dcd385e615
Fix memory leak
2019-08-16 10:15:42 -03:00
d6ba8d21da
Update version to 0.8, new rock file
2019-04-16 14:01:52 -03:00
f8b2968e79
Declare variable "key" before use it.
2019-04-16 10:48:15 -03:00
1efa37087e
Add 'ciphersuites' property for TLS 1.3
2019-03-22 11:34:33 -03:00
c0cb85d77f
Do not create 'certificates' on 'cfg' if it does not exist
2019-02-26 15:49:51 -03:00
1c3bf23551
Merge pull request #133 from quickdudley/multi-certs
...
Enable multiple SSL certificates
2019-02-26 14:42:47 -03:00
143ccf1323
PR feedback (Data structure)
2019-02-26 10:51:44 +13:00
5e2b27fa71
Merge pull request #132 from ewestbrook/prc-expose-tcp
...
Expose tcp() for use by LuaSocket
2019-02-25 15:25:20 -03:00
ff868e4a06
Enable multiple SSL certificates (issue 27)
2019-02-22 13:42:44 +13:00
81c38864d4
Fix memory leak in meth_extensions
2018-11-19 16:00:30 +01:00
3f38f0929c
Expose src/https.lua:tcp() for use by e.g. luasocket redirects
2018-10-13 07:31:38 -06:00
4c5996a499
Disable TLSv1 to fix *received tlsv1 alert protocol version from* errors with certain websites
2018-09-19 16:25:39 -04:00
421c897dd3
Support for TLS 1.3 from OpenSSL 1.1.1
...
Based on PR #97 from @wmark.
2018-09-12 19:08:19 -03:00
2ecf239cfe
Suppress warning with OpenSSL 1.1.0 and 1.1.1
2018-09-12 18:43:44 -03:00
113331fa0c
Assuming that TLS 1.1 and TLS 1.2 are available
2018-09-12 18:27:43 -03:00
8440bc3d59
Assuming curves list is available if EC is available
2018-09-12 18:26:19 -03:00
5ece6049e5
Fix constant: OPENSS_NO_ECDH -> OPENSSL_NO_EC
2018-09-12 18:24:12 -03:00
9883782102
Fix constant: OPENSS_NO_ECDH -> OPENSSL_NO_EC
2018-09-12 18:17:19 -03:00
661d08e5f3
Removing OpenSSL 0.9.8 code
2018-09-12 18:08:19 -03:00
5514c4a06e
Assuming that TLS 1.1 and TLS 1.2 are available
...
Fix some #if's also.
2018-09-12 18:03:37 -03:00
f42c171d55
This mode is available in new versions of OpenSSL, no more check
2018-09-12 17:45:13 -03:00
706e0f0281
New version of LibreSSL already implement these functions
2018-09-12 17:41:03 -03:00
d4ea2d12f3
Update reference to Lua state prior to handshake
...
The Lua thread that creates the context is saved to be used for
accessing callback related data. However that thread may become garbage
and its memory could be overwritten with anything if the handshake
happens later, in a different thread.
Fixes #75
Thanks @Zash
2018-09-10 10:49:18 -03:00
dea60edf4f
Add ALPN support based on PR #64 from xnyhps
2018-08-27 15:10:18 -03:00
fdb2fa5f59
Let the library choose the min and max versions
...
Some protocols can be disable with 'options'.
2018-07-26 11:25:57 -03:00
d9d0cd620d
Free DH parameter right after handshake
2018-07-26 11:21:54 -03:00
953a363a59
Add timeout to https module
...
Glocal attribute https.TIMEOUT controls connection tiemout.
Sample:
https.TIMEOUT = 5 -- seconds
https.request()
2018-07-02 10:40:14 -03:00
28e247dbc5
Removing deprecated methods to select the protocol
...
Using TLS_method(), SSL_set_min_proto_version() and
SSL_set_max_proto_version().
2018-07-02 10:31:45 -03:00
89bdc6148c
Removing SSLv3 support
2018-06-29 14:06:51 -03:00
8212b89f1a
Using 'const SSL_METHOD*'
...
This change was introduced in OpenSSL 1.0.0.
Start droping 0.9.8 code.
2018-06-29 14:02:39 -03:00
4d10a5a0c0
Use lowercase Windows header name
...
This is necessary for cross-compilation of Windows binaries on non-Windows
platforms (and harmless for Windows).
2018-06-29 10:21:22 -03:00
de63f21f63
Change version number to 0.7
2018-06-27 10:36:26 -03:00
be3c6d67e0
Make luaL_testudata() compat function visible for all files
2017-10-28 09:53:28 -02:00
2f562e1399
Put an error check back
2017-10-28 09:31:40 -02:00
7934e58b4b
Merge pull request #99 from daurnimator/luaossl-integration
...
Allow passing a luaossl context for socket creation/wrapping
2017-10-28 09:23:07 -02:00
0d01b53461
Version number to 0.7alpha
2017-09-26 18:22:49 -03:00
8762441cd2
Add popular aliases for commonly used curves
2017-09-26 17:43:00 -03:00
60f02f7701
LuaJIT 2.1.0 added luaL_newlib() as extension
2017-09-26 17:39:32 -03:00
fe1fb0b350
Adding 'curveslist' parameter
...
LuaSec will try to set 'curveslist' parameter first.
If the parameter is not present or not supported, LuaSec will
try 'curve' parameter.
2017-08-04 17:00:12 -03:00
db42a5084a
Export configuration (protocols, options, curves, algorithms, capabilities)
2017-06-16 22:53:59 -03:00
0b99832ec7
Export configuration (protocols, options, curves, algorithms, capabilities)
2017-06-16 22:50:27 -03:00
fc757e1fd0
Discover curves dynamically
2017-06-16 21:03:10 -03:00
e90a264c93
Allow passing luaossl objects to meth_create()
2017-04-04 13:06:12 +10:00
5299803bef
Merge pull request #77 from kekstee/master
...
Make CC and LD configurable
2017-03-31 15:11:17 -03:00
9c41eaf09a
Merge pull request #74 from ka7/spelling
...
spelling fixes, as seen on lintian.debian.org
2017-03-31 14:50:19 -03:00
31b7a4744b
Merge pull request #63 from gleydsonsoares/tweak-OPENSSL_NO_COMP
...
simplify OPENSSL_NO_COMP guard
2017-03-31 14:48:19 -03:00
6b82fa6104
LuaRocks workaround
2017-03-31 14:40:09 -03:00
9f6d623ccb
proper socket invalidation #70
2017-03-31 14:32:35 -03:00
622ef3d6a6
Enable curve negotiation with #ifdef SSL_CTX_set1_curves_list
...
One of currently three definitions in the wild that indicate support for
SSL_CTX_set1_curves_list().
2017-02-26 00:16:25 +01:00
231563682a
Add support for the new curve selection API.
...
Signed-off-by: W-Mark Kubacki <wmark@hurrikane.de >
2017-02-26 00:16:24 +01:00