aboutsummaryrefslogtreecommitdiff
path: root/openssl/src
Commit message (Collapse)AuthorAgeFilesLines
* Fix get session callbackSteven Fackler2018-09-171-1/+1
| | | | | This could previously open up the possibility of a double-free! Closes #996
* Support the client hello callbackSteven Fackler2018-09-154-1/+247
|
* Fix typo李伟2018-09-131-1/+1
| | | | Fix typo in docs for openssl::rsa::Rsa::from_private_components
* Support libressl 2.8.0Steven Fackler2018-09-121-9/+14
| | | | Closes #988
* clean up exampleSteven Fackler2018-09-021-4/+3
|
* Small cleanupSteven Fackler2018-09-022-15/+12
| | | | Closes #981
* Fix lookup errors with SNI callback.Steven Fackler2018-08-313-14/+59
| | | | | | | | | | | | | | | | | The job of an SNI callback is typically to swap out the context associated with an SSL depending on the domain the client is trying to talk to. Typically, only the callbacks associated with the current context are used, but this is not the case for the SNI callback. If SNI is run for a second time on a connection (i.e. in a renegotiation) and the context was replaced with one that didn't itself register an SNI callback, the old callback would run but wouldn't be able to find its state in the context's ex data. To work around this, we pass the pointer to the callback data directly to the callback to make sure it's always available. It still lives in ex data to handle the lifetime management. Closes #979
* Fix doc referenceSteven Fackler2018-08-191-2/+2
|
* SRTP cleanupSteven Fackler2018-08-193-44/+40
|
* Add methods for DTLS/SRTP key handshakeAron Wieck2018-08-144-0/+264
|
* Add get_shutdown and set_shutdownSteven Fackler2018-08-082-13/+62
|
* Support builds of OpenSSL from vendored source (take 2)Alex Crichton2018-07-301-0/+6
| | | | | | This is a revival of #684 to see if I can help push it across the finish line! Closes #580
* Fix tests when built with no-ec2mSteven Fackler2018-07-291-8/+4
| | | | | | | The other curve identifier isn't valid, at least in some contexts so just ignore the test in those cases. Closes #964
* SslSessionRef methods return static stringsSteven Fackler2018-07-191-3/+6
| | | | Closes #961
* Fix spelling in symm docsJosh Abraham2018-07-141-1/+1
|
* Merge pull request #937 from marcoh00/iterable-x509namesSteven Fackler2018-07-072-7/+64
|\ | | | | X509NameRef: Provide an iterator over all entries
| * Only grab the name entry count when neededSteven Fackler2018-06-261-3/+1
| |
| * Rename X509NameRef::all_entries and refactor end-of-iterator checksMarco Huenseler2018-06-032-6/+8
| |
| * Provide an Asn1Object getter method for X509NameEntryRefMarco Huenseler2018-06-032-0/+16
| |
| * Make X509NameRef provide an iterator over all X509NameEntriesMarco Huenseler2018-06-032-5/+46
| |
* | Clean up IGE exampleSteven Fackler2018-07-041-22/+11
| | | | | | | | Closes #955
* | Merge pull request #950 from WanzenBug/masterSteven Fackler2018-06-231-4/+193
|\ \ | | | | | | Add access to private/public components of DSA key pairs.
| * | Simplify DSA from private componentsMoritz Wanzenböck2018-06-231-8/+17
| | |
| * | Fix fallback implementation of DSA utility methodsMoritz Wanzenböck2018-06-181-6/+6
| | |
| * | Add tests for DSA key pairsMoritz Wanzenböck2018-06-181-0/+72
| | |
| * | Add Dsa::from_(private|public)_componentsMoritz Wanzenböck2018-06-181-10/+76
| | | | | | | | | | | | Add 2 methods to create a DSA key pair from its raw components.
| * | Add methods to access private and public part of DSA keysMoritz Wanzenböck2018-06-181-1/+43
| | |
* | | Fix build with openssl 1.1.1 and no-pskStefan Tatschner2018-06-211-2/+2
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I used this as build flags for openssl 1.1.1: ``` /usr/bin/perl ./Configure linux-x86_64 no-shared no-zlib no-psk no-srp no-weak-ssl-ciphers no-idea ``` rust-openssl crashed with this error: ``` Compiling openssl v0.10.10 error[E0433]: failed to resolve. Use of undeclared type or module `CStr` --> /home/stefan/.cargo/registry/src/github.com-1ecc6299db9ec823/openssl-0.10.10/src/ssl/callbacks.rs:386:16 | 386 | let line = CStr::from_ptr(line).to_bytes(); | ^^^^ Use of undeclared type or module `CStr` error[E0412]: cannot find type `c_char` in this scope --> /home/stefan/.cargo/registry/src/github.com-1ecc6299db9ec823/openssl-0.10.10/src/ssl/callbacks.rs:377:75 | 377 | pub unsafe extern "C" fn raw_keylog<F>(ssl: *const ffi::SSL, line: *const c_char) | ^^^^^^ did you mean `c_uchar`? help: possible candidates are found in other modules, you can import them into scope | 1 | use libc::c_char; | 1 | use std::os::raw::c_char; | error: aborting due to 2 previous errors Some errors occurred: E0412, E0433. For more information about an error, try `rustc --explain E0412`. error: Could not compile `openssl`. warning: build failed, waiting for other jobs to finish... ``` this patch fixes the problem
* | Merge pull request #943 from lolzballs/masterSteven Fackler2018-06-173-4/+128
|\ \ | | | | | | Add wrapper for SSL_CTX_set_psk_server_callback
| * | Disable TLSv1.3 for psk_ciphers testBenjamin Cheng2018-06-171-0/+7
| | |
| * | Ensure psk test callbacks are calledBenjamin Cheng2018-06-021-0/+6
| | |
| * | push PSK callback errors onto ErrorStackBenjamin Cheng2018-06-021-2/+8
| | |
| * | Change psk test cipher to PSK-AES128-CBC-SHABenjamin Cheng2018-06-021-2/+3
| | | | | | | | | | | | Hopefully it works on CI servers now
| * | Use is_null()Benjamin Cheng2018-06-021-1/+1
| | |
| * | add test for psk; deprecated set_psk_callbackBenjamin Cheng2018-06-022-0/+47
| | |
| * | Merge remote-tracking branch 'origin/master'Benjamin Cheng2018-06-0227-996/+1454
| |\ \
| * | | Add wrapper for SSL_CTX_set_psk_server_callbackBenjamin Cheng2018-05-162-3/+60
| | | |
* | | | Switch to accessors in libressl where possibleSteven Fackler2018-06-099-68/+75
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Some accessors are mysteriously still macros so we can't make everything opaque yet, unfortunately. cc #909
* | | | Add SslRef::set_alpn_protosSteven Fackler2018-06-041-0/+26
| |_|/ |/| |
* | | Update to 1.1.1-pre7Steven Fackler2018-06-022-43/+100
| |/ |/| | | | | | | | | | | | | | | The initial session ticket is now sent as part of SSL_accept, so some tests need to write a single byte through the stream to make sure that both ends have fully completed to avoid test flakes. TLSv1.3 cipher suite control has been extracted from the normal cipher list into a separate method: SslContextBuilder::set_ciphersuites.
* | fix build on older rustcSteven Fackler2018-06-011-1/+1
| |
* | Adjust Nid signature algorithm APIsSteven Fackler2018-06-011-19/+56
| |
* | Fix typesSteven Fackler2018-06-011-6/+9
| |
* | Fix use-after-free in cmsSteven Fackler2018-06-011-15/+7
| | | | | | | | Closes #941
* | Add SslRef::verified_chainSteven Fackler2018-05-292-14/+30
| |
* | rewrite Nid::{long_name,short_name} to return Results instead of OptionsMarco Huenseler2018-05-281-29/+22
| |
* | Get Nid string representationsMarco Huenseler2018-05-281-0/+69
| |
* | Rename X509Ref::fingerprint to X509Ref::digest and avoid allocatingSteven Fackler2018-05-245-34/+47
| |
* | Add some digest supportSteven Fackler2018-05-242-3/+56
| |
* | Don't panic on bogus servernamesSteven Fackler2018-05-241-1/+25
| | | | | | | | | | | | | | Also add a second version of the method to avoid filtering out non-utf8 names. Closes #930
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-11 16:02:35 +0000