min
/
boring2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,371 Commits 2 Branches 0 Tags 16 MiB
Commit Graph

468 Commits

Author SHA1 Message Date
Steven Fackler 9eeee0930c Add bindings for custom error definition 2018-07-10 18:54:47 -07:00
Steven Fackler 1392b006e2
Merge pull request #937 from marcoh00/iterable-x509names 
X509NameRef: Provide an iterator over all entries
 2018-07-07 20:20:45 -07:00
Moritz Wanzenböck 4994e75d2c Add Dsa::from_(private|public)_components 
Add 2 methods to create a DSA key pair from its raw components.
 2018-06-18 18:10:02 +02:00
Steven Fackler 6440ee04ef
Merge pull request #943 from lolzballs/master 
Add wrapper for SSL_CTX_set_psk_server_callback
 2018-06-17 15:47:00 -07:00
Steven Fackler 115cb730b0 Switch to accessors in libressl where possible 
Some accessors are mysteriously still macros so we can't make everything
opaque yet, unfortunately.

cc #909
 2018-06-09 21:49:36 -07:00
Marco Huenseler f5e6d57c47 Provide an Asn1Object getter method for X509NameEntryRef 2018-06-03 15:38:46 +02:00
Marco Huenseler 2afdc16fc9 Make X509NameRef provide an iterator over all X509NameEntries 2018-06-03 15:38:46 +02:00
Steven Fackler 0745d66927 Update to 1.1.1-pre7 
The initial session ticket is now sent as part of SSL_accept, so some
tests need to write a single byte through the stream to make sure that
both ends have fully completed to avoid test flakes.

TLSv1.3 cipher suite control has been extracted from the normal cipher
list into a separate method: SslContextBuilder::set_ciphersuites.
 2018-06-02 13:58:56 -07:00
Benjamin Cheng b1eb1224f5
Merge remote-tracking branch 'origin/master' 2018-06-02 10:56:31 -04:00
Axel Rasmussen fb1b9b4140
Add an openssl-sys binding for RSA_padding_check_PKCS1_type_2. 
This padding check implementation is useful for certain types of RSA
decryption, notably the type performed by Yubico's PIV library.
 2018-05-30 18:48:42 -07:00
Steven Fackler 3456add537 Add SslRef::verified_chain 2018-05-29 21:53:22 -07:00
Marco Huenseler b8de619fbe Get Nid string representations 2018-05-28 12:13:40 +02:00
Steven Fackler 772e1c003f Add some digest support 2018-05-24 21:06:11 -07:00
Steven Fackler c0876cc8c6 Add bindings to SSL_get_finished and SSL_get_peer_finished 
These are used for the tls-unique SCRAM channel binding mode.
 2018-05-24 20:00:28 -07:00
Steven Fackler c7db3d18ad
Merge pull request #920 from Ralith/max-early-data-accessors 
TLS1.3 early data support
 2018-05-22 20:42:46 -07:00
Benjamin Saunders 2e478fdcf4 Expose early I/O 2018-05-22 20:25:28 -07:00
Steven Fackler 4c1fdf1d81 Support ALPN on libressl 
Closes #690
 2018-05-20 12:52:49 -07:00
Steven Fackler a6fcef01c0 Overhaul openssl cfgs 
Also expose hostname verification on libressl
 2018-05-20 12:33:02 -07:00
Steven Fackler 9df403043b Expose X509_VERIFY_PARAM on libressl 2018-05-20 11:29:27 -07:00
Steven Fackler 862d784161 Clean up openssl-sys cfgs 2018-05-20 11:29:27 -07:00
Steven Fackler d991566f2b Support min/max version in LibreSSL 
Their implementations of the accessors don't behave expected with no
bounds, so we ignore those bits of the tests.
 2018-05-19 19:57:12 -07:00
Benjamin Saunders 69c75a178b Expose early keying material export 2018-05-17 13:16:41 -07:00
Benjamin Saunders d5d414b16f Expose max TLS1.3 early data accessors 2018-05-17 12:02:32 -07:00
Benjamin Cheng 47a68e2929
Add wrapper for SSL_CTX_set_psk_server_callback 2018-05-16 17:49:36 -04:00
Steven Fackler 1a909c8e5e Some sys cleanup 2018-05-13 08:50:00 -07:00
Steven Fackler 53671518fd
Merge pull request #902 from ur0/CMS_sign 
Add the CMS_sign and i2d_CMS_ContentInfo function bindings
 2018-05-13 15:53:49 +01:00
Steven Fackler b1e5c8b1ed Implement Clone for Rsa 
Closes #917
 2018-05-12 16:34:47 -07:00
Steven Fackler e5d65306e7 Change SslContext callback handling 
Use the existing infrastructure!
 2018-05-12 13:19:01 +01:00
Umang Raghuvanshi afaa2387c8 Gate away CMS_KEY_PARAM from OpenSSL 1.0.1 2018-05-10 21:41:59 +05:30
Umang Raghuvanshi 541458c1c1 Properly version-gate CMS constants 2018-05-10 21:20:32 +05:30
Umang Raghuvanshi 90898e99c9 Move CMS_* flags to the openssl-sys package 
Also renames attributes in the bitflags struct.
 2018-05-10 20:26:57 +05:30
Steven Fackler 7a1b59d605 Fix base version for min/max proto accessors 
Closes #911
 2018-05-09 20:04:43 +01:00
Steven Fackler bc0809a17d Flag off constants added in 1.0.2h 
Closes #868
 2018-04-30 20:52:19 -07:00
Benjamin Saunders 47431f66bb Expose SslSession <-> DER conversion 2018-04-29 01:54:16 -07:00
Steven Fackler 03a4c6bd26 Reform version checking logic 
Rather than having an infinitely growing set of things to look for, just
grab the literal version out. We also provide that to downstream crates,
and it should be used rather than the random assortment of other stuff
that's also passed down.
 2018-04-26 22:45:09 -07:00
René Richter 5bb89d7552 Add functions to X509Req to obtain public key and extensions 
This allows for basic CSR signing.
 2018-04-21 23:14:48 +02:00
Umang Raghuvanshi 5360f5ad04 Fix mutability issues with CMS_sign 2018-04-20 17:30:20 +05:30
Umang Raghuvanshi 8ce5dee00d Add the CMS_sign and i2d_CMS_ContentInfo function bindings 
This adds the CMS_sign and i2d_CMS_ContentInfo bindings in the
openssl-sys crate and Rusty wrappers in the openssl crate.
 2018-04-20 17:15:04 +05:30
Ossi Herrala 23ca9d2832 Add support for LibreSSL 2.7.1 
While there, support also future LibreSSL 2.7 versions out of the
box. This fixes compiling this crate in OpenBSD -current.
 2018-03-31 20:14:24 +00:00
Steven Fackler e423da2d12
Merge pull request #858 from Ralith/stateless-api 
Introduce SslStreamBuilder
 2018-03-31 11:28:03 -07:00
Benjamin Saunders bbb1cb61f6 Update to OpenSSL 1.1.1-pre3 2018-03-28 18:14:44 -07:00
Steven Fackler c82a87a18e Add Asn1IntegerRef::to_bn 
Also deprecate Asn1IntegerRef since it's just asking for trouble.
 2018-03-28 20:48:28 +02:00
Steven Fackler f0614f4acd Support LibreSSL 2.7.0 
Closes #883
Closes #805
 2018-03-22 20:22:07 +00:00
Steven Fackler 063186b62e
Merge pull request #856 from Flakebi/master 
Make it possible to use cmac
 2018-03-19 13:22:51 -07:00
Flakebi 0860115156
Make it possible to use cmac 
This adds Signer::new_without_digest to create Signers which don't have
a digest (like cmac, which is based on aes).
As openssl supports cmac since version 1.1.0, the functions are behind
the ossl110 feature.
This allows building CMAC/OMAC1 and the EAX AEAD on top of this library.
 2018-03-19 21:02:46 +01:00
Benjamin Saunders 09b1fe9a0d Expose additional cipher and digest accessors 2018-03-16 20:33:23 -07:00
Steven Fackler 9452c01672
Merge pull request #864 from mlen/aes-ccm-bindings 
Implement AES-{128,256}-CCM bindings
 2018-03-11 16:30:37 -07:00
Steven Fackler d0329473bd
Merge branch 'master' into custom-extensions 2018-03-11 15:27:28 -07:00
Steven Fackler 1b830c3fb7
Merge pull request #863 from rohit-lshift/master 
Exposed some of ECDSA functions
 2018-03-11 15:08:16 -07:00
Steven Fackler 00359a1a55
Merge pull request #861 from bkchr/verify_certificate 
Implements `X509_verify_cert`
 2018-03-11 13:37:21 -07:00