Bruno Jesus
0fbbb1297d
secur32: Don't try to set an empty target name in schan_InitializeSecurityContextW.
...
Based on original patch by Nikos Mavrogiannopoulos.
2015-04-09 13:25:04 +09:00
Sebastian Lackner
8729575112
secur32: Return more context attributes in schan_InitializeSecurityContextW.
2015-04-06 18:06:17 +09:00
Francois Gouget
1d7f2c318a
secur32: Mark internal symbols with hidden visibility.
2015-04-01 14:13:30 +09:00
Francois Gouget
3604629361
secur32: Export SetContextAttributes[AW]().
2015-03-16 15:04:12 +09:00
Jacek Caban
48ea8a1cb4
secur32/tests: Don't call InitializeSecurityContext on an uninitialized buffer.
...
Also documents failure on an invalid buffer.
2015-01-22 17:31:44 +01:00
Bruno Jesus
54b5660378
secur32: Always tell the user that libgnutls could not be loaded.
2015-01-05 20:29:19 +01:00
André Hentschel
b8719ff852
secur32: Declare debug channels only when needed (Clang).
2014-12-04 14:03:25 +01:00
Hans Leidekker
5a6558b854
secur32/tests: Switch requested protocol from SSL3 to TLS1.
2014-10-21 18:49:58 +09:00
Alexandre Julliard
0ff2fb8a4f
secur32/tests: Update test for the new certificate on winehq.org.
2014-09-25 16:08:05 +02:00
Nikolay Sivov
58a4aa5954
secur32/tests: Remove duplicated expression (PVS-Studio).
2014-08-18 12:45:14 +02:00
Alexandre Julliard
d0d6dcb70e
secur32/tests: Include winsock2.h before other headers.
2014-07-24 20:10:28 +02:00
Marcus Meissner
877f1a759e
secur32: Removed superflous NULL check (Coverity).
2014-07-22 12:40:40 +02:00
Jacek Caban
293c53e22f
secur32: Fixed schannel tests on Windows 8.1.
2014-04-16 14:38:16 +02:00
Dmitry Timoshkov
8df0479870
secur32: Also recognize samba4 failure message if ntlm_auth could not connect to winbindd.
2014-04-14 20:19:01 +02:00
Jacek Caban
29a409b222
secur32/tests: Fixed tests with new winehq.org setup.
2014-03-03 17:02:53 +01:00
Aric Stewart
3218cc077e
secur32: Return success on graceful close of SSL connection.
2014-02-22 08:40:40 -06:00
Alexandre Julliard
cf0e96c6d0
configure: Rename substituted variables to a standard _CFLAGS and _LIBS format.
2014-01-30 14:51:33 +01:00
Alexandre Julliard
8aa64e3580
configure: Automatically expand _CFLAGS and _LIBS variables in all makefiles.
2014-01-30 12:42:56 +01:00
Jacek Caban
e3fa52a636
secur32: Ignore GNUTLS_A_UNRECOGNIZED_NAME warning alert.
2014-01-28 19:38:45 +01:00
Dmitry Timoshkov
bc59d7e830
secur32: Slightly simplify the GetUserNameExW implementation.
2014-01-13 17:37:46 +01:00
Alexandre Julliard
99ef0d6ff0
makefiles: Get rid of the MAKE_TEST_RULES variable.
2014-01-02 12:13:16 +01:00
Alexandre Julliard
5e7416e5c8
makefiles: Get rid of the MAKE_DLL_RULES variable.
2014-01-02 12:08:18 +01:00
Frédéric Delanoy
9ad67a9a8e
secur32/tests: Constify a character string.
2013-12-30 19:01:37 +01:00
Dmitry Timoshkov
25a0375432
secur32/tests: Add a test for QueryCredentialsAttributes(SECPKG_CRED_ATTR_NAMES).
2013-12-13 16:21:08 +01:00
Dmitry Timoshkov
476f57fd63
secur32/tests: Make sure that QueryContextAttributes(SECPKG_ATTR_STREAM_SIZES) succeeds.
2013-12-13 14:37:42 +01:00
Dmitry Timoshkov
79511d98b7
secur32/tests: Use LoadLibrary instead of GetModuleHandle to load advapi32.dll APIs.
2013-12-13 14:37:40 +01:00
Jacek Caban
4d97b32323
secur32: Cache certificate context instead of store in schannel handle.
2013-10-21 21:06:17 +02:00
Jacek Caban
00e53de765
secur32: Compile tests with __WINESRC__ define.
2013-10-10 13:33:50 +02:00
Michael Stefaniuc
0e681027a2
tests: Compile the tests by default with -D__WINESRC__.
2013-10-02 11:04:02 +02:00
Michael Stefaniuc
2a39cb377a
dlls: Replace the remaining CONSTs.
2013-09-25 11:49:20 +02:00
André Hentschel
3a0961aced
secur32/tests: Better defined InitializeSecurityContext tests.
2013-08-28 11:30:31 +02:00
Alexandre Julliard
55e37bdbf3
secur32/tests: Run the tests against the winehq.org server.
2013-07-30 14:43:36 +02:00
Jacek Caban
6c2f7d01c8
secur32: Don't use deprecated gnutls_certificate_credentials.
2013-06-28 19:41:33 +02:00
Alexandre Julliard
c518801495
secur32: Set the SSL server name to enable the SNI extension.
2013-06-13 17:10:02 +02:00
Alexandre Rostovtsev
fee9cd3b24
configure: In gnutls-3.2, gnutls_mac_get_key_size() moved to crypto.h.
...
Based on a patch by Ben Kohler <bkohler@gmail.com>.
2013-06-11 11:37:21 +02:00
Alexandre Julliard
b7cdc0afde
secur32: Don't bother to free memory at process exit.
2013-05-15 10:26:18 +02:00
Alexandre Julliard
1470c5c3c1
configure: Use the pkg-config helper macro for gnutls.
2013-05-03 20:45:11 +02:00
Jacek Caban
930bf0016d
secur32: Added support for TLS 1.1 and TLS 1.2 on Mac.
2013-04-17 14:26:30 +02:00
Jacek Caban
194cc70fbe
secur32: Disable SSL2 protocol in default settings.
2013-04-01 12:18:55 +02:00
Jacek Caban
8036bd14f9
secur32: Pass enabled protocols to Mac Secure Transport.
2013-04-01 12:15:41 +02:00
Jacek Caban
66f80b57a4
secur32: Pass enabled protocols to GnuTLS.
2013-04-01 12:15:37 +02:00
Jacek Caban
fe474e3b6a
secur32: Take schannel backend capabilities into account when configuring enabled protocols.
2013-03-28 18:54:01 +01:00
Jacek Caban
79c5d5cc17
secur32: Added SECPKG_ATTR_SUPPORTED_PROTOCOLS tests.
2013-03-27 20:12:29 +01:00
Jacek Caban
e413b8a505
secur32: Added SECPKG_ATTR_SUPPORTED_PROTOCOLS implementation.
2013-03-27 20:12:28 +01:00
Jacek Caban
0f2e0365ea
secur32: Added support for grbitEnabledProtocols in schan_AcquireClientCredentials.
2013-03-27 20:12:28 +01:00
Jacek Caban
b7a75b468a
secur32: Pass whole schan_credentials struct to schannel backend implementations.
2013-03-25 16:28:18 +01:00
Jacek Caban
64c84ef5c4
secur32: Report SecPkgContext_ConnectionInfo in bits, not bytes.
2013-02-27 19:23:36 +01:00
Ken Thomases
7494f5bc5e
secur32: On Mac, add support for cipher suites defined in 10.8 SDK.
2013-02-07 16:37:49 +01:00
Jacek Caban
db22753a05
winhttp: Added schannel-based netconn_recv implementation.
2013-01-23 23:41:15 +01:00
Jacek Caban
63c7f8d8ee
secur32: Added SECPKG_ATTR_REMOTE_CERT_CONTEXT tests.
2013-01-21 16:19:35 +01:00
Jacek Caban
303ec3ef91
secur32: Return a cert context with context store in SECPKG_ATTR_REMOTE_CERT_CONTEXT MacOSX implementation.
2013-01-21 16:19:18 +01:00
Jacek Caban
5c5d12c8bc
secur32: Return a cert context with context store in SECPKG_ATTR_REMOTE_CERT_CONTEXT GnuTLS implementation.
2013-01-21 16:19:05 +01:00
André Hentschel
1eaa25696b
secur32/tests: Fix tests on win8.
2012-12-07 17:26:40 +01:00
Austin English
62e77128c5
secur32: Get rid of deprecated types.
2012-11-16 11:40:17 +01:00
Michael Stefaniuc
8fe8e2f967
secur32: Avoid a FALSE:TRUE conditional expression.
2012-08-15 12:12:56 +02:00
Henri Verbeet
8abcfeddd8
secur32: Recognize some more TLS versions.
2012-07-18 17:12:34 +02:00
Ken Thomases
98652ec1c6
secur32: On Mac, define modern ECDH cipher suites if the SDK doesn't.
2012-07-16 14:19:46 +02:00
Ken Thomases
4ccb8746fd
secur32: On Mac, recognize key exchange algorithm for cipher suites using ECDH.
2012-07-16 14:19:37 +02:00
Henri Verbeet
2025e81585
secur32: Only read complete records in schan_InitializeSecurityContextW().
2012-07-09 15:04:03 -04:00
Henri Verbeet
394519db67
secur32: Handle incomplete messages in schan_InitializeSecurityContextW().
2012-06-26 17:32:40 +02:00
Henri Verbeet
8f39fb146a
secur32: We can't read more than expected_size - 5 in schan_DecryptMessage().
2012-06-26 17:31:02 +02:00
Henri Verbeet
e2bd967a85
secur32: Handle padding only records in schan_DecryptMessage().
2012-06-26 17:30:55 +02:00
Francois Gouget
71945b7635
secur32: Make some SecurityFunction methods static.
2012-05-21 11:34:37 +02:00
Hans Leidekker
cb90e6b1a6
secur32/tests: Add tests for the Negotiate provider.
2012-05-10 18:43:38 +02:00
Hans Leidekker
19f8c79f9e
secur32: Implement a Negotiate provider that forwards to NTLM.
2012-05-10 18:43:04 +02:00
Hans Leidekker
3181577810
secur32: Add an option to disable use of cached Samba credentials.
2012-05-10 18:42:40 +02:00
Hans Leidekker
bd7e469760
secur32: Update NTLM capabilities to match native.
2012-05-10 18:42:30 +02:00
Hans Leidekker
ebab1c72cf
secur32: Remove some unused variables.
2012-05-10 18:42:21 +02:00
Hans Leidekker
81213a88e8
secur32: Fix potential leaks of the NTLM session key.
2012-05-10 18:42:15 +02:00
Alexandre Julliard
ee1e1f0fdb
secur32/tests: Don't compare the encrypted results if the session key is different.
2012-01-03 23:28:13 +01:00
André Hentschel
962230064d
secur32/tests: Fail on missing NTLM.
2011-12-20 20:24:47 +01:00
Francois Gouget
3d9c7657bc
secur32: Fix the compilation on Solaris by including errno.h instead of sys/errno.h.
2011-12-02 17:25:56 +01:00
Ken Thomases
3de1c71364
secur32: Reap child process to avoid leaving a zombie.
2011-12-01 10:44:28 +01:00
Ken Thomases
d977044e76
secur32: Eliminate broken clean-up "cheat".
2011-11-30 11:45:26 +01:00
Ken Thomases
f4ac641af5
secur32: Clean up the helper in all cases where it was allocated.
2011-11-30 11:45:21 +01:00
Ken Thomases
e39e67ec3d
secur32: Eliminate a dead store.
2011-11-30 11:45:18 +01:00
Francois Gouget
5305c8e009
secur32: Make the cs critical section static.
2011-11-15 19:37:36 +01:00
Andrew Talbot
7f17934de2
secur32: Superfluous semicolons fix.
2011-11-07 11:54:47 +01:00
Charles Davis
65634bca0b
schannel: Don't use SSLCopyPeerCertificates on Mac OS 10.4.
2011-10-27 12:31:40 +02:00
Henri Verbeet
0dd54eb0fd
secur32: Print the ntlm_auth diagnostic message to the winediag channel.
2011-10-27 12:25:13 +02:00
Henri Verbeet
7bb7d08d19
secur32: Handle the schan_buffers limit field in schan_get_buffer() instead of schan_pull().
...
Aside from being the right place, we depend on schan_get_buffer() not
returning a buffer if there's no space left in schan_imp_recv() /
schan_imp_send().
2011-10-05 17:00:58 -05:00
Henri Verbeet
929598fd00
secur32: Properly handle GNUTLS_E_AGAIN in (GnuTLS) schan_imp_recv().
2011-10-03 14:38:49 -05:00
Henri Verbeet
65aed972c0
secur32: Properly handle GNUTLS_E_AGAIN in (GnuTLS) schan_imp_send().
2011-10-03 14:38:44 -05:00
Henri Verbeet
5004c38dd5
secur32: Return failure if chan_EncryptMessage() can't encrypt the entire buffer.
2011-10-03 14:38:35 -05:00
Henri Verbeet
0903855456
secur32: Use gnutls_record_get_max_size() to get the maximum message size.
2011-10-03 14:38:21 -05:00
Francois Gouget
3de330db54
tests: Remove unneeded assert.h includes.
2011-09-27 10:59:56 +02:00
Alexandre Julliard
0359f9d430
secur32/tests: Avoid crash on test failure.
2011-09-09 15:53:49 +02:00
Alexandre Julliard
52fa3bf42d
secur32: Avoid size_t and fix some printf formats.
2011-09-05 19:34:55 +02:00
Frédéric Delanoy
982e7f96b1
secur32: Remove dead code (Clang).
2011-07-05 14:42:53 +02:00
Marcus Meissner
e1fcd78928
secur32: Mark internal symbols with hidden visibility.
2011-04-26 15:31:27 +02:00
Ken Thomases
5015f388d1
secur32: Add alternative schannel implementation for Mac OS X.
...
It uses the native Secure Transport API rather than GnuTLS.
2011-03-14 19:31:07 +01:00
Ken Thomases
0b396208db
secur32: Separate GnuTLS schannel implementation into separate file.
2011-03-14 14:16:13 +01:00
Ken Thomases
c890bf4dc8
secur32: Make no-implementation error message non-GnuTLS-specific.
2011-03-14 14:10:54 +01:00
Ken Thomases
2cecf54427
secur32: Extract schan_imp_init/deinit functions.
2011-03-14 14:10:46 +01:00
Ken Thomases
9124cdc234
secur32: Extract schan_imp_allocate/free_certificate_credentials functions.
2011-03-14 14:10:38 +01:00
Ken Thomases
e02ac5f023
secur32: Use opaque type schan_imp_session in schan_imp interface.
2011-03-14 14:10:33 +01:00
Ken Thomases
6b5f7df5cb
secur32: Set session credentials in schan_imp_create_session.
2011-03-14 14:10:27 +01:00
Ken Thomases
3d47fce382
secur32: Set push & pull functions in schan_imp_create_session.
2011-03-14 14:10:21 +01:00
Ken Thomases
c86dafe51e
secur32: Extract GnuTLS-isms from schan_push to schan_push_adapter.
2011-03-14 14:10:17 +01:00
Ken Thomases
194aaef7cd
secur32: Extract GnuTLS-isms from schan_pull to schan_pull_adapter.
2011-03-14 14:10:13 +01:00