Commit graph

54 commits

Author SHA1 Message Date
Gerhard Rieger
2cddaf22b1 Introduced groups_t instead of uint32_t 2023-09-30 09:42:54 +02:00
Gerhard Rieger
33896a3f38 Removed trailing white space from *.h and *.c files 2023-06-12 23:01:54 +02:00
Gerhard Rieger
ffe940041c Guard OPENSSL_INIT_new() for LibreSSL 2023-06-12 19:24:16 +02:00
Gerhard Rieger
3678757fed Do not take IP address as SNI parameter 2023-06-12 19:23:09 +02:00
Gerhard Rieger
5fdd033e7d Replaced // comments for C89/C90 standard compliance 2023-06-12 12:28:48 +02:00
Gerhard Rieger
5edcb9b308 ctype(3) functions need there arguments to be unsigned char 2022-10-29 20:59:03 +02:00
Gerhard Rieger
15e38be2f5 Fixed SIGSEGV of OpenSSL on exit() 2022-10-29 15:12:44 +02:00
Gerhard Rieger
22a738d2d0 The variable for the no-sni option was not initialized 2022-01-06 17:17:10 +01:00
Gerhard Rieger
abdf738d1f Socat might have crashed on peer cert without subject 2022-01-06 17:14:27 +01:00
Gerhard Rieger
1477334905 OpenSSL server could be crashed by client cert with IPv6 address in SubjectAltname 2021-10-31 11:30:14 +01:00
Gerhard Rieger
072377c68c Fixed a few minor coding issues 2021-10-31 10:26:40 +01:00
Gerhard Rieger
6b9736472c OpenSSL file transfer failed 2021-01-10 13:44:58 +01:00
Gerhard Rieger
45ad4018b0 More corrections to recent changes and from systematic tests 2021-01-03 16:56:50 +01:00
Gerhard Rieger
b7a277472b With OPENSSL_API_COMPAT=0x10000000L the files openssl/dh.h, openssl/bn.h must be included 2021-01-03 07:43:00 +01:00
Gerhard Rieger
82f5321204 SSL_read,SSL_write errors sometimes stated SSL_connect 2021-01-01 18:24:50 +01:00
Gerhard Rieger
aa2b9c00b2 Added SNI support to OPENSSL-CONNECT, with options no-sni, snihost 2020-12-31 14:49:43 +01:00
Gerhard Rieger
6128ea36ac OpenSSL client checks SubjectAltName IP addresses 2020-12-31 12:19:17 +01:00
Gerhard Rieger
d1b809b4ab DTLS over UDP 2020-12-30 20:59:04 +01:00
Gerhard Rieger
d9d320cb47 Corrected UNIX client NAMED options to work on bind address 2020-12-29 05:22:41 +01:00
Gerhard Rieger
de2f2c471b OpenSSL options min-version, max-version 2020-12-28 12:38:52 +01:00
Gerhard Rieger
3ef518fde0 Unsetenv was not conditional in xio-openssl.c 2020-12-27 20:52:41 +01:00
Gerhard Rieger
cbeb06b19b Fixed regression: SSL_CTX_clear_mode() not available in older OpenSSL versions 2020-01-01 14:14:12 +01:00
Gerhard Rieger
bc3723e970 OpenSSL: clear SSL_MODE_AUTO_RETRY 2019-03-12 21:09:18 +01:00
Gerhard Rieger
14f3e4fed8 Disable option openssl-method 2019-03-03 13:20:12 +01:00
Gerhard Rieger
d7473dbac6 Corrected mention of SSL-LISTEN and SSL-CONNECT in doc; more minor corrections 2017-01-08 11:50:11 +01:00
Gerhard Rieger
522cf716f8 LibreSSL support: check for OPENSSL_NO_COMP 2017-01-06 19:11:00 +01:00
Gerhard Rieger
7da1766048 Use RAND_status to determine PRNG state 2016-12-26 18:57:13 +01:00
Gerhard Rieger
d5b87cea87 Modification for BoringSSL 2016-12-12 20:53:08 +01:00
Gerhard Rieger
008229cb9f Changes to make socat compile with OpenSSL 1.1 2016-12-12 18:58:59 +01:00
Gerhard Rieger
0061ca1334 Check in configure for SSLv3_*_METHOD 2016-12-10 21:51:27 +01:00
Gerhard Rieger
d34493c18d Added contributors to copyright notices 2016-12-09 21:46:02 +01:00
Gerhard Rieger
0638d245f8 tmp - Debian OpenSSL1.1 patch 2016-12-05 12:05:02 +01:00
Gerhard Rieger
eab3c89f2d socat security advisory 7, MSVR-1499: created new 2048bit DH modulus 2016-01-29 11:29:11 +01:00
Gerhard Rieger
b6541b4de7 Final fixes before release 1.7.3.0 2015-01-24 18:40:03 +01:00
Gerhard Rieger
053c4565b3 Added OpenSSL server side EDHCE cipher support 2015-01-23 21:35:55 +01:00
Gerhard Rieger
f0abfc19fd environ variable from C runtime is not declared on all systems 2015-01-23 18:46:54 +01:00
Gerhard Rieger
281d1bd651 FIPS requires 1024 bit DH prime 2015-01-23 18:38:28 +01:00
Gerhard Rieger
d430147bc6 Added TLS methods support 2015-01-23 18:38:06 +01:00
Gerhard Rieger
899bc6845d Red Hat issue 1019972: needs to specify OpenSSL cipher suites 2015-01-12 23:43:23 +01:00
Gerhard Rieger
d4c44ff649 Red Hat issue 1019964: socat now uses the system certificate store 2015-01-12 23:39:57 +01:00
Gerhard Rieger
2f40a439cb Check OpenSSL peers commonName+subjectAltName; new option openssl-commonname 2015-01-12 23:34:47 +01:00
Gerhard Rieger
05afec429d OpenSSL peer certificate subject,issuer details are passed to env 2015-01-12 23:11:26 +01:00
Gerhard Rieger
257834e501 OPENSSL-CONNECT with bind option failed on some systems with Invalid argument 2014-03-02 16:53:30 +01:00
Gerhard Rieger
97db9bce50 corrected some message formats 2011-12-04 20:51:31 +01:00
Gerhard Rieger
4c9898446d Ubuntu Oneiric: OpenSSL w/o SSLv2, bsd/libutil.h, unused vars 2011-12-04 15:14:34 +01:00
Gerhard Rieger
7e3386f228 OpenSSL option compress allows to disable compression 2011-11-26 14:27:02 +01:00
Gerhard Rieger
0b472d59d2 OPENSSL-LISTEN failed with "no shared cipher" when using cipher aNULL 2011-11-22 10:42:38 +01:00
Gerhard Rieger
1db7a7b1f7 openssl addresses failed with "nonblocking operation did not complete" when the peer performed a renegotiation 2010-01-09 13:35:24 +01:00
Gerhard Rieger
86c596bd51 merged feature protocol-type 2008-09-22 22:33:04 +02:00
Gerhard Rieger
2ffe5a324e merged features ancillary, envvar 2008-09-22 22:17:55 +02:00