aboutsummaryrefslogtreecommitdiffstats
path: root/src/openssl.c
Commit message (Collapse)AuthorAgeFilesLines
* Use single method constructor and disable unwanted protocols via optionsLibravatarLibravatar daurnimator 2017-08-311-31/+61
| | | | | - In OpenSSL 1.1.0 the individual constructors are deprecated - The removal of __typeof__ fixes an issue with MSVC
* Fix openssl 0.9.8 compat (missing sk_OPENSSL_STRING_* functions)LibravatarLibravatar daurnimator 2017-08-311-0/+10
|
* Merge branch 'curves_list'LibravatarLibravatar daurnimator 2017-08-301-0/+57
|\
| * openssl.ssl: Bind SSL_set1_curves_list as ssl:setCurvesList()LibravatarLibravatar daurnimator 2017-04-121-0/+22
| |
| * openssl.ssl.context.new: Turn on ecdh_auto in OpenSSL 1.0.2LibravatarLibravatar daurnimator 2017-04-031-0/+13
| | | | | | | | | | It's on by default in 1.1.0, and supported in < 1.0.2. Suggestion taken from ruby openssl implementation: https://github.com/ruby/openssl/blob/a7bbd590c66d40bd662502df9c65474e85b5f03f/ext/openssl/ossl_ssl.c#L135
| * openssl.ssl.context: Add ctx:setCurvesListLibravatarLibravatar daurnimator 2017-04-031-0/+22
| |
* | Move over to using lua-compat-5.3LibravatarLibravatar daurnimator 2017-08-301-1/+1
| |
* | Fix capitalisation (Hostname vs HostName)LibravatarLibravatar daurnimator 2017-05-311-7/+7
| |
* | Fix incorrect error prefixesLibravatarLibravatar daurnimator 2017-04-191-2/+2
| |
* | Reintroduce context:setTLSextStatusType() accidently removed in ↵LibravatarLibravatar daurnimator 2017-04-061-0/+3
| | | | | | | | 59766e63abfeb30342d413777b507940a739cc97
* | Add ssl_pushsafe function to avoid panic on OOMLibravatarLibravatar daurnimator 2017-04-041-7/+41
| |
* | Bind SSL_CTX_set_tlsext_servername_callbackLibravatarLibravatar daurnimator 2017-04-041-4/+81
| | | | | | | | Closes #84
* | Add methods ssl:setVerify(), ssl:getVerify(), ssl:getCertificate() and ↵LibravatarLibravatar daurnimator 2017-04-041-0/+69
| | | | | | | | | | | | ssl:setPrivateKey() Similar to same methods that already exist on ssl.context object
* | Remove need for LUA_COMPAT_APIINTCASTSLibravatarLibravatar daurnimator 2017-04-031-23/+15
| |
* | Fix warning about pointer signednessLibravatarLibravatar daurnimator 2017-04-031-1/+1
| |
* | Fix warning about pointer signednessLibravatarLibravatar daurnimator 2017-04-031-1/+1
| |
* | Bind SSL_set_SSL_CTXLibravatarLibravatar daurnimator 2017-04-031-0/+13
| | | | | | | | For #84
* | Don't leak ctx on errorLibravatarLibravatar daurnimator 2017-04-031-8/+5
| | | | | | | | Fixes #72
* | Bind SSL_get_client_randomLibravatarLibravatar daurnimator 2017-04-031-0/+42
| | | | | | | | For #86
* | Merge branch 'ocsp'LibravatarLibravatar daurnimator 2017-04-031-0/+347
|\ \
| * | Have (empty) openssl.ocsp.response moduleLibravatarLibravatar daurnimator 2017-04-031-2/+19
| | |
| * | Export constants for openssl.ocsp.basic:verify() with via moduleLibravatarLibravatar daurnimator 2017-04-031-0/+25
| | |
| * | Allow unsetting ocsp responseLibravatarLibravatar daurnimator 2017-04-031-4/+8
| | |
| * | Add cert:getOCSP() to retreive OCSP URI from a certificateLibravatarLibravatar daurnimator 2016-12-201-0/+35
| | |
| * | Add ssl:setTLSextStatusOCSPResp()LibravatarLibravatar daurnimator 2016-12-201-0/+21
| | | | | | | | | | | | Currently useless without a way to set a callback for tlsext
| * | OCSP functions required for basic client validationLibravatarLibravatar daurnimator 2016-12-201-0/+245
| |/
* | Remove extraneous parenthesisLibravatarLibravatar daurnimator 2017-04-031-1/+1
| |
* | Merge branch 'xc_getSignatureName'LibravatarLibravatar daurnimator 2017-04-031-9/+9
|\ \
| * | Add compat with openssl < 1.0.2 for X509_get_signature_nidLibravatarLibravatar daurnimator 2017-04-031-0/+8
| | |
| * | Use X509_get_signature_nid instead of X509_get_signature_type to implement ↵LibravatarLibravatar daurnimator 2017-01-161-9/+1
| |/ | | | | | | | | | | cert:getSignatureName() Fixes #79
* | Remove unused variables introduced in 590d368daeb400515c82b2d99ddcdf14607f9353LibravatarLibravatar daurnimator 2017-04-031-4/+0
| |
* | Merge branch '87-pass-subject-to-extension.new'LibravatarLibravatar daurnimator 2017-04-031-25/+87
|\ \ | | | | | | | | | Closes #87
| * | Move value='DER' check out of type dispatch in xe_newLibravatarLibravatar daurnimator 2017-04-031-20/+19
| | |
| * | extension.new: Add table form for extra argumentLibravatarLibravatar daurnimator 2017-02-271-1/+45
| | |
| * | Add lua_getfield compatibility macro that returns the type (as it does in 5.3)LibravatarLibravatar daurnimator 2017-02-271-2/+0
| | |
| * | extension.new: Swap to switch/case based argument checkingLibravatarLibravatar daurnimator 2017-02-271-2/+10
| | |
| * | extension.new: Factor out conf loading to own functionLibravatarLibravatar daurnimator 2017-02-271-7/+20
| |/
* | Bugfix in xx_getNextUpdate() - return time instead of constant 1.LibravatarLibravatar Pascal Fellerich 2017-04-031-1/+1
| |
* | New: method crl:verify(publickey) added, documentation updated.LibravatarLibravatar Pascal Fellerich 2017-04-031-0/+14
| |
* | New: pkcs12.parse() added to read a PKCS12 string, and return (pkey,cert,ca)LibravatarLibravatar Pascal Fellerich 2017-04-031-0/+56
| |
* | New: pkey.new{} modified to accept 'dhparam', a string representing the ↵LibravatarLibravatar Pascal Fellerich 2017-04-031-1/+19
|/ | | | pre-computed DH parameters
* for issue #82 split bn_prepops into explicit unary and binary operator modes ↵LibravatarLibravatar William Ahern 2016-12-141-20/+42
| | | | (bn_prepuop and bn_prepbop), and make more generic by working at top of stack
* apply patch recommended by daurnimator in issue #75LibravatarLibravatar William Ahern 2016-12-091-0/+10
|
* Merge branch 'daurnimator-74-bind-x509_verify_param'LibravatarLibravatar William Ahern 2016-12-081-2/+420
|\
| * manipulation of inh_flags isn't supported by OpenSSL 1.1 APILibravatarLibravatar William Ahern 2016-12-081-5/+13
| |
| * fix build for OpenSSL releases prior to 1.0.2LibravatarLibravatar William Ahern 2016-12-081-8/+101
| |
| * openssl.x509.verify_param: Bind X509_VERIFY_PARAM_inheritLibravatarLibravatar daurnimator 2016-12-091-0/+31
| |
| * openssl.x509.verify_param: Bind X509_VERIFY_PARAM_set_auth_level and ↵LibravatarLibravatar daurnimator 2016-12-091-0/+31
| | | | | | | | X509_VERIFY_PARAM_get_auth_level
| * openssl.ssl: Add ssl:setParam() and ssl:getParam()LibravatarLibravatar daurnimator 2016-12-091-0/+34
| |
| * openssl.ssl.context: Bind SSL_CTX_set1_param and SSL_CTX_get0_paramLibravatarLibravatar daurnimator 2016-12-091-0/+34
| |