f34e9b993d
ocb is only available in openssl 1.1 and later
2020-05-09 01:02:34 +02:00
963e3994a5
Add support for AES-OCB mode
2020-05-08 23:16:13 +02:00
40e66bab6b
Add SslContextBuilder::set_cert_store
2020-04-07 17:05:38 -07:00
2cbc436b8b
Merge pull request #1248 from coolreader18/ssl-functions
...
Add functions for SSL{_CTX}_get_verify_mode and SSL_is_init_finished
2020-03-26 20:52:42 -04:00
ef369f827e
Merge pull request #1249 from coolreader18/more-ssl-method
...
Add SslMethod::tls_{client,server}
2020-03-25 20:57:23 -04:00
354a984a7c
Add SslMethod::tls_{client,server}
2020-03-24 21:56:04 -05:00
1e9cc8426e
Add functions for SSL{_CTX}_get_verify_mode and SSL_is_init_finished
2020-03-24 15:32:39 -05:00
41162e27ab
Add a shim for X509_STORE_get0_objects and X509_OBJECT_free
2020-03-24 12:33:54 -05:00
5c6179ce07
Only have constants on < ossl110
2020-03-23 17:04:31 -05:00
59bff6de85
Skip X509_OBJECT_data systests
2020-03-23 17:04:30 -05:00
dfb3cb9579
Fix signedness issue
2020-03-23 10:17:02 -05:00
8cfb59b9ea
Add a way to get the certificates stored in an X509Store
2020-03-22 23:20:59 -05:00
4898f60e52
Attach cfg[allow_deprecated] to methods w/ uninitialized functionality
...
Additionally - update usage of ONCE_INIT
2020-02-10 12:53:51 -08:00
9189b67326
Add NO RENEGOTIATION option
...
SSL_OP_NO_RENEGOTIATION was added in OpenSSLv1.1.1 and backported to
v1.1.0h.
2020-01-28 04:07:38 +09:00
78c1e2409d
Add EVP_EncryptInit_ex/EVP_EncryptFinish_ex, and the equivalently named
...
decrypt functions
Some functions including low level AES functions would be deprecated
in next OpenSSL version(3.0).
OpenSSL team says that application should use the high level EVP APIs,
so I added these functions.
See also:
https://github.com/openssl/openssl/pull/10580
https://github.com/openssl/openssl/pull/10740
2020-01-25 00:49:47 +09:00
4d5e5e1787
add SslStreamBuilder::set_dtls_mtu_size(usize)
2019-12-29 04:17:00 +09:00
9f4c489588
Use d2i_PKCS8_PRIV_KEY_INFO instead of *_bio
2019-12-04 02:02:33 +01:00
fc529b6c81
Pkey::private_key_from_pkcs8 free p8inf
2019-12-03 03:05:05 +01:00
4b2d46c252
Fix pointer constness correctly
2019-12-01 03:38:31 +01:00
a042edd134
Change *const to *mut to try if it fixes tests
2019-12-01 03:29:57 +01:00
4218e121d0
move EVP_PKCS82PKEY into evp module
2019-12-01 03:15:52 +01:00
a7fa260331
Support for PKCS#8 unencrypted private key deserialization
2019-12-01 03:02:01 +01:00
288b189de0
Add EVP_md_null() and MessageDigest::md_null()
2019-11-22 16:33:15 +08:00
56335d12fc
Merge pull request #1183 from adamreichold/base64
...
Expose OpenSSL interfaces for base64 coding.
2019-11-21 20:04:18 -05:00
f85d631fcf
Merge pull request #1184 from Atul9/cargo-fmt
...
Format code using 'cargo fmt'
2019-11-21 20:01:39 -05:00
0fb1e55a98
Allow configuration of EC groups and signature algorithms
...
Closes #1186
2019-11-16 10:54:27 -08:00
784978bad0
Format code using 'cargo fmt'
2019-11-14 21:00:53 +05:30
bcbebbcace
Expose EVP_{Encode,Decode}Block interfaces for base64 coding
2019-11-14 10:06:24 +01:00
34c2b69118
Merge pull request #1180 from PrismaPhonic/master
...
Added clonability for sha hash state. Useful for incremental hashing
2019-11-11 21:01:19 -05:00
8fae1115a4
Changed all sha objects to be clonable per PR review suggestion.
2019-11-11 16:31:47 -08:00
258c49a581
Add #[cfg(ossl110)]
2019-11-11 23:03:40 +01:00
6d6429237d
Add EC_GROUP_order_bits
2019-11-11 22:04:14 +01:00
22f029064a
Added clonability for sha hash state. Useful for incremental hashing
2019-11-11 11:09:49 -08:00
80e0dd03ba
Add method to create Asn1Time from time_t value
...
This is mostly just a rework of the earlier work done by @illegalprime
in his PR #673 and credit should go to him.
2019-10-13 23:10:16 +02:00
14a6a98ebf
Add diff method and comparisons to Asn1TimeRef
...
This implements a `diff` method on `Asn1TimeRef` using `ASN1_TIME_diff`
and uses this new method to implement combinations of `PartialEq` and
`PartialOrd` for `Asn1Time` and `Asn1TimeRef`.
This is mostly just a rework of the earlier work done by @illegalprime
in his PR #673 and credit should go to him.
2019-10-13 23:09:12 +02:00
b771738a3a
Fix rustc warnings
...
- Use `..=` for inclusive ranges
- Add the `dyn` keyword for trait objects
- Switch from `ONCE_INIT` to `std::sync::Once::new()`
2019-10-08 08:35:35 -04:00
7ce0835b74
Implement Clone for PKey
2019-10-01 18:45:10 -07:00
bdede43afe
Added support for Ed25519 and Ed448 signatures
2019-08-16 11:15:04 +02:00
88c5bd81c7
Add AES-192 and OFB mode
2019-07-06 17:11:37 +08:00
aef0517dcf
Expose EC_POINT_dup as EcPoint::to_owned
2019-06-19 21:34:48 +02:00
e8fc907da3
Expose EC_GROUP_get_cofactor as EcGroup::cofactor
2019-06-14 16:41:47 +02:00
390d71f1e5
Expose EC_GROUP_get0_generator as EcGroup::generator
2019-06-13 03:09:45 +02:00
fab6ea4727
Conditionally compile PEM functions for CMS
...
Apparently libressl does not quite support all CMS functions (well, at
least the bindings for CMS are currently compile-time guarded), so CI
checks inside the systest fail during the verification on libressl.
This is an attempt to fix it.
2019-06-12 16:48:16 +02:00
124c05d058
Add `CmsContentInfo` <-> PEM bindings
2019-06-12 10:23:48 +02:00
b9341856b1
Add AES_wrap_key and AES_unwrap_key functionality
2019-06-05 21:03:34 -06:00
958c1811b0
Fix constness for 1.1.1c
2019-05-31 07:29:00 -07:00
628c3b338a
Add SSL_CTX_add_client_CA on OpenSSL
2019-05-13 15:08:02 +01:00
d79090a00a
Reconcile exdata and version functions between libraries/versions.
2019-04-24 23:15:56 -04:00
98f91769e3
Add missing any() in the {,D}TLS_method usage logic.
2019-04-24 19:29:01 -04:00
f0b8a2e467
Support LibreSSL 2.9.1
...
LibreSSL 2.9.1 added generic DTLS methods.
While here, bump CircleCI.
2019-04-24 16:08:42 -04:00
Henrik Böving