ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity
strongswan/src/libtls
History
Tobias Brunner 18597950fa tls-peer: Make sure to use the right trusted public key for peer 
In case a CA certificate uses the same subject DN as the server the
previous code could end up trying to verify the server's signature with
the CA certificate's public key.  By comparing the certificate with the
one sent by the peer we make sure to use the right one.

Fixes #849.
 		2015-03-09 15:40:06 +01:00
..
tests unit-tests: Make sure plugins in the builddir are loaded 2014-05-19 14:06:43 +02:00
Makefile.am libtls: Link against ws_w32 on Windows 2014-06-04 15:53:05 +02:00
tls.c libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls.h libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls_aead.c tls: Fix a memory leak if AEAD encryption fails 2014-10-15 14:21:01 +02:00
tls_aead.h tls: Implement the TLS AEAD abstraction for real AEAD modes 2014-03-31 15:56:12 +02:00
tls_aead_expl.c tls: Fix an invalid free on CBC encryption failure 2014-10-15 14:26:03 +02:00
tls_aead_impl.c tls: Check all bytes of the padding if they equal the padding length 2014-10-15 14:21:01 +02:00
tls_aead_null.c tls: Remove superfluous initializers in TLS AEAD implementations 2014-04-01 14:52:18 +02:00
tls_alert.c Moved debug.[ch] to utils folder 2012-10-24 16:00:51 +02:00
tls_alert.h Fixed common misspellings. 2011-07-20 16:14:10 +02:00
tls_application.h renamed tls_reader|writer to bio_* and moved to libstrongswan 2011-05-31 15:46:51 +02:00
tls_cache.c Moved debug.[ch] to utils folder 2012-10-24 16:00:51 +02:00
tls_cache.h Implemented a TLS session cache 2011-12-31 13:14:49 +01:00
tls_compression.c Implemented TLS Alert handling 2010-08-23 15:13:37 +02:00
tls_compression.h Implemented TLS session resumption both as client and as server 2011-12-31 13:14:49 +01:00
tls_crypto.c enum: Return boolean result for enum_from_name() lookup 2014-05-16 15:42:07 +02:00
tls_crypto.h tls: Export a function to list supported TLS cipher suites 2014-04-01 14:28:55 +02:00
tls_eap.c libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls_eap.h libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls_fragmentation.c libtls: Don't send TLS close notifies in EAP after application succeeds 2015-02-19 11:29:07 +01:00
tls_fragmentation.h libtls: Don't send TLS close notifies in EAP after application succeeds 2015-02-19 11:29:07 +01:00
tls_handshake.h libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls_peer.c tls-peer: Make sure to use the right trusted public key for peer 2015-03-09 15:40:06 +01:00
tls_peer.h Delegate tls_t.get_{peer,server}_id to handshake layer 2013-02-28 16:46:08 +01:00
tls_prf.c Fix tls_prf bug introduced with bc474883 2012-07-17 11:33:05 +02:00
tls_prf.h Add a return value to tls_prf_t.set_key() 2012-07-16 14:53:33 +02:00
tls_protection.c libtls: Check for CHANGE_CIPHER_SPEC type only if upper layer returns NEED_MORE 2015-01-12 14:18:24 +01:00
tls_protection.h tls: Separate TLS protection to abstracted AEAD modes 2014-03-31 15:56:12 +02:00
tls_server.c libtls: Add getters for TLS handshake authentication details 2015-03-03 14:08:00 +01:00
tls_server.h Delegate tls_t.get_{peer,server}_id to handshake layer 2013-02-28 16:46:08 +01:00
tls_socket.c libtls: Catch POLLHUP/NVAL in TLS socket splicing 2014-11-28 15:53:50 +01:00
tls_socket.h tls: Support a maximum TLS version to negotiate using TLS socket abstraction 2014-04-01 14:28:55 +02:00