Thu, 08 May 2014 16:41:29 +0300 |
Timo Sirainen |
*-login: SSL connections didn't get closed when the client got destroyed.
HEAD tip
|
Sun, 12 Feb 2012 03:32:20 +0200 |
Timo Sirainen |
SSL: Enable SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS flag for extra security.
HEAD
|
Thu, 04 Nov 2010 16:37:49 +0000 |
Timo Sirainen |
ssl: Call OpenSSL_add_all_algorithms() to make some OpenSSL versions happy.
HEAD
|
Mon, 25 Jan 2010 01:18:58 +0200 |
Timo Sirainen |
Updated copyright notices to include year 2010.
HEAD
|
Wed, 16 Dec 2009 22:50:36 -0500 |
Timo Sirainen |
verbose_ssl: Don't log SSL info messages with "BIO failed" prefix.
HEAD
|
Tue, 20 Oct 2009 15:49:01 -0400 |
Timo Sirainen |
imap-login: If imap_capability is set, show it in the banner instead of the default.
HEAD
|
Thu, 15 Oct 2009 20:38:24 -0400 |
Timo Sirainen |
Potential crashfix for OpenSSL < 0.9.8.
HEAD
|
Tue, 06 Oct 2009 10:53:34 -0400 |
Timo Sirainen |
Compiling fix for OpenSSL 0.9.7 and older.
HEAD
|
Tue, 29 Sep 2009 10:14:56 -0400 |
Timo Sirainen |
ssl: If given ssl key is for a different cert, give a nicer error message.
HEAD
|
Mon, 28 Sep 2009 11:11:54 -0400 |
Timo Sirainen |
login: ssl_security string now also shows the used compression.
HEAD
|
Tue, 11 Aug 2009 17:38:06 -0400 |
Timo Sirainen |
Fixed openssl malloc() failure check.
HEAD
|
Fri, 07 Aug 2009 13:56:04 -0400 |
Timo Sirainen |
*-login: If OpenSSL fails with malloc failure, log an error.
HEAD
|
Tue, 04 Aug 2009 14:54:56 -0400 |
Timo Sirainen |
ssl_username_from_cert=yes: Don't truncate username, don't allow NULs in it.
HEAD
|
Wed, 29 Apr 2009 12:40:48 -0400 |
Timo Sirainen |
ssl-proxy: Crashfix to previous commit.
HEAD
|
Tue, 28 Apr 2009 22:31:40 -0400 |
Timo Sirainen |
imap/pop3 proxy: Support SSL/TLS connections to remote servers.
HEAD
|
Thu, 09 Apr 2009 14:51:24 -0400 |
Timo Sirainen |
ssl: Don't use mempool_system_clean_*() functions. Just extra work and they've had some problems.
HEAD
|
Tue, 13 Jan 2009 13:13:19 -0500 |
Timo Sirainen |
Check broken ssl-parameters.dat files better and give a better error message when seeing one.
HEAD
|
Tue, 06 Jan 2009 09:25:38 -0500 |
Timo Sirainen |
Updated copyright notices to include year 2009.
HEAD
|
Sun, 19 Oct 2008 14:00:57 +0300 |
Timo Sirainen |
Login process: Log auth failure reasons better in disconnect message.
HEAD
|
Sun, 05 Oct 2008 00:33:05 +0300 |
Timo Sirainen |
Log a better error message if ssl_cert_file doesn't point to a valid certificate.
HEAD
|
Sat, 30 Aug 2008 12:00:49 +0300 |
Timo Sirainen |
login_log_format_elements: Added %k to show SSL protocol/cipher information.
HEAD
|
Fri, 20 Jun 2008 10:41:44 +0300 |
Timo Sirainen |
Added more consts, ATTR_CONSTs and ATTR_PUREs.
HEAD
|
Wed, 07 May 2008 22:44:45 +0300 |
Timo Sirainen |
If SSL function fails and there are no errors, return "Unknown error"
HEAD
|
Mon, 05 May 2008 00:37:52 +0300 |
Timo Sirainen |
Free OpenSSL memory at deinit.
HEAD
|
Sat, 08 Mar 2008 02:09:40 +0200 |
Timo Sirainen |
If TLS connection closes with anything except a clean disconnection, log the
HEAD
|
Wed, 05 Mar 2008 01:48:22 +0200 |
Timo Sirainen |
Call SSL_shutdown()
HEAD
|
Sun, 06 Jan 2008 02:18:51 +0200 |
Timo Sirainen |
Replaced clients hash with a linked list.
HEAD
|
Tue, 01 Jan 2008 22:05:21 +0200 |
Timo Sirainen |
Updated copyright notices to include year 2008.
HEAD
|
Tue, 25 Sep 2007 12:44:11 +0300 |
Timo Sirainen |
Don't return void values from void functions.
HEAD
|
Sat, 22 Sep 2007 19:03:33 +0300 |
Timo Sirainen |
Renamed hash_size() -> hash_count().
HEAD
|
Sun, 16 Sep 2007 14:34:22 +0300 |
Timo Sirainen |
Replaced my Copyright notices. The year range always ends with 2007 now.
HEAD
|
Sun, 16 Sep 2007 13:30:31 +0300 |
Timo Sirainen |
Renamed strocpy() to i_strocpy().
HEAD
|
Sun, 16 Sep 2007 12:35:01 +0300 |
Timo Sirainen |
hash_destroy() and hash_iterate_deinit() now take ** pointer.
HEAD
|
Sun, 16 Sep 2007 11:40:56 +0300 |
Timo Sirainen |
Renamed __attr_*__ to ATTR_*. Renamed __attrs_used__ to ATTRS_DEFINED.
HEAD
|
Sun, 09 Sep 2007 05:54:32 +0300 |
Timo Sirainen |
Added ssl_cert_username_field setting.
HEAD
|
Fri, 06 Apr 2007 12:30:03 +0300 |
Timo Sirainen |
Send list of CA names to client when using ssl_verify_client_cert=yes.
HEAD
|
Sun, 18 Mar 2007 04:51:19 +0200 |
Timo Sirainen |
Make OpenSSL memory allocations go through system_clean_pool.
HEAD
|
Sun, 18 Mar 2007 04:40:28 +0200 |
Timo Sirainen |
Set login process's default_pool to system_clean_pool. Changed some
HEAD
|
Thu, 15 Mar 2007 18:52:09 +0200 |
Timo Sirainen |
Replace some string literals with non-const static buffers to avoid compiler
HEAD
|
Fri, 15 Dec 2006 20:38:08 +0200 |
Timo Sirainen |
Replaced void *context from a lot of callbacks with the actual context
HEAD
|
Sat, 18 Nov 2006 22:27:14 +0200 |
Timo Sirainen |
Call ssl_step() at startup instead of ssl_handshake(). If the first input
HEAD
|
Wed, 08 Nov 2006 22:51:32 +0200 |
Timo Sirainen |
Don't bother logging "syscall failed: EOF" messages. No-one cares about
HEAD
|
Mon, 16 Oct 2006 01:10:30 +0300 |
Timo Sirainen |
Don't allow SSLv2 by default.
HEAD
|
Mon, 16 Oct 2006 01:07:10 +0300 |
Timo Sirainen |
Updates to ssl_ca_file and ssl_username_from_cert comments in
HEAD
|
Fri, 13 Oct 2006 23:06:44 +0300 |
Timo Sirainen |
New asserts / cleanup
HEAD
|
Wed, 16 Aug 2006 15:16:25 +0300 |
Timo Sirainen |
If SSL/TLS handshake didn't finish, show "TLS handshaking" instead of "TLS"
HEAD
|
Mon, 07 Aug 2006 18:01:54 +0300 |
Timo Sirainen |
Don't crash if SSL is disabled.
HEAD
|
Sun, 06 Aug 2006 23:08:54 +0300 |
Timo Sirainen |
Minor cleanup, but more importantly last commit message didn't say that the
HEAD
|
Sun, 06 Aug 2006 23:05:32 +0300 |
Timo Sirainen |
Fixes to login process handling, especially with
HEAD
|
Mon, 24 Jul 2006 02:32:11 +0300 |
Timo Sirainen |
Use SSL_pending() to figure out if we should call SSL_read() again.
HEAD
|
Mon, 24 Jul 2006 02:19:03 +0300 |
Timo Sirainen |
Don't constantly re-read ssl-parameters.dat. Make sure that in input handler
HEAD
|
Sun, 02 Jul 2006 01:54:44 +0300 |
Timo Sirainen |
Second try with SSL proxy rewrite. Did some fixes since last try.
HEAD
|
Sun, 02 Jul 2006 00:15:16 +0300 |
Timo Sirainen |
If verbose_ssl=yes set ssl_info_callback and print any alerts and BIO
HEAD
|
Fri, 16 Jun 2006 12:41:20 +0300 |
Timo Sirainen |
Updates to ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log
HEAD
|
Tue, 04 Apr 2006 11:33:11 +0300 |
Timo Sirainen |
Reverted back for now.
HEAD
|
Sun, 02 Apr 2006 19:42:27 +0300 |
Timo Sirainen |
Rewrite. Hopefully works better.
HEAD
|
Sun, 29 Jan 2006 14:14:40 +0200 |
Timo Sirainen |
Call io_remove() before closing the fd. It's required by kqueue.
HEAD
|
Sun, 15 Jan 2006 15:16:53 +0200 |
Timo Sirainen |
Added support for password protected SSL private keys. The password can be
HEAD
|
Sun, 15 Jan 2006 14:35:01 +0200 |
Timo Sirainen |
Generate DH parameters and use them. Changed default regeneration time to 1
HEAD
|
Sat, 14 Jan 2006 20:47:20 +0200 |
Timo Sirainen |
deinit, unref, destroy, close, free, etc. functions now take a pointer to
HEAD
|