aboutsummaryrefslogtreecommitdiff
path: root/openssl-sys/src
Commit message (Collapse)AuthorAgeFilesLines
* Support the client hello callbackSteven Fackler2018-09-151-1/+49
|
* Fix missing symbolSteven Fackler2018-09-121-0/+1
|
* Support libressl 2.8.0Steven Fackler2018-09-129-62/+93
| | | | Closes #988
* Refactor openssl-sysSteven Fackler2018-09-1241-5607/+5929
| | | | | The old layout tried to structure itself by version but it ended up with a lot of duplication. Instead, follow the structure of the header files.
* Fix lookup errors with SNI callback.Steven Fackler2018-08-311-0/+4
| | | | | | | | | | | | | | | | | The job of an SNI callback is typically to swap out the context associated with an SSL depending on the domain the client is trying to talk to. Typically, only the callbacks associated with the current context are used, but this is not the case for the SNI callback. If SNI is run for a second time on a connection (i.e. in a renegotiation) and the context was replaced with one that didn't itself register an SNI callback, the old callback would run but wouldn't be able to find its state in the context's ex data. To work around this, we pass the pointer to the callback data directly to the callback to make sure it's always available. It still lives in ex data to handle the lifetime management. Closes #979
* SRTP cleanupSteven Fackler2018-08-194-47/+82
|
* Add methods for DTLS/SRTP key handshakeAron Wieck2018-08-144-0/+47
|
* Add get_shutdown and set_shutdownSteven Fackler2018-08-081-0/+5
|
* X509_V_ERR_UNSPECIFIED was added in 1.0.2fSteven Fackler2018-08-041-0/+1
| | | | Closes #970
* Add bindings for custom error definitionSteven Fackler2018-07-101-2/+12
|
* Merge pull request #937 from marcoh00/iterable-x509namesSteven Fackler2018-07-073-0/+6
|\ | | | | X509NameRef: Provide an iterator over all entries
| * Provide an Asn1Object getter method for X509NameEntryRefMarco Huenseler2018-06-033-0/+3
| |
| * Make X509NameRef provide an iterator over all X509NameEntriesMarco Huenseler2018-06-033-0/+3
| |
* | Add Dsa::from_(private|public)_componentsMoritz Wanzenböck2018-06-182-0/+27
| | | | | | | | Add 2 methods to create a DSA key pair from its raw components.
* | Merge pull request #943 from lolzballs/masterSteven Fackler2018-06-171-0/+8
|\ \ | | | | | | Add wrapper for SSL_CTX_set_psk_server_callback
| * \ Merge remote-tracking branch 'origin/master'Benjamin Cheng2018-06-027-79/+180
| |\ \
| * | | Add wrapper for SSL_CTX_set_psk_server_callbackBenjamin Cheng2018-05-161-0/+8
| | | |
* | | | Switch to accessors in libressl where possibleSteven Fackler2018-06-093-1/+111
| |_|/ |/| | | | | | | | | | | | | | | | | Some accessors are mysteriously still macros so we can't make everything opaque yet, unfortunately. cc #909
* | | Update to 1.1.1-pre7Steven Fackler2018-06-021-43/+72
| |/ |/| | | | | | | | | | | | | | | The initial session ticket is now sent as part of SSL_accept, so some tests need to write a single byte through the stream to make sure that both ends have fully completed to avoid test flakes. TLSv1.3 cipher suite control has been extracted from the normal cipher list into a separate method: SslContextBuilder::set_ciphersuites.
* | Add an openssl-sys binding for RSA_padding_check_PKCS1_type_2.Axel Rasmussen2018-05-301-0/+8
| | | | | | | | | | This padding check implementation is useful for certain types of RSA decryption, notably the type performed by Yubico's PIV library.
* | Add SslRef::verified_chainSteven Fackler2018-05-291-0/+1
| |
* | Get Nid string representationsMarco Huenseler2018-05-281-0/+1
| |
* | Add some digest supportSteven Fackler2018-05-241-0/+7
| |
* | Add bindings to SSL_get_finished and SSL_get_peer_finishedSteven Fackler2018-05-241-0/+2
| | | | | | | | These are used for the tls-unique SCRAM channel binding mode.
* | Merge pull request #920 from Ralith/max-early-data-accessorsSteven Fackler2018-05-222-0/+26
|\ \ | | | | | | TLS1.3 early data support
| * | Expose early I/OBenjamin Saunders2018-05-222-0/+9
| | |
| * | Expose early keying material exportBenjamin Saunders2018-05-171-0/+10
| | |
| * | Expose max TLS1.3 early data accessorsBenjamin Saunders2018-05-171-0/+7
| |/
* | Support ALPN on libresslSteven Fackler2018-05-201-4/+4
| | | | | | | | Closes #690
* | Overhaul openssl cfgsSteven Fackler2018-05-203-5/+49
| | | | | | | | Also expose hostname verification on libressl
* | Expose X509_VERIFY_PARAM on libresslSteven Fackler2018-05-201-5/+5
| |
* | Clean up openssl-sys cfgsSteven Fackler2018-05-203-56/+53
| |
* | Support min/max version in LibreSSLSteven Fackler2018-05-193-24/+39
|/ | | | | Their implementations of the accessors don't behave expected with no bounds, so we ignore those bits of the tests.
* Some sys cleanupSteven Fackler2018-05-135-114/+90
|
* Merge pull request #902 from ur0/CMS_signSteven Fackler2018-05-131-0/+55
|\ | | | | Add the CMS_sign and i2d_CMS_ContentInfo function bindings
| * Gate away CMS_KEY_PARAM from OpenSSL 1.0.1Umang Raghuvanshi2018-05-101-1/+1
| |
| * Properly version-gate CMS constantsUmang Raghuvanshi2018-05-101-0/+21
| |
| * Move CMS_* flags to the openssl-sys packageUmang Raghuvanshi2018-05-101-0/+24
| | | | | | | | Also renames attributes in the bitflags struct.
| * Fix mutability issues with CMS_signUmang Raghuvanshi2018-04-201-3/+3
| |
| * Add the CMS_sign and i2d_CMS_ContentInfo function bindingsUmang Raghuvanshi2018-04-201-1/+11
| | | | | | | | | | This adds the CMS_sign and i2d_CMS_ContentInfo bindings in the openssl-sys crate and Rusty wrappers in the openssl crate.
* | Implement Clone for RsaSteven Fackler2018-05-121-0/+1
| | | | | | | | Closes #917
* | Change SslContext callback handlingSteven Fackler2018-05-121-1/+7
| | | | | | | | Use the existing infrastructure!
* | Fix base version for min/max proto accessorsSteven Fackler2018-05-091-1/+7
| | | | | | | | Closes #911
* | Flag off constants added in 1.0.2hSteven Fackler2018-04-301-6/+9
| | | | | | | | Closes #868
* | Expose SslSession <-> DER conversionBenjamin Saunders2018-04-291-0/+3
| |
* | Reform version checking logicSteven Fackler2018-04-262-11/+11
| | | | | | | | | | | | | | Rather than having an infinitely growing set of things to look for, just grab the literal version out. We also provide that to downstream crates, and it should be used rather than the random assortment of other stuff that's also passed down.
* | Add functions to X509Req to obtain public key and extensionsRené Richter2018-04-211-0/+2
|/ | | | This allows for basic CSR signing.
* Add support for LibreSSL 2.7.1Ossi Herrala2018-03-312-8/+8
| | | | | While there, support also future LibreSSL 2.7 versions out of the box. This fixes compiling this crate in OpenBSD -current.
* Merge pull request #858 from Ralith/stateless-apiSteven Fackler2018-03-311-1/+17
|\ | | | | Introduce SslStreamBuilder
| * Update to OpenSSL 1.1.1-pre3Benjamin Saunders2018-03-281-1/+17
| |
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-11 16:10:45 +0000