aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* workaround for broken GCC on some newer debian/ubuntu installations with ↵LibravatarLibravatar William Ahern 2016-11-011-4/+10
| | | | weird GCC default flags that fail compilation on C99-style for loops without any other warning flags specified
* Merge branch 'daurnimator-55-renametobin'LibravatarLibravatar William Ahern 2016-11-011-25/+29
|\
| * Merge branch '55-renametobin' of https://github.com/daurnimator/luaossl into ↵LibravatarLibravatar William Ahern 2016-11-011-25/+29
|/| | | | | | | daurnimator-55-renametobin
| * Keep old deprecated names 'tobin', 'todec', 'tohex'LibravatarLibravatar daurnimator 2016-04-221-0/+4
| | | | | | | | Turns out they were in release 20151221
| * Rename tobin, todec, tohex to CamelCase: toDecimal, toDecimal, toHexLibravatarLibravatar daurnimator 2016-04-101-25/+25
| |
* | Merge branch 'daurnimator-fix-warnings'LibravatarLibravatar William Ahern 2016-11-011-85/+0
|\ \
| * | forgot to remove HAVE_GENERAL_NAME_SET0_VALUELibravatarLibravatar William Ahern 2016-11-011-4/+0
| | |
| * | Remove unused ecg_new_by_nidLibravatarLibravatar daurnimator 2016-10-301-15/+0
| | |
| * | Remove unused GENERAL_NAME_get0_valueLibravatarLibravatar daurnimator 2016-10-301-66/+0
|/ /
* | fix constantness warning with OpenSSL 1.1 APILibravatarLibravatar William Ahern 2016-10-291-1/+7
| |
* | not using key variable in vrfy.sig:genkeyLibravatarLibravatar William Ahern 2016-10-291-1/+0
| |
* | add and use pkey:getDefaultDigestName because the old digest type names used ↵LibravatarLibravatar William Ahern 2016-10-292-16/+38
| | | | | | | | in examples/vrfy.sig are not accepted by OpenSSL 1.1
* | final bits handle EVP_CIPHER_CTX, EVP_MD_CTX, and HMAC_CTX as opaque objectsLibravatarLibravatar William Ahern 2016-10-291-32/+127
| |
* | use SSL_client_versionLibravatarLibravatar William Ahern 2016-10-291-2/+22
| | | | | | | | OPENSSL_NO_SSL2 isn't defined even though SSLv2 methods are gone
* | add regression test for store:verifyLibravatarLibravatar William Ahern 2016-10-292-0/+180
| |
* | X509_STORE_CTX is opaque, fixup store:verifyLibravatarLibravatar William Ahern 2016-10-291-45/+80
| |
* | must use i2d_re_X509_REQ_tbs to dirty the X509_REQ cached encodingLibravatarLibravatar William Ahern 2016-10-291-0/+8
| |
* | use EVP_PKEY_get_default_digest_nid to determine the default signature, and ↵LibravatarLibravatar William Ahern 2016-10-291-11/+41
| | | | | | | | emulate for OpenSSL 0.9.8 using our old code from xc_signature
* | more OpenSSL 1.1 workLibravatarLibravatar William Ahern 2016-10-291-25/+127
| |
* | lots of OpenSSL 1.1 compatability workLibravatarLibravatar William Ahern 2016-10-281-58/+339
| |
* | libressl has supported ALPN since 2.1.3LibravatarLibravatar William Ahern 2016-10-191-1/+1
| |
* | unbreak BSDs by using arc4random_bufLibravatarLibravatar William Ahern 2016-10-192-2/+9
| |
* | Merge branch 'oerdnj-master'LibravatarLibravatar William Ahern 2016-10-194-31/+927
|\ \
| * | there are no kernel headers installed by default in Alpine Linux ↵LibravatarLibravatar William Ahern 2016-10-191-31/+25
| | | | | | | | | | | | (Linux/musl) so use alternate feature test; support running binaries built with getrandom on older kernels with only sysctl(RANDOM_UUID); change preprocessor test for feature macros so they can be easily overridden with build flags; and remove feature macro definitions in favor of those in config.h (config.h.guess)
| * | use config.h.guess from autoguess project for system feature testsLibravatarLibravatar William Ahern 2016-10-193-2/+881
| | |
| * | Merge branch 'master' of https://github.com/oerdnj/luaossl into oerdnj-masterLibravatarLibravatar William Ahern 2016-10-191-22/+45
|/| |
| * | Use syscall() to call getrandom()LibravatarLibravatar Ondřej Surý 2016-08-301-1/+2
| | |
| * | Add __DragonFly__ and generic BSD detection for ARC4RANDOMLibravatarLibravatar Ondřej Surý 2016-08-301-1/+1
| | |
| * | Use RAND_seed() instead of RAND_add() where appropriateLibravatarLibravatar Ondřej Surý 2016-08-301-4/+4
| | |
| * | Reinstate sysctl call for older Linux kernelsLibravatarLibravatar Ondřej Surý 2016-08-301-8/+29
| | |
| * | Use arc4random()/getrandom() to get random bytes instead of sysctl() interfaceLibravatarLibravatar Ondřej Surý 2016-08-301-31/+32
| | |
* | | update luapathLibravatarLibravatar William Ahern 2016-10-191-2/+27
|/ /
* | in bignum string conversion, don't pass char or signed char to isdigit or ↵LibravatarLibravatar William Ahern 2016-08-121-2/+2
| | | | | | | | isxdigit
* | temporarily address issue #54 by copying solution from lunix and autoguess ↵LibravatarLibravatar William Ahern 2016-06-251-2/+2
| | | | | | | | project
* | upgrade luapath scriptLibravatarLibravatar William Ahern 2016-06-242-171/+344
| |
* | forgot to actually add regression testLibravatarLibravatar William Ahern 2016-06-241-0/+168
| |
* | Merge branch 'ashb-csr_san'LibravatarLibravatar William Ahern 2016-06-246-2/+130
|\ \ | |/ |/|
| * refactor style to more closely match the style of the existing code, such as ↵LibravatarLibravatar William Ahern 2016-06-241-22/+35
| | | | | | | | it is
| * refactor and add ashb's regression test for #53LibravatarLibravatar William Ahern 2016-06-244-2/+26
| |
| * initialize attr to NULL in xr_setExtensionByNid to silence clang, which ↵LibravatarLibravatar William Ahern 2016-06-231-0/+1
| | | | | | | | can't see that has_attrs indirectly assures at least one iteration of the for loop (in the single-threaded case, at least)
| * Support for getting and setting SAN on a CSRLibravatarLibravatar Ash Berlin 2016-04-112-0/+89
| | | | | | | | | | Extensions in a CSR are a bit more complex than in a CRL or a certificate itself so we don't quite use the same interface.
| * Add terminator to openssl.x509.extension.LibravatarLibravatar Ash Berlin 2016-04-091-0/+1
|/ | | | | | | | | | | | | | | Without this we ended up over-running the buffer and setting functions as numbers again. Before: $ lua -e 'print(require "openssl.x509.extension".new)' 4519558960 After: $ lua -e 'print(require "openssl.x509.extension".new)' function: 0x10f9755e0
* Merge branch 'Zash-patch-1'LibravatarLibravatar William Ahern 2016-02-162-0/+2
|\
| * Merge branch 'patch-1' of git://github.com/Zash/luaossl into Zash-patch-1LibravatarLibravatar William Ahern 2016-02-162-0/+2
|/|
| * Add openssl.x509.csr to makefileLibravatarLibravatar Kim Alvefur 2016-02-061-0/+1
| |
| * Expose openssl.x509.csrLibravatarLibravatar Kim Alvefur 2016-02-061-0/+1
| |
* | Merge branch 'daurnimator-bignum-new'LibravatarLibravatar William Ahern 2016-02-161-7/+42
|\ \ | |/ |/|
| * Merge branch 'bignum-new' of git://github.com/daurnimator/luaossl into ↵LibravatarLibravatar William Ahern 2016-02-161-7/+42
|/| | | | | | | daurnimator-bignum-new
| * bignum: Don't allow empty numbers/strings to passLibravatarLibravatar daurnimator 2016-01-041-5/+5
| | | | | | | | | | Previously, "-" would pass the len>0 check; and end up as "0" The `*str` check was redundant, the switch/case already ensures the object at the given stack index is a string
| * bignum: validate hex and decimal strings before feeding to opensslLibravatarLibravatar daurnimator 2016-01-041-2/+11
| | | | | | | | OpenSSL doesn't throw an error on invalid numbers