0d01b53461
Version number to 0.7alpha
2017-09-26 18:22:49 -03:00
8762441cd2
Add popular aliases for commonly used curves
2017-09-26 17:43:00 -03:00
60f02f7701
LuaJIT 2.1.0 added luaL_newlib() as extension
2017-09-26 17:39:32 -03:00
fe1fb0b350
Adding 'curveslist' parameter
...
LuaSec will try to set 'curveslist' parameter first.
If the parameter is not present or not supported, LuaSec will
try 'curve' parameter.
2017-08-04 17:00:12 -03:00
db42a5084a
Export configuration (protocols, options, curves, algorithms, capabilities)
2017-06-16 22:53:59 -03:00
0b99832ec7
Export configuration (protocols, options, curves, algorithms, capabilities)
2017-06-16 22:50:27 -03:00
fc757e1fd0
Discover curves dynamically
2017-06-16 21:03:10 -03:00
5299803bef
Merge pull request #77 from kekstee/master
...
Make CC and LD configurable
2017-03-31 15:11:17 -03:00
9c41eaf09a
Merge pull request #74 from ka7/spelling
...
spelling fixes, as seen on lintian.debian.org
2017-03-31 14:50:19 -03:00
31b7a4744b
Merge pull request #63 from gleydsonsoares/tweak-OPENSSL_NO_COMP
...
simplify OPENSSL_NO_COMP guard
2017-03-31 14:48:19 -03:00
6b82fa6104
LuaRocks workaround
2017-03-31 14:40:09 -03:00
9f6d623ccb
proper socket invalidation #70
2017-03-31 14:32:35 -03:00
622ef3d6a6
Enable curve negotiation with #ifdef SSL_CTX_set1_curves_list
...
One of currently three definitions in the wild that indicate support for
SSL_CTX_set1_curves_list().
2017-02-26 00:16:25 +01:00
231563682a
Add support for the new curve selection API.
...
Signed-off-by: W-Mark Kubacki <wmark@hurrikane.de >
2017-02-26 00:16:24 +01:00
77b88e0b0d
Fix for sni host issue #88 and #44 . Thanks to @TomasB
2016-12-15 16:46:59 -08:00
4889830d53
Compatibility with OpenSSL 1.1.0
...
Defining macros X509_up_ref() and SSL_is_server to use the same
API of OpenSSL 1.1.0.
2016-09-14 17:47:09 -03:00
80a527d630
Use EVP_PKEY_base_id() to recover the key's type
2016-09-13 13:30:44 -03:00
53db804b9d
Use X509_EXTENSION_get_object() to get the 'object' field from extension
2016-09-13 13:22:25 -03:00
22e6652d88
ASN1_STRING_data() is deprecated in OpenSSL 1.1.0
...
ASN1_STRING_get0_data() must be used instead.
2016-09-13 13:09:18 -03:00
6bb007b75f
Make CC and LD configurable
2016-08-13 23:24:11 +02:00
3cfdb878dd
Merge pull request #76 from msva/patch-1
...
Return of DESTDIR support
2016-08-03 15:10:06 -03:00
4101af103e
Return the number of data read and remove a useless line.
2016-08-03 14:56:07 -03:00
4aa9ec3b60
Return of DESTDIR support
2016-07-24 02:01:21 +07:00
d45c03a1ad
spelling fixes, as seen on lintian.debian.org
2016-07-11 21:57:50 +02:00
5a98bb6adb
Fix crash related to incorrect buffer size
...
The number of bytes received by ssl_recv() is being passed to luaL_addlstring() (in recvall()) but it was being left either uninitialized or being set to an error code. The crashing case I found was when the state was not LSEC_STATE_CONNECTED (e.g. when dohandshake() has failed) and ssl_recv() returned immediately without setting "got".
2016-05-03 16:37:47 -07:00
20443861eb
Update version number and rock file.
2016-03-03 16:11:46 -03:00
3b5f4b0dc1
Options from OpenSSL 1.0.2f
2016-02-16 10:48:19 -02:00
407ff6133c
Use "any" protocol, but SSL.
2016-02-16 09:35:47 -02:00
72e159149b
Merge pull request #20 from Zash/zash/checkissued
...
Method for checking if one certificate issued another
2016-02-16 09:34:31 -02:00
27fbd70424
tweak OPENSSL_NO_COMP
2015-11-20 13:22:00 -03:00
6a7a6f7f67
Keep 'sslv23' for compability, but deprected. (it will be removed in the next version)
2015-11-19 12:33:06 -02:00
63f7d46d00
for consistency and readability, rename "sslv23" to "any" since that it is related to {TLS, SSLv23}methods that handles all supported protocols.
2015-11-17 20:05:06 -03:00
ef28f7d20d
add TLS_method(). for now, keep SSLv23_method() for compatibility.
2015-11-17 19:36:58 -03:00
49ea6b8ba6
Merge pull request #55 from gleydsonsoares/ifndef-OPENSSL_NO_SSL3
...
guard SSLv3_method() with #ifndef OPENSSL_NO_SSL3
2015-11-12 18:47:56 -02:00
96401bdf67
Add lsec_testcontext().
2015-10-28 00:05:30 -02:00
67f0867277
guard SSLv3_method() with #ifndef OPENSSL_NO_SSL3
2015-10-12 08:35:35 -03:00
d1fb889547
Version number -> 0.6 alpha
2015-08-21 11:21:16 -03:00
24e5ec13f3
Merge pull request #46 from olesalscheider/master
...
Do not hardcode ar
2015-08-03 20:37:00 -03:00
8e9910cb15
Format.
2015-08-01 01:14:16 -03:00
2c2c9cf16f
Alternative implementation to inet_ntop() for old versions of Windows.
2015-08-01 01:07:04 -03:00
580d9b7ed8
Do not hardcode ar
...
On Exherbo, ar is prefixed by the target triple.
2015-05-23 19:51:58 +02:00
4e59c719df
Perform all validation before allocating structures
...
Check that all arguments are certificates before allocating OpenSSL
structures that require cleanup afterwards.
API of issued() changes (again) to root:issued(cert, [chain]*)
2015-03-31 17:48:44 +02:00
aa0c7ea1e5
Validate signatures too.
...
API changes to root:issued([intermediate]*, cert)
2015-03-20 16:36:05 +01:00
3862e76df9
Fix inet_ntop() on Windows.
2015-03-12 17:05:53 -03:00
1ab6fac919
Don't set globals from C.
2015-02-12 16:32:54 -02:00
91d378a86e
Fix unpack().
2015-02-12 16:29:02 -02:00
356e03a64d
Stop using module().
2015-02-06 18:07:29 -02:00
97b1974039
Change to luaL_newlib().
2015-02-06 17:44:08 -02:00
9cb5220759
Remove luaL_optint() and luaL_checkint().
2015-02-06 16:53:34 -02:00
acbf575420
BSD headers.
2015-01-28 16:38:00 -02:00
