Miroslav Lichvar
6615bb1b78
nts: add support for multiple sets of trusted certificates
...
Modify the session, NTS-KE, and NTS-NTP code to support multiple sets of
trusted certificates and identify the sets by a 32-bit ID.
2021-02-18 17:44:04 +01:00
Miroslav Lichvar
316d47e3b4
nts: allow multiple files with trusted certificates
...
Allow the ntstrustedcerts directive to be specified multiple times.
2021-02-11 16:13:39 +01:00
Miroslav Lichvar
90557cf1ba
nts: allow multiple server keys and certificates
...
Allow the ntsservercert and ntsserverkey directives to be specified
multiple times to enable the NTS-KE server to operate under multiple
names.
2021-02-11 16:13:39 +01:00
Miroslav Lichvar
80e627c86b
nts: define type for credentials
...
Add a NKSN_Credentials type to avoid referring to it as void *.
2021-02-11 16:13:39 +01:00
Miroslav Lichvar
0e4995e10b
nts: split creating server and client credentials
2021-02-11 16:13:39 +01:00
Miroslav Lichvar
72ee80debe
nts: fix comment about message handler
2020-07-09 14:47:33 +02:00
Miroslav Lichvar
66dc2b6d6b
nts: rework NTS-KE retry interval
...
Make the NTS-KE retry interval exponentially increasing, using a factor
provided by the NKE session. Use shorter intervals when the server is
refusing TCP connections or the connection is closed or timing out
before the TLS handshake.
2020-03-26 15:30:27 +01:00
Miroslav Lichvar
7b07e47c08
nts: fix address in server NTS-KE log messages
...
The server session instances are reused for different clients. Separate
the server name from the label used in log messages and set it on each
start of the session.
2020-03-26 15:30:27 +01:00
Miroslav Lichvar
a420ed57a1
nts: add NTS-KE server and client
...
Add a client and server implementing the Network Time Security (NTS) Key
Establishment. Use the GnuTLS library for TLS.
2020-03-05 16:02:15 +01:00
