| commit | 6729a36bb165ae62641213069772a0ffa3a3ae2c | |
| author | Stefan Becker <chemobejk@gmail.com> | |
| Sat, 12 Nov 2011 20:28:22 +0000 (12 22:28 +0200) | ||
| committer | Stefan Becker <chemobejk@gmail.com> | |
| Sat, 12 Nov 2011 20:28:22 +0000 (12 22:28 +0200) | ||
| tree | 5710e89ad7a63bc8c9d9202583c7d75f0782cb87 | treesnapshot (tar.gz zip) |
| parent | 725ed810f65736f4db69e695951fb7afb319d415 | commitdiff |
tls: add new module for TLS handshake messages
I looked at the TLS APIs of GnuTLS/NSS/OpenSSL. None of them offers an
interface to the internals of TLS, i.e. so that we can trigger the
generation of certain messages and then get those in raw binary format.
Their APIs are all geared toward code that wants to layer TLS ontop of
an existing communication channel.
TLS-DSK requires the TLS handshake messages for the GSSAPI data in the
authentication phase. All the above APIs offer is "start handshake and
return once it is complete".
So we will have to roll our own limited TLS implementation...
I looked at the TLS APIs of GnuTLS/NSS/OpenSSL. None of them offers an
interface to the internals of TLS, i.e. so that we can trigger the
generation of certain messages and then get those in raw binary format.
Their APIs are all geared toward code that wants to layer TLS ontop of
an existing communication channel.
TLS-DSK requires the TLS handshake messages for the GSSAPI data in the
authentication phase. All the above APIs offer is "start handshake and
return once it is complete".
So we will have to roll our own limited TLS implementation...
| siplcs.vcproj | diffblobblamehistory | |
| src/core/Makefile.am | diffblobblamehistory | |
| src/core/Makefile.mingw | diffblobblamehistory | |
| src/core/sip-sec-tls-dsk.c | diffblobblamehistory | |
| src/core/sipe-cert-crypto.h | diffblobblamehistory | |
| src/core/sipe-tls.c | [new file with mode: 0644] | blob |
| src/core/sipe-tls.h | [new file with mode: 0644] | blob |