Vincent Hanquez
|
5789a2cd22
|
fix certificateVerifyChain to not assume there's a chain.
|
2011-05-31 21:38:45 +01:00 |
|
Vincent Hanquez
|
6462d8069b
|
add self signed functions
|
2011-05-31 21:37:46 +01:00 |
|
Vincent Hanquez
|
8df0b64b9d
|
adding some documentation
|
2011-05-31 21:36:56 +01:00 |
|
Vincent Hanquez
|
a0ef8b36b3
|
remove commented code
|
2011-05-31 21:36:38 +01:00 |
|
Vincent Hanquez
|
cb41a771c3
|
fixup tls 0.7 new certificate callback usage
|
2011-05-14 09:12:30 +01:00 |
|
Vincent Hanquez
|
688bc7b951
|
rename CipherKeyExchangeRSA
|
2011-05-13 21:42:57 +01:00 |
|
Vincent Hanquez
|
283a1a8831
|
bump tls dependency to 0.7.0
|
2011-05-13 21:42:47 +01:00 |
|
Vincent Hanquez
|
ad5ed604f9
|
bump tls-extra
|
2011-05-13 21:42:37 +01:00 |
|
Vincent Hanquez
|
f74626e065
|
throw proper error if we receive an unexpected transition.
|
2011-05-13 21:40:11 +01:00 |
|
Vincent Hanquez
|
dd1ab24f10
|
bump version to 0.7.0
|
2011-05-13 21:05:44 +01:00 |
|
Vincent Hanquez
|
9cd0ed0515
|
handle exception in handshake and report to the user if the handshake has been successful or not.
|
2011-05-13 08:39:15 +01:00 |
|
Vincent Hanquez
|
6eef56c60f
|
[SECURITY] fix TLS1.1 block cipher IV usage.
In TLS1.1 and above, the IV is explicitely carried to the other side and
is generated from random. It doesn't come from the CBC residue.
|
2011-05-13 08:10:13 +01:00 |
|
Vincent Hanquez
|
432639688f
|
properly handle the mvar to put the st back if an exception happens.
|
2011-05-13 07:12:54 +01:00 |
|
Vincent Hanquez
|
8434cb24e2
|
use proper protocol error in the server during clienthello
|
2011-05-13 07:08:27 +01:00 |
|
Vincent Hanquez
|
f7ed7f541a
|
throw a proper protocol error in case the version is not supported
|
2011-05-13 07:03:16 +01:00 |
|
Vincent Hanquez
|
f140e1c579
|
change onRecvCertificate callback to be able to track the reason of rejection, and returns the proper alert to the other side.
|
2011-05-13 07:02:44 +01:00 |
|
Vincent Hanquez
|
f1222ece5d
|
add placeholder code to handle alerts during recvData.
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
fa384d87c7
|
raise a proper HandshakeFailure if no cipher works
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
3b76a3ed7c
|
raise a ProtocolVersion error if version negociated is SSL2
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
eac638bc27
|
if we received a packet too big, raise a RecordOverflow error
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
f569440782
|
add throw IO ability to core
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
0582234934
|
cleanup for not having to use fromJust
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
9db7ccbfca
|
throw proper error for bad record mac
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
a435a9add1
|
remove unnecessary import
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
bdba471ebe
|
define a more generic protocol error, and remove the digest error
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
e4f40cf55e
|
comment
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
277e39b931
|
define TLSError as Exception material
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
8ee6f728bd
|
add signature
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
f464927a0b
|
add a structure to parametrize decoding encoding related to version, key exchange type, ...
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
4b5812529b
|
derive Show and Eq from CipherKeyExchangeType
|
2011-05-12 09:13:53 +01:00 |
|
Vincent Hanquez
|
1e294bbbff
|
rename cipherkeyexchange types
|
2011-05-12 09:13:49 +01:00 |
|
Vincent Hanquez
|
893bb92cbf
|
fix tests
|
2011-05-12 08:16:38 +01:00 |
|
Vincent Hanquez
|
fa3b41c29c
|
bump version to 0.2.3
|
2011-05-11 08:26:57 +01:00 |
|
Vincent Hanquez
|
dffebb649d
|
add a function to return the certificate fingerprint
|
2011-05-11 08:26:46 +01:00 |
|
Vincent Hanquez
|
1dbf712ba9
|
add a function to check certificate validity
|
2011-05-11 08:26:32 +01:00 |
|
Vincent Hanquez
|
302709beef
|
use proper time types related to certificate 0.9
|
2011-05-11 08:25:59 +01:00 |
|
Vincent Hanquez
|
43aa2c737e
|
bump version of dependencies
|
2011-05-11 08:25:33 +01:00 |
|
Vincent Hanquez
|
255da1b7bd
|
add gitignore
|
2011-05-11 08:25:01 +01:00 |
|
Vincent Hanquez
|
7401c8c5a2
|
add gitignore file
|
2011-05-11 08:24:13 +01:00 |
|
Vincent Hanquez
|
6eb08d9c22
|
bump TLS version to 0.6.4
|
2011-05-11 08:12:43 +01:00 |
|
Vincent Hanquez
|
56d9de4b1d
|
bump certificate to 0.9.0
side effect: comment quickcheck code linked to certificate
|
2011-05-11 08:12:30 +01:00 |
|
Vincent Hanquez
|
c111389b30
|
capitalize DH
|
2011-05-11 07:34:15 +01:00 |
|
Vincent Hanquez
|
89f04beed4
|
bump version to 0.2.2
|
2011-05-09 09:20:26 +01:00 |
|
Vincent Hanquez
|
97df3e90fd
|
bump version of tls and certificate
|
2011-05-09 09:20:22 +01:00 |
|
Vincent Hanquez
|
259691e4d5
|
bump tls version to 0.6.3
|
2011-05-09 09:15:41 +01:00 |
|
Vincent Hanquez
|
969a62b79a
|
bump certificate version to 0.8.1
|
2011-05-09 09:15:36 +01:00 |
|
Vincent Hanquez
|
b73b170c03
|
bump version to 0.2.1
|
2011-05-04 08:43:47 +01:00 |
|
Vincent Hanquez
|
42e42b801d
|
use tls 0.6.2 protocol debugging capability with the debug flag
|
2011-05-04 08:43:15 +01:00 |
|
Vincent Hanquez
|
41ad7fe39b
|
bump version to 0.6.2
|
2011-05-04 08:42:10 +01:00 |
|
Vincent Hanquez
|
7f6f511839
|
Add a way to show packet sent and received at the protocol level. very useful for debugging.
|
2011-05-04 08:41:16 +01:00 |
|