Tue, 11 Aug 2009 17:38:06 -0400 |
Timo Sirainen |
Fixed openssl malloc() failure check.
HEAD
|
Fri, 07 Aug 2009 13:56:04 -0400 |
Timo Sirainen |
*-login: If OpenSSL fails with malloc failure, log an error.
HEAD
|
Tue, 04 Aug 2009 14:54:56 -0400 |
Timo Sirainen |
ssl_username_from_cert=yes: Don't truncate username, don't allow NULs in it.
HEAD
|
Wed, 29 Apr 2009 12:40:48 -0400 |
Timo Sirainen |
ssl-proxy: Crashfix to previous commit.
HEAD
|
Tue, 28 Apr 2009 22:31:40 -0400 |
Timo Sirainen |
imap/pop3 proxy: Support SSL/TLS connections to remote servers.
HEAD
|
Thu, 09 Apr 2009 14:51:24 -0400 |
Timo Sirainen |
ssl: Don't use mempool_system_clean_*() functions. Just extra work and they've had some problems.
HEAD
|
Tue, 13 Jan 2009 13:13:19 -0500 |
Timo Sirainen |
Check broken ssl-parameters.dat files better and give a better error message when seeing one.
HEAD
|
Tue, 06 Jan 2009 09:25:38 -0500 |
Timo Sirainen |
Updated copyright notices to include year 2009.
HEAD
|
Sun, 19 Oct 2008 14:00:57 +0300 |
Timo Sirainen |
Login process: Log auth failure reasons better in disconnect message.
HEAD
|
Sun, 05 Oct 2008 00:33:05 +0300 |
Timo Sirainen |
Log a better error message if ssl_cert_file doesn't point to a valid certificate.
HEAD
|
Sat, 30 Aug 2008 12:00:49 +0300 |
Timo Sirainen |
login_log_format_elements: Added %k to show SSL protocol/cipher information.
HEAD
|
Fri, 20 Jun 2008 10:41:44 +0300 |
Timo Sirainen |
Added more consts, ATTR_CONSTs and ATTR_PUREs.
HEAD
|
Wed, 07 May 2008 22:44:45 +0300 |
Timo Sirainen |
If SSL function fails and there are no errors, return "Unknown error"
HEAD
|
Mon, 05 May 2008 00:37:52 +0300 |
Timo Sirainen |
Free OpenSSL memory at deinit.
HEAD
|
Sat, 08 Mar 2008 02:09:40 +0200 |
Timo Sirainen |
If TLS connection closes with anything except a clean disconnection, log the
HEAD
|
Wed, 05 Mar 2008 01:48:22 +0200 |
Timo Sirainen |
Call SSL_shutdown()
HEAD
|
Sun, 06 Jan 2008 02:18:51 +0200 |
Timo Sirainen |
Replaced clients hash with a linked list.
HEAD
|
Tue, 01 Jan 2008 22:05:21 +0200 |
Timo Sirainen |
Updated copyright notices to include year 2008.
HEAD
|
Tue, 25 Sep 2007 12:44:11 +0300 |
Timo Sirainen |
Don't return void values from void functions.
HEAD
|
Sat, 22 Sep 2007 19:03:33 +0300 |
Timo Sirainen |
Renamed hash_size() -> hash_count().
HEAD
|
Sun, 16 Sep 2007 14:34:22 +0300 |
Timo Sirainen |
Replaced my Copyright notices. The year range always ends with 2007 now.
HEAD
|
Sun, 16 Sep 2007 13:30:31 +0300 |
Timo Sirainen |
Renamed strocpy() to i_strocpy().
HEAD
|
Sun, 16 Sep 2007 12:35:01 +0300 |
Timo Sirainen |
hash_destroy() and hash_iterate_deinit() now take ** pointer.
HEAD
|
Sun, 16 Sep 2007 11:40:56 +0300 |
Timo Sirainen |
Renamed __attr_*__ to ATTR_*. Renamed __attrs_used__ to ATTRS_DEFINED.
HEAD
|
Sun, 09 Sep 2007 05:54:32 +0300 |
Timo Sirainen |
Added ssl_cert_username_field setting.
HEAD
|
Fri, 06 Apr 2007 12:30:03 +0300 |
Timo Sirainen |
Send list of CA names to client when using ssl_verify_client_cert=yes.
HEAD
|
Sun, 18 Mar 2007 04:51:19 +0200 |
Timo Sirainen |
Make OpenSSL memory allocations go through system_clean_pool.
HEAD
|
Sun, 18 Mar 2007 04:40:28 +0200 |
Timo Sirainen |
Set login process's default_pool to system_clean_pool. Changed some
HEAD
|
Thu, 15 Mar 2007 18:52:09 +0200 |
Timo Sirainen |
Replace some string literals with non-const static buffers to avoid compiler
HEAD
|
Fri, 15 Dec 2006 20:38:08 +0200 |
Timo Sirainen |
Replaced void *context from a lot of callbacks with the actual context
HEAD
|
Sat, 18 Nov 2006 22:27:14 +0200 |
Timo Sirainen |
Call ssl_step() at startup instead of ssl_handshake(). If the first input
HEAD
|
Wed, 08 Nov 2006 22:51:32 +0200 |
Timo Sirainen |
Don't bother logging "syscall failed: EOF" messages. No-one cares about
HEAD
|
Mon, 16 Oct 2006 01:10:30 +0300 |
Timo Sirainen |
Don't allow SSLv2 by default.
HEAD
|
Mon, 16 Oct 2006 01:07:10 +0300 |
Timo Sirainen |
Updates to ssl_ca_file and ssl_username_from_cert comments in
HEAD
|
Fri, 13 Oct 2006 23:06:44 +0300 |
Timo Sirainen |
New asserts / cleanup
HEAD
|
Wed, 16 Aug 2006 15:16:25 +0300 |
Timo Sirainen |
If SSL/TLS handshake didn't finish, show "TLS handshaking" instead of "TLS"
HEAD
|
Mon, 07 Aug 2006 18:01:54 +0300 |
Timo Sirainen |
Don't crash if SSL is disabled.
HEAD
|
Sun, 06 Aug 2006 23:08:54 +0300 |
Timo Sirainen |
Minor cleanup, but more importantly last commit message didn't say that the
HEAD
|
Sun, 06 Aug 2006 23:05:32 +0300 |
Timo Sirainen |
Fixes to login process handling, especially with
HEAD
|
Mon, 24 Jul 2006 02:32:11 +0300 |
Timo Sirainen |
Use SSL_pending() to figure out if we should call SSL_read() again.
HEAD
|
Mon, 24 Jul 2006 02:19:03 +0300 |
Timo Sirainen |
Don't constantly re-read ssl-parameters.dat. Make sure that in input handler
HEAD
|
Sun, 02 Jul 2006 01:54:44 +0300 |
Timo Sirainen |
Second try with SSL proxy rewrite. Did some fixes since last try.
HEAD
|
Sun, 02 Jul 2006 00:15:16 +0300 |
Timo Sirainen |
If verbose_ssl=yes set ssl_info_callback and print any alerts and BIO
HEAD
|
Fri, 16 Jun 2006 12:41:20 +0300 |
Timo Sirainen |
Updates to ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log
HEAD
|
Tue, 04 Apr 2006 11:33:11 +0300 |
Timo Sirainen |
Reverted back for now.
HEAD
|
Sun, 02 Apr 2006 19:42:27 +0300 |
Timo Sirainen |
Rewrite. Hopefully works better.
HEAD
|
Sun, 29 Jan 2006 14:14:40 +0200 |
Timo Sirainen |
Call io_remove() before closing the fd. It's required by kqueue.
HEAD
|
Sun, 15 Jan 2006 15:16:53 +0200 |
Timo Sirainen |
Added support for password protected SSL private keys. The password can be
HEAD
|
Sun, 15 Jan 2006 14:35:01 +0200 |
Timo Sirainen |
Generate DH parameters and use them. Changed default regeneration time to 1
HEAD
|
Sat, 14 Jan 2006 20:47:20 +0200 |
Timo Sirainen |
deinit, unref, destroy, close, free, etc. functions now take a pointer to
HEAD
|
Fri, 13 Jan 2006 22:25:57 +0200 |
Timo Sirainen |
Added "bool" type and changed all ints that were used as booleans to bool.
HEAD
|
Sat, 01 Oct 2005 13:52:14 +0300 |
Timo Sirainen |
Added ssl_username_from_cert setting. Not actually tested yet..
HEAD
|
Sun, 18 Sep 2005 18:57:13 +0300 |
Timo Sirainen |
Don't require private key to be RSA
HEAD
|
Sun, 18 Sep 2005 17:43:10 +0300 |
Timo Sirainen |
Cork/uncork the SSL socket when writing. Reduces latency a lot.
HEAD
|
Fri, 01 Oct 2004 17:41:16 +0300 |
Timo Sirainen |
Show clear error messages if --ssl is tried to be used but it's not
HEAD
|
Wed, 15 Sep 2004 16:20:16 +0300 |
Timo Sirainen |
Compiler warning fixes and cleanups
HEAD
|
Sun, 18 Jul 2004 15:54:42 +0300 |
Timo Sirainen |
SSL proxy was destroyed after login instead of staying in background.
HEAD
|
Fri, 09 Jul 2004 14:45:01 +0300 |
Timo Sirainen |
Refcounting fixes. Unexpectedly destroyed SSL connection could have left
HEAD
|
Mon, 17 May 2004 04:32:16 +0300 |
Timo Sirainen |
Added ssl_require_client_cert auth-specific setting. Hide
HEAD
|
Mon, 10 May 2004 23:05:30 +0300 |
Timo Sirainen |
Don't require initializing RAND_bytes() to return cryptographically strong
HEAD
|