Vincent Hanquez
56d9de4b1d
bump certificate to 0.9.0
...
side effect: comment quickcheck code linked to certificate
2011-05-11 08:12:30 +01:00
Vincent Hanquez
c111389b30
capitalize DH
2011-05-11 07:34:15 +01:00
Vincent Hanquez
89f04beed4
bump version to 0.2.2
2011-05-09 09:20:26 +01:00
Vincent Hanquez
97df3e90fd
bump version of tls and certificate
2011-05-09 09:20:22 +01:00
Vincent Hanquez
259691e4d5
bump tls version to 0.6.3
2011-05-09 09:15:41 +01:00
Vincent Hanquez
969a62b79a
bump certificate version to 0.8.1
2011-05-09 09:15:36 +01:00
Vincent Hanquez
b73b170c03
bump version to 0.2.1
2011-05-04 08:43:47 +01:00
Vincent Hanquez
42e42b801d
use tls 0.6.2 protocol debugging capability with the debug flag
2011-05-04 08:43:15 +01:00
Vincent Hanquez
41ad7fe39b
bump version to 0.6.2
2011-05-04 08:42:10 +01:00
Vincent Hanquez
7f6f511839
Add a way to show packet sent and received at the protocol level. very useful for debugging.
2011-05-04 08:41:16 +01:00
Vincent Hanquez
cc84a9452c
bump version to 0.6.1
2011-04-26 07:12:45 +01:00
Vincent Hanquez
69d3604a64
do not call new variable state. it's already defined by the state module.
2011-04-24 13:43:57 +01:00
Vincent Hanquez
ad226f7fb9
usless import in wire module
2011-04-24 13:43:27 +01:00
Vincent Hanquez
4a84e9415f
comment fixup
2011-04-24 13:43:18 +01:00
Vincent Hanquez
d983d4ebc8
remove now useless extension
2011-04-24 13:43:08 +01:00
Vincent Hanquez
7cce3fca0c
use functor's <$> instead of a return construct
2011-04-24 13:39:52 +01:00
Vincent Hanquez
a1524bf673
refactor processclientkeyxchg
2011-04-24 11:34:11 +01:00
Vincent Hanquez
9f3714dd1c
simplify parsing of packets
...
- use fail instead of throwerror, since cereal do not raise but return an either.
- remove the get monad definition
- add some helper
- remove dependency on binary and use cereal exclusively.
2011-04-24 09:44:18 +01:00
Vincent Hanquez
b472d891c4
set the error instance of TLSError with the definition of TLSError. prevent orphan instance
2011-04-24 09:32:49 +01:00
Vincent Hanquez
287d5b9c33
move to tls 0.6.0 and use cprng-aes as cryptorandomgen instance.
2011-04-11 20:03:49 +01:00
Vincent Hanquez
d4f8a18e02
bump version to 0.6.0
2011-04-11 20:02:57 +01:00
Vincent Hanquez
a7aaa3eee7
Remove the hardcoded srandomgen in favor of any cryptorandomgen instance.
...
srandomgen is available separately in the cprng-aes package as Crypto.Random.AESCtr
2011-04-11 19:56:43 +01:00
Vincent Hanquez
4b5ee43a92
remove commented tests that were moved to tls-extra
2011-04-11 19:47:51 +01:00
Vincent Hanquez
8ae0f31147
bump version to 0.1.9
2011-04-11 07:43:01 +01:00
Vincent Hanquez
6feb848284
add network to solve build failure on hackage
2011-04-11 07:42:42 +01:00
Vincent Hanquez
654bff00e1
bump version to 0.1.8
2011-04-10 21:35:12 +01:00
Vincent Hanquez
77ff5edf34
add retrieve certificate example program
2011-04-10 21:34:53 +01:00
Vincent Hanquez
f51cb4d3de
Add a helper about connection
2011-04-10 21:34:43 +01:00
Vincent Hanquez
7d9a12d3ae
bump version to 0.1.7
2011-04-05 21:37:46 +01:00
Vincent Hanquez
f90861119a
fixup non haddock comment to not be recognized as haddock comment.
2011-04-05 21:36:27 +01:00
Vincent Hanquez
a9e56e5c4b
Tweak certificate validDomain algorithm
...
- check more invalid cases
- enforce full match when no wildcard is present
- match wildcard explicitly only once.
2011-04-04 08:53:29 +01:00
Michael Snoyman
84cd71071e
certificateVerifyDomain
2011-04-03 12:48:12 +03:00
Vincent Hanquez
07a56054ad
bump version to 0.1.5
2011-03-31 21:47:43 +01:00
Vincent Hanquez
6e5f94e5f0
extends certificateVerifyChain comment
2011-03-31 21:47:07 +01:00
Vincent Hanquez
da1142e6bf
add one newline
2011-03-31 21:46:53 +01:00
Vincent Hanquez
3b8577cbaf
rename certificateVerify to certificateVerifyAgainst
2011-03-31 21:46:36 +01:00
Vincent Hanquez
490a4ec5be
wrong marshaled asn1 for (md2|sha1)WithRSAEncryption
...
copy pasted md5 asn1 when refactoring leading to sha1 and md2 to have the md5 asn1,
which lead to obvious verification failure.
2011-03-31 21:45:58 +01:00
Vincent Hanquez
98b692ec73
add a way to activate certificate checking on client stunnel mode.
2011-03-31 21:44:24 +01:00
Vincent Hanquez
dbdd32cfcf
ignore forkIO value
2011-03-31 21:44:04 +01:00
Vincent Hanquez
6c5b7c9987
bump version to 0.1.4
2011-03-31 14:23:05 +01:00
Vincent Hanquez
708270190e
add big fat warning and some code to bypass the certificate verify chain
2011-03-31 14:14:21 +01:00
Vincent Hanquez
eafcef60e4
bump version to 0.1.3
2011-03-29 08:33:02 +01:00
Vincent Hanquez
da6ce2e64d
add haddock documentation
2011-03-29 08:32:25 +01:00
Vincent Hanquez
d178fb7bf2
define some ciphersuite
2011-03-29 08:32:02 +01:00
Vincent Hanquez
8a23549ac9
bump version to 0.1.2
2011-03-23 21:50:13 +00:00
Vincent Hanquez
31b66fc9c5
add basic recvdata in the stunnel.
2011-03-23 21:49:55 +00:00
Vincent Hanquez
0157d72d54
bump version to 0.5.1
2011-03-23 21:49:12 +00:00
Vincent Hanquez
55b7490102
a packet can contain multiple appdata, process it as such.
2011-03-23 21:48:58 +00:00
Vincent Hanquez
6055c3b8c8
depends on base
2011-03-23 21:33:41 +00:00
Vincent Hanquez
6d043a44cb
show ciphers in a more friendly way
2011-03-21 20:22:51 +00:00