aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/lib.rs
Commit message (Collapse)AuthorAgeFilesLines
...
* Move SslString to a shared locationSteven Fackler2016-10-261-0/+1
|
* Flatten crypto moduleSteven Fackler2016-10-221-3/+13
|
* Switch X509Name over to new borrow setupSteven Fackler2016-10-201-0/+1
| | | | | | The use of actual references enables us to be correct with respect to mutability without needing two structs for the mutable and immutable cases and more deref impls.
* Start on error + BN refactorSteven Fackler2016-10-161-0/+28
|
* De-enumify message digestsSteven Fackler2016-10-151-7/+0
|
* Use stdlib logic for udpSteven Fackler2016-10-131-3/+0
|
* Add support for OpenSSL 1.1.0Alex Crichton2016-10-121-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit is relatively major refactoring of the `openssl-sys` crate as well as the `openssl` crate itself. The end goal here was to support OpenSSL 1.1.0, and lots of other various tweaks happened along the way. The major new features are: * OpenSSL 1.1.0 is supported * OpenSSL 0.9.8 is no longer supported (aka all OSX users by default) * All FFI bindings are verified with the `ctest` crate (same way as the `libc` crate) * CI matrixes are vastly expanded to include 32/64 of all platforms, more OpenSSL version coverage, as well as ARM coverage on Linux * The `c_helpers` module is completely removed along with the `gcc` dependency. * The `openssl-sys` build script was completely rewritten * Now uses `OPENSSL_DIR` to find the installation, not include/lib env vars. * Better error messages for mismatched versions. * Better error messages for failing to find OpenSSL on a platform (more can be done here) * Probing of OpenSSL build-time configuration to inform the API of the `*-sys` crate. * Many Cargo features have been removed as they're now enabled by default. As this is a breaking change to both the `openssl` and `openssl-sys` crates this will necessitate a major version bump of both. There's still a few more API questions remaining but let's hash that out on a PR! Closes #452
* Release v0.8.3Steven Fackler2016-09-091-1/+1
|
* Release openssl-sys v0.7.17, openssl v0.8.2Steven Fackler2016-08-181-1/+1
|
* Release openssl-sys v0.7.16, openssl v0.8.1Steven Fackler2016-08-151-1/+1
|
* Release openssl-sys v0.7.15, openssl v0.8.0Steven Fackler2016-08-111-1/+1
|
* Make hmac support optional and remove openssl-sys-extrasSteven Fackler2016-08-091-1/+0
| | | | rust-openssl no longer requires headers for the default feature set.
* Make c_helpers optionalSteven Fackler2016-08-091-0/+2
|
* Move init to crate rootSteven Fackler2016-08-071-0/+3
|
* Hash reformSteven Fackler2016-08-071-0/+7
| | | | Closes #430
* Restructure PEM input/output methodsSteven Fackler2016-08-021-1/+1
| | | | | Dealing with byte buffers directly avoids error handling weirdness and we were loading it all into memory before anyway.
* Drop unused feature gateSteven Fackler2016-07-311-1/+0
|
* Merge remote-tracking branch 'origin/master' into breaksSteven Fackler2016-07-311-1/+1
|\
| * Release v0.7.14Steven Fackler2016-07-011-1/+1
| |
| * Release v0.7.13Steven Fackler2016-05-201-1/+1
| |
| * Release v0.7.12Steven Fackler2016-05-161-1/+1
| |
| * Release v0.7.11Steven Fackler2016-05-051-1/+1
| |
* | Revert "Add a new trait based Nid setup"Steven Fackler2016-07-311-1/+0
| | | | | | | | | | | | This reverts commit 49db4c84dfde2adac65d7834121d09e95d6dbd65. Unclear that this is a good idea
* | Add a new trait based Nid setupSteven Fackler2016-05-031-0/+1
| |
* | Error reformSteven Fackler2016-05-031-3/+4
|/
* Release v0.7.10Steven Fackler2016-04-161-1/+1
|
* Update for nightly changesSteven Fackler2016-04-131-1/+1
|
* Resolves #378 - Module version with the version informationDavid Rajchenbach-Teller2016-04-131-0/+1
|
* Release v0.7.9Steven Fackler2016-04-061-1/+1
|
* Release v0.7.8Steven Fackler2016-03-181-1/+1
|
* Release v0.7.7Steven Fackler2016-03-171-1/+1
|
* Release v0.7.6Steven Fackler2016-02-101-1/+1
|
* Release v0.7.5Steven Fackler2016-01-221-1/+1
|
* Add stream panic propagation behind a nightly feature gateSteven Fackler2016-01-111-0/+1
|
* Release v0.7.4Steven Fackler2015-12-181-1/+1
|
* Release v0.7.3Steven Fackler2015-12-171-1/+1
|
* Release v0.7.2Steven Fackler2015-12-151-1/+1
|
* Release v0.7.1Steven Fackler2015-11-281-1/+1
|
* Release v0.7.0Steven Fackler2015-11-161-1/+1
|
* Split stuff requiring a shim out to a separate crateSteven Fackler2015-11-161-0/+1
|
* Release v0.6.7Steven Fackler2015-10-141-1/+1
|
* Release v0.6.6Steven Fackler2015-10-051-1/+1
|
* Enable testing on Windows via AppVeyorAlex Crichton2015-09-221-2/+1
| | | | | | | This abolishes the test.sh script which spawns a bunch of `openssl` instances to instead run/manage the binary in-process (providing more isolation to boot). The tests have been updated accordingly and the `connected_socket` dependency was also dropped in favor of `net2` as it the former doesn't work on Windows.
* Merge pull request #259 from jedisct1/dhSteven Fackler2015-09-011-0/+1
|\ | | | | Add support for DHE for forward secrecy
| * Add support for set_tmp_dh() and RFC5114 DH parameters for forward secrecy.Frank Denis2015-08-311-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | rust-openssl didn't support forward secrecy at all. This adds support for DHE, by exposing set_tmp_dh() as well as the RFC5114 parameters, which are conveniently exposed since OpenSSL 1.0.2. With OpenSSL >= 1.0.2, and the rfc5114 feature gate, enabling DHE is as simple as (here for 2048-bit MODP group with 256-bit prime order subgroup): use openssl::dh::DH; let dh = DH::get_2048_256().unwrap(); ctx.set_tmp_dh(dh).unwrap(); With OpenSSL < 1.0.2, DH::from_params() can be used to manually specify the DH parameters (here for 2048-bit MODP group with 256-bit prime order subgroup): use openssl::bn::BigNum; use openssl::dh::DH; let p = BigNum::from_hex_str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unwrap(); let g = BigNum::from_hex_str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unwrap(); let q = BigNum::from_hex_str("8CF83642A709A097B447997640129DA299B1A47D1EB3750BA308B0FE64F5FBD3").unwrap(); let dh = DH::from_params(p, g, q).unwrap(); ctx.set_tmp_dh(dh).unwrap();
* | Release v0.6.5Steven Fackler2015-08-311-1/+1
|/
* Release v0.6.4Steven Fackler2015-07-061-1/+1
|
* Release v0.6.3Steven Fackler2015-06-251-1/+1
|
* Add support for reading X509 subject informationJoseph Glanville2015-05-181-0/+1
|
* Fix doc rootSteven Fackler2015-05-131-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-12 10:25:13 +0000