Mike Blumenkrantz
f5f8a3c45d
DBG output
...
SVN revision: 52875
2010-09-29 03:52:32 +00:00
Mike Blumenkrantz
ac12734be2
switch to newer priority string stuff so gnutls devs stop being dicks to us
...
SVN revision: 52865
2010-09-28 21:59:13 +00:00
Mike Blumenkrantz
7b3b888471
whoops comparison typo
...
SVN revision: 52846
2010-09-28 09:28:04 +00:00
Mike Blumenkrantz
b64b0b3ac9
first part of ssl rerererewrite: split functions, move stuff out of prepare(), and add verification for gnutls clients
...
SVN revision: 52837
2010-09-28 03:16:08 +00:00
Mike Blumenkrantz
b04f0b0360
disable rehandshake support for now
...
SVN revision: 52792
2010-09-26 23:56:31 +00:00
Mike Blumenkrantz
ec372b3bd5
whoops typo
...
SVN revision: 52712
2010-09-25 04:21:03 +00:00
Mike Blumenkrantz
0d535058a9
implement ssl rehandshakes
...
convert bool variable to bool
fix bug where ssl read/write could improperly result in disconnect
SVN revision: 52710
2010-09-25 03:02:10 +00:00
Mike Blumenkrantz
8ea3bbdd2e
fix warning detection
...
SVN revision: 52708
2010-09-24 22:49:06 +00:00
Mike Blumenkrantz
ae6f569862
remove double check for ssl
...
SVN revision: 52705
2010-09-24 20:07:55 +00:00
Mike Blumenkrantz
2430457121
don't use ssl for local connections
...
SVN revision: 52703
2010-09-24 20:03:09 +00:00
Mike Blumenkrantz
4a09cb751c
send server name extension
...
SVN revision: 52701
2010-09-24 19:47:25 +00:00
Cedric BAIL
3b324c10ed
* ecore: check GNUTLS version before using new feature.
...
SVN revision: 52680
2010-09-24 11:25:40 +00:00
Boris Faure
9d95bf5a82
ecore: fix compilation when GNUTLS_HANDSHAKE_NEW_SESSION_TICKET is not defined
...
SVN revision: 52679
2010-09-24 09:42:16 +00:00
Mike Blumenkrantz
da50c7b57d
add session ticket support for gnutls, also add extremely detailed handshake error messages
...
SVN revision: 52675
2010-09-24 06:54:49 +00:00
Mike Blumenkrantz
1757239da5
fix kx priority
...
SVN revision: 52671
2010-09-24 05:56:45 +00:00
Mike Blumenkrantz
60b4269b5f
yet another ecore_con overhaul!
...
*internal function rename
*******finally fix ssl handshaking to be non-blocking
SVN revision: 52665
2010-09-24 04:15:42 +00:00
Mike Blumenkrantz
b306683fec
something for morlenxus maybe
...
SVN revision: 52639
2010-09-23 10:35:30 +00:00
Mike Blumenkrantz
f617346761
finally. fix. openssl. again.
...
SVN revision: 52613
2010-09-23 00:16:42 +00:00
Mike Blumenkrantz
a1009c7893
cosmetic fix to use mixed protocol
...
SVN revision: 52610
2010-09-22 22:44:54 +00:00
Mike Blumenkrantz
0666d57062
better openssl error handlers
...
SVN revision: 52607
2010-09-22 22:33:02 +00:00
Mike Blumenkrantz
74d035df0b
prefer stronger anonymous client encryption
...
also some progress on openssl that does nothing except make servers take forever to start
SVN revision: 52606
2010-09-22 22:06:49 +00:00
Mike Blumenkrantz
3150202755
clean up openssl handshake
...
SVN revision: 52597
2010-09-22 17:37:25 +00:00
Vincent Torri
3fd0a6fb08
remove whitespaces
...
SVN revision: 52569
2010-09-22 08:03:38 +00:00
Mike Blumenkrantz
172da9d9cf
finally. fix. ssl.
...
SVN revision: 52567
2010-09-22 07:27:07 +00:00
Mike Blumenkrantz
787b09464b
disable PSK ciphers for now since they aren't implemented
...
SVN revision: 52565
2010-09-22 06:13:29 +00:00
Mike Blumenkrantz
5420324fd6
add ECORE_CON_USE_MIXED, which is just an alias for SSL3+TLS
...
SVN revision: 52561
2010-09-22 01:26:23 +00:00
Mike Blumenkrantz
38188213cf
!@#$ it, just going to rewrite the whole damn thing:
...
*fix gnutls client/server implementations to use correct ciphers and free memory properly
*prevent lots of segvs
this message brought to you by gnu dicks
SVN revision: 52559
2010-09-22 00:10:10 +00:00
Mike Blumenkrantz
c2da918bd5
fix ecore con openssl clients (really ecore_con_server...) sigh
...
SVN revision: 52538
2010-09-21 07:04:10 +00:00
Mike Blumenkrantz
3b55af0102
fix doxy and EAPI for ssl function
...
SVN revision: 52532
2010-09-21 05:34:10 +00:00
Mike Blumenkrantz
8e3be2fef8
FINALLY FIX OPENSSL SERVER!!!!!!!!! YESSSSSSSSSSSSSSSSSSSSS
...
SVN revision: 52497
2010-09-20 18:25:21 +00:00
Mike Blumenkrantz
27e3324ad2
remove ssl2 support completely
...
SVN revision: 52469
2010-09-19 19:38:38 +00:00
Mike Blumenkrantz
d1db6f1cf4
gnutls cleanup: only create diffie hellman bits on server init instead of for each client
...
overhead/blocking--
speed++
SVN revision: 52468
2010-09-19 19:25:47 +00:00
Mike Blumenkrantz
0c4707dcbc
finally crush the last openssl segv
...
still broken though
SVN revision: 52467
2010-09-19 18:40:43 +00:00
Carsten Haitzler
624628e9d1
more warngins--
...
SVN revision: 52460
2010-09-19 03:55:06 +00:00
Mike Blumenkrantz
4239d5d67f
giant cleanups/rewrites which are unnoticeable to users:
...
*client->server renamed client->host_server to clarify ambiguity
*ecore_con_ssl_client_prepare.* killed off because it was useless and wrong
*openssl generates only one SSL_CTX per server now instead of a new one for each client, which is broken/unnecessary/wasteful
**as a result, certificate loading is now only done once
**additionally this will save a very large amount of memory and avoid unnecessary/broken refcounting
*ecore_con_ssl_server_prepare.* rewritten to actually be useful instead of just a lazy way to null pointers
**all SSL_CTX code now goes here^
*some formatting fixes
*internal function renames
SVN revision: 52422
2010-09-18 19:26:05 +00:00
Carsten Haitzler
fa5b80b879
dont use tls max if it doesnt exist eh?
...
SVN revision: 52413
2010-09-18 11:41:15 +00:00
Mike Blumenkrantz
36bd287841
add mixed protocol for gnutls as well
...
SVN revision: 52412
2010-09-18 08:46:17 +00:00
Mike Blumenkrantz
a8ef623de7
allow mixing sslv3+tlsv1 in openssl, FINALLY FIX INITIAL BUG FOR OPENSSL SERVERS!
...
note that openssl servers still do not work because there is more than one bug :/
SVN revision: 52411
2010-09-18 08:36:13 +00:00
Mike Blumenkrantz
e9361b4e1c
whoops forgot an UNUSED for openssl
...
SVN revision: 52396
2010-09-18 05:32:27 +00:00
Mike Blumenkrantz
ac86c1aaa4
more progress on fixing openssl servers, fix all warnings, add error checking for openssl code
...
SVN revision: 52395
2010-09-18 05:31:00 +00:00
Mike Blumenkrantz
d8afcde705
add rest of ssl algorithms and clean up
...
SVN revision: 52391
2010-09-18 01:27:38 +00:00
Mike Blumenkrantz
5e499b0c0e
fix gnutls ssl
...
SVN revision: 52385
2010-09-17 19:43:03 +00:00
Mike Blumenkrantz
6542578149
new ssl error output: now with detailed location info and 50% more fiber!
...
SVN revision: 52380
2010-09-17 17:39:32 +00:00
Mike Blumenkrantz
d74f46d5a5
simplify error conditions and output errrors on failure
...
SVN revision: 52378
2010-09-17 17:22:59 +00:00
Mike Blumenkrantz
c7608248dd
enable compression for gnutls, add error checks to client functions
...
SVN revision: 52377
2010-09-17 17:18:41 +00:00
Mike Blumenkrantz
cb0c97b6c3
add error checking for servers
...
SVN revision: 52376
2010-09-17 17:03:15 +00:00
Mike Blumenkrantz
3e98b064d3
use right pointer for ssl ctx to avoid segv
...
SVN revision: 52362
2010-09-17 08:58:23 +00:00
Mike Blumenkrantz
f3a9a92d36
fix ssl to work with cert loading flag
...
SVN revision: 52361
2010-09-17 08:00:42 +00:00
Lucas De Marchi
0a4617ae38
FORMATTING
...
* Remove vim modelines:
find . -name '*.[chx]' -exec sed -i '/\/\*$/ {N;N;/ \* vim:ts/d}' \{\} \;
find . -name '*.[chx]' -exec sed -i '/\/[\*\/] *vim:/d' \{\} \;
* Remove leading blank lines:
find . -name '*.[cxh]' -exec sed -i '/./,$!d'
If you use vim, use this in your .vimrc:
set ts=8 sw=3 sts=8 expandtab cino=>5n-3f0^-2{2(0W1st0
SVN revision: 50816
2010-08-04 16:57:32 +00:00
Mike Blumenkrantz
8c946dff90
grrrrr this enum is really starting to piss me off
...
SVN revision: 50688
2010-07-30 15:57:19 +00:00