aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* restore alphabetical ordering of definitionsLibravatarLibravatar William Ahern 2016-11-231-14/+14
|
* Merge branch 'ctx-getStore' of https://github.com/daurnimator/luaossl into ↵LibravatarLibravatar William Ahern 2016-11-231-0/+41
|\ | | | | | | daurnimator-ctx-getStore
| * openssl.ssl.context: Add :getStore() that returns the ssl context's internal ↵LibravatarLibravatar daurnimator 2016-11-071-0/+15
| | | | | | | | x509 store
| * openssl.x509.store: Add xs_push to push an existing X509_STORELibravatarLibravatar daurnimator 2016-11-071-0/+26
| |
* | Merge branch '68-bind-X509_STORE_add_crl' of ↵LibravatarLibravatar William Ahern 2016-11-231-6/+13
|\ \ | | | | | | | | | https://github.com/daurnimator/luaossl into daurnimator-68-bind-X509_STORE_add_crl
| * | openssl.x509.store:add(): Allow adding CRLs to storeLibravatarLibravatar daurnimator 2016-11-071-6/+13
| |/ | | | | | | Uses `X509_STORE_add_crl`
* | Merge branch '67-default-cert-locations' of ↵LibravatarLibravatar William Ahern 2016-11-231-3/+25
|\ \ | | | | | | | | | https://github.com/daurnimator/luaossl into daurnimator-67-default-cert-locations
| * | openssl.x509.store: Expose cert dir and cert file constantsLibravatarLibravatar daurnimator 2016-11-071-0/+9
| | |
| * | openssl_x509_store: add :addDefault() method to add OS default certificatesLibravatarLibravatar daurnimator 2016-11-071-3/+16
| |/
* | auxS_todigest and auxL_optdigest depend on compat routinesLibravatarLibravatar William Ahern 2016-11-231-33/+49
| |
* | negative indices don't make sense for luaL_opt interfaces and don't work ↵LibravatarLibravatar William Ahern 2016-11-231-2/+0
| | | | | | | | properly, so no need to try to handle that case in our wrapper code
* | Merge branch 'master' into 63-evp_pkey_get_default_digest_nid-getPublicKeyDigestLibravatarLibravatar William Ahern 2016-11-231-114/+39
|\|
| * workaround for broken GCC on some newer debian/ubuntu installations with ↵LibravatarLibravatar William Ahern 2016-11-011-4/+10
| | | | | | | | weird GCC default flags that fail compilation on C99-style for loops without any other warning flags specified
| * Merge branch '55-renametobin' of https://github.com/daurnimator/luaossl into ↵LibravatarLibravatar William Ahern 2016-11-011-25/+29
| |\ | | | | | | | | | daurnimator-55-renametobin
| | * Keep old deprecated names 'tobin', 'todec', 'tohex'LibravatarLibravatar daurnimator 2016-04-221-0/+4
| | | | | | | | | | | | Turns out they were in release 20151221
| | * Rename tobin, todec, tohex to CamelCase: toDecimal, toDecimal, toHexLibravatarLibravatar daurnimator 2016-04-101-25/+25
| | |
| * | forgot to remove HAVE_GENERAL_NAME_SET0_VALUELibravatarLibravatar William Ahern 2016-11-011-4/+0
| | |
| * | Remove unused ecg_new_by_nidLibravatarLibravatar daurnimator 2016-10-301-15/+0
| | |
| * | Remove unused GENERAL_NAME_get0_valueLibravatarLibravatar daurnimator 2016-10-301-66/+0
| | |
* | | use _MSC_FULL_VER not _MSC_VER_FULL, and use more common feature macro names ↵LibravatarLibravatar William Ahern 2016-11-231-7/+11
| | | | | | | | | | | | for some builtins
* | | auxL_absindex too clever; stay simpleLibravatarLibravatar William Ahern 2016-11-021-6/+3
| | |
* | | forgot to remove old xc_getPublicKeyDigestLibravatarLibravatar William Ahern 2016-11-011-20/+0
| | |
* | | refactor xc_signature to auxL_optdigestLibravatarLibravatar William Ahern 2016-11-011-29/+116
|/ / | | | | | | | | refactor xc_getPublicKeyDigestName to use auxL_optdigest closes issue #63
* | fix constantness warning with OpenSSL 1.1 APILibravatarLibravatar William Ahern 2016-10-291-1/+7
| |
* | add and use pkey:getDefaultDigestName because the old digest type names used ↵LibravatarLibravatar William Ahern 2016-10-291-9/+28
| | | | | | | | in examples/vrfy.sig are not accepted by OpenSSL 1.1
* | final bits handle EVP_CIPHER_CTX, EVP_MD_CTX, and HMAC_CTX as opaque objectsLibravatarLibravatar William Ahern 2016-10-291-32/+127
| |
* | use SSL_client_versionLibravatarLibravatar William Ahern 2016-10-291-2/+22
| | | | | | | | OPENSSL_NO_SSL2 isn't defined even though SSLv2 methods are gone
* | X509_STORE_CTX is opaque, fixup store:verifyLibravatarLibravatar William Ahern 2016-10-291-45/+80
| |
* | must use i2d_re_X509_REQ_tbs to dirty the X509_REQ cached encodingLibravatarLibravatar William Ahern 2016-10-291-0/+8
| |
* | use EVP_PKEY_get_default_digest_nid to determine the default signature, and ↵LibravatarLibravatar William Ahern 2016-10-291-11/+41
| | | | | | | | emulate for OpenSSL 0.9.8 using our old code from xc_signature
* | more OpenSSL 1.1 workLibravatarLibravatar William Ahern 2016-10-291-25/+127
| |
* | lots of OpenSSL 1.1 compatability workLibravatarLibravatar William Ahern 2016-10-281-58/+339
| |
* | libressl has supported ALPN since 2.1.3LibravatarLibravatar William Ahern 2016-10-191-1/+1
| |
* | unbreak BSDs by using arc4random_bufLibravatarLibravatar William Ahern 2016-10-191-2/+2
| |
* | there are no kernel headers installed by default in Alpine Linux ↵LibravatarLibravatar William Ahern 2016-10-191-31/+25
| | | | | | | | (Linux/musl) so use alternate feature test; support running binaries built with getrandom on older kernels with only sysctl(RANDOM_UUID); change preprocessor test for feature macros so they can be easily overridden with build flags; and remove feature macro definitions in favor of those in config.h (config.h.guess)
* | use config.h.guess from autoguess project for system feature testsLibravatarLibravatar William Ahern 2016-10-191-2/+4
| |
* | Use syscall() to call getrandom()LibravatarLibravatar Ondřej Surý 2016-08-301-1/+2
| |
* | Add __DragonFly__ and generic BSD detection for ARC4RANDOMLibravatarLibravatar Ondřej Surý 2016-08-301-1/+1
| |
* | Use RAND_seed() instead of RAND_add() where appropriateLibravatarLibravatar Ondřej Surý 2016-08-301-4/+4
| |
* | Reinstate sysctl call for older Linux kernelsLibravatarLibravatar Ondřej Surý 2016-08-301-8/+29
| |
* | Use arc4random()/getrandom() to get random bytes instead of sysctl() interfaceLibravatarLibravatar Ondřej Surý 2016-08-301-31/+32
| |
* | in bignum string conversion, don't pass char or signed char to isdigit or ↵LibravatarLibravatar William Ahern 2016-08-121-2/+2
| | | | | | | | isxdigit
* | temporarily address issue #54 by copying solution from lunix and autoguess ↵LibravatarLibravatar William Ahern 2016-06-251-2/+2
| | | | | | | | project
* | upgrade luapath scriptLibravatarLibravatar William Ahern 2016-06-241-1/+1
| |
* | refactor style to more closely match the style of the existing code, such as ↵LibravatarLibravatar William Ahern 2016-06-241-22/+35
| | | | | | | | it is
* | refactor and add ashb's regression test for #53LibravatarLibravatar William Ahern 2016-06-244-2/+26
| |
* | initialize attr to NULL in xr_setExtensionByNid to silence clang, which ↵LibravatarLibravatar William Ahern 2016-06-231-0/+1
| | | | | | | | can't see that has_attrs indirectly assures at least one iteration of the for loop (in the single-threaded case, at least)
* | Support for getting and setting SAN on a CSRLibravatarLibravatar Ash Berlin 2016-04-111-0/+81
| | | | | | | | | | Extensions in a CSR are a bit more complex than in a CRL or a certificate itself so we don't quite use the same interface.
* | Add terminator to openssl.x509.extension.LibravatarLibravatar Ash Berlin 2016-04-091-0/+1
|/ | | | | | | | | | | | | | | Without this we ended up over-running the buffer and setting functions as numbers again. Before: $ lua -e 'print(require "openssl.x509.extension".new)' 4519558960 After: $ lua -e 'print(require "openssl.x509.extension".new)' function: 0x10f9755e0
* Merge branch 'patch-1' of git://github.com/Zash/luaossl into Zash-patch-1LibravatarLibravatar William Ahern 2016-02-162-0/+2
|\