Vincent Hanquez
|
d92ba43757
|
re-enabled the NOCERTVERIFY for platform that doesn't have system certificate yet.
Despite some efforts to support the windows certificates, there's still
some more work to do until it's ready.
|
2012-10-17 07:10:24 +01:00 |
|
Vincent Hanquez
|
562adadc25
|
bump version of debug to 0.2.0
|
2012-10-16 08:43:14 +01:00 |
|
Vincent Hanquez
|
12a28a833a
|
change related to the new certificatestore.
|
2012-10-16 08:40:40 +01:00 |
|
Vincent Hanquez
|
b125a04215
|
bump certificate version
|
2012-10-16 08:03:00 +01:00 |
|
Vincent Hanquez
|
7d55744060
|
remove useless symbols. fixes warnings.
|
2012-10-16 08:02:44 +01:00 |
|
Vincent Hanquez
|
2132dd91c3
|
repair Core's tests.
|
2012-10-16 08:02:18 +01:00 |
|
Vincent Hanquez
|
26c1267e09
|
remove old items
|
2012-10-01 06:23:28 +01:00 |
|
Vincent Hanquez
|
a1b735bed1
|
update LICENSE files and add a root one.
|
2012-09-30 16:16:58 +01:00 |
|
Vincent Hanquez
|
0794cc3d0b
|
Disable optimisation for ghc 7.6.1 to workaround the bad record mac problem
Temporary fix until the bug is resolved upstream.
see http://hackage.haskell.org/trac/ghc/ticket/7270
|
2012-09-25 08:09:37 +01:00 |
|
Vincent Hanquez
|
c9dbce0636
|
realign fields.
|
2012-09-25 08:04:58 +01:00 |
|
Vincent Hanquez
|
32c7a350e4
|
always do verbose tests with gnutls-debug-cli
|
2012-09-25 08:04:37 +01:00 |
|
Vincent Hanquez
|
93f5f2e60c
|
move testing scripts to the repository's root.
|
2012-09-25 08:04:18 +01:00 |
|
Vincent Hanquez
|
89df5a893f
|
fix use of catch to make sure it's usuable on ghc-7.6 and older versions.
|
2012-09-23 22:54:43 +01:00 |
|
Vincent Hanquez
|
670f826f0a
|
fix link related to the new all in one repository for tls and co.
|
2012-09-05 06:50:45 +01:00 |
|
Vincent Hanquez
|
2d6174d73d
|
merge tls-debug in tls.
|
2012-09-05 06:49:38 +01:00 |
|
Vincent Hanquez
|
2e8cb14f38
|
merge tls-extra into tls.
|
2012-09-05 06:44:19 +01:00 |
|
Vincent Hanquez
|
957a005664
|
move all tls into a core directory.
|
2012-09-05 06:27:06 +01:00 |
|
Vincent Hanquez
|
5a168a11d1
|
complete description about fastaes flag.
|
2012-09-01 15:32:57 +01:00 |
|
Vincent Hanquez
|
41f7c9c71b
|
update to certificate 1.2.6
|
2012-09-01 15:25:04 +01:00 |
|
Vincent Hanquez
|
3e3baaecd8
|
a not got lost, looping forever it was.
fix tests related to empty packet.
|
2012-09-01 15:24:55 +01:00 |
|
Vincent Hanquez
|
b9261fd551
|
add extensions alerts
|
2012-08-27 16:25:35 +01:00 |
|
Vincent Hanquez
|
7c04e7f186
|
add servername extension encoding/decoding
|
2012-08-27 15:11:29 +01:00 |
|
Vincent Hanquez
|
7ae078c1ce
|
add comments
|
2012-08-27 15:11:17 +01:00 |
|
Vincent Hanquez
|
7036d4becd
|
rename fields to use the new type alias HashAndSignatureAlgorithm.
|
2012-08-27 15:05:53 +01:00 |
|
Vincent Hanquez
|
e2eb3ba95c
|
use the new getList
|
2012-08-27 15:05:23 +01:00 |
|
Vincent Hanquez
|
d49bff619b
|
move comment marker at the same level of code.
|
2012-08-27 14:22:53 +01:00 |
|
Vincent Hanquez
|
fcec7b70e4
|
use liftM instead of handrolled version
|
2012-08-27 14:21:19 +01:00 |
|
Vincent Hanquez
|
4250a3e2d9
|
add a comment so that we remember why it's there.
|
2012-08-27 14:20:54 +01:00 |
|
Vincent Hanquez
|
419c96c935
|
add a getList to get multiple elements
|
2012-08-27 14:20:04 +01:00 |
|
Vincent Hanquez
|
b591b821f7
|
use ExtensionID instead of raw Word16 in extension class signature
|
2012-08-27 14:18:04 +01:00 |
|
Vincent Hanquez
|
13acc4f91c
|
filter out .mix
|
2012-08-27 08:25:08 +01:00 |
|
Vincent Hanquez
|
0e22ae7db4
|
check that we didn't receive any extensions from the server that we didn't sent.
In case that happens, fail the handshake with an unsupported extension alert.
|
2012-08-27 08:25:08 +01:00 |
|
Vincent Hanquez
|
7cc0c6c43f
|
define unsupported extension from tls1.2
|
2012-08-27 08:25:08 +01:00 |
|
Vincent Hanquez
|
fa662c4d0e
|
add extensionID and move extension id definition in struct
|
2012-08-27 08:25:08 +01:00 |
|
Vincent Hanquez
|
7640a90d2f
|
introduce a hashandsignaturealgorithm alias.
|
2012-08-27 08:25:02 +01:00 |
|
Vincent Hanquez
|
727f1af076
|
unbind ver from the where body and use pConnectVersion when needed.
prevent mixup with which version is actually in use.
|
2012-08-20 07:38:42 +01:00 |
|
Vincent Hanquez
|
60ea0ab89f
|
use the server returned value for version instead of using the one we sent.
fix a bug when server downgrade/upgrade the protocol version.
|
2012-08-20 07:37:54 +01:00 |
|
Vincent Hanquez
|
7edf5014b3
|
move client data sent to its own function.
|
2012-08-19 23:14:58 +01:00 |
|
Vincent Hanquez
|
96567891e5
|
use pattern match in function parameter bindings to remove couple of lines
|
2012-08-19 22:32:43 +01:00 |
|
Vincent Hanquez
|
8445c8ea7d
|
factor RSA signature verification.
|
2012-08-19 17:50:35 +01:00 |
|
Vincent Hanquez
|
296b5dfab6
|
reindent to 4 spaces, and cosmetic adjustment
|
2012-08-19 16:56:36 +01:00 |
|
Vincent Hanquez
|
0ea05e0939
|
split recvClientData from the handshakeServerWith function.
|
2012-08-19 16:52:16 +01:00 |
|
Vincent Hanquez
|
a4a07ccd8f
|
add documentation and move things around.
|
2012-08-19 14:37:05 +01:00 |
|
Vincent Hanquez
|
ab0e1c3843
|
add headers
|
2012-08-19 08:48:05 +01:00 |
|
Vincent Hanquez
|
6c3519e15f
|
split server from handshake.
|
2012-08-18 23:13:13 +01:00 |
|
Vincent Hanquez
|
9d4e4aa818
|
split client handshake from handshake.
|
2012-08-18 23:05:56 +01:00 |
|
Vincent Hanquez
|
975fc32889
|
split signature apart from handshake
|
2012-08-18 23:05:37 +01:00 |
|
Vincent Hanquez
|
4e5c2e8c1d
|
split apart certificate stuff from handshake.
at the moment it's mostly a stub, but will host all handling of
client&server certificates.
|
2012-08-18 22:57:58 +01:00 |
|
Vincent Hanquez
|
07d0d70c70
|
Split handshake module. preparation step, removing common functions.
|
2012-08-18 22:46:53 +01:00 |
|
Vincent Hanquez
|
b64813edac
|
fixup for merge.
requires certificate-1.2.4, so that no one uses client certificate with the sorting DN decode and report weird bugs.
|
2012-08-05 07:15:32 +01:00 |
|