Alexandre Julliard
c518801495
secur32: Set the SSL server name to enable the SNI extension.
2013-06-13 17:10:02 +02:00
Jacek Caban
194cc70fbe
secur32: Disable SSL2 protocol in default settings.
2013-04-01 12:18:55 +02:00
Jacek Caban
fe474e3b6a
secur32: Take schannel backend capabilities into account when configuring enabled protocols.
2013-03-28 18:54:01 +01:00
Jacek Caban
e413b8a505
secur32: Added SECPKG_ATTR_SUPPORTED_PROTOCOLS implementation.
2013-03-27 20:12:28 +01:00
Jacek Caban
0f2e0365ea
secur32: Added support for grbitEnabledProtocols in schan_AcquireClientCredentials.
2013-03-27 20:12:28 +01:00
Jacek Caban
b7a75b468a
secur32: Pass whole schan_credentials struct to schannel backend implementations.
2013-03-25 16:28:18 +01:00
Jacek Caban
db22753a05
winhttp: Added schannel-based netconn_recv implementation.
2013-01-23 23:41:15 +01:00
Jacek Caban
5c5d12c8bc
secur32: Return a cert context with context store in SECPKG_ATTR_REMOTE_CERT_CONTEXT GnuTLS implementation.
2013-01-21 16:19:05 +01:00
Henri Verbeet
2025e81585
secur32: Only read complete records in schan_InitializeSecurityContextW().
2012-07-09 15:04:03 -04:00
Henri Verbeet
394519db67
secur32: Handle incomplete messages in schan_InitializeSecurityContextW().
2012-06-26 17:32:40 +02:00
Henri Verbeet
8f39fb146a
secur32: We can't read more than expected_size - 5 in schan_DecryptMessage().
2012-06-26 17:31:02 +02:00
Henri Verbeet
e2bd967a85
secur32: Handle padding only records in schan_DecryptMessage().
2012-06-26 17:30:55 +02:00
Henri Verbeet
7bb7d08d19
secur32: Handle the schan_buffers limit field in schan_get_buffer() instead of schan_pull().
...
Aside from being the right place, we depend on schan_get_buffer() not
returning a buffer if there's no space left in schan_imp_recv() /
schan_imp_send().
2011-10-05 17:00:58 -05:00
Henri Verbeet
65aed972c0
secur32: Properly handle GNUTLS_E_AGAIN in (GnuTLS) schan_imp_send().
2011-10-03 14:38:44 -05:00
Henri Verbeet
5004c38dd5
secur32: Return failure if chan_EncryptMessage() can't encrypt the entire buffer.
2011-10-03 14:38:35 -05:00
Henri Verbeet
0903855456
secur32: Use gnutls_record_get_max_size() to get the maximum message size.
2011-10-03 14:38:21 -05:00
Alexandre Julliard
52fa3bf42d
secur32: Avoid size_t and fix some printf formats.
2011-09-05 19:34:55 +02:00
Ken Thomases
5015f388d1
secur32: Add alternative schannel implementation for Mac OS X.
...
It uses the native Secure Transport API rather than GnuTLS.
2011-03-14 19:31:07 +01:00
Ken Thomases
0b396208db
secur32: Separate GnuTLS schannel implementation into separate file.
2011-03-14 14:16:13 +01:00
Ken Thomases
c890bf4dc8
secur32: Make no-implementation error message non-GnuTLS-specific.
2011-03-14 14:10:54 +01:00
Ken Thomases
2cecf54427
secur32: Extract schan_imp_init/deinit functions.
2011-03-14 14:10:46 +01:00
Ken Thomases
9124cdc234
secur32: Extract schan_imp_allocate/free_certificate_credentials functions.
2011-03-14 14:10:38 +01:00
Ken Thomases
e02ac5f023
secur32: Use opaque type schan_imp_session in schan_imp interface.
2011-03-14 14:10:33 +01:00
Ken Thomases
6b5f7df5cb
secur32: Set session credentials in schan_imp_create_session.
2011-03-14 14:10:27 +01:00
Ken Thomases
3d47fce382
secur32: Set push & pull functions in schan_imp_create_session.
2011-03-14 14:10:21 +01:00
Ken Thomases
c86dafe51e
secur32: Extract GnuTLS-isms from schan_push to schan_push_adapter.
2011-03-14 14:10:17 +01:00
Ken Thomases
194aaef7cd
secur32: Extract GnuTLS-isms from schan_pull to schan_pull_adapter.
2011-03-14 14:10:13 +01:00
Ken Thomases
aeefb8188d
secur32: Extract schan_imp_create/dispose_session functions.
2011-03-14 14:10:02 +01:00
Ken Thomases
d7fe60c5b6
secur32: Extract schan_imp_set_session_transport function.
2011-03-14 14:09:55 +01:00
Ken Thomases
3608fe03a9
secur32: Extract schan_imp_handshake function.
2011-03-14 14:09:49 +01:00
Ken Thomases
842e0a5316
secur32: Use schan_imp_get_connection_info to get MAC size.
2011-03-14 14:09:42 +01:00
Ken Thomases
f7e598cfc8
secur32: Extract schan_imp_get_connection_info function.
2011-03-14 14:09:38 +01:00
Ken Thomases
ccae072a3c
secur32: Extract schan_imp_get_session_cipher_block_size function.
2011-03-14 14:09:32 +01:00
Ken Thomases
1b225a012e
secur32: Move some GnuTLS-specific helper functions.
2011-03-14 14:09:27 +01:00
Ken Thomases
12195b32df
secur32: Extract schan_imp_get_session_peer_certificate function.
2011-03-14 14:09:19 +01:00
Ken Thomases
9b85662fec
secur32: Extract schan_imp_recv function.
2011-03-14 14:09:12 +01:00
Ken Thomases
a5715ed625
secur32: Extract schan_imp_send function.
2011-03-14 14:09:03 +01:00
Ken Thomases
9942edacd4
secur32: Remove outdated comment that schannel is unimplemented.
2011-03-14 14:08:19 +01:00
Juan Lang
30435a5951
secur32: Trace flags as hex values.
2010-10-22 12:03:45 +02:00
Piotr Caban
cdf8d455c2
secur32: Handle extra data in schan_InitializeSecurityContextW.
2010-09-18 13:05:30 +02:00
Mikko Rasa
506af9205d
secur32: Fill a SECBUFFER_MISSING buffer if the message is not complete.
2010-09-15 16:36:17 -05:00
Mikko Rasa
b335e94788
secur32: Only process full TLS frames in schan_DecryptMessage.
2010-09-15 16:36:11 -05:00
Mikko Rasa
149ffe130f
secur32: Fill header and trailer buffers in schan_DecryptMessage.
2010-09-15 16:36:01 -05:00
Mikko Rasa
b424b3431e
secur32: Validate buffers passed to schan_DecryptMessage.
2010-09-15 16:35:51 -05:00
Michael Stefaniuc
24592a7a62
secur32: Avoid using long.
2010-05-12 13:44:40 +02:00
Alexandre Julliard
43a98ecb21
secur32: Avoid using a pointer difference in a trace.
2010-04-09 16:14:07 +02:00
Juan Lang
7c3b9a1551
secur32: Report an error if libgnutls isn't found.
2010-01-11 12:54:23 -06:00
Hans Leidekker
aeb161f13f
secur32: Handle EOF from gnutls_record_recv.
2009-11-19 11:50:40 +01:00
Henri Verbeet
3e96881e4c
secur32: Don't bother zeroing the handle table in SECUR32_initSchannelSP().
...
Handles are initialized when they're allocated.
2009-10-15 12:06:18 +02:00
Henri Verbeet
226519efbc
secur32: Don't try to cleanup uninitialized handles in SECUR32_deinitSchannelSP().
2009-10-15 12:06:18 +02:00