Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-04-12 | Tidy up of assorted Schannel/CAPI stuffs. | Kevin Smith | |
Makes Swift disconnect if a smartcard used for auth is removed. Fixes compilation. Changes code style in a few places. | |||
2012-04-11 | Added support for determining SmartCard Reader associated with a certificate ↵ | Alexey Melnikov | |
(if any) This patch implements monitoring for SmartCard ejection. This is done by periodically (currently every second) polling smart card reader for the smart card status. If the smart card status becomes "absent" or "unknown" (an error to query the smartcard), the TLS session is aborted. This usually results in an attempt to reestablish TLS which will pop up "please insert the smart card" dialog. License: This patch is BSD-licensed, see Documentation/Licenses/BSD-simplified.txt for details. | |||
2012-03-23 | Forgotten file for TLSError patch | Kevin Smith | |
2012-03-23 | Allow TLS errors to bubble further up the stack | Kevin Smith | |
2012-03-22 | Manual certificate verification. Added two additional TLS errors related to ↵ | dreijer | |
revocation. License: This patch is BSD-licensed, see http://www.opensource.org/licenses/bsd-license.php | |||
2012-03-08 | Fixed several bugs in CAPI/Schannel code on Windows | Alexey Melnikov | |
This patch includes the following fixes: 1) Correctly hex encode SHA1 hashes when generating certstore: URIs 2) Use the newly parsed certificate store reference, not the old value 3) Need to call findCertificateInStore() when finding the selected TLS certificate in Schannel code. Without that "sha1:XXXX" URIs don't work Also minor optimization of string operations. License: This patch is BSD-licensed, see Documentation/Licenses/BSD-simplified.txt for details. | |||
2012-03-06 | Fix missing include | Kevin Smith | |
Resolves: #903 | |||
2012-02-28 | Changed certstore: URIs to use SHA1 hashes of certificates | Alexey Melnikov | |
Value of the certificate's subject DN leftmost RDN is not necessarily unique. This change switches to using SHA1 hash of DER certificates, which should guaranty uniqueness. License: This patch is BSD-licensed, see Documentation/Licenses/BSD-simplified.txt for details. | |||
2012-02-23 | Compile when non-SChannel | Kevin Smith | |
2012-02-22 | Fix up for previous CAPI patch | Kevin Smith | |
Now connects successfully with or without TLS(with cert) | |||
2012-02-22 | Initial implementation of using CAPI certificates with Schannel. | Alexey Melnikov | |
Introduced a new parent class for all certificates with keys (class CertificateWithKey is the new parent for PKCS12Certificate.) Switched to using "CertificateWithKey *" instead of "const CertificateWithKey&" Added calling of a Windows dialog for certificate selection when Schannel TLS implementation is used. This compiles, but is not tested. License: This patch is BSD-licensed, see Documentation/Licenses/BSD-simplified.txt for details. | |||
2011-11-03 | Quick brush up after previous patch. | Kevin Smith | |
Includes: Initial cleanup of SChannel code; compiling on non-Windows Be willing to compile Swift with SChannel Undo some (presumably accidental) OpenSSL changes Where TLS doesn't support finish messages (SChannel), don't try -PLUS | |||
2011-11-03 | * Added Schannel support. | dreijer | |
License: This patch is BSD-licensed, see http://www.opensource.org/licenses/bsd-license.php | |||
2011-06-13 | Fixed some CppCheck warnings. | Remko Tronçon | |
2011-06-03 | Limit the use of the SafeString type. | Remko Tronçon | |
2011-05-18 | Propagate use of SafeByteArray down to the connection. | Remko Tronçon | |
2011-05-13 | Removed some explicit new's. | Remko Tronçon | |
2011-05-05 | Replace ByteArray by typedef. | Remko Tronçon | |
2011-05-02 | Replace header include guards by pragma once. | Remko Tronçon | |
2011-04-30 | Replace #icnlude "" by #include <> in Swiften. | Remko Tronçon | |
2011-04-18 | Explicitly add system store trust anchors on Mac OS X 10.5.swift-1.0 | Remko Tronçon | |
2011-03-16 | Added possibility to dynamically link Swiften. | Remko Tronçon | |
Resolves: #798 | |||
2011-03-12 | Fixed OpenSSL compilation. | Remko Tronçon | |
2011-03-12 | Make ByteArray an std::vector<unsigned char>. | Remko Tronçon | |
2011-02-14 | Removed Swift::String. | Remko Tronçon | |
2010-12-30 | Show certificate fingerprint in 'Trust certificate' dialog. | Remko Tronçon | |
2010-12-27 | Avoid more valgrind warnings. | Remko Tronçon | |
2010-12-19 | Disabling timer in BenchTool. | Remko Tronçon | |
2010-12-13 | Load ssl certificate store on Un*x. | Remko Tronçon | |
2010-12-11 | Added SCRAM-SHA-1-PLUS support. | Remko Tronçon | |
Release-Notes: Swift now supports SCRAM-SHA-1-PLUS authentication. | |||
2010-12-05 | Added plumbing for persistent certificate trust checking. | Remko Tronçon | |
2010-11-15 | Fixed OpenSSL compilation. | Remko Tronçon | |
2010-11-15 | Fix compilation on OS X | Kevin Smith | |
2010-11-12 | Add Windows trust anchors to OpenSSL context. | Remko Tronçon | |
2010-11-11 | Added CertificateVerificationError::ref. | Remko Tronçon | |
2010-11-11 | Handle null OpenSSL X509 cert pointers better. | Remko Tronçon | |
2010-11-11 | Changed misleading test name. | Remko Tronçon | |
2010-11-11 | Added server identity check. | Remko Tronçon | |
2010-11-09 | Added Doxygen documentation for some certificate APIs. | Remko Tronçon | |
2010-11-09 | Certificate::getCommonName -> getCommonNames. | Remko Tronçon | |
2010-11-09 | Created CertificateFactory. | Remko Tronçon | |
2010-11-09 | Implement DER conversion to/from certificates. | Remko Tronçon | |
2010-11-09 | Fixed windows compilation. | Remko Tronçon | |
2010-11-07 | Refactoring certificates & certificate checking. | Remko Tronçon | |
2010-11-07 | Added missing files. | Remko Tronçon | |
2010-11-07 | Added security error handling to Swiften. | Remko Tronçon | |
2010-11-07 | Removed obsolete member var. | Remko Tronçon | |
2010-11-07 | Added certificate verification API to TLS context. | Remko Tronçon | |
2010-11-07 | Fixed build on linux. | Remko Tronçon | |
2010-11-07 | Refactored TLS handling. | Remko Tronçon | |
TLSLayer is now independent of TLS implementation. The implementation-specifics are now in TLSContext and TLSContextFactory. |