aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/ssl/mod.rs
Commit message (Collapse)AuthorAgeFilesLines
...
* Rename nwe to mozilla_intermediateSteven Fackler2016-10-301-4/+2
|
* Pass SslMethod into constructorsSteven Fackler2016-10-301-4/+7
|
* Configure ECDH parameters in connectorSteven Fackler2016-10-301-2/+14
|
* Pull Curl's CA list for Windows testsSteven Fackler2016-10-291-1/+1
|
* Add module level docsSteven Fackler2016-10-291-0/+69
|
* Docs for connectorsSteven Fackler2016-10-291-0/+12
|
* Add PKeyRefSteven Fackler2016-10-291-2/+2
|
* Implement client and server connectorsSteven Fackler2016-10-291-2/+21
|
* Camel case DHSteven Fackler2016-10-271-2/+2
|
* Add a macro definitionSteven Fackler2016-10-271-5/+1
|
* Fix descriptionSteven Fackler2016-10-261-2/+2
|
* Stop returning an Option from cipher descriptionSteven Fackler2016-10-261-8/+3
|
* Add SslMethod::from_ptrSteven Fackler2016-10-261-0/+4
|
* Don't allow mutation of SslContextsSteven Fackler2016-10-251-29/+56
| | | | | | SslContext is reference counted and the various setter methods don't take out locks where necessary. Fix this by adding a builder for the context.
* Add a shutdown methodSteven Fackler2016-10-251-0/+30
|
* Fix orderingSteven Fackler2016-10-251-59/+59
|
* Add into_errorSteven Fackler2016-10-231-0/+5
|
* Fix Send + Sync-ness of SslStreamSteven Fackler2016-10-231-4/+5
|
* Flatten crypto moduleSteven Fackler2016-10-221-1/+1
|
* Borrow compression stringSteven Fackler2016-10-211-13/+10
|
* Rename SslContextOptionsSteven Fackler2016-10-211-7/+7
|
* Fix X509StoreContextSteven Fackler2016-10-211-9/+9
|
* Convert X509VerifyParamRefSteven Fackler2016-10-211-2/+2
|
* Borrowed servernameSteven Fackler2016-10-211-6/+8
|
* Convert SslCipherRefSteven Fackler2016-10-211-14/+16
|
* Convert SslRefSteven Fackler2016-10-211-20/+28
|
* Convert SslContextRefSteven Fackler2016-10-211-14/+23
|
* Store a MidHandshakeSslStream in fatal errorsSteven Fackler2016-10-201-16/+39
| | | | | This in particular allows the X509 verification error to be retrieved, as well as the stream itself.
* Redo SslStream constructionSteven Fackler2016-10-201-77/+45
| | | | | | SslStream is now constructed via methods on Ssl. You realistically want to create an Ssl for SNI and hostname verification so making it harder to construct a stream directly from an SslContext is a good thing.
* Allow the X509 verify error to be read from an SslRefSteven Fackler2016-10-181-1/+8
|
* Callback cleanupSteven Fackler2016-10-181-27/+16
|
* Don't ignore errors in NPN/ALPN logicSteven Fackler2016-10-181-5/+18
| | | | Closes #479
* Implement new feature setupSteven Fackler2016-10-171-27/+18
| | | | | | | | The basic idea here is that there is a feature for each supported OpenSSL version. Enabling multiple features represents support for multiple OpenSSL versions, but it's then up to you to check which version you link against (probably by depending on openssl-sys and making a build script similar to what openssl does).
* Fix algorithm fieldSteven Fackler2016-10-161-2/+1
|
* ssl error handling cleanupSteven Fackler2016-10-161-88/+82
|
* Fix set_read_ahead signatureSteven Fackler2016-10-151-2/+2
|
* De-enumify SslMethodSteven Fackler2016-10-151-28/+45
|
* Handle OPENSSL_NO_COMPSteven Fackler2016-10-141-0/+10
| | | | Closes #459
* Enable hostname verification on 1.0.2Steven Fackler2016-10-141-3/+3
|
* Support hostname verificationSteven Fackler2016-10-141-0/+12
| | | | Closes #206
* CleanupSteven Fackler2016-10-131-2/+0
|
* Clean up featuresSteven Fackler2016-10-131-10/+12
|
* Flag off dtls and mask ssl_opsSteven Fackler2016-10-131-13/+3
| | | | Also un-feature gate npn as it ships with 1.0.1
* Add remaining SSL_OP constantsSteven Fackler2016-10-121-0/+5
|
* Add support for OpenSSL 1.1.0Alex Crichton2016-10-121-156/+194
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit is relatively major refactoring of the `openssl-sys` crate as well as the `openssl` crate itself. The end goal here was to support OpenSSL 1.1.0, and lots of other various tweaks happened along the way. The major new features are: * OpenSSL 1.1.0 is supported * OpenSSL 0.9.8 is no longer supported (aka all OSX users by default) * All FFI bindings are verified with the `ctest` crate (same way as the `libc` crate) * CI matrixes are vastly expanded to include 32/64 of all platforms, more OpenSSL version coverage, as well as ARM coverage on Linux * The `c_helpers` module is completely removed along with the `gcc` dependency. * The `openssl-sys` build script was completely rewritten * Now uses `OPENSSL_DIR` to find the installation, not include/lib env vars. * Better error messages for mismatched versions. * Better error messages for failing to find OpenSSL on a platform (more can be done here) * Probing of OpenSSL build-time configuration to inform the API of the `*-sys` crate. * Many Cargo features have been removed as they're now enabled by default. As this is a breaking change to both the `openssl` and `openssl-sys` crates this will necessitate a major version bump of both. There's still a few more API questions remaining but let's hash that out on a PR! Closes #452
* Fix SslContext::add_extra_chain_certSteven Fackler2016-08-171-3/+8
| | | | | | | | | SSL_CTX_add_extra_chain_cert assumes ownership of the certificate, so the method really needs to take an X509 by value. Work around this by manually cloning the cert. This method has been around for over a year but I'm guessing nobody actually used it since it produces a nice double free into segfault!
* PKCS #12 supportSteven Fackler2016-08-141-1/+1
|
* Mangle c helper functionsSteven Fackler2016-08-131-1/+1
| | | | | | | We want to make sure that multiple openssl versions can coexist in the same dependency tree. Closes #438
* Little tweaksSteven Fackler2016-08-101-3/+6
|
* Method renamesSteven Fackler2016-08-101-3/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-31 08:08:32 +0000