aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/ssl/connector.rs
Commit message (Collapse)AuthorAgeFilesLines
* Small cleanupSteven Fackler2018-09-021-14/+11
| | | | Closes #981
* Overhaul openssl cfgsSteven Fackler2018-05-201-190/+198
| | | | Also expose hostname verification on libressl
* Clean up a couple of holdovers from old featuresSteven Fackler2018-03-291-11/+5
|
* Remove version-specific featuresSteven Fackler2018-03-191-2/+2
| | | | Closes #852
* Inline connector constantsSteven Fackler2018-02-211-17/+15
|
* Don't special case 1.0.1Steven Fackler2018-02-211-7/+0
| | | | It appears that 1.0.1's defaults are actually okay.
* Update SslConnector cipher listSteven Fackler2018-02-201-6/+11
| | | | | | | | Based off of python/cpython#3532, we use OpenSSL's default cipher list and turn of things we don't like. This can't be used with 1.0.1, however, which had a poor default set. There, we use the old defaults, with the bits that aren't implemented in 1.0.1 removed (namely TLSv1.3 suites and ChaCha).
* OpenSSL 1.1.1 supportSteven Fackler2018-02-131-0/+13
|
* Add setters to ConnectConfigurationSteven Fackler2018-01-111-3/+13
|
* Rename key serialization/deserialization methodsSteven Fackler2018-01-061-1/+1
| | | | | | Also document their specific formats. Closes #502
* Split X509StoreContextRef::ssl upSteven Fackler2017-12-261-5/+5
|
* Overhaul verify error typeSteven Fackler2017-12-261-25/+26
| | | | Also set the error in the hostname verification callback for 1.0.1
* Adjust SslConnector and SslAcceptor constructionSteven Fackler2017-12-261-111/+60
|
* Remove deprecated APIsSteven Fackler2017-12-251-71/+0
|
* Fix a bunch of FIXMEsSteven Fackler2017-12-251-5/+3
|
* Tweak default ssl optionsSteven Fackler2017-12-251-2/+4
|
* Fix testsSteven Fackler2017-12-251-5/+5
|
* Upgrade bitflags to 1.0Steven Fackler2017-12-251-20/+22
| | | | Closes #756
* Clean up 1.0.1 hostname verificationSteven Fackler2017-12-231-37/+23
|
* Allow SNI and hostname verification to be configured separatelySteven Fackler2017-12-231-27/+50
| | | | Closes #728
* Finish documentation for the ssl moduleSteven Fackler2017-12-041-4/+20
| | | | Closes #727
* Impl deref for acceptor/connector buildersSteven Fackler2017-12-031-21/+63
|
* Convert try! usage to ?johnthagen2017-10-031-27/+27
|
* Properly handle IPs in hostname verificationSteven Fackler2017-09-201-1/+4
|
* Update default client cipher listSteven Fackler2017-09-161-3/+6
|
* Fix indentationSteven Fackler2017-09-151-3/+2
|
* Set SSL_MODE_RELEASE_BUFFERS by defaultAlex Crichton2017-09-141-1/+11
| | | | Closes #696
* Tweak formatting on cipher listSteven Fackler2017-07-261-18/+13
|
* RustfmtSteven Fackler2017-07-151-44/+62
|
* Fix buildSteven Fackler2017-07-151-2/+2
|
* Don't overwrite the configured verify modeSteven Fackler2017-07-151-11/+29
| | | | | We can leverage the new extra data API to configure the verification mode up front so users can reconfigure it as they like.
* Logic to support client-side session reuseSteven Fackler2017-03-251-6/+51
|
* Fix typoSteven Fackler2017-01-081-2/+2
|
* Add methods to construct SslAcceptorBuilder without key and certSteven Fackler2017-01-081-22/+34
| | | | | This will allow, in particular, initialization directly from files rather than having to load and parse them manually.
* TypoSteven Fackler2017-01-021-1/+1
|
* Implement Clone for SslConnector and SslAcceptorSteven Fackler2016-11-271-0/+2
|
* CleanupSteven Fackler2016-11-271-2/+2
|
* Rename ec_key to ecSteven Fackler2016-11-141-1/+1
|
* Rename new_by_curve_name to from_curve_nameSteven Fackler2016-11-131-1/+1
|
* No need to use a raw string anymoreSteven Fackler2016-11-131-2/+2
|
* Use ffdhe2048 in mozilla_intermediateSteven Fackler2016-11-121-42/+8
|
* Be a bit more emphatic about the dangerSteven Fackler2016-11-121-1/+1
|
* Add a connect method that does not perform hostname verificationSteven Fackler2016-11-121-0/+17
| | | | The method name is intentionally painful to type to discourage its use
* Make sure to override SslContext verify callback alwaysSteven Fackler2016-11-081-1/+3
| | | | | | The 1.0.1 code has to override this to setup hostname validation, and don't want behavior to silently change depending on the OpenSSL version you're building against.
* Support client CA advertisementSteven Fackler2016-11-061-1/+0
|
* RustfmtSteven Fackler2016-11-051-5/+2
|
* Rename accessorsSteven Fackler2016-11-051-4/+4
|
* Get rid of RefSteven Fackler2016-11-041-17/+16
| | | | | There's unfortunately a rustdoc bug that causes all methods implemented for any Ref<T> to be inlined in the deref methods section :(
* Use built in DH parameters when availableSteven Fackler2016-11-011-15/+49
| | | | | Fall back to a hardcoded PEM blob on 1.0.1, but serialized from DH_get_2048_256.
* Replace GeneralNames by the new Stack APILionel Flandrin2016-11-011-4/+6
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-11 19:14:19 +0000