aboutsummaryrefslogtreecommitdiff
path: root/openssl-sys/src
Commit message (Collapse)AuthorAgeFilesLines
* Release v0.9.0Steven Fackler2016-11-051-1/+1
|
* Avoid lhash weirdnessSteven Fackler2016-11-033-2/+5
|
* Fix signatureSteven Fackler2016-11-021-1/+1
|
* Use built in DH parameters when availableSteven Fackler2016-11-011-2/+2
| | | | | Fall back to a hardcoded PEM blob on 1.0.1, but serialized from DH_get_2048_256.
* Don't clear BigNums in destructorSteven Fackler2016-11-011-0/+2
| | | | Instead add a clear method.
* Fix stack signaturesSteven Fackler2016-11-011-2/+2
|
* Clean up stackSteven Fackler2016-11-011-0/+2
|
* Merge pull request #506 from simias/stackSteven Fackler2016-11-012-4/+5
|\ | | | | Implemented a generic Stack API and use it to deal with StackOf(X509) and StackOf(GENERAL_NAME)
| * Implement X509StoreContextRef::get_chainLionel Flandrin2016-11-012-0/+2
| |
| * Implement a generic Stack API to deal with OpenSSL stacksLionel Flandrin2016-11-011-4/+3
| |
* | Add method to encode a public key as a DER blobLionel Flandrin2016-11-011-0/+2
|/
* Clean up x509 name entriesSteven Fackler2016-10-311-1/+4
|
* Update x509Steven Fackler2016-10-311-1/+3
|
* Update verifySteven Fackler2016-10-311-0/+2
|
* Expose SSL_MODEsSteven Fackler2016-10-301-2/+8
|
* Configure ECDH parameters in connectorSteven Fackler2016-10-301-0/+5
|
* Implement EcKeySteven Fackler2016-10-301-1/+4
| | | | cc #499
* Add a macro definitionSteven Fackler2016-10-271-0/+6
|
* Support AES GCMSteven Fackler2016-10-251-2/+2
| | | | Closes #326
* Add a shutdown methodSteven Fackler2016-10-251-0/+1
|
* Remove NIDs only defined in 1.0.2+Steven Fackler2016-10-231-39/+0
|
* De-enumify NidSteven Fackler2016-10-221-3/+949
|
* Allow the X509 verify error to be read from an SslRefSteven Fackler2016-10-181-1/+2
|
* De-enumify X509ValidationErrorSteven Fackler2016-10-181-0/+1
| | | | | | Also make it an Error. Closes #352.
* Callback cleanupSteven Fackler2016-10-181-12/+12
|
* Migrate DSA sign/verify to EVP APIsSteven Fackler2016-10-151-0/+2
|
* Correctly bind BIO_new_mem_bufSteven Fackler2016-10-151-0/+3
|
* Fix signature of EVP_DigestVerifyFinal on 1.0.1Steven Fackler2016-10-152-1/+8
|
* Support HMAC PKeys and remove hmac moduleSteven Fackler2016-10-151-0/+6
|
* Add digest signature methodsSteven Fackler2016-10-151-0/+17
|
* Merge pull request #471 from sfackler/no-compSteven Fackler2016-10-141-0/+2
|\ | | | | Handle OPENSSL_NO_COMP
| * Handle OPENSSL_NO_COMPSteven Fackler2016-10-141-0/+2
| | | | | | | | Closes #459
* | Fix test_alpn_server_select_noneSteven Fackler2016-10-141-0/+12
|/ | | | | | | | | | | | In OpenSSL 1.1, a failure to negotiate a protocol is a fatal error, so fork that test. This also popped up an issue where we assumed all errors had library, function, and reason strings which is not necessarily the case. While we're in here, adjust the Display impl to match what OpenSSL prints out. Closes #465
* Respect osslconf in systestSteven Fackler2016-10-141-0/+1
| | | | | | Also cfg off SSLv3_method, since it's disabled in the OpenSSL that ships with Arch Linux. More such flags can be added on demand - it doesn't seem worth auditing everything for them.
* Enable hostname verification on 1.0.2Steven Fackler2016-10-143-15/+45
|
* Support hostname verificationSteven Fackler2016-10-141-15/+30
| | | | Closes #206
* Remove link_name usageSteven Fackler2016-10-143-4/+4
|
* Flag off dtls and mask ssl_opsSteven Fackler2016-10-131-0/+4
| | | | Also un-feature gate npn as it ships with 1.0.1
* Add remaining SSL_OP constantsSteven Fackler2016-10-121-10/+5
|
* Add support for OpenSSL 1.1.0Alex Crichton2016-10-124-628/+888
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit is relatively major refactoring of the `openssl-sys` crate as well as the `openssl` crate itself. The end goal here was to support OpenSSL 1.1.0, and lots of other various tweaks happened along the way. The major new features are: * OpenSSL 1.1.0 is supported * OpenSSL 0.9.8 is no longer supported (aka all OSX users by default) * All FFI bindings are verified with the `ctest` crate (same way as the `libc` crate) * CI matrixes are vastly expanded to include 32/64 of all platforms, more OpenSSL version coverage, as well as ARM coverage on Linux * The `c_helpers` module is completely removed along with the `gcc` dependency. * The `openssl-sys` build script was completely rewritten * Now uses `OPENSSL_DIR` to find the installation, not include/lib env vars. * Better error messages for mismatched versions. * Better error messages for failing to find OpenSSL on a platform (more can be done here) * Probing of OpenSSL build-time configuration to inform the API of the `*-sys` crate. * Many Cargo features have been removed as they're now enabled by default. As this is a breaking change to both the `openssl` and `openssl-sys` crates this will necessitate a major version bump of both. There's still a few more API questions remaining but let's hash that out on a PR! Closes #452
* Add RAND_status()manuels2016-10-011-0/+1
| | | RAND_status() returns 1 if the PRNG has been seeded with enough data, 0 otherwise.
* Add RSA_*_PADDING constantsmanuels2016-10-011-0/+6
|
* Release openssl-sys v0.7.17, openssl v0.8.2Steven Fackler2016-08-181-1/+1
|
* Fix SslContext::add_extra_chain_certSteven Fackler2016-08-171-0/+1
| | | | | | | | | SSL_CTX_add_extra_chain_cert assumes ownership of the certificate, so the method really needs to take an X509 by value. Work around this by manually cloning the cert. This method has been around for over a year but I'm guessing nobody actually used it since it produces a nice double free into segfault!
* Add `"x509_expiry"` feature flagDavid Weinstein2016-08-171-1/+1
| | | | | - fix return of `ASN1_TIME_print` - assert on null `date`
* Progress on asn1 expiryDavid Weinstein2016-08-171-1/+4
| | | | | | - Use MemBio and implement `Display` for Asn1Time - Tweak doc for asn1 `not_before`, `not_after`
* Release openssl-sys v0.7.16, openssl v0.8.1Steven Fackler2016-08-151-1/+1
|
* Initialize algorithms in initSteven Fackler2016-08-141-1/+2
| | | | Required to deserialize PKCS12 on 0.9.8, looks like
* Fix memory leak in general name stackSteven Fackler2016-08-141-0/+2
|
* PKCS #12 supportSteven Fackler2016-08-141-0/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-22 21:48:01 +0000