jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
hostap/src/crypto
History
Jouni Malinen 84db90e484 OpenSSL: Send cert event for the peer even on CA cert failure 
This adds a CTRL-EVENT-EAP-PEER-CERT even for depth=0 even if a depth >
0 certificate results in peer certificate validation error. Previously,
this case resulted in the upper layers not getting any information about
the used peer certificate. Now that information is available, e.g., to
allow server certificate -based overriding of the trust to be done.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
2019-06-20 23:44:51 +03:00
..
.gitignore
aes-cbc.c Add TEST_FAIL() condition to aes_128_cbc_encrypt/decrypt() 2015-11-28 20:46:36 +02:00
aes-ccm.c
aes-ctr.c Extend AES-SIV implementation to support different key lengths 2016-10-10 19:40:59 +03:00
aes-eax.c crypto: Clear temporary heap allocations before freeing 2015-01-06 02:49:13 +02:00
aes-encblock.c
aes-gcm.c AES-GCM: Use os_memcmp_const() for hash/password comparisons 2014-07-02 12:38:47 +03:00
aes-internal-dec.c crypto: Add return value to DES and AES encrypt/decrypt 2017-02-28 11:23:54 +02:00
aes-internal-enc.c Add TEST_FAIL() to aes_encrypt_init() with internal crypto 2019-03-16 18:52:09 +02:00
aes-internal.c
aes-omac1.c tests: Add TEST_FAIL() condition to omac1_aes_vector() 2015-10-17 20:40:36 +03:00
aes-siv.c Use os_memdup() 2017-03-07 13:19:10 +02:00
aes-unwrap.c AES: Extend key wrap implementation to support longer data 2014-10-07 14:57:10 +03:00
aes-wrap.c AES: Extend key wrap implementation to support longer data 2014-10-07 14:57:10 +03:00
aes.h crypto: Add return value to DES and AES encrypt/decrypt 2017-02-28 11:23:54 +02:00
aes_i.h UBSan: Avoid dependency on undefined behavior in internal AES operation 2019-05-25 01:51:12 +03:00
aes_siv.h Extend AES-SIV implementation to support different key lengths 2016-10-10 19:40:59 +03:00
aes_wrap.h Extend AES-SIV implementation to support different key lengths 2016-10-10 19:40:59 +03:00
crypto.h Remove unused crypto_bignum_bits() 2019-04-26 17:43:45 +03:00
crypto_gnutls.c Add explicit checks for peer's DH public key 2019-03-05 17:05:03 +02:00
crypto_internal-cipher.c
crypto_internal-modexp.c Add explicit checks for peer's DH public key 2019-03-05 17:05:03 +02:00
crypto_internal-rsa.c
crypto_internal.c tests: crypto_hash_finish() failure in eap_pwd_kdf() 2019-04-13 12:53:42 +03:00
crypto_libtomcrypt.c tests: crypto_hash_finish() failure in eap_pwd_kdf() 2019-04-13 12:53:42 +03:00
crypto_linux.c tests: crypto_hash_finish() failure in eap_pwd_kdf() 2019-04-13 12:53:42 +03:00
crypto_module_tests.c tests: Extract-and-Expand HKDF (RFC 5869) 2017-03-11 22:40:31 +02:00
crypto_nettle.c Add explicit checks for peer's DH public key 2019-03-05 17:05:03 +02:00
crypto_none.c crypto: Add return value to DES and AES encrypt/decrypt 2017-02-28 11:23:54 +02:00
crypto_openssl.c OpenSSL: Fix memory leak in crypto_dh_derive_secret() 2019-05-08 18:53:32 +03:00
crypto_wolfssl.c Remove unused crypto_bignum_bits() 2019-04-26 17:43:45 +03:00
des-internal.c crypto: Add return value to DES and AES encrypt/decrypt 2017-02-28 11:23:54 +02:00
des_i.h
dh_group5.c Fix memory leak on NFC DH generation error path 2015-11-29 20:53:20 +02:00
dh_group5.h
dh_groups.c Add explicit checks for peer's DH public key 2019-03-05 17:05:03 +02:00
dh_groups.h
fips_prf_internal.c
fips_prf_openssl.c OpenSSL: Silence sparse warnings in fips186_2_prf() 2016-06-24 19:02:58 +03:00
fips_prf_wolfssl.c wolfSSL: Use new digest namespace 2018-05-02 12:04:46 +03:00
Makefile tests: TLS fuzzing tool 2019-02-11 02:35:29 +02:00
md4-internal.c crypto internal: Make MD4 PADDING array const 2019-01-02 17:26:57 +02:00
md5-internal.c Add TEST_FAIL() support for internal hash functions 2015-11-29 21:01:33 +02:00
md5.c crypto: Clear temporary stack buffers after use 2015-01-06 02:49:13 +02:00
md5.h
md5_i.h
milenage.c Milenage: Use os_memcmp_const() for hash/password comparisons 2014-07-02 12:38:47 +03:00
milenage.h
ms_funcs.c crypto: Process des_encrypt() error returns in callers 2017-02-28 11:24:05 +02:00
ms_funcs.h crypto: Process des_encrypt() error returns in callers 2017-02-28 11:24:05 +02:00
random.c crypto: Add option to use getrandom() 2019-01-02 01:24:18 +02:00
random.h
rc4.c
sha1-internal.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha1-pbkdf2.c
sha1-prf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha1-tlsprf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha1-tprf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha1.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha1.h
sha1_i.h
sha256-internal.c Remove trailing whitespace 2016-12-28 14:31:42 +02:00
sha256-kdf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha256-prf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha256-tlsprf.c
sha256.c
sha256.h SAE: Check SHA256-PRF operation result 2016-03-27 21:44:49 +03:00
sha256_i.h
sha384-internal.c Add SHA384 and SHA512 implementations from LibTomCrypt library 2015-11-29 18:19:32 +02:00
sha384-kdf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha384-prf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha384.c Add HMAC-SHA384 with internal crypto 2017-02-16 22:15:29 +02:00
sha384.h Extend SHA-384 and SHA-512 support to match SHA-256 2017-06-17 18:04:12 +03:00
sha384_i.h Add SHA384 and SHA512 implementations from LibTomCrypt library 2015-11-29 18:19:32 +02:00
sha512-internal.c crypto: Reduce the size of sha512_compress() stack frame 2019-01-02 16:31:19 +02:00
sha512-kdf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha512-prf.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
sha512.c Add internal HMAC-SHA512 implementation to fix NEED_SHA512 builds 2018-12-31 11:57:37 +02:00
sha512.h Extend SHA-384 and SHA-512 support to match SHA-256 2017-06-17 18:04:12 +03:00
sha512_i.h Add SHA384 and SHA512 implementations from LibTomCrypt library 2015-11-29 18:19:32 +02:00
tls.h Report TOD policy in peer certificate events 2019-06-14 23:10:50 +03:00
tls_gnutls.c Extend domain_match and domain_suffix_match to allow list of values 2019-04-09 16:24:38 +03:00
tls_internal.c TLS: Add support for RFC 5705 TLS exporter context with internal TLS 2019-03-16 18:52:09 +02:00
tls_none.c Add support for an optional context parameter to TLS exporter 2019-03-16 18:52:09 +02:00
tls_openssl.c OpenSSL: Send cert event for the peer even on CA cert failure 2019-06-20 23:44:51 +03:00
tls_openssl.h BoringSSL: Move OCSP implementation into a separate file 2015-12-04 20:08:31 +02:00
tls_openssl_ocsp.c BoringSSL: Keep static analyzers happier with X509_get0_pubkey_bitstr() 2016-03-16 21:34:01 +02:00
tls_wolfssl.c More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00