9780fd6ba2
Merge pull request #1152 from thomaswhiteway/ecdsa_sig_set0_leak
...
Free r and s on ECDSA_SIG before overwriting them in ECDSA_SIG_set0
2019-09-06 09:20:33 -04:00
106d613805
Free r and s on ECDSA_SIG before overwriting them in ECDSA_SIG_set0
2019-09-06 10:52:15 +01:00
bdede43afe
Added support for Ed25519 and Ed448 signatures
2019-08-16 11:15:04 +02:00
8b2c370b86
Release openssl-sys v0.9.49
2019-08-15 22:19:46 -04:00
dbe0672dc4
Release openssl v0.10.24
2019-07-19 07:45:32 -07:00
45c83e2772
Release openssl-sys v0.9.48
2019-07-19 07:30:11 -07:00
8d2e9e783d
Hack around an unpatched OpenSSL issue
...
Why backport fixes to your LTS version? Seems like a lot of work, I
guess!
Closes #1133
2019-07-18 22:44:02 -04:00
d598f156a7
Add AES-192 tests in CTR, CFB, and OFB modes
2019-07-07 11:07:20 +08:00
88c5bd81c7
Add AES-192 and OFB mode
2019-07-06 17:11:37 +08:00
a02a962f7d
Expose pem serialize function for DSA private key
...
Expose private_key_to_pem() & private_key_to_pem_passphrase() for DsaRef
2019-06-30 23:35:50 +08:00
850e93ee85
Don't depend on NO_SSL_MASK
2019-06-28 20:07:22 -07:00
d3104955dd
Minimize test duplication
2019-06-28 19:51:52 -07:00
1b3e0c8a15
Add mozilla v5 configurations
...
Closes #1134
2019-06-28 19:42:29 -07:00
aef0517dcf
Expose EC_POINT_dup as EcPoint::to_owned
2019-06-19 21:34:48 +02:00
e8fc907da3
Expose EC_GROUP_get_cofactor as EcGroup::cofactor
2019-06-14 16:41:47 +02:00
390d71f1e5
Expose EC_GROUP_get0_generator as EcGroup::generator
2019-06-13 03:09:45 +02:00
fab6ea4727
Conditionally compile PEM functions for CMS
...
Apparently libressl does not quite support all CMS functions (well, at
least the bindings for CMS are currently compile-time guarded), so CI
checks inside the systest fail during the verification on libressl.
This is an attempt to fix it.
2019-06-12 16:48:16 +02:00
ed966a09ac
Extend CMS unit tests (pem/der conversions)
2019-06-12 10:36:44 +02:00
69ee79d435
Fix formatting in cms `to_der` implementation
2019-06-12 10:24:53 +02:00
124c05d058
Add `CmsContentInfo` <-> PEM bindings
2019-06-12 10:23:48 +02:00
d2e48e8d1f
Add Debug impl for EcKey
2019-06-10 21:57:10 +08:00
1c3f5b5f57
Address comments
2019-06-07 19:32:36 -06:00
b9341856b1
Add AES_wrap_key and AES_unwrap_key functionality
2019-06-05 21:03:34 -06:00
e3ac3f40bf
Display for Error was incorrectly showing func instead of reason.
2019-05-30 15:06:14 -04:00
3b064fdb02
Release openssl v0.10.23
2019-05-18 12:13:39 -07:00
b6d968b378
Release openssl-sys v0.9.47
2019-05-18 12:10:57 -07:00
b39a712076
Fix handling of session callbacks
...
The session context is used for session callbacks rather than the normal
context, which breaks state lookup when the context has been swapped out
(e.g. for SNI). Since there isn't an accessor for the session context,
we just store an extra reference in the SSL's ex data.
Closes #1115
2019-05-18 10:27:40 -07:00
2e37753790
Const-correctness
2019-05-13 19:11:15 +01:00
41fea135ad
Allow passing by non-owned reference
2019-05-13 18:49:09 +01:00
628c3b338a
Add SSL_CTX_add_client_CA on OpenSSL
2019-05-13 15:08:02 +01:00
6686092edf
Release openssl v0.10.22
2019-05-08 18:46:43 -07:00
a9b9f818a1
Merge pull request #1097 from vishwin/master
...
Support LibreSSL 2.9.1
2019-05-08 18:40:18 -07:00
801a236413
Ignore SRTP tests on libressl 2.9.1
...
SRTP is broken in that release!
2019-05-08 18:19:42 -07:00
d2b169dae6
Fix doc link bugs
2019-05-03 07:32:05 -07:00
3331908a1d
Release openssl v0.10.21
2019-04-30 21:59:02 -07:00
7ad3208937
Fix output size check for stream ciphers
...
The previous output size check presumed a block cipher. Therefore, it
enforced an unnecessary extra byte in the case of stream ciphers. This
patch ensures that our size checks don't force the caller to
overallocate for stream ciphers.
2019-04-29 17:45:12 -04:00
4121ac34cb
Fix deprecation warnings in tests
2019-04-25 10:03:13 -07:00
d79090a00a
Reconcile exdata and version functions between libraries/versions.
2019-04-24 23:15:56 -04:00
98f91769e3
Add missing any() in the {,D}TLS_method usage logic.
2019-04-24 19:29:01 -04:00
f0b8a2e467
Support LibreSSL 2.9.1
...
LibreSSL 2.9.1 added generic DTLS methods.
While here, bump CircleCI.
2019-04-24 16:08:42 -04:00
2024379f17
Clean up seal/open a bit
2019-04-23 20:21:43 -07:00
f40a328d43
Remove unnecessary version req and clean up param names.
2019-04-18 10:47:50 +02:00
1b5293a977
Address comments.
2019-04-17 20:11:14 +02:00
bbff79636f
Remove nested groups in use.
2019-04-15 13:59:29 +02:00
63c7bda0c2
Add minimum ossl version.
2019-04-15 13:41:54 +02:00
08879ed512
Add EVP_Seal and EVP_Open
2019-04-15 00:54:49 +02:00
0b1c2a1048
Cleanup ssl tests
2019-03-20 19:34:50 -07:00
576de0eaa2
Release openssl v0.10.20
2019-03-20 10:45:10 -04:00
702bc48b1c
Expose EC_GROUP_get_curve_name()
...
This gives us the ability to get the Nid from an EcGroupRef.
2019-03-19 11:10:35 -04:00
d9cb5433b1
Expose EVP_MD_type()
...
This gives us the ability to get the Nid from a MessageDigest.
2019-03-19 11:10:35 -04:00
c3e2604702
Implement Eq for MessageDigest
...
Closes #1081
2019-03-17 14:33:56 -04:00
2a028e59e4
Move CHANGELOG.md into openssl
2019-03-14 12:04:01 -07:00
a0e5b31799
X.509: add verify methods
2019-03-11 22:35:43 +01:00
546eb4d391
CMS: add encrypt, from_der
2019-03-02 00:33:52 +01:00
4436245ab8
Release openssl v0.10.19
2019-03-01 12:40:21 -08:00
0dd632456f
Release openssl-sys v0.9.42
2019-03-01 12:38:18 -08:00
404670691c
Use into for infallible conversions
2019-03-01 12:36:01 -08:00
404b7f1790
Add session cache size accessors
2019-03-01 10:07:51 -08:00
a16482f972
Add session info accessors
2019-02-28 22:08:48 -08:00
913267e68a
Add SslCtx::{add,remove}_session
2019-02-28 19:48:10 -08:00
55fee497bb
Implement Clone for Dsa
2019-02-28 14:10:49 -05:00
e088d1d856
Release openssl v0.10.18
2019-02-22 12:34:11 -07:00
58ccea26ad
Fix cipher_name return value
2019-02-22 12:33:41 -07:00
28c0af386f
Release openssl v0.10.17
2019-02-22 10:51:35 -07:00
4c6af10cbd
Release openssl-sys v0.9.41
2019-02-22 10:50:16 -07:00
70afbb8393
Add standard ciphername support
2019-02-22 10:33:12 -07:00
7eee39f1ec
Rustfmt
2019-02-22 10:14:15 -07:00
899fc30e9b
Change from EVP_des_ede3_cfb to EVP_des_ede3_cfb64
2019-02-18 19:35:00 +09:00
941a69a4d2
Add des_ede3_cfb symm cipher
2019-02-17 22:21:01 +09:00
3a170b655b
Make Rsa::generate delegate to Rsa::generate_with_e
2019-01-30 09:16:12 -08:00
e48901e20b
Merge pull request #1054 from Zolmeister/generate-with-e
...
add Rsa::generate_with_e(bits: u32, e: BigNum)
2019-01-29 18:50:33 -08:00
dd140f5167
add Rsa::generate_with_e(bits: u32, e: BigNum)
2019-01-29 12:00:47 -06:00
34755f8a6b
ASN1_TIME_from_string_x509 was added in 1.1.1
2019-01-27 13:14:11 -08:00
691ce7ca2a
Add Asn1Time::from_str and Asn1Time::from_str_x509
...
Closes #1051
2019-01-27 13:05:03 -08:00
e56e09b6a4
Add RsaRef::check_key
2019-01-18 21:03:04 -06:00
6378eff9db
Forward to BigNumRef::to_asn1_integer
2019-01-18 17:58:48 +01:00
4ff5f4486f
Add `Asn1Integer::from_bn`
2019-01-18 12:21:39 +01:00
b565a0c7eb
Implement AsRef<str/[u8]> for OpensslString{Ref}
2019-01-17 14:19:36 +01:00
69aa335871
Drop data_encoding dev dependency
2019-01-04 20:50:00 -08:00
1c48c9c456
Update bn.rs
2019-01-04 11:54:36 +01:00
57e02abb50
Release openssl v0.10.16
2018-12-16 09:04:07 -08:00
800c232c09
Fix cargo dependency documentation
...
`feature` -> `features`
2018-11-24 13:29:10 -07:00
5c7fa43d87
Add bindings to RAND_keep_random_devices_open
...
Closes #1019
2018-11-22 09:32:50 -07:00
38a4dccceb
Add new SHAKE128/256 EVP message digest functions in OpenSSL 1.1.1, fixes #1017 .
2018-11-21 15:46:03 -05:00
e0e0a96cb3
Add new SHA3 EVP message digest functions in OpenSSL 1.1.1
2018-11-21 15:31:50 -05:00
b88778bc76
Release openssl v0.10.15
2018-10-22 09:03:28 -07:00
93c67e2f77
Implement DoubleEndedIterator for stack iters
2018-10-22 08:49:24 -07:00
e2783971ea
Release openssl v0.10.14
2018-10-18 20:16:55 -07:00
3aecfe5655
Release openssl-sys v0.9.39
2018-10-18 20:11:35 -07:00
4256cfbf19
Fix some accidentally-public functions
2018-10-18 11:37:36 -07:00
3013d2e93f
Release openssl v0.10.13
2018-10-14 16:10:22 -07:00
d3bb880866
Release openssl-sys 0.9.37
2018-10-14 16:09:17 -07:00
d52be16cc4
Merge pull request #1005 from samscott89/add-pkcs7-support
...
Add PKCS7 support
2018-10-10 22:18:46 -07:00
04ada473d1
Cleanup
2018-10-10 21:25:29 -07:00
d2cc0eae2d
Move README info into crate root docs
...
This is more discoverable in the modern Rust world!
2018-10-07 19:59:33 -07:00
8ae761063c
Address comments.
2018-10-02 22:53:03 -04:00
2dd3736444
Refactor to match style and add documentation.
2018-10-02 17:25:18 -04:00
cd1d1955d9
PKCS7 Support
...
(Rebased onto latest version)
2018-10-02 17:25:18 -04:00
18dfc9b6b2
Add support for encoding and decoding ECDSA signatures
2018-09-28 14:43:33 +02:00
5894cdfdc5
Fix get session callback
...
This could previously open up the possibility of a double-free!
Closes #996
2018-09-17 09:30:16 -07:00
Steven Fackler