Nick Mathewson
|
7a8960cf1b
Fix a memory-poisoning memset in tortls.c
|
12 years ago |
Sebastian Hahn
|
2dec6597af
Merge branch 'maint-0.2.2_secfix' into master_secfix
|
12 years ago |
Sebastian Hahn
|
df05e5ef4d
Merge branch 'maint-0.2.1_secfix' into maint-0.2.2_secfix
|
12 years ago |
Nick Mathewson
|
638fdedcf1
Don't send a certificate chain on outgoing TLS connections from non-relays
|
12 years ago |
Robert Ransom
|
9976df9e56
Maintain separate server and client TLS contexts.
|
13 years ago |
Robert Ransom
|
8781640111
Refactor tor_tls_context_new:
|
13 years ago |
George Kadianakis
|
e2b3527106
Also handle needless renegotiations in SSL_write().
|
12 years ago |
George Kadianakis
|
340809dd22
Get rid of tor_tls_block_renegotiation().
|
12 years ago |
George Kadianakis
|
ecd239e3b5
Detect and deny excess renegotiations attempts.
|
12 years ago |
George Kadianakis
|
4fd79f9def
Detect renegotiation when it actually happens.
|
12 years ago |
George Kadianakis
|
69a821ea1c
Refactor the SSL_set_info_callback() callbacks.
|
12 years ago |
Nick Mathewson
|
87a93917c3
Fix a reference-leak in tor_tls_received_v3_certificate
|
12 years ago |
Nick Mathewson
|
80cf342e47
Fix memory leak in prop176 code
|
12 years ago |
Nick Mathewson
|
8af0cfc10d
Add some points to make it easy to turn off v3 support
|
12 years ago |
Sebastian Hahn
|
35fe4825fc
Quiet two notices, and spelling mistake cleanup
|
12 years ago |
Nick Mathewson
|
e56d7a3809
Give tor_cert_get_id_digests() fail-fast behavior
|
12 years ago |
Nick Mathewson
|
40f0d111c2
Fix some more issues wrt tor_cert_new found by asn
|
12 years ago |
Nick Mathewson
|
6bfb31ff56
Generate certificates that enable v3 handshake
|
12 years ago |
Nick Mathewson
|
9a77ebc794
Make tor_tls_cert_is_valid check key lengths
|
12 years ago |
Nick Mathewson
|
e48e47fa03
Function to return peer cert as tor_tls_cert
|
12 years ago |
Nick Mathewson
|
a6fc5059cd
Add AUTH keys as specified in proposal 176
|
12 years ago |
Nick Mathewson
|
0a4f562772
Functions to get a public RSA key from a cert
|
12 years ago |
Nick Mathewson
|
92602345e0
Function to detect certificate types that signal v3 certificates
|
12 years ago |
Nick Mathewson
|
8c9fdecfe9
Function to get digests of the certs and their keys
|
12 years ago |
Nick Mathewson
|
f4c1fa2a04
More functions to manipulate certs received in cells
|
12 years ago |
Nick Mathewson
|
c39688de6c
Function to extract the TLSSECRETS field for v3 handshakes
|
12 years ago |
Nick Mathewson
|
c0bbcf138f
Turn X509 certificates into a first-class type and add some functions
|
12 years ago |
Nick Mathewson
|
f186e16241
Add write watermarks to filtered bufferevents.
|
13 years ago |
Nick Mathewson
|
d3653063d3
Automatically use filtering bufferevents with IOCP.
|
13 years ago |
Sebastian Hahn
|
f137ae896e
Don't warn on http connection to my orport
|
13 years ago |