Jay Sorg
|
8f747e37ca
|
always set SSL_OP_NO_SSLv2 in TLS options
|
8 years ago |
Alex Illsley
|
47124df4ed
|
new options for xrdp.ini disableSSlv3=yes and tls_ciphers=HIGH and code to implement
|
8 years ago |
Pavel Roskin
|
5829323ad8
|
Use g_new or g_new0 when C++ compiler would complain about implicit cast
|
8 years ago |
Pavel Roskin
|
aeeb3d2c2e
|
Fix warnings detected by -Wwrite-strings
|
8 years ago |
Jay Sorg
|
f100036cd9
|
common: minor fix for older openssl keygen
|
9 years ago |
Jay Sorg
|
0d192aee62
|
common: fix for key generated smaller than asked for
|
9 years ago |
Jay Sorg
|
fd793bd213
|
rename g_tcp_can_recv to g_sck_can_recv
|
9 years ago |
Koichiro IWAO
|
cd6ab20e94
|
common: shut up some messages in ssl_tls_print_error
SSL_ERROR_WANT_READ/SSL_ERROR_WANT_WRITE are not fatal error but just
indicate SSL_read, SSL_write, SSL_accept functions to repeat.
|
10 years ago |
Koichiro IWAO
|
2a2b8bcd59
|
common: fix #248 TLS on FreeBSD
According to document[1][2][3], retry when SSL_get_error returns
SSL_ERROR_WANT_READ/SSL_ERROR_WANT_WRITE.
[1] https://www.openssl.org/docs/ssl/SSL_read.html
[2] https://www.openssl.org/docs/ssl/SSL_write.html
[3] https://www.openssl.org/docs/ssl/SSL_accept.html
|
10 years ago |
speidy
|
86005c5bcc
|
ssl_calls: fix to read certificate chains
|
10 years ago |
Jay Sorg
|
d9d746ce5c
|
common: avoid possible SSL_shutdown crash
|
10 years ago |
Jay Sorg
|
cc0406dddf
|
common: move tls calls to ssl_calls
|
10 years ago |
Jay Sorg
|
09de814ff0
|
common: allow RSA keys bigger than 512 bit
|
11 years ago |
Jay Sorg
|
25ad4d8a36
|
common: add more fips ssl calls
|
11 years ago |
Jay Sorg
|
2921400083
|
common: check for nil in fips cleanup
|
11 years ago |
Jay Sorg
|
926cd095fc
|
common: added des3 calls for fips
|
11 years ago |
Laxmikant Rashinkar
|
1123323fda
|
o moved from GNU General Public License to Apache License, Version 2.0
o applied new coding standards to all .c files
o moved some files around
|
12 years ago |
Jay Sorg
|
0da32da2d8
|
add ssl init to common
|
14 years ago |
Jay Sorg
|
bb7898419f
|
update copyright year
|
14 years ago |
jsorg71
|
6c5f82fd04
|
update copyright year
|
16 years ago |
jsorg71
|
2363bd373b
|
comment change
|
17 years ago |
jsorg71
|
2cd8307610
|
added support for if OLD_RSA_GEN1 is defined and changed unsigned char to tui8
|
17 years ago |
jsorg71
|
38b789e81f
|
update copyright year
|
17 years ago |
jsorg71
|
ef18f927df
|
removed built in keygen funtion, wasn't working anyway
|
17 years ago |
jsorg71
|
a7fe699174
|
added rsa_builtin_keygen1 for older openssl libraries
|
18 years ago |
jsorg71
|
2a107df996
|
added undef and error message
|
18 years ago |
jsorg71
|
76a8cf1689
|
check for old openssl library for key gen
|
18 years ago |
jsorg71
|
6ecbf36e7e
|
added keygen function
|
18 years ago |
jsorg71
|
02cd95ebef
|
copyright year update
|
18 years ago |
jsorg71
|
00d8b7106f
|
commit patch 1589325, slightly modified - code cleanup
|
18 years ago |
jsorg71
|
70449c9471
|
need to include stdlib.h before opensll headers
|
19 years ago |
jsorg71
|
b65409683b
|
copyright year updates
|
19 years ago |
jsorg71
|
baf7f173ae
|
added some APP_CC and changed ssl prefix
|
19 years ago |
jsorg71
|
05ec6aa2d5
|
gota use len in BN_bin2bn
|
19 years ago |
jsorg71
|
9ad83a3c23
|
moving reverse to ssl_calls
|
19 years ago |
jsorg71
|
41df89c7f2
|
moved some files around
|
20 years ago |