aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/ssl/mod.rs
Commit message (Collapse)AuthorAgeFilesLines
* Support the client hello callbackSteven Fackler2018-09-151-0/+166
|
* Fix lookup errors with SNI callback.Steven Fackler2018-08-311-7/+15
| | | | | | | | | | | | | | | | | The job of an SNI callback is typically to swap out the context associated with an SSL depending on the domain the client is trying to talk to. Typically, only the callbacks associated with the current context are used, but this is not the case for the SNI callback. If SNI is run for a second time on a connection (i.e. in a renegotiation) and the context was replaced with one that didn't itself register an SNI callback, the old callback would run but wouldn't be able to find its state in the context's ex data. To work around this, we pass the pointer to the callback data directly to the callback to make sure it's always available. It still lives in ex data to handle the lifetime management. Closes #979
* Fix doc referenceSteven Fackler2018-08-191-2/+2
|
* SRTP cleanupSteven Fackler2018-08-191-23/+6
|
* Add methods for DTLS/SRTP key handshakeAron Wieck2018-08-141-0/+95
|
* Add get_shutdown and set_shutdownSteven Fackler2018-08-081-11/+53
|
* SslSessionRef methods return static stringsSteven Fackler2018-07-191-3/+6
| | | | Closes #961
* Merge pull request #943 from lolzballs/masterSteven Fackler2018-06-171-1/+36
|\ | | | | Add wrapper for SSL_CTX_set_psk_server_callback
| * add test for psk; deprecated set_psk_callbackBenjamin Cheng2018-06-021-0/+12
| |
| * Merge remote-tracking branch 'origin/master'Benjamin Cheng2018-06-021-170/+395
| |\
| * | Add wrapper for SSL_CTX_set_psk_server_callbackBenjamin Cheng2018-05-161-2/+25
| | |
* | | Switch to accessors in libressl where possibleSteven Fackler2018-06-091-37/+40
| | | | | | | | | | | | | | | | | | | | | Some accessors are mysteriously still macros so we can't make everything opaque yet, unfortunately. cc #909
* | | Add SslRef::set_alpn_protosSteven Fackler2018-06-041-0/+26
| | |
* | | Update to 1.1.1-pre7Steven Fackler2018-06-021-1/+26
| |/ |/| | | | | | | | | | | | | | | The initial session ticket is now sent as part of SSL_accept, so some tests need to write a single byte through the stream to make sure that both ends have fully completed to avoid test flakes. TLSv1.3 cipher suite control has been extracted from the normal cipher list into a separate method: SslContextBuilder::set_ciphersuites.
* | Add SslRef::verified_chainSteven Fackler2018-05-291-8/+26
| |
* | Don't panic on bogus servernamesSteven Fackler2018-05-241-1/+25
| | | | | | | | | | | | | | Also add a second version of the method to avoid filtering out non-utf8 names. Closes #930
* | Add bindings to SSL_get_finished and SSL_get_peer_finishedSteven Fackler2018-05-241-6/+46
| | | | | | | | These are used for the tls-unique SCRAM channel binding mode.
* | Merge pull request #920 from Ralith/max-early-data-accessorsSteven Fackler2018-05-221-1/+186
|\ \ | | | | | | TLS1.3 early data support
| * | Expose early I/OBenjamin Saunders2018-05-221-1/+89
| | |
| * | Expose early keying material exportBenjamin Saunders2018-05-171-0/+27
| | |
| * | Expose max TLS1.3 early data accessorsBenjamin Saunders2018-05-171-0/+70
| |/
* | Revert "Move proto version accessors to SslContextRef"Steven Fackler2018-05-201-52/+44
| |
* | Move proto version accessors to SslContextRefSteven Fackler2018-05-201-44/+52
| | | | | | | | Add a Derf impl for SslContextBuilder so existing use still works.
* | Support ALPN on libresslSteven Fackler2018-05-201-9/+10
| | | | | | | | Closes #690
* | Overhaul openssl cfgsSteven Fackler2018-05-201-139/+94
| | | | | | | | Also expose hostname verification on libressl
* | Support min/max version in LibreSSLSteven Fackler2018-05-191-12/+14
|/ | | | | Their implementations of the accessors don't behave expected with no bounds, so we ignore those bits of the tests.
* Merge Ssl impl blocksSteven Fackler2018-05-121-57/+55
|
* Clean up SSL callbacksSteven Fackler2018-05-121-39/+40
| | | | | Also add an Arc to avoid a weird use after free edge case if a callback changes a callback.
* Disable tests that talk to Google on LibreSSL 2.5.0Steven Fackler2018-05-121-1/+1
| | | | | They're flickering, and I'm assuming it's just because that version is so old.
* Change SslContext callback handlingSteven Fackler2018-05-121-132/+42
| | | | Use the existing infrastructure!
* Fix base version for min/max proto accessorsSteven Fackler2018-05-091-29/+41
| | | | Closes #911
* Expose SslSession <-> DER conversionBenjamin Saunders2018-04-291-0/+23
|
* Merge pull request #858 from Ralith/stateless-apiSteven Fackler2018-03-311-39/+163
|\ | | | | Introduce SslStreamBuilder
| * Introduce SslStreamBuilderBenjamin Saunders2018-03-281-34/+114
| |
| * Update to OpenSSL 1.1.1-pre3Benjamin Saunders2018-03-281-5/+49
| |
* | Clean up a couple of holdovers from old featuresSteven Fackler2018-03-291-3/+5
|/
* Remove version-specific featuresSteven Fackler2018-03-191-87/+80
| | | | Closes #852
* Expose additional cipher and digest accessorsBenjamin Saunders2018-03-161-0/+26
|
* Add a Sync + Send bound to the custom ext typeSteven Fackler2018-03-111-13/+26
| | | | | It's stored inside of the Ssl, so this is probably tecnically necessarly?
* Merge branch 'master' into custom-extensionsSteven Fackler2018-03-111-0/+3
|\
| * Add one more set of implsSteven Fackler2018-03-101-0/+3
| |
* | Generic custom extension add fn return typeBenjamin Saunders2018-03-101-7/+7
| |
* | High-level API for OpenSSL 1.1.1 custom extension supportBenjamin Saunders2018-03-091-0/+76
|/
* Add SslOptions::ENABLE_MIDDLEBOX_COMPATBenjamin Saunders2018-03-031-0/+7
|
* Add min/max protocol version supportSteven Fackler2018-02-251-4/+100
|
* Expose cookie generate/verify callback settersBenjamin Saunders2018-02-251-0/+45
|
* Add RFC 5705 supportSteven Fackler2018-02-231-2/+30
|
* Actually add version stuffSteven Fackler2018-02-211-2/+16
|
* Add some debugging-related bindingsSteven Fackler2018-02-171-23/+70
|
* Add SSL_version bindingSteven Fackler2018-02-171-2/+40
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-11 20:41:12 +0000