aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/ssl
Commit message (Collapse)AuthorAgeFilesLines
* Adjust the SNI callbackSteven Fackler2018-01-062-19/+30
| | | | Brings it more in line with how the raw callback is structured.
* Fix docsSteven Fackler2018-01-061-1/+3
|
* Rename key serialization/deserialization methodsSteven Fackler2018-01-062-3/+3
| | | | | | Also document their specific formats. Closes #502
* Misc cleanupSteven Fackler2018-01-011-20/+7
|
* Move X509Filetype to SslFiletypeSteven Fackler2018-01-012-44/+65
| | | | | | These constants have the same values, but X509_FILETYPE_DEFAULT doesn't work in the Ssl methods and using the SSL_* names is a bit less confusing.
* Parameterize keys over what they containSteven Fackler2017-12-302-28/+34
| | | | Closes #790
* Remove `SslRef::compression`Steven Fackler2017-12-281-24/+0
| | | | | TLS compression is extremely deprecated, so no-one should be messing with this in the first place.
* Add a parameter to servernameSteven Fackler2017-12-282-9/+25
|
* Overhaul ALPNSteven Fackler2017-12-273-293/+146
| | | | | | | | There was previously a lot of behind the scenes magic. We now bind much more directly to the relevant functions. Also remove APN support. That protocol is supersceded by ALPN - let's see if anyone actually needs to use it.
* Overhaul ssl errorSteven Fackler2017-12-264-351/+150
|
* Split X509StoreContextRef::ssl upSteven Fackler2017-12-261-5/+5
|
* Overhaul verify error typeSteven Fackler2017-12-264-40/+41
| | | | Also set the error in the hostname verification callback for 1.0.1
* Adjust SslConnector and SslAcceptor constructionSteven Fackler2017-12-263-151/+90
|
* Drop Any boundsSteven Fackler2017-12-263-25/+20
|
* Remove deprecated APIsSteven Fackler2017-12-253-74/+3
|
* Fix a bunch of FIXMEsSteven Fackler2017-12-255-36/+39
|
* Tweak default ssl optionsSteven Fackler2017-12-251-2/+4
|
* Fix testsSteven Fackler2017-12-253-14/+14
|
* Rename X509FileType to X509FiletypeSteven Fackler2017-12-252-24/+24
|
* Move to associated constsSteven Fackler2017-12-252-29/+29
|
* Upgrade bitflags to 1.0Steven Fackler2017-12-253-121/+94
| | | | Closes #756
* Clean up 1.0.1 hostname verificationSteven Fackler2017-12-231-37/+23
|
* Allow SNI and hostname verification to be configured separatelySteven Fackler2017-12-232-70/+101
| | | | Closes #728
* Fix linkSteven Fackler2017-12-091-1/+1
|
* Finish documentation for the ssl moduleSteven Fackler2017-12-043-50/+241
| | | | Closes #727
* Docs for the ssl module.Steven Fackler2017-12-031-36/+431
| | | | cc #727
* Impl deref for acceptor/connector buildersSteven Fackler2017-12-032-25/+65
|
* Upgrade foreign-typesSteven Fackler2017-11-261-9/+1
| | | | | foreign-types 0.3 and 0.2 now share the same types and traits, so this is backwards compatible.
* Revert "Update foreign-types to 0.3"Steven Fackler2017-11-211-0/+7
|
* Update foreign-types to 0.3Anthony Ramine2017-11-211-7/+0
|
* Adjust libressl version detectionSteven Fackler2017-11-132-6/+6
| | | | | The 2.5.3+ and 2.6.3+ series are ABI-stable, so we don't need to whitelist individual releases in those ranges.
* Add support for LibreSSL 2.6.3phoebe jenkins2017-11-132-6/+6
|
* Add a couple of FIXMEsSteven Fackler2017-11-051-0/+4
|
* Handle local retriesSteven Fackler2017-11-042-94/+100
| | | | | | | | | | | | OpenSSL can return SSL_ERROR_WANT_READ even on blocking sockets after renegotiation or heartbeats. Heartbeats ignore the flag that normally makes these things handled internally anyway on 1.0.2. To handle this more properly, we now have a special error type we use to signal this event. The `Read` and `Write` implementation automatically retry in this situation since that's what you normally want. People can use `ssl_read` and `ssl_write` if they want the lower level control. Closes #760
* Fixed a typo in an error message, WANT_WRITE -> WANT_READBrian Vincent2017-10-171-1/+1
|
* Merge pull request #752 from chrisvittal/libressl262Steven Fackler2017-10-032-6/+6
|\ | | | | Add support for LibreSSL 2.6.2
| * Fix cfgs for libressl262Christopher Vittal2017-10-042-6/+6
| |
| * Add support for LibreSSL 2.6.2Christopher Vittal2017-10-031-1/+1
| |
* | Convert try! usage to ?johnthagen2017-10-034-47/+47
|/
* Properly handle IPs in hostname verificationSteven Fackler2017-09-201-1/+4
|
* Merge pull request #695 from Keruspe/masterSteven Fackler2017-09-172-2/+6
|\ | | | | openssl-sys: support libressl 2.6.1
| * openssl: ecdh_tmp_callback doesn't work with libressl 2.6.1Marc-Antoine Perennou2017-09-171-2/+2
| | | | | | | | Signed-off-by: Marc-Antoine Perennou <[email protected]>
| * openssl: libressl 2.6.1 dropped suuport for npnMarc-Antoine Perennou2017-09-172-0/+4
| | | | | | | | Signed-off-by: Marc-Antoine Perennou <[email protected]>
* | Update default client cipher listSteven Fackler2017-09-161-3/+6
| |
* | Fix indentationSteven Fackler2017-09-151-3/+2
| |
* | Set SSL_MODE_RELEASE_BUFFERS by defaultAlex Crichton2017-09-141-1/+11
|/ | | | Closes #696
* Delete DTLS testsSteven Fackler2017-08-081-72/+0
|
* Add peer_cert_chainSteven Fackler2017-07-291-0/+15
|
* Ignore dtls testsSteven Fackler2017-07-291-1/+1
| | | | | | They're way too flaky. Closes #525
* Tweak formatting on cipher listSteven Fackler2017-07-261-18/+13
|
generated by cgit v1.2.3 (git 2.25.1) at 2026-04-18 03:34:42 +0000