Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | openssl.pkey: Export rsa padding options | daurnimator | 2016-11-08 | 1 | -0/+11 |
| | |||||
* | openssl.pkey: Add pkey:encrypt() method | daurnimator | 2016-11-08 | 1 | -0/+56 |
| | |||||
* | workaround for broken GCC on some newer debian/ubuntu installations with ↵ | William Ahern | 2016-11-01 | 1 | -4/+10 |
| | | | | weird GCC default flags that fail compilation on C99-style for loops without any other warning flags specified | ||||
* | Merge branch '55-renametobin' of https://github.com/daurnimator/luaossl into ↵ | William Ahern | 2016-11-01 | 1 | -25/+29 |
|\ | | | | | | | daurnimator-55-renametobin | ||||
| * | Keep old deprecated names 'tobin', 'todec', 'tohex' | daurnimator | 2016-04-22 | 1 | -0/+4 |
| | | | | | | | | Turns out they were in release 20151221 | ||||
| * | Rename tobin, todec, tohex to CamelCase: toDecimal, toDecimal, toHex | daurnimator | 2016-04-10 | 1 | -25/+25 |
| | | |||||
* | | forgot to remove HAVE_GENERAL_NAME_SET0_VALUE | William Ahern | 2016-11-01 | 1 | -4/+0 |
| | | |||||
* | | Remove unused ecg_new_by_nid | daurnimator | 2016-10-30 | 1 | -15/+0 |
| | | |||||
* | | Remove unused GENERAL_NAME_get0_value | daurnimator | 2016-10-30 | 1 | -66/+0 |
| | | |||||
* | | fix constantness warning with OpenSSL 1.1 API | William Ahern | 2016-10-29 | 1 | -1/+7 |
| | | |||||
* | | add and use pkey:getDefaultDigestName because the old digest type names used ↵ | William Ahern | 2016-10-29 | 1 | -9/+28 |
| | | | | | | | | in examples/vrfy.sig are not accepted by OpenSSL 1.1 | ||||
* | | final bits handle EVP_CIPHER_CTX, EVP_MD_CTX, and HMAC_CTX as opaque objects | William Ahern | 2016-10-29 | 1 | -32/+127 |
| | | |||||
* | | use SSL_client_version | William Ahern | 2016-10-29 | 1 | -2/+22 |
| | | | | | | | | OPENSSL_NO_SSL2 isn't defined even though SSLv2 methods are gone | ||||
* | | X509_STORE_CTX is opaque, fixup store:verify | William Ahern | 2016-10-29 | 1 | -45/+80 |
| | | |||||
* | | must use i2d_re_X509_REQ_tbs to dirty the X509_REQ cached encoding | William Ahern | 2016-10-29 | 1 | -0/+8 |
| | | |||||
* | | use EVP_PKEY_get_default_digest_nid to determine the default signature, and ↵ | William Ahern | 2016-10-29 | 1 | -11/+41 |
| | | | | | | | | emulate for OpenSSL 0.9.8 using our old code from xc_signature | ||||
* | | more OpenSSL 1.1 work | William Ahern | 2016-10-29 | 1 | -25/+127 |
| | | |||||
* | | lots of OpenSSL 1.1 compatability work | William Ahern | 2016-10-28 | 1 | -58/+339 |
| | | |||||
* | | libressl has supported ALPN since 2.1.3 | William Ahern | 2016-10-19 | 1 | -1/+1 |
| | | |||||
* | | unbreak BSDs by using arc4random_buf | William Ahern | 2016-10-19 | 1 | -2/+2 |
| | | |||||
* | | there are no kernel headers installed by default in Alpine Linux ↵ | William Ahern | 2016-10-19 | 1 | -31/+25 |
| | | | | | | | | (Linux/musl) so use alternate feature test; support running binaries built with getrandom on older kernels with only sysctl(RANDOM_UUID); change preprocessor test for feature macros so they can be easily overridden with build flags; and remove feature macro definitions in favor of those in config.h (config.h.guess) | ||||
* | | Use syscall() to call getrandom() | Ondřej Surý | 2016-08-30 | 1 | -1/+2 |
| | | |||||
* | | Add __DragonFly__ and generic BSD detection for ARC4RANDOM | Ondřej Surý | 2016-08-30 | 1 | -1/+1 |
| | | |||||
* | | Use RAND_seed() instead of RAND_add() where appropriate | Ondřej Surý | 2016-08-30 | 1 | -4/+4 |
| | | |||||
* | | Reinstate sysctl call for older Linux kernels | Ondřej Surý | 2016-08-30 | 1 | -8/+29 |
| | | |||||
* | | Use arc4random()/getrandom() to get random bytes instead of sysctl() interface | Ondřej Surý | 2016-08-30 | 1 | -31/+32 |
| | | |||||
* | | in bignum string conversion, don't pass char or signed char to isdigit or ↵ | William Ahern | 2016-08-12 | 1 | -2/+2 |
| | | | | | | | | isxdigit | ||||
* | | temporarily address issue #54 by copying solution from lunix and autoguess ↵ | William Ahern | 2016-06-25 | 1 | -2/+2 |
| | | | | | | | | project | ||||
* | | refactor style to more closely match the style of the existing code, such as ↵ | William Ahern | 2016-06-24 | 1 | -22/+35 |
| | | | | | | | | it is | ||||
* | | initialize attr to NULL in xr_setExtensionByNid to silence clang, which ↵ | William Ahern | 2016-06-23 | 1 | -0/+1 |
| | | | | | | | | can't see that has_attrs indirectly assures at least one iteration of the for loop (in the single-threaded case, at least) | ||||
* | | Support for getting and setting SAN on a CSR | Ash Berlin | 2016-04-11 | 1 | -0/+81 |
| | | | | | | | | | | Extensions in a CSR are a bit more complex than in a CRL or a certificate itself so we don't quite use the same interface. | ||||
* | | Add terminator to openssl.x509.extension. | Ash Berlin | 2016-04-09 | 1 | -0/+1 |
|/ | | | | | | | | | | | | | | | Without this we ended up over-running the buffer and setting functions as numbers again. Before: $ lua -e 'print(require "openssl.x509.extension".new)' 4519558960 After: $ lua -e 'print(require "openssl.x509.extension".new)' function: 0x10f9755e0 | ||||
* | Merge branch 'bignum-new' of git://github.com/daurnimator/luaossl into ↵ | William Ahern | 2016-02-16 | 1 | -7/+42 |
|\ | | | | | | | daurnimator-bignum-new | ||||
| * | bignum: Don't allow empty numbers/strings to pass | daurnimator | 2016-01-04 | 1 | -5/+5 |
| | | | | | | | | | | Previously, "-" would pass the len>0 check; and end up as "0" The `*str` check was redundant, the switch/case already ensures the object at the given stack index is a string | ||||
| * | bignum: validate hex and decimal strings before feeding to openssl | daurnimator | 2016-01-04 | 1 | -2/+11 |
| | | | | | | | | OpenSSL doesn't throw an error on invalid numbers | ||||
| * | bignum: handle negative hex numbers | daurnimator | 2016-01-04 | 1 | -2/+11 |
| | | |||||
| * | bignum: Add fromBinary constructor | daurnimator | 2016-01-04 | 1 | -0/+12 |
| | | | | | | | | Closes #44 | ||||
| * | bignum.new: Allow initialisation from hex strings | daurnimator | 2016-01-04 | 1 | -5/+10 |
| | | |||||
* | | Lua 5.1 doesn't permit NULL msg argument to luaL_checkstack | William Ahern | 2016-01-14 | 1 | -2/+2 |
| | | |||||
* | | try to avoid negative stack indices with luaL_checkstring as error messages ↵ | William Ahern | 2016-01-08 | 1 | -1/+1 |
| | | | | | | | | are confusing (per daurnimator) | ||||
* | | unbreak openssl.rand by fixing auxL_newlib bug | William Ahern | 2016-01-08 | 1 | -1/+1 |
| | | |||||
* | | fix EVP_PKEY method interposing | William Ahern | 2016-01-08 | 1 | -16/+64 |
| | | |||||
* | | permit direct indexing of EVP_KEY as alternative to getParameters/setParameters | William Ahern | 2016-01-07 | 1 | -218/+356 |
| | | |||||
* | | fix comment typo | William Ahern | 2016-01-07 | 1 | -1/+1 |
| | | |||||
* | | preliminary support for pkey:setParameters | William Ahern | 2016-01-07 | 1 | -31/+470 |
|/ | |||||
* | Merge branch 'fix-wrong-type' of git://github.com/daurnimator/luaossl into ↵ | William Ahern | 2016-01-04 | 1 | -3/+3 |
|\ | | | | | | | daurnimator-fix-wrong-type | ||||
| * | Fix incorrect type check in ssl:{set,get,clear}Options | daurnimator | 2016-01-03 | 1 | -3/+3 |
| | | | | | | | | Was checking for SSL_CTX instead of SSL | ||||
* | | bignum: Add generatePrime as new constructor | daurnimator | 2016-01-03 | 1 | -3/+26 |
| | | |||||
* | | bignum: Add :isPrime | daurnimator | 2016-01-03 | 1 | -15/+30 |
| | | |||||
* | | bignum: bugfix: unm shouldn't modify it's operands | daurnimator | 2016-01-03 | 1 | -1/+2 |
| | |