aboutsummaryrefslogtreecommitdiff
path: root/lib/ssluse.c
AgeCommit message (Collapse)Author
2005-03-04Reduced the length of data read from the random entropy file.Dan Fandrich
2005-03-04Don't try to read the whole of the random file because when /dev/urandom isDan Fandrich
used, it slows initialization too much reading an infinitely long file!
2005-02-10init fix for non-SSL buildsDaniel Stenberg
2005-02-09better error checking and SSL init by David ByronDaniel Stenberg
2005-01-10Hzhijun reported a memory leak in the SSL certificate code, that leaked theDaniel Stenberg
remote certificate name when it didn't match the used host name.
2004-12-19Remove 'data' initialiser.Gisle Vanem
2004-12-19if the pkcs12.h header exists, include it already in urldata.h to work aroundDaniel Stenberg
a precedence problem with the zlib header. See CHANGES for details.
2004-12-18Samuel Listopad added support for PKCS12 formatted certificates.Daniel Stenberg
2004-12-14prevent compiler warning when built without engine supportDaniel Stenberg
2004-12-14Header files are in openssl/ only if USE_OPENSSL is set.Dan Fandrich
2004-12-14urldata.h: Removed engine_list.Gisle Vanem
ssluse.*: Added SSL_strerror(). Curl_SSL_engines_list() now returns a slist which must be freed by caller.
2004-12-14Moved the engine stuff from the root-level of the SessionHandle struct to theDaniel Stenberg
UrlState sub-struct. Also made the engine_list exist for non-ssl builds to make curl build.
2004-12-13Added handling of CURLINFO_SSL_ENGINES;Gisle Vanem
Added Curl_SSL_engines_list(), cleanup SSL in url.c (no HAVE_OPENSSL_x etc.).
2004-11-22Curl_select's timeout arg is an intDaniel Stenberg
2004-11-19David Phillips' FD_SETSIZE fixDaniel Stenberg
2004-11-15clean up start time and t_startsingle use so that redirect_time works properlyDaniel Stenberg
2004-10-06removed tabs and trailing whitespace from sourceDaniel Stenberg
2004-09-02improved error message when client cert return failureDaniel Stenberg
2004-08-10In OpenSSL 0.9.7d and earlier, ASN1_STRING_to_UTF8 fails if the input isDaniel Stenberg
already UTF-8 encoded. We check for this case and copy the raw string manually to avoid the problem. This code can be made conditional in the future when OpenSSL has been fixed. Work-around brought by Alexis S. L. Carvalho.
2004-07-29added typecast in an attempt to fix a mingw32 warningDaniel Stenberg
2004-07-04SSL_get_verify_result() returns a long, so we receive the result in a longDaniel Stenberg
and not an int.
2004-07-01Variable type cleanups to please the picky MIPSPro compiler.Daniel Stenberg
2004-06-30Prevent a very long password to buffer overflow the global variable weDaniel Stenberg
use when built with a very old OpenSSL version.
2004-06-30make the SSL connect use the same default connect timeout define as theDaniel Stenberg
generic connect uses
2004-06-24Replaced all uses of sprintf() with the safer snprintf(). It is just aDaniel Stenberg
precaution to prevent mistakes to lead to buffer overflows.
2004-06-22Gisle fixed the wildcard checks for certificates.Daniel Stenberg
2004-06-19prevent compiler warningDaniel Stenberg
2004-06-18Gisle's "SSL patch" from June 16th 2004, modified by me as discussed on theDaniel Stenberg
mailing list.
2004-06-13use Curl_strcasestr() when checking wildcard cert namesDaniel Stenberg
2004-05-18* seed_enough() was converted to a macro to avoid the IRIX compiler warningDaniel Stenberg
about that passed-in argument not being used. * killed trailing whitespace
2004-05-17Peter Sylvester's patch that addresses two flaws in the peer certificate nameDaniel Stenberg
verification: - when multiple common names are used (as in the curl tests), the last name needs to be selected. - allow comparing with encoded values, at least with BMP and ISO latin1 encoded T61strings.
2004-05-13memory cleanup and check fixDaniel Stenberg
2004-05-11curl_global_init_mem() allows the memory functions to be replaced.Daniel Stenberg
memory.h is included everywhere for this.
2004-04-29Gisle made the code use ERR_error_string_n()Daniel Stenberg
2004-04-27Made host name and proxy name get stored in a 'struct hostname' and setDaniel Stenberg
all things up to work with encoded host names internally, as well as keeping 'display names' to show in debug messages. IDN resolves work for me now using ipv6, ipv4 and ares resolving. Even cookies on IDN sites seem to do right.
2004-04-26Tor Arntsen fixed a 'Statement not reachable'-warningDaniel Stenberg
2004-04-20Cleaned up hostname/name/gname and path/ppath confusion. Removed the fixed-Daniel Stenberg
length limit of the hostname part of the URL.
2004-03-23variable type usage cleanup to please picky compilersDaniel Stenberg
2004-03-11don't let the EINTR stuff build on windowsDaniel Stenberg
2004-03-10Jeff Lawson fixed the SSL connection to deal with received signals during theDaniel Stenberg
connect.
2004-03-09Use curl_socket_t instead of int for holding sockets. The typedefs andDaniel Stenberg
defines are in setup.h.
2004-01-29Dan Fandrich's cleanup patch to make pedantic compiler options cause lessDaniel Stenberg
warnings. Minor edits by me.
2004-01-16Gisle Vanem's patch for variables that "might be used uninitialized"Daniel Stenberg
2004-01-07updated year in the copyright stringDaniel Stenberg
2003-11-24prevent warning for non-SSL buildsDaniel Stenberg
2003-11-24FTPS support added as RFC2228 and the murray-ftp-auth-ssl draft describe itDaniel Stenberg
2003-11-15Mathias Axelsson found a case where we free()d the server certificate twice!Daniel Stenberg
2003-10-23Georg Horn's fixes to do different CA cert verifications. They can now beDaniel Stenberg
done even if the result is ignored, as some sites seem to require that.
2003-10-16rewritten alternative name checkDaniel Stenberg
2003-10-15bad license situation for the altname patchDaniel Stenberg