Select Git revision
Search by author
- Any Author
- authors
-
Aleš Mrázek amrazek
-
Anbang Wen anb
-
Daniel Kahn Gillmor
dkg
-
Daniel Salzman dsalzman
-
David Vasek
dvasek
-
Frantisek Tobias ftobias
-
Hynek Šabacký
hsabacky
-
Jakub Ružička
jruzicka
-
Jan Hák jhak
-
Jan Pavlinec jpavlinec
-
Jan Včelák jvcelak
-
Josef Schlehofer
jschlehofer
-
Karel Koci
kkoci
-
**** project_147_bot_77ab1cef2fcb058144e515dcc77e07a3
-
Ladislav Lhotka
llhotka
-
Libor Peltan
lpeltan
-
Lukáš Ondráček londracek
-
Marek Vavrusa vavrusam
-
Michal Hrusecky mhrusecky
-
**** project_147_bot
- Jan 23, 2018
-
-
Petr Špaček authoredpolicy: load policy module by default See merge request !457
-
Petr Špaček authored
RFC 6761 mandates functionality implemented by policy module, so it is now loaded by default. Users with special needs can still unload the module.
-
- Jan 22, 2018
-
-
Vladimír Čunát authored -
Vladimír Čunát authored
-
Without changing the interface, map_contains is able to tell whether the item exist in map or not.
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Vladimír Čunát authored
Discovered by clang scan.
-
Vladimír Čunát authored
-
Vladimír Čunát authored
-
Petr Špaček authored
daemon/worker: worker_process_tcp: cleanup See merge request !452
-
Grigorii Demidov authored
daemon/worker: worker_process_tcp: cleanup; there are no need in special processing for qr_task_step return code
-
- Jan 19, 2018
-
-
Petr Špaček authored
layer/iterate: forwarding; repeat query to upstream if SERVFAIL\REFUSE has been received See merge request !451
-
Grigorii Demidov authored
-
Petr Špaček authored
ci: add flake8 to Dockerfile See merge request !449
-
We do not use Infer after all (see MR !435) so it does not make sense to have it in the image.
-
Petr Špaček authored
daemon/worker: clean up some unnecessary asserts See merge request !450
-
Grigorii Demidov authored
-
- Jan 18, 2018
-
-
Petr Špaček authored
TLS polish See merge request !447
-
Petr Špaček authored
gnutls-3.3.26-9.el7.x86_64 and libgnutls30-3.5.8-5+deb9u3 do not support @SYSTEM keyword and CentOS 7 has problem with -VERS-DTLS-ALL. We do not configure DTLS sockets so it should be harmless to delete the DTLS keyword. @SYSTEM is replaced by NORMAL, oh well. fixup! TLS client: enforce minimal TLS version and no compression
-
Petr Špaček authored
Same change as in a625a0ea1ce03b0707fd421633f21c0aacb786da but for client.
-
Petr Špaček authored
Server side now enforces security requirements from draft-ietf-dprive-dtls-and-tls-profiles-11 section 9
-
Petr Špaček authored
GnuTLS manual for some functions do not declare that error return code must be negative, so we should use constants to avoid potential problems.
-
Petr Špaček authored
gnutls_certificate_set_x509_trust_file could theoretically return 0 to indicate nothing was read, so we need to check for this as well.
-
Vladimír Čunát authored
-
-
Tomas Krizek authored
tmpfiles: create cache and use proper tmpfiles name See merge request !440
-
Tomas Krizek authored
-
Petr Špaček authored
policy TLS_FORWARD: add checks and documentation See merge request !445
-
Petr Špaček authored
The pin parameter contains SHA-256 encoded using Base64, but this is not the only option. Explicit name allows us to add alternative formats later on, and is consistent with GnuTLS naming.
-
-
Petr Špaček authored
-
Petr Špaček authored
-
Petr Špaček authored
-
Petr Špaček authored
Policy handling was split into smaller functions to allow easier checking. The code needs further refactoring, it seems that net_tls_client is just a thin wrapper around tls_client_params_set in C, which is unnecessary and error prone.
-
Petr Špaček authored
-
