aboutsummaryrefslogtreecommitdiff
path: root/openssl/src/ssl
Commit message (Collapse)AuthorAgeFilesLines
...
* Fix connect and accept error reportingSteven Fackler2016-01-221-20/+16
| | | | | We were previously trying to create an error twice so the second wouldn't be correct.
* openssl/ssl/context: test that we are refcounting correctlyCody P Schafer2016-01-181-0/+13
| | | | | | | | | | Not a perfect test, on failure it _might_ exit with this output: Process didn't exit successfully: `/home/cody/g/rust-openssl/openssl/target/debug/openssl-8e712036e3aac4fe` (signal: 11) But unclear if we can do any better.
* ssl: fix refcounting of SslContext when set_ssl_context is usedCody P Schafer2016-01-181-3/+28
| | | | | | | | | | | Additionally impl Clone for SslContext to both allow us to use it & allow external users to take advantage of SslContext's internal refcount. Maintain the existing signature for set_ssl_context(), but add inline comments recommending changing it. Fixes #333
* Fix should_panic checkSteven Fackler2016-01-111-3/+3
|
* Add stream panic propagation behind a nightly feature gateSteven Fackler2016-01-113-12/+192
|
* RustfmtSteven Fackler2015-12-182-2/+2
|
* Fix deprecation locationSteven Fackler2015-12-181-4/+4
|
* Work around the worst of clone bogusnessSteven Fackler2015-12-183-43/+37
| | | | | | | | | | SslStream::{clone,try_clone} are inherently broken since the Ssl object shared by both streams is only going to be talking to one stream. Stuff like hyper depends on try_clone, so we'll leave it here for now but minimize the brokenness to "no worse than what it used to be like". They'll be removed in 0.8. cc #325
* Disable cross compilation for nowSteven Fackler2015-12-171-1/+2
|
* Fix nonblocking behaviorSteven Fackler2015-12-172-22/+17
| | | | | | | | A new nonblocking socket may not have finished connecting yet, so reads and writes can return ENOTCONNECTED which we should reinterpret into a WantRead or WantWrite Closes #323
* Fix regression of c_char type mismatches on ARMOndrej Perutka2015-12-161-1/+1
|
* RustfmtSteven Fackler2015-12-153-306/+327
|
* Fix bounds on ssl_read and ssl_writeSteven Fackler2015-12-151-28/+28
|
* Cleanup SNI stuffSteven Fackler2015-12-151-13/+6
|
* CleanupSteven Fackler2015-12-151-4/+6
|
* Merge pull request #309 from Geal/masterSteven Fackler2015-12-151-0/+112
|\ | | | | Add support for Server Name indication (SNI) on the server's side
| * Increment SSL_CTX's reference count in Ssl::get_ssl_context()Geoffroy Couprie2015-12-031-0/+1
| | | | | | | | | | | | Without this, whenever the returned SslContext is released, the refcount of the underlying SSL_CTX will decrease and it will be freed too soon
| * Make shims for SSL_CTX_ctrl and SSL_CTX_callback_ctrl macro wrappersGeoffroy Couprie2015-11-251-3/+3
| |
| * fix memory managementGeoffroy Couprie2015-11-251-5/+3
| |
| * Avoid freeing the SSL object when Ssl is droppedGeoffroy Couprie2015-11-241-10/+19
| |
| * implement get/set ssl contextGeoffroy Couprie2015-11-241-0/+8
| |
| * test SNI supportGeoffroy Couprie2015-11-241-0/+96
| |
* | Document unused variantSteven Fackler2015-12-141-1/+1
| | | | | | | | No reason to hide it
* | Yet more AsRawSocket fixesSteven Fackler2015-12-121-1/+1
| |
* | More AsRawSocket fixesSteven Fackler2015-12-121-1/+1
| |
* | Fix AsRawSocket implsSteven Fackler2015-12-121-2/+2
| |
* | Have NonblockingSslStream delegate to SslStreamSteven Fackler2015-12-122-158/+84
| |
* | Build out a new error typeSteven Fackler2015-12-122-35/+231
| |
* | Make error handling more reliableSteven Fackler2015-12-101-5/+16
| |
* | Replace SslStream implementation!Steven Fackler2015-12-092-532/+114
| |
* | Implement read and writeSteven Fackler2015-12-092-96/+142
| |
* | IT LIVESSteven Fackler2015-12-093-15/+144
| |
* | Custom BIO infrastructureSteven Fackler2015-12-082-0/+142
| |
* | Cast correctly c_char raw pointers (fixes build on ARM #314)Ondrej Perutka2015-11-302-12/+15
|/
* Implement try_clone for MaybeSslStreamSteven Fackler2015-11-201-0/+10
| | | | Closes #308
* Fixed a typo in a comment.Alex Gaynor2015-11-191-1/+1
|
* Split stuff requiring a shim out to a separate crateSteven Fackler2015-11-161-46/+47
|
* Switch to libc 0.2Steven Fackler2015-11-161-29/+14
|
* Move SSL methods to Ssl object, add getterSteven Fackler2015-11-162-124/+66
|
* Revert "Revert "Merge pull request #280 from ltratt/libressl_build""Steven Fackler2015-11-162-4/+3
| | | | This reverts commit ae3d0e36d71bb121c2fc1a75b3bc6d97f0e61480.
* Better debug implsSteven Fackler2015-10-261-3/+7
|
* Get nonblocking tests working on OSX/WindowsAlex Crichton2015-10-222-120/+189
|
* Nonblocking streams support.Jamie Turner2015-10-203-2/+405
|
* Revert "Merge pull request #280 from ltratt/libressl_build"Steven Fackler2015-10-142-3/+4
| | | | | This reverts commit aad933e5077b2c73e1f05d7314e442531a562bcf, reversing changes made to 60ee731408facdc8e3dfc000fdee2f1291fad664.
* Add set_certificate_chain_file()Frank Denis2015-10-121-0/+10
| | | | | | | | SSL_CTX_use_certificate_chain_file() is preferred over SSL_CTX_use_certificate_file(). It allows the use of complete certificate chains instead of loading only the first certificate in a PEM file.
* Fix build on LibreSSL.Laurence Tratt2015-10-032-4/+3
| | | | | | | | | LibreSSL has deprecated SSLv3_method, so this commit makes that a compile-time feature. It also removes a test referencing SSL_OP_CISCO_ANYCONNECT, as the LibreSSL header says it is amongst "Obsolete flags kept for compatibility. No sane code should use them."
* Update documentation about SSLv23John Downey2015-10-021-1/+2
| | | | | | | In OpenSSL world, the SSLv23 option is a poorly name method that will negotiate what version of TLS or SSL to use. It starts with the best version the library supports and then precedes to keep trying all the way down to SSL 2.0.
* Add an ecdh_auto descriptionFrank Denis2015-09-251-0/+4
|
* Add SSL::set_ecdh_auto()Frank Denis2015-09-251-0/+8
| | | | | This sets automatic curve selection and enables ECDH support. Requires LibreSSL or OpenSSL >= 1.0.2, so behind a feature gate.
* Enable testing on Windows via AppVeyorAlex Crichton2015-09-221-55/+163
| | | | | | | This abolishes the test.sh script which spawns a bunch of `openssl` instances to instead run/manage the binary in-process (providing more isolation to boot). The tests have been updated accordingly and the `connected_socket` dependency was also dropped in favor of `net2` as it the former doesn't work on Windows.
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-13 21:42:48 +0000