Halaman utama Jelajahi Bantuan
Masuk
c
/
mono
cermin dari https://github.com/mono/mono.git
2
0
Fork 0
Berkas Masalah 0 Wiki
Pohon: 26dbfb8ecc
Ranting Tag
mono
/
mcs
/
class
/
System.ServiceModel
/
Mono.Security.Protocol.Tls.Handshake.Client
/
ChangeLog

ChangeLog 10 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316 
  1. 2007-12-15  Sebastien Pouliot  <[email protected]>
    2. 

  2. 

  3. 	* TlsServerCertificate.cs: Add support for wilcard (*) when matching
    4. 

  4. 	the target host with the certificate. Fix bug #346812
    5. 

  5. 

  6. 2007-05-22  Sebastien Pouliot  <[email protected]>
    7. 

  7. 

  8. 	* TlsClientCertificate.cs: If possible avoid to export the private key
    9. 

  9. 	(it could be non-exportable in a different RSA class implementation).
    10. 

  10. 	Patch from Roy Versteeg to fix #81592.
    11. 

  11. 	* TlsClientCertificateVerify.cs: Add chain support for x.509 client 
    12. 

  12. 	certificates. Based on Roy Versteeg patch to fix #80557.
    13. 

  13. 

  14. 2006-12-23 Gonzalo Paniagua Javier <[email protected]>
    15. 

  15. 

  16. 	* TlsServerCertificate.cs: typo.
    17. 

  17. 

  18. 2006-09-11  Sebastien Pouliot  <[email protected]>
    19. 

  19. 

  20. 	* TlsClientFinished.cs: Use Write.Cipher instead of Cipher. Remove 
    21. 

  21. 	usage of TlsStream in ProcessAsSsl3.
    22. 

  22. 	* TlsClientKeyExchange.cs: Use Negotiating.Cipher instead of Cipher.
    23. 

  23. 	Refactor to avoid code duplication between SSL3 and TLS.
    24. 

  24. 	* TlsServerCertificate.cs: Use Negotiating.Cipher instead of Cipher.
    25. 

  25. 	* TlsServerFinished.cs: Use Current.Cipher instead of Cipher. Use 
    26. 

  26. 	Compare to test client and server digests equality. Remove usage of 
    27. 

  27. 	TlsStream in ProcessAsSsl3.
    28. 

  28. 	* TlsServerHello.cs: Use Negotiating.Cipher instead of Cipher. Remove
    29. 

  29. 	usage of TlsStream to reduce memory allocations. Remove method 
    30. 

  30. 	CompareSessionId and use the new base class Compare method instead.
    31. 

  31. 

  32. 2006-03-16  Sebastien Pouliot  <[email protected]>
    33. 

  33. 

  34. 	* TlsClientHello.cs: Check to see if we already have a known session
    35. 

  35. 	(past or concurrent) with the same target host. If so the use this
    36. 

  36. 	session id to try to resume (i.e. abbreviated handshake).
    37. 

  37. 	* TlsServerFinished.cs: Don't reset the hasndshake stream here. The 
    38. 

  38. 	stream must be resetted once BOTH the client and the server are done.
    39. 

  39. 	The order of message can be different if we use an abbreviated 
    40. 

  40. 	handshake sequence which leads to an invalid handshake.
    41. 

  41. 	* TlsServerHello.cs: Add this session info to the client cache. If the
    42. 

  42. 	server sends the same session id (as we supplied) then we MUST do an 
    43. 

  43. 	abbreviated handshake.
    44. 

  44. 

  45. 2005-11-23  Sebastien Pouliot  <[email protected]>
    46. 

  46. 

  47. 	* TlsServerCertificate.cs: Add support for Netscape Server Gated 
    48. 

  48. 	Crypto (2.16.840.1.113730.4) as a valid server-side EKU OID. Fix bug
    49. 

  49. 	#76804.
    50. 

  50. 

  51. 2005-06-14  Sebastien Pouliot  <[email protected]>
    52. 

  52. 

  53. 	* TlsClientCertificate.cs: Add support for _optional_ mutual 
    54. 

  54. 	authentication. SSL3 and TLS1 deals differently with this. SSL3 tested
    55. 

  55. 	with OpenSSL, TSL1 tested with OpenSSL and LDAPS/AD.
    56. 

  56. 

  57. 2005-04-12  Sebastien Pouliot  <[email protected]>
    58. 

  58. 

  59. 	* TlsClientCertificateVerify.cs: Add missing data length (16 bits - 
    60. 

  60. 	not to be confused with the record 24 bits length) before the RSA
    61. 

  61. 	signature of the MD5SHA1 hash. Fix #71696.
    62. 

  62. 

  63. 2004-05-11 Carlos Guzman Alvarez  <[email protected]>
    64. 

  64. 

  65. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerCertificate.cs:
    66. 

  66. 

  67. 		- Added fix for better handling of exceptions when
    68. 

  68. 		building the X509 Certificate chain.
    69. 

  69. 

  70. 2004-04-22  Sebastien Pouliot  <[email protected]>
    71. 

  71. 

  72. 	* TlsClientCertificateVerify.cs: Use Buffer.BlockCopy instead of 
    73. 

  73. 	Array.Copy.
    74. 

  74. 	* TlsServerCertificate.cs: Changed KeyUsage to KeyUsages and CertType 
    75. 

  75. 	to CertTypes.
    76. 

  76. 

  77. 2004-03-19  Sebastien Pouliot  <[email protected]>
    78. 

  78. 

  79. 	* TlsClientKeyExchange.cs: Fixed key pair used to encrypt pre-master
    80. 

  80. 	secret for exportable ciphers - must use the public key received in 
    81. 

  81. 	ServerKeyExchange.
    82. 

  82. 

  83. 2004-03-10 Carlos Guzman Alvarez  <[email protected]>
    84. 

  84. 

  85. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientCertificateVerify.cs:
    86. 

  86. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerCertificateRequest.cs:
    87. 

  87. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerFinished.cs:
    88. 

  88. 	* Mono.Security.Protocol.Tls.Handshake.Server/TlsClientCertificateVerify.cs:
    89. 

  89. 	* Mono.Security.Protocol.Tls.Handshake.Server/TlsServerCertificateRequest.cs:
    90. 

  90. 	* Mono.Security.Protocol.Tls.Handshake.Server/TlsServerFinished.cs:
    91. 

  91. 

  92. 		- Fixed meesage type definition.
    93. 

  93. 

  94. 2004-03-04 Carlos Guzman Alvarez  <[email protected]>
    95. 

  95. 

  96. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerHelloDone.cs:
    97. 

  97. 	* Mono.Security.Protocol.Tls.Handshake.Server/TlsServerHelloDone.cs:
    98. 

  98. 

  99.         - Fixed message type.
    100. 

  100. 

  101. 2004-02-26  Sebastien Pouliot  <[email protected]>
    102. 

  102. 

  103. 	* TlsServerCertificate.cs: Certificate validation has been activated.
    104. 

  104. 

  105. 2004-02-26 Carlos Guzman Alvarez  <[email protected]>
    106. 

  106. 

  107. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerFinished.cs:
    108. 

  108. 

  109. 		- Added changes for better handling of ClientHelloRequest messages.
    110. 

  110. 

  111. 2004-02-21  Carlos Guzman Alvarez  <[email protected]>
    112. 

  112. 

  113.     * TlsServerHello: Fix for handle SecurityProtocolType.Default.
    114. 

  114. 

  115. 2004-02-20  Sebastien Pouliot  <[email protected]>
    116. 

  116. 

  117. 	* TlsServerCertificate.cs: Added code to validate the server X.509
    118. 

  118. 	certificate (identity, usage) and it's chain to a trusted root.
    119. 

  119. 	Note that the verification is commented for the time being.
    120. 

  120. 

  121. 2004-02-14 Carlos Guzmán Álvarez  <[email protected]>
    122. 

  122. 

  123.     * Mono.Security.Protocol.Tls.Handshake.Client/TlsServerCertificate.cs:
    124. 

  124. 

  125.         - Removed test code.
    126. 

  126. 

  127. 2003-11-17 Carlos Guzmán Álvarez  <[email protected]>
    128. 

  128. 

  129. 	* Mono.Security.Protocol.Tls/SslClientStream.cs:
    130. 

  130. 

  131. 		Removed ReadByte method, use innerStream.ReadByte() method instead.
    132. 

  132. 

  133. 2003-11-13 Carlos Guzmán Álvarez  <[email protected]>
    134. 

  134. 

  135. 	* Added implementation of an SslClientStream class similar to the MS .NET Framework 1.2 documentation.
    136. 

  136. 

  137. 		The next files are no more needed:
    138. 

  138. 

  139. 			- TlsSession.cs
    140. 

  140. 

  141. 			- TlsNetworkStream.cs
    142. 

  142. 

  143. 			- TlsSocket.cs
    144. 

  144. 

  145. 			- TlsSessionState.cs
    146. 

  146. 

  147. 		The next files are renamed:
    148. 

  148. 

  149. 			- TlsSessionSettings.cs -> TlsClientSettings.cs
    150. 

  150. 

  151. 			- TlsSessionContext.cs -> TlsContext.cs
    152. 

  152. 

  153. 		The next files are new:
    154. 

  154. 

  155. 			- SslClientStream.cs ( the name is non definitive yet )
    156. 

  156. 

  157. 		The next files where changed to reflect the new canges:
    158. 

  158. 

  159. 			- TlsHandshakeMessage.cs
    160. 

  160. 

  161. 			- TlsClientCertificate.cs
    162. 

  162. 

  163. 			- TlsClientCertificateVerify.cs
    164. 

  164. 

  165. 			- TlsClientFinished.cs
    166. 

  166. 

  167. 			- TlsClientHello.cs
    168. 

  168. 

  169. 			- TlsClientKeyExchange.cs
    170. 

  170. 

  171. 			- TlsServerCertificate.cs
    172. 

  172. 

  173. 			- TlsServerCertificateRequest.cs
    174. 

  174. 

  175. 			- TlsServerFinished.cs
    176. 

  176. 

  177. 			- TlsServerHello.cs
    178. 

  178. 

  179. 			- TlsServerHelloDone.cs
    180. 

  180. 

  181. 			- TlsServerKeyExchange.cs
    182. 

  182. 

  183. 			- TlsAlert.cs
    184. 

  184. 

  185. 			- TlsCloseNotifyAlert.cs
    186. 

  186. 

  187. 		
    188. 

  188. 2003-11-12 Carlos Guzmán Álvarez  <[email protected]>
    189. 

  189. 

  190. 	* Mono.Security.Protocol.Tls.Alerts/TlsAlert.cs:
    191. 

  191. 	
    192. 

  192. 		- Changes for give full error message only in debug mode ( Thanks to Sebastién Pouliot. )
    193. 

  193. 		
    194. 

  194. 	* Mono.Security.Protocol.Tls/TlsProtocol.cs:
    195. 

  195. 	
    196. 

  196. 		- Renamed to SecurityProtocolType.cs ( for match .NET 1.2 )
    197. 

  197. 	
    198. 

  198. 	* Mono.Security.Cryptography/MD5SHA1CryptoServiceProvider.cs:
    199. 

  199. 	
    200. 

  200. 		- Renamed to MD5SHA1.cs ( Thanks to Sebastién Pouliot. )
    201. 

  201. 		
    202. 

  202. 	* Mono.Security.Cryptography/TlsCompressionMethod.cs:
    203. 

  203. 	
    204. 

  204. 		- Renamed to SecurityCompressionType.
    205. 

  205. 		
    206. 

  206. 	* Mono.Security.Protocol.Tls/CipherAlgorithmType.cs:
    207. 

  207. 	* Mono.Security.Protocol.Tls/HashAlgorithmType.cs:
    208. 

  208. 	* Mono.Security.Protocol.Tls/ExchangeAlgorithmType.cs:
    209. 

  209. 	
    210. 

  210. 		- New enumerations that matches .NET 1.2 definitions with some minor differences.
    211. 

  211. 	
    212. 

  212. 	* Mono.Security.Protocol.Tls/CipherSuite.cs:
    213. 

  213. 	* Mono.Security.Protocol.Tls/TlsCipherSuite.cs:
    214. 

  214. 	* Mono.Security.Protocol.Tls/TlsSslCipherSuite.cs:
    215. 

  215. 	* Mono.Security.Protocol.Tls/TlsSessionContext.cs:
    216. 

  216. 	
    217. 

  217. 		- Added changes for make use of new enumerations.
    218. 

  218. 	
    219. 

  219. 	* Mono.Security.Protocol.Tls/TlsClientStream.cs:
    220. 

  220. 	
    221. 

  221. 		- Added new informative properties that matches .NET 1.2 SslClientStream
    222. 

  222. 		( Not all the properties are implemented yet ).
    223. 

  223. 

  224. 

  225. 2003-11-10 Carlos Guzmán Álvarez  <[email protected]>
    226. 

  226. 

  227. 	* Mono.Security.Protocol.Tls.Alerts/TlsAlert.cs:
    228. 

  228. 

  229. 		- Fixed invalid alert message.
    230. 

  230. 

  231. 	* Mono.Security.Protocol.Tls/CipherSuite.cs:
    232. 

  232. 	* Mono.Security.Protocol.Tls/TlsSslCipherSuite.cs:
    233. 

  233. 	* Mono.Security.Cryptography/HMAC.cs:
    234. 

  234. 	* Mono.Security.Cryptography/MD5SHA1CryptoServiceProvider.cs:
    235. 

  235. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientCertificateVerify.cs:
    236. 

  236. 

  237. 		- Changed ( Thanks to Sebastién Pouliot for his feedback )
    238. 

  238. 

  239. 			SHA1CryptoServiceProvider sha = new SHA1CryptoServiceProvider();
    240. 

  240. 			MD5CryptoServiceProvider sha = new MD5CryptoServiceProvider();
    241. 

  241. 

  242. 			to
    243. 

  243. 

  244. 			HashAlgorithm sha = SHA1.Create();
    245. 

  245. 			HashAlgorithm md5 = MD5.Create(); 
    246. 

  246. 

  247. 2003-11-04 Carlos Guzmán Álvarez <[email protected]>
    248. 

  248. 

  249. 	* Mono.Security.Protocol.Tls/CipherSuite.cs:
    250. 

  250. 

  251. 		- Added custom padding for record encryption.
    252. 

  252. 

  253. 

  254. 2003-11-03 Carlos Guzmán Álvarez <[email protected]>
    255. 

  255. 

  256. 	* Mono.Security.Protocol.Tls.Handshake/TlsHandshakeMessages.cs:
    257. 

  257. 	
    258. 

  258. 		- Removed file.
    259. 

  259. 

  260. 	* Mono.Security.Protocol.Tls/TlsSslHandshakeHash.cs:
    261. 

  261. 	
    262. 

  262. 		- New class for handshake hashes calculation on SSL3 protocol.
    263. 

  263. 

  264. 	* Mono.Security.Protocol.Tls/TlsSessionContext.cs:
    265. 

  265. 	
    266. 

  266. 		- Fixed mac keys clearing for SSL3 protocol.
    267. 

  267. 

  268. 	* Mono.Security.Protocol.Tls/TlsSslCipherSuite.cs:
    269. 

  269. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientFinished.cs:
    270. 

  270. 	
    271. 

  271. 		- Added changes for make use of new TlsSslHandshakeHash class.
    272. 

  272. 	
    273. 

  273. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerFinished.cs:
    274. 

  274. 	
    275. 

  275. 		- Added initial implementation for SSL3 protocol.
    276. 

  276. 	
    277. 

  277. 	* Mono.Security.Cryptography/MD5SHA1CryptoServiceProvider.cs:
    278. 

  278. 	
    279. 

  279. 		- New class for md5-sha hash calculation.
    280. 

  280. 							
    281. 

  281. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientFinished.cs:
    282. 

  282. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerFinished.cs:
    283. 

  283. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerKeyExchange.cs:
    284. 

  284. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsHandshakeMessage.cs:
    285. 

  285. 	
    286. 

  286. 		- Make use of new MD5SHA1CryptoServiceProvider class.
    287. 

  287. 		
    288. 

  288. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientCertificateVerify.cs:
    289. 

  289. 	
    290. 

  290. 		- Added initial implementation (not finished).
    291. 

  291. 			
    292. 

  292. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerKeyExchange.cs:
    293. 

  293. 	
    294. 

  294. 		- Minor change to message processing.
    295. 

  295. 

  296. 		- Changed verify method name to verifySignature.
    297. 

  297. 			
    298. 

  298. 	* Mono.Security.Protocol.Tls/TlsSessionContext.cs:
    299. 

  299. 	
    300. 

  300. 		- Changed handshakeHashes member to be an TlsStream.
    301. 

  301. 

  302. 2003-10-28 Carlos Guzmán Álvarez <[email protected]>
    303. 

  303. 

  304. 	* Mono.Security.Protocol.Tls/CipherSuite.cs:
    305. 

  305. 	* Mono.Security.Protocol.Tls/TlsSessionSettings.cs:
    306. 

  306. 	* Mono.Security.Protocol.Tls/TlsServerSettings.cs:
    307. 

  307. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientCertificateVerify.cs:
    308. 

  308. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsClientKeyExchange.cs:
    309. 

  309. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerCertificate.cs:
    310. 

  310. 	* Mono.Security.Protocol.Tls.Handshake.Client/TlsServerKeyExchange.cs:
    311. 

  311. 

  312. 		- Added changes for make use of X509 classes from mono.
    313. 

  313. 

  314. 2003-10-23 Carlos Guzmán Álvarez <[email protected]>
    315. 

  315. 

  316. 	* Added partial implementation of SSL3 protocol ( not finished yet ).
    317.