DGNum/hostapd
6
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions
hostapd/src/tls
History
Jouni Malinen ad469aecc1 Reject X.509 certificate strings with embedded NUL characters 
These could, at least in theory, be used to generate unexpected common
name or subject alternative name matches should a CA sign strings with
NUL (C string termination) in them. For now, just reject the certificate
if an embedded NUL is detected. In theory, all the comparison routines
could be made to compare these strings as binary blobs (with additional
X.509 rules to handle some exceptions) and display NUL characters
somehow. Anyway, just rejecting the certificate will get rid of
potential problems with the C string getting terminated and it should
not really be used in certificates, so this should not break valid use
cases.
2009-08-23 21:00:38 +03:00
..
asn1.c X.509: Add parsing of alternative name to internal TLS implementation 2009-06-11 23:47:35 +03:00
asn1.h X.509: Add parsing of alternative name to internal TLS implementation 2009-06-11 23:47:35 +03:00
asn1_test.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
bignum.c Fixed number of doxygen warnings 2009-01-02 22:28:04 +02:00
bignum.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
libtommath.c Updated the LibTomMath reference to use 0.41 version 2008-06-06 10:32:09 +03:00
Makefile Improved 'make install' (use BINDIR/LIBDIR, install shared objects) 2009-02-15 14:22:50 +02:00
rsa.c hostapd: Fix internal crypto build without TLS 2009-05-26 17:09:04 +03:00
rsa.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_client.c Add a workaround for EAP-FAST with Cisco AP local RADIUS server 2009-03-08 12:04:39 +02:00
tlsv1_client.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_client_i.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_client_read.c Silenced compiler warnings on size_t printf format and shadowed variables 2008-09-27 10:46:06 +03:00
tlsv1_client_write.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_common.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_common.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_cred.c Support PEM format RSA private key with internal TLS implementation 2009-08-16 09:34:21 +03:00
tlsv1_cred.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_record.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_record.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_server.c Rename EAP server defines from EAP_* to EAP_SERVER_* 2009-03-25 12:06:19 +02:00
tlsv1_server.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_server_i.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tlsv1_server_read.c Resolve couple of compiler warnings 2009-05-26 17:08:16 +03:00
tlsv1_server_write.c Rename EAP server defines from EAP_* to EAP_SERVER_* 2009-03-25 12:06:19 +02:00
x509v3.c Reject X.509 certificate strings with embedded NUL characters 2009-08-23 21:00:38 +03:00
x509v3.h X.509: Add parsing of alternative name to internal TLS implementation 2009-06-11 23:47:35 +03:00