aboutsummaryrefslogtreecommitdiffstats
path: root/src/ssl
Commit message (Collapse)AuthorAgeFilesLines
* propagate from branch 'net.randombit.botan' (head ↵lloyd2010-10-134-6/+9
|\ | | | | | | | | | | 2898d79f992f27a328a3e41d34b46eb1052da0de) to branch 'net.randombit.botan.c++0x' (head 6cba76268fd69a73195760c021b7f881b8a6552c)
| * propagate from branch 'net.randombit.botan' (head ↵lloyd2010-09-034-6/+9
| |\ | | | | | | | | | | | | | | | a29c41b4a949207b1544096c3afab668f8b5179e) to branch 'net.randombit.botan.c++0x' (head a9d0c2f805b3c20a4c648575d7256959db8329fe)
| | * propagate from branch 'net.randombit.botan' (head ↵lloyd2010-06-1732-49/+59
| | |\ | | | | | | | | | | | | | | | | | | | | 294e2082ce9231d6165276e2f2a4153a0116aca3) to branch 'net.randombit.botan.c++0x' (head 0b695fad10f924601e07b009fcd781191fafcb28)
| | * \ propagate from branch 'net.randombit.botan' (head ↵lloyd2010-05-251-0/+5
| | |\ \ | | | | | | | | | | | | | | | | | | | | | | | | | 879d1fc83844976a01b9e3188c4f0b5ddb237f0e) to branch 'net.randombit.botan.c++0x' (head 4a0af13da3b0e21d6275cd6ec0c835d6bf757c8d)
| | * | | s/to_string/std::to_string/lloyd2010-04-281-3/+6
| | | | |
| | * | | propagate from branch 'net.randombit.botan' (head ↵lloyd2010-04-2810-104/+458
| | |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a5f25a3b954f24c5d07fa0dab6c4d76f63767165) to branch 'net.randombit.botan.c++0x' (head a365694b70b4b84ca713272d56d496acca351cb5)
| | * \ \ \ propagate from branch 'net.randombit.botan' (head ↵lloyd2010-04-0921-188/+488
| | |\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 75d272c759511a9a99a371ddc74bd17b2c1453b6) to branch 'net.randombit.botan.c++0x' (head 2ce9ba37cb9287a3d875921240d6682100625b9f)
| | * \ \ \ \ propagate from branch 'net.randombit.botan' (head ↵lloyd2010-03-124-4/+4
| | |\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 0b404c8dc611e8cf8fec60cdcaffa823b925d09a) to branch 'net.randombit.botan.c++0x' (head 60585d4c6a816c4d6a0ce269b63c1e28ec04e0de)
| | | * | | | | Various updates: unique_ptr, using chrono, merge fixups, etclloyd2010-03-092-2/+2
| | | | | | | |
| | | * | | | | propagate from branch 'net.randombit.botan' (head ↵lloyd2010-03-092-2/+2
| | | |\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 9932d4d63417f7fcc199ada244cbaa6c1c32d9c1) to branch 'net.randombit.botan.c++0x' (head f4a385a376311edc62ef506c72cc56f69e6efd5a)
| | | | * | | | | Post-merge fixupslloyd2010-02-242-2/+2
| | | | | | | | |
* | | | | | | | | Use size_t in filterslloyd2010-10-122-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This breaks API for anyone creating their own Filter types, but it had to happen eventually.
* | | | | | | | | Remove debug.h includelloyd2010-10-071-1/+0
| | | | | | | | |
* | | | | | | | | Split up src/cert/x509 into a set of modules, though mostly mutuallylloyd2010-09-171-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | dependent right now.
* | | | | | | | | Require a TLS_Policylloyd2010-09-179-64/+60
| | | | | | | | |
* | | | | | | | | Add a helper function for encoding TLS values with length tagginglloyd2010-09-156-47/+60
| | | | | | | | |
* | | | | | | | | Update/fix SSL depslloyd2010-09-151-6/+5
| | | | | | | | |
* | | | | | | | | Hide a number of the internal SSL headers from the user, you can stilllloyd2010-09-1518-28/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | see too much but better than before.
* | | | | | | | | Update all uses of MemoryRegion::append to use either push_back or operator+=lloyd2010-09-159-59/+61
| | | | | | | | |
* | | | | | | | | Remove more implicit vector to pointer conversionslloyd2010-09-141-1/+1
| | | | | | | | |
* | | | | | | | | More changes to avoid vector to pointer implicit conversionslloyd2010-09-144-9/+9
| | | | | | | | |
* | | | | | | | | Remove constructors of MemoryVector and SecureVector that took twolloyd2010-09-131-2/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | MemoryRegions and concatenated them.
* | | | | | | | | More vector->pointer conversion removals.lloyd2010-09-134-13/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add RandomNumberGenerator::random_vec, which takes an length n and returns a new SecureVector with randomized contents of that size. This nicely covers most of the cases where randomize was being called on a vector, and is a little cleaner in the code as well, instead of vec.resize(length); rng.randomize(&vec[0], vec.size()); we just write vec = rng.random_vec(length);
* | | | | | | | | Anywhere where we use MemoryRegion::begin to get access to the raw pointerlloyd2010-09-134-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | representation (rather than in an interator context), instead use &buf[0], which works for both MemoryRegion and std::vector
* | | | | | | | | Really fix RC4 suites - it was set to use a key of 128 bytes == 1024 bits!lloyd2010-09-081-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Tested against a GnuTLS server.
* | | | | | | | | Rename MemoryRegion::destroy to MemoryRegion::clear to match STLlloyd2010-09-081-2/+2
| | | | | | | | |
* | | | | | | | | Fix RC4 suiteslloyd2010-09-081-1/+1
| | | | | | | | |
* | | | | | | | | Big, invasive but mostly automated change, with a further attempt atlloyd2010-09-072-2/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | harmonising MemoryRegion with std::vector: The MemoryRegion::clear() function would zeroise the buffer, but keep the memory allocated and the size unchanged. This is very different from STL's clear(), which is basically the equivalent to what is called destroy() in MemoryRegion. So to be able to replace MemoryRegion with a std::vector, we have to rename destroy() to clear() and we have to expose the current functionality of clear() in some other way, since vector doesn't support this operation. Do so by adding a global function named zeroise() which takes a MemoryRegion which is zeroed. Remove clear() to ensure all callers are updated.
* | | | | | | | | Prevent loop variable shadowinglloyd2010-09-071-12/+12
| | | | | | | | |
* | | | | | | | | Remove trailing comma from enum decllloyd2010-09-071-1/+1
|/ / / / / / / /
* | | | | | | / Add dependencies for SSL modulelloyd2010-09-031-0/+20
| |_|_|_|_|_|/ |/| | | | | |
* | | | | | | More Doxygen commentslloyd2010-06-161-0/+8
| | | | | | |
* | | | | | | More Doxygen updates/fixeslloyd2010-06-151-0/+3
| | | | | | |
* | | | | | | Fix a few hundred Doxygen warningslloyd2010-06-151-4/+4
| | | | | | |
* | | | | | | Fix comparison to use IVs with a hypothetical negotiated TLS that useslloyd2010-06-092-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | a larger major version #.
* | | | | | | Use "/*" instead of "/**" in starting comments at the begining of a file.lloyd2010-06-0730-42/+42
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This caused Doxygen to think this was markup meant for it, which really caused some clutter in the namespace page.
* | | | | | | OpenBSD doesn't have MSG_NOSIGNAL; you need to set up a signal handlerlloyd2010-06-011-1/+0
| |_|_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | to catch SIGPIPE instead. Simply avoid building the unix_socket module there. Yet another reason to move to a fully async/event-based interface that doesn't interact with sockets directly.
* | | | | | Use memcpy to copy gethostbyname's result to the socket info structlloyd2010-05-101-0/+5
| |_|_|_|/ |/| | | | | | | | | | | | | | | | | | | instead of doing cast+assign - GCC on SPARC rejects because the required alignment increases.
* | | | | Remove add_entropy_vec. Much cleaner way of doing this: add the entirelloyd2010-04-272-4/+4
| | | | | | | | | | | | | | | | | | | | contents of all SSL/TLS handshake messages into the PRNG input.
* | | | | Add the other parties Random value to the local PRNG statelloyd2010-04-232-0/+4
| | | | |
* | | | | Return SecureVector vals by const reflloyd2010-04-231-4/+4
| | | | |
* | | | | Extension codes for ECC negotiationlloyd2010-04-211-0/+3
| | | | |
* | | | | If we couldn't agree on a suite, fail immediatelylloyd2010-04-201-0/+5
| | | | |
* | | | | Compile fixlloyd2010-04-201-1/+1
| | | | |
* | | | | Expose function breaking down ciphersuite to algo valueslloyd2010-04-192-3/+5
| | | | |
* | | | | Add codes for SHA-1 based ECC suites (RFC 4492).lloyd2010-04-192-25/+81
| | | | |
* | | | | Add support for SEED ciphersuites. Tested against OpenSSL 0.9.8nlloyd2010-04-173-0/+24
| | | | |
* | | | | Add support for reading SSLv2 client helloslloyd2010-04-175-8/+86
| | | | |
* | | | | Clean up ciphersuite handlinglloyd2010-04-177-91/+273
| |_|_|/ |/| | |
* | | | If the CBC padding is incorrect, then assume the pad size is zero andlloyd2010-04-091-4/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | carry on with the procedure. This prevents a timing attack where an attacker could distinguish bad padding vs MAC failure. This timing channel used in the paper "Password Interception in a SSL/TLS Channel" by Vaudenay et. al. to attack SSL in certain fairly realistic use scenarios.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-18 22:56:16 +0000