Denys Vlasenko
|
1123922320
tls: fix hash calculations if client cert is requested and sent
|
6 years ago |
Denys Vlasenko
|
558aae1a33
tls: use capped SNI len everywhere
|
7 years ago |
Denys Vlasenko
|
5d561ef634
tls: do not compile in TLS_RSA_WITH_NULL_SHA256 code if unreachable
|
7 years ago |
Denys Vlasenko
|
229d3c467d
tls: avoid using int16 in pstm code
|
7 years ago |
Denys Vlasenko
|
636c3b627c
tls: merge sha1 and sha256 hmac functions
|
7 years ago |
Denys Vlasenko
|
0ec4d08ea3
tls: covert i/o loop from using select() to poll()
|
7 years ago |
Denys Vlasenko
|
c31b54fd81
tls: fold AES CBC en/decryption into single functions
|
7 years ago |
Denys Vlasenko
|
5b05d9db29
wget/tls: session_id of zero length is ok (arxiv.org responds with such)
|
7 years ago |
Denys Vlasenko
|
89193f985b
tls: can download kernels now :)
|
7 years ago |
Denys Vlasenko
|
1500b3a50d
tls: if got CERTIFICATE_REQUEST, send an empty CERTIFICATE
|
7 years ago |
Denys Vlasenko
|
49ecee098d
tls: add 2nd cipher_id, TLS_RSA_WITH_AES_128_CBC_SHA, so far it doesn't work
|
7 years ago |
Denys Vlasenko
|
7a18b9502a
tls: reorder tls_handshake_data fields for smaller size, tweak comments
|
7 years ago |
Denys Vlasenko
|
b5bf1913d3
tls: send EMPTY_RENEGOTIATION_INFO_SCSV in our client hello
|
7 years ago |
Denys Vlasenko
|
9492da7e63
tls: set TLS_DEBUG to 0; placate a gcc indentation warning
|
7 years ago |
Denys Vlasenko
|
9a647c326a
separate TLS code into a library, use in in wget
|
7 years ago |
Denys Vlasenko
|
f6e20724d4
tls: reorder tls_state fields for smaller offsets
|
7 years ago |
Denys Vlasenko
|
dd2577f21a
tls: send SNI in the client hello
|
7 years ago |
Denys Vlasenko
|
0af5265180
tls: check size on "MAC-only, no crypt" code path too
|
7 years ago |
Denys Vlasenko
|
54b927d78b
tls: AES decrypt does one unnecessary memmove
|
7 years ago |
Denys Vlasenko
|
3916139ac4
tls: make input buffer grow as needed
|
7 years ago |
Denys Vlasenko
|
38972a8df1
tls: improve i/o loop
|
7 years ago |
Denys Vlasenko
|
e7863f394e
tls: was psAesDecrypt'ing one block too many, trashing buffered data
|
7 years ago |
Denys Vlasenko
|
19e695ebad
tls: do not use common_bufsiz
|
7 years ago |
Denys Vlasenko
|
a0aae9f714
tls: decode alerts and in particular, EOF alert.
|
7 years ago |
Denys Vlasenko
|
abbf17abcc
tls: add the i/o loop - largish rework of i/o buffering
|
7 years ago |
Denys Vlasenko
|
432f1ae2ff
tls: tested PSTM_X86_64, not enabling it - too large
|
7 years ago |
Denys Vlasenko
|
cccf8e735d
tls: teach it to decrypt AES256-encrypted data
|
7 years ago |
Denys Vlasenko
|
a9e1866806
tls: trim comments
|
7 years ago |
Denys Vlasenko
|
b5dfc3dfd6
tls: teach it to send AES256-encrypted data
|
7 years ago |
Denys Vlasenko
|
b7e9ae6e9f
tls: added AES code and made it compile. not used yet
|
7 years ago |