Martin Grabmueller
|
6f1b13fc5a
|
Add client cert support for SSL3.
|
2012-07-28 14:22:16 +02:00 |
|
Martin Grabmueller
|
a285eb345c
|
Merge remote-tracking branch 'upstream/next' into client-certificate
Conflicts:
Network/TLS/Context.hs
Network/TLS/Record/Disengage.hs
|
2012-07-26 23:17:08 +02:00 |
|
Martin Grabmueller
|
7182653638
|
Harmonize code for pre-1.2 and 1.2 versions.
|
2012-07-26 23:06:08 +02:00 |
|
Martin Grabmueller
|
9aa9675d0c
|
Use correct version number, simplify code.
|
2012-07-26 22:46:59 +02:00 |
|
Vincent Hanquez
|
4e9fd480c4
|
add callback on server to choose cipher according to version.
default to previous behavior: choosing the first cipher that match
|
2012-07-23 21:53:59 +01:00 |
|
Martin Grabmueller
|
12a1632739
|
Add initial support for client certificates with TLS 1.2.
|
2012-07-21 23:24:47 +02:00 |
|
Martin Grabmueller
|
c772ee22d5
|
Start client certificate support for TLS1.2.
Add some checks for matching cert types, sig/hash algorithms, etc.
Remove some obsolete FIXMEs and comments.
|
2012-07-18 22:19:11 +02:00 |
|
Martin Grabmueller
|
92686e1457
|
Fix broken negotiation by separating active from pending crypt/mac states.
|
2012-07-18 17:32:26 +02:00 |
|
Martin Grabmueller
|
a348a56659
|
Clean up and simplify code.
|
2012-07-18 16:35:48 +02:00 |
|
Martin Grabmueller
|
1e02f92209
|
Fix missing digest update in server for CertVerify message.
|
2012-07-17 23:27:32 +02:00 |
|
Martin Grabmueller
|
90273cc813
|
Experimental debug output.
|
2012-07-17 17:42:12 +02:00 |
|
Martin Grabmueller
|
c799b18c4c
|
Fix encoding of CertRequest, so that encoding and decoding are inverses.
|
2012-07-17 17:33:11 +02:00 |
|
Martin Grabmueller
|
2ca69771a4
|
Add comments.
|
2012-07-16 14:40:37 +02:00 |
|
Martin Grabmueller
|
3c46042ce5
|
Integrate client certificate settings into RoleParams,
remember client cert chain for use after handshake has
finished.
|
2012-07-16 14:36:44 +02:00 |
|
Martin Grabmueller
|
74f1bf79ea
|
Use subject instead of issuer for certificate request.
|
2012-07-14 16:50:48 +02:00 |
|
Martin Grabmueller
|
f08eb43055
|
Add comments and FIXMEs.
|
2012-07-14 16:49:46 +02:00 |
|
Martin Grabmueller
|
f5972a4818
|
Implement client certificate support in handshake.
|
2012-07-13 22:04:23 +02:00 |
|
Martin Grabmueller
|
a2825c31ac
|
Pull out common functionality for client and server handshake.
|
2012-07-13 21:48:37 +02:00 |
|
Martin Grabmueller
|
6483e954f4
|
Add abstractions for accessing client certificate state.
|
2012-07-13 21:44:19 +02:00 |
|
Martin Grabmueller
|
224f9d4e2c
|
Add proper types for certificate request/verify messages.
|
2012-07-13 17:20:10 +02:00 |
|
Vincent Hanquez
|
4179ceba82
|
start using Client and Server distinction for want client cert and session resume with
|
2012-07-12 09:02:10 +01:00 |
|
Vincent Hanquez
|
c8d9f0677b
|
switch session related callback to a new SessionManager class.
add necessary helper setSessionManager to not have to propagate
Rank2Types and ExistentialQuantification to the user.
|
2012-07-12 08:59:59 +01:00 |
|
Vincent Hanquez
|
6ae20f4125
|
remove npnId and use Extension's proper definition
|
2012-07-05 05:36:28 +01:00 |
|
Vincent Hanquez
|
b57ef66d28
|
move extension decoding and encoding in a separate file.
|
2012-05-14 06:39:20 +01:00 |
|
Vincent Hanquez
|
5844120e4c
|
rename NextProtocolNegotiation as HsNextProtocolNegotiation
|
2012-05-14 06:35:55 +01:00 |
|
Vincent Hanquez
|
e1ea61bafa
|
factorize npn extension ID.
|
2012-05-14 04:41:09 +01:00 |
|
Vincent Hanquez
|
e6f4f9a688
|
add some header comment for Handshake
|
2012-04-27 07:29:35 +01:00 |
|
Vincent Hanquez
|
d8d049726d
|
move Handshake into its own module
|
2012-04-27 07:28:17 +01:00 |
|