClient. 2012-11-19 08:30:51 +00:00
Vincent Hanquez
3dbffde4ae update simple client to have easy options for http11, verbosity and the 
uri requested. save modifying the file everytimes.
 2012-11-18 18:57:31 +00:00
notogawa
1605c4bd00 add flag to reject SSLv2 compatible handshake. 2012-11-17 01:01:41 +09:00
notogawa
d41c53f6b5 reject SSLv2 re-handshaking message. 2012-11-17 00:37:05 +09:00
notogawa
a4f06256fe accept SSLv2 format 'ClientHello' Handshake message. 2012-11-10 19:34:37 +09:00
Vincent Hanquez
a0878b6022 update README 2012-11-04 10:36:41 +00:00
Vincent Hanquez
9bc41f62c4 bump version 2012-10-30 04:52:32 +00:00
Vincent Hanquez
513d13029f use gets where possible and make thing nicer 2012-10-30 04:46:19 +00:00
Vincent Hanquez
0eb95ab9a7 do not returns empty app data to the user as it might be confused with EOF. 2012-10-29 21:23:44 +00:00
Vincent Hanquez
5d84aef187 Merge next 2012-10-22 05:05:55 +01:00
exbb2
4143eaa2c4 Kludge for -optl-mwindows 2012-10-21 21:33:58 +01:00
Thomas DuBuisson
c3c06f96e1 Add some useful documentation. 
TShis is probably the main entry point for all of the TLS suite. At the
very least it needs the two string args documented.
 2012-10-21 21:31:11 +01:00
Vincent Hanquez
1c90962e9a tweak how things are exported. simplify code. 
use correct type alias
 2012-10-21 20:35:32 +01:00
Vincent Hanquez
60f7197b0a export everything required. 2012-10-21 18:32:07 +01:00
Vincent Hanquez
78a0e36397 remove semicolon and useless parens 2012-10-20 09:00:55 +01:00
Vincent Hanquez
8b665c05fd define new fields in the client structure for max fragment length and server name 2012-10-20 09:00:30 +01:00
Vincent Hanquez
1b8696ddbf properly define the server name extension to be a variant type. 
This allow to have a better high level type and simplify the user side.
 2012-10-20 08:59:39 +01:00
Vincent Hanquez
88d373165c do not use a put monad as the encoding is a single byte bytestring 2012-10-20 08:58:36 +01:00
Vincent Hanquez
10e0a22950 properly set the type of maxfragmentlength 2012-10-20 08:58:14 +01:00
Vincent Hanquez
325cfd1eab bind n so that we can report the error in decoding maxfragmentlength 2012-10-20 08:57:53 +01:00
Vincent Hanquez
8dae53a2ef correct a typo. 2012-10-20 08:57:28 +01:00
Vincent Hanquez
aa910bfd9c reindent 2012-10-20 08:56:53 +01:00
Vincent Hanquez
5627e3ddf9 add some spaces 2012-10-20 08:56:39 +01:00
Vincent Hanquez
acc4ef5ca5 add MaxFragmentLength extension 2012-10-17 07:30:41 +01:00
Vincent Hanquez
b0849b0785 export ServerName 2012-10-17 07:30:26 +01:00
Vincent Hanquez
d33a3df303 define the ServerName's extensionID 2012-10-17 07:30:07 +01:00
Vincent Hanquez
676608b017 make server name description more precise 2012-10-17 07:28:35 +01:00
Vincent Hanquez
d92ba43757 re-enabled the NOCERTVERIFY for platform that doesn't have system certificate yet. 
Despite some efforts to support the windows certificates, there's still
some more work to do until it's ready.
 2012-10-17 07:10:24 +01:00