Jacek Caban
6c2f7d01c8
secur32: Don't use deprecated gnutls_certificate_credentials.
2013-06-28 19:41:33 +02:00
Alexandre Julliard
c518801495
secur32: Set the SSL server name to enable the SNI extension.
2013-06-13 17:10:02 +02:00
Alexandre Rostovtsev
fee9cd3b24
configure: In gnutls-3.2, gnutls_mac_get_key_size() moved to crypto.h.
...
Based on a patch by Ben Kohler <bkohler@gmail.com>.
2013-06-11 11:37:21 +02:00
Alexandre Julliard
b7cdc0afde
secur32: Don't bother to free memory at process exit.
2013-05-15 10:26:18 +02:00
Alexandre Julliard
1470c5c3c1
configure: Use the pkg-config helper macro for gnutls.
2013-05-03 20:45:11 +02:00
Jacek Caban
930bf0016d
secur32: Added support for TLS 1.1 and TLS 1.2 on Mac.
2013-04-17 14:26:30 +02:00
Jacek Caban
194cc70fbe
secur32: Disable SSL2 protocol in default settings.
2013-04-01 12:18:55 +02:00
Jacek Caban
8036bd14f9
secur32: Pass enabled protocols to Mac Secure Transport.
2013-04-01 12:15:41 +02:00
Jacek Caban
66f80b57a4
secur32: Pass enabled protocols to GnuTLS.
2013-04-01 12:15:37 +02:00
Jacek Caban
fe474e3b6a
secur32: Take schannel backend capabilities into account when configuring enabled protocols.
2013-03-28 18:54:01 +01:00
Jacek Caban
79c5d5cc17
secur32: Added SECPKG_ATTR_SUPPORTED_PROTOCOLS tests.
2013-03-27 20:12:29 +01:00
Jacek Caban
e413b8a505
secur32: Added SECPKG_ATTR_SUPPORTED_PROTOCOLS implementation.
2013-03-27 20:12:28 +01:00
Jacek Caban
0f2e0365ea
secur32: Added support for grbitEnabledProtocols in schan_AcquireClientCredentials.
2013-03-27 20:12:28 +01:00
Jacek Caban
b7a75b468a
secur32: Pass whole schan_credentials struct to schannel backend implementations.
2013-03-25 16:28:18 +01:00
Jacek Caban
64c84ef5c4
secur32: Report SecPkgContext_ConnectionInfo in bits, not bytes.
2013-02-27 19:23:36 +01:00
Ken Thomases
7494f5bc5e
secur32: On Mac, add support for cipher suites defined in 10.8 SDK.
2013-02-07 16:37:49 +01:00
Jacek Caban
db22753a05
winhttp: Added schannel-based netconn_recv implementation.
2013-01-23 23:41:15 +01:00
Jacek Caban
63c7f8d8ee
secur32: Added SECPKG_ATTR_REMOTE_CERT_CONTEXT tests.
2013-01-21 16:19:35 +01:00
Jacek Caban
303ec3ef91
secur32: Return a cert context with context store in SECPKG_ATTR_REMOTE_CERT_CONTEXT MacOSX implementation.
2013-01-21 16:19:18 +01:00
Jacek Caban
5c5d12c8bc
secur32: Return a cert context with context store in SECPKG_ATTR_REMOTE_CERT_CONTEXT GnuTLS implementation.
2013-01-21 16:19:05 +01:00
André Hentschel
1eaa25696b
secur32/tests: Fix tests on win8.
2012-12-07 17:26:40 +01:00
Austin English
62e77128c5
secur32: Get rid of deprecated types.
2012-11-16 11:40:17 +01:00
Michael Stefaniuc
8fe8e2f967
secur32: Avoid a FALSE:TRUE conditional expression.
2012-08-15 12:12:56 +02:00
Henri Verbeet
8abcfeddd8
secur32: Recognize some more TLS versions.
2012-07-18 17:12:34 +02:00
Ken Thomases
98652ec1c6
secur32: On Mac, define modern ECDH cipher suites if the SDK doesn't.
2012-07-16 14:19:46 +02:00
Ken Thomases
4ccb8746fd
secur32: On Mac, recognize key exchange algorithm for cipher suites using ECDH.
2012-07-16 14:19:37 +02:00
Henri Verbeet
2025e81585
secur32: Only read complete records in schan_InitializeSecurityContextW().
2012-07-09 15:04:03 -04:00
Henri Verbeet
394519db67
secur32: Handle incomplete messages in schan_InitializeSecurityContextW().
2012-06-26 17:32:40 +02:00
Henri Verbeet
8f39fb146a
secur32: We can't read more than expected_size - 5 in schan_DecryptMessage().
2012-06-26 17:31:02 +02:00
Henri Verbeet
e2bd967a85
secur32: Handle padding only records in schan_DecryptMessage().
2012-06-26 17:30:55 +02:00
Francois Gouget
71945b7635
secur32: Make some SecurityFunction methods static.
2012-05-21 11:34:37 +02:00
Hans Leidekker
cb90e6b1a6
secur32/tests: Add tests for the Negotiate provider.
2012-05-10 18:43:38 +02:00
Hans Leidekker
19f8c79f9e
secur32: Implement a Negotiate provider that forwards to NTLM.
2012-05-10 18:43:04 +02:00
Hans Leidekker
3181577810
secur32: Add an option to disable use of cached Samba credentials.
2012-05-10 18:42:40 +02:00
Hans Leidekker
bd7e469760
secur32: Update NTLM capabilities to match native.
2012-05-10 18:42:30 +02:00
Hans Leidekker
ebab1c72cf
secur32: Remove some unused variables.
2012-05-10 18:42:21 +02:00
Hans Leidekker
81213a88e8
secur32: Fix potential leaks of the NTLM session key.
2012-05-10 18:42:15 +02:00
Alexandre Julliard
ee1e1f0fdb
secur32/tests: Don't compare the encrypted results if the session key is different.
2012-01-03 23:28:13 +01:00
André Hentschel
962230064d
secur32/tests: Fail on missing NTLM.
2011-12-20 20:24:47 +01:00
Francois Gouget
3d9c7657bc
secur32: Fix the compilation on Solaris by including errno.h instead of sys/errno.h.
2011-12-02 17:25:56 +01:00
Ken Thomases
3de1c71364
secur32: Reap child process to avoid leaving a zombie.
2011-12-01 10:44:28 +01:00
Ken Thomases
d977044e76
secur32: Eliminate broken clean-up "cheat".
2011-11-30 11:45:26 +01:00
Ken Thomases
f4ac641af5
secur32: Clean up the helper in all cases where it was allocated.
2011-11-30 11:45:21 +01:00
Ken Thomases
e39e67ec3d
secur32: Eliminate a dead store.
2011-11-30 11:45:18 +01:00
Francois Gouget
5305c8e009
secur32: Make the cs critical section static.
2011-11-15 19:37:36 +01:00
Andrew Talbot
7f17934de2
secur32: Superfluous semicolons fix.
2011-11-07 11:54:47 +01:00
Charles Davis
65634bca0b
schannel: Don't use SSLCopyPeerCertificates on Mac OS 10.4.
2011-10-27 12:31:40 +02:00
Henri Verbeet
0dd54eb0fd
secur32: Print the ntlm_auth diagnostic message to the winediag channel.
2011-10-27 12:25:13 +02:00
Henri Verbeet
7bb7d08d19
secur32: Handle the schan_buffers limit field in schan_get_buffer() instead of schan_pull().
...
Aside from being the right place, we depend on schan_get_buffer() not
returning a buffer if there's no space left in schan_imp_recv() /
schan_imp_send().
2011-10-05 17:00:58 -05:00
Henri Verbeet
929598fd00
secur32: Properly handle GNUTLS_E_AGAIN in (GnuTLS) schan_imp_recv().
2011-10-03 14:38:49 -05:00