aboutsummaryrefslogtreecommitdiff
path: root/lib/ssluse.c
AgeCommit message (Collapse)Author
2002-08-30if verifypeer is enabled but nether CAfile nor CApath is, then don't tryDaniel Stenberg
to load "verify_locations"
2002-08-30CURLE_SSL_INSECURE is removed again and so is CURLOPT_SSL_INSECURE, weDaniel Stenberg
proceed fine with the already existing options, just having a different internal library default for capath.
2002-06-10This fix MIGHT make us build nicely with OpenSSL 0.9.7. This fix is basedDaniel Stenberg
on a patch from Jacob Meuser, input from Götz Babin-Ebell and my own browsing of the latest include files.
2002-05-21ASN1 files don't work for the *chain_file(), make them use the previousDaniel Stenberg
version
2002-05-20Roland Zimmermann's hint, we use SSL_CTX_use_certificate_chain_file() insteadDaniel Stenberg
of the previous one that used SSL_CTX_use_certificate_file()
2002-03-19copyright string (year) updateDaniel Stenberg
2002-01-30now re-seed by force (even if already seeded) if a random file or egd socketDaniel Stenberg
is given
2002-01-29- T. Bharath pointed out that we seed SSL on every connect, which is a time-Daniel Stenberg
consuming operation that should only be needed to do once. We patched libcurl to now only seed on the first connect when unseeded. The seeded status is global so it'll now only happen once during a program's life time.
2002-01-17Richard Archer made it compile and build with OpenSSL versions prior toDaniel Stenberg
0.9.5
2002-01-09Cris Bailiff found out that when the SSL session cache was filled, libcurlDaniel Stenberg
would crash. This corrects the problem.
2002-01-08added a missing failf() before returning an error codeDaniel Stenberg
2002-01-07Modified to use non-blocking sockets all the time.Daniel Stenberg
2001-12-17Götz Babin-Ebell's OpenSSL ENGINE patchDaniel Stenberg
2001-12-11failf() calls should not have newlines in the message string!Daniel Stenberg
2001-11-14Samuel Listopad's fix to allow global_init => global_cleanup => global_initDaniel Stenberg
for ssl
2001-11-05we can now tell ssl to use TLSv1 protocol, and we now use defines insteadDaniel Stenberg
of real integers for versions, the defines are added to curl.h
2001-10-11looks nicer and is better compatible with older vim versionsSterling Hughes
2001-09-19Lots of praise and glory to Vojtech Minarik for setting up a test serverDaniel Stenberg
and providing me with test-certificates that helped me nail the problem with curl not discovering with a bad certificate was used.
2001-09-12narrowed some source lines to fit in 80 colsDaniel Stenberg
2001-09-11added ability to set prefered list of ciphersDaniel Stenberg
2001-09-11ouputs the start and expire dates of the server certificate on verboseDaniel Stenberg
output
2001-09-07made it compile properly when not building with SSL supportDaniel Stenberg
2001-09-07Added formatting sections for emacs and vimSterling Hughes
2001-09-06moved the session ID cache state variables into the UrlState struct withinDaniel Stenberg
the SessionHandle. It was previously wrongly put in UserDefined
2001-09-06Curl_SSL_Close_All() now checks that we have a session cache before we runDaniel Stenberg
around killing entries in it!
2001-08-30Major rename and redesign of the internal "backbone" structs. Details willDaniel Stenberg
be posted in a minute to the libcurl list.
2001-08-29take port numbers into account when finding a previous session from theDaniel Stenberg
cache
2001-08-28Added SSL session ID caching, moved some SSL code from url.c to ssluse.cDaniel Stenberg
2001-08-24strcasecmp() is banned from our code, should be strequal() everywhere!Daniel Stenberg
Tim Costello reported bug report #454858.
2001-08-14removed the use of the global array for the password that was necessaryDaniel Stenberg
for OpenSSL versions prior to 0.9.4, this is conditional and should still work with older versions.
2001-08-08Patrick Bihan-Faou introduced CURLOPT_SSL_VERIFYHOST and code to deal withDaniel Stenberg
it.
2001-06-29Nic Roets brought a fix for the certificate verification when using SSL.Daniel Stenberg
2001-06-12removed a failf() that would overwrite the previous error messageDaniel Stenberg
2001-05-30curl_global_init() support for CURL_GLOBAL_NOT_SSLDaniel Stenberg
2001-05-28T. Bharath's comments about SSL cleanup incorporated, and the two newDaniel Stenberg
curl_global_* functions
2001-05-12fixed Curl_SSLConnect() to return CURLcode errors, including the new errorDaniel Stenberg
code for peer certificate errors
2001-04-24include debugmem for memory leak detectionDaniel Stenberg
2001-03-14Björn Stenberg corrected the silly '(void)data' usage when SSL is notDaniel Stenberg
used
2001-03-14Jörn Hartroth fixed a bad #endif placementDaniel Stenberg
2001-03-12two new random seed options: CURLOPT_RANDOM_FILE and CURLOPT_EGDSOCKETDaniel Stenberg
2001-03-07removed compiler warning if HAVE_RAND_STATUS is falseDaniel Stenberg
2001-03-06new seeding stuff as mentioned by Albert ChinDaniel Stenberg
2001-02-20multiple connection support initial commitDaniel Stenberg
2001-01-05Internal symbols that aren't static are now prefixed with 'Curl_'Daniel Stenberg
2001-01-03dual-license fixDaniel Stenberg
2000-10-30new urldata ssl layout and T. Bharath brought the new SSL cert verify functionDaniel Stenberg
2000-09-26CRYPTO_free() of course, it makes it run with previous openssl versions tooDaniel Stenberg
2000-09-25No longer uses Free() as that was removed from OpenSSL with 0.9.6Daniel Stenberg
2000-08-24#include "setup.h" moved first of all includesDaniel Stenberg
2000-06-20haxx.nu => haxx.seDaniel Stenberg