summaryrefslogtreecommitdiffstats
path: root/tdeio/kssl/kopenssl.cc
Commit message (Collapse)AuthorAgeFilesLines
* Fix missing return values in kopenssl.François Andriot2019-12-041-0/+7
| | | | | | Signed-off-by: François Andriot <francois.andriot@free.fr> Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit a6bbb9e7bc21382b504c8c6fe408a766a3890bb6)
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-09-041-2/+2
| | | | | | | | | | | The first argument of the OPENSSL_init_ssl and OPENSSL_init_crypto functions must be a 64-bit int, not a 32-bit int, as this caused unpredictable OpenSSL behavior. This resolves bug 3024. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit a2ad929640f62ee1f854564366ce1cd8547de455)
* Use system libdir when searching for dynamically loaded libraries.Slávek Banko2019-02-271-33/+8
| | | | | | | This prevents finding an incorrect architecture on multi-arch systems. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit 8a859540c3cb306844288144a06028dc302408d6)
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-02-211-2/+24
| | | | | Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit 43609c8a21144b56a53d53757639fc6c6298c10d)
* Added support for OpenSSL 1.1Slávek Banko2017-01-011-112/+612
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some KOpenSSLProxy methods have been renamed to be consistent with OpenSSL 1.1 API names and to prevent hidden API changes. To ensure API / ABI compatibility, the original methods are still included but have been marked as deprecated. + SSLv23_client_method => TLS_client_method + X509_STORE_CTX_set_chain => X509_STORE_CTX_set0_untrusted + sk_dup => OPENSSL_sk_dup + sk_free => OPENSSL_sk_free + sk_new => OPENSSL_sk_new + sk_num => OPENSSL_sk_num + sk_pop => OPENSSL_sk_pop + sk_push => OPENSSL_sk_push + sk_value => OPENSSL_sk_value Additional methods have been added to KOpenSSLProxy to support the new OpenSSL 1.1 API functions that provide access to the (now) opaque SSL structures. Compatibility with OpenSSL < 1.1 is handled internally in KOpenSSLProxy. + BIO_get_data + DSA_get0_key + DSA_get0_pqg + EVP_PKEY_base_id + EVP_PKEY_get0_DSA + EVP_PKEY_get0_RSA + RSA_get0_key + X509_CRL_get0_lastUpdate + X509_CRL_get0_nextUpdate + X509_OBJECT_get0_X509 + X509_OBJECT_get_type + X509_STORE_CTX_get_current_cert + X509_STORE_CTX_get_error + X509_STORE_CTX_get_error_depth + X509_STORE_CTX_set_error + X509_STORE_get0_objects + X509_STORE_set_verify_cb + X509_get0_signature + X509_getm_notAfter + X509_getm_notBefore + X509_subject_name_cmp + _SSL_session_reused + _SSL_set_options Method "KSSL::setSession" has been renamed to "KSSL::takeSession" and its functionality has changed: the session is now transferred from the argument object to the invoked object. Since it is only used internally in TDE and the functionality is different, the method with the previous name has not been preserved. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit e1861cb6811f7bac405ece204407ca46c000a453)
* Fix memory leak when deleting a KSSLCertificate that holds a CRLTimothy Pearson2017-01-011-0/+7
| | | | (cherry picked from commit 9bf244dd97e89bf47dd70fe47a4f00a3f372f875)
* Add initial CRL support to KSSLCertificateTimothy Pearson2017-01-011-0/+8
| | | | (cherry picked from commit 5896a404bcc63085cf0a50d232d2d631a5107228)
* Check if SSL symbols exist before attempting to load themTimothy Pearson2013-11-101-171/+174
| | | | This relates to Bug 1655
* Rename a number of libraries and executables to avoid conflicts with KDE4Timothy Pearson2013-01-271-0/+1601
generated by cgit v1.2.3 (git 2.46.0) at 2025-09-25 14:26:54 +0000