Aleksandar Fabijanic
ece360393f
4435 secure sock thread ( #4512 )
...
* fix(SecureSocket): Refactor detection of timeout when reading, writing or handshaking. (#3725 )
* enh(SecureSocket): some trivial C++17 modernisation changes.
* chore: indentation and compiler warning
* fix(SecureSocketImpl): not thread-safe (1st attempt) #4435
* fix(SecureSocketImpl): silence CodeQL cpp/certificate-not-checked
---------
Co-authored-by: Matej Kenda <matejken@gmail.com >
2024-04-02 18:53:42 +02:00
Matej Kenda
482c066307
fix(SecureSocket): Refactor detection of timeout when reading, writing and handshaking ( #4510 )
...
* fix(SecureSocket): Refactor detection of timeout when reading, writing or handshaking. (#3725 )
* enh(SecureSocket): some trivial C++17 modernisation changes.
* chore: indentation and compiler warning
---------
Co-authored-by: Alex Fabijanic <alex@pocoproject.org >
2024-03-27 00:29:58 +01:00
chrisbednarski
388a3b4010
fix openssl session resumption, add quiet shutdown option, support FTPS with hostname ( #4103 )
2023-11-26 18:12:11 +01:00
Günter Obiltschnig
ee7e8dc29f
fix include order
2023-10-02 07:50:29 +02:00
Günter Obiltschnig
8f764e3505
#3880 : NetSSL_OpenSSL: Support session resumption with TLSv1.3
2023-06-06 13:06:02 +02:00
chrisbednarski
e0e628ac7e
fix(build): fix build with openssl 3.1.0 on vs2022 ( #3969 )
...
* fix log verbosity in windows powershell build script
* stop paths being added multiple times to environment variables
* pass useenv property to msbuild
* linking issue: include crypto.h prior to config.h so POCO_EXTERNAL_OPENSSL is initialised
* resolve poco_base path in powershell script
* build against any available windows sdk
2023-03-17 17:45:56 -05:00
John Vandenberg
0e6e16645c
Remove trailing whitespace ( #3668 )
2022-07-07 04:18:20 -05:00
Alex Fabijanic
5d7a1016c2
feat(SecureSocketImpl): how to set the socket of SecureSocketImpl to no-blocking? #2352
2022-06-29 11:41:39 +02:00
Aleksandar Fabijanic
7db9831f32
Netssl/openssl3 ( #3575 )
...
* feat(Context): DH init openssl3 port (1/2 hardcoded params)
* create poco-1.11.3 branch, bump version
* update copyright date
* #3567 : check legacy provider existence for legacy exception #3567
* fix(Placeholder): comparison for zero value
* feat(Context): DH init openssl3 port (2/2 params from file)
* test(HTTPSClientSession): try/catch to understand CI failure
* chore(cmake): copy the DH parameters file
* fix(OpenSSLInitializer): unload provider on uninitialize
* chore(HTTPSClientSessionTest): remove try/catch
* fix(OpenSSLInitializer): fix provider unloading
* feat(CppUnit): make tests exceptions more descriptive
* chore(CppUnit): a more descriptive name for callback
Co-authored-by: Günter Obiltschnig <guenter.obiltschnig@appinf.com >
2022-04-28 22:24:43 -05:00
Alex Fabijanic
3fb001f397
fix(Socket): shutdown fixes from pull #3448
2022-03-31 19:03:27 +00:00
Günter Obiltschnig
3ca91a8fe1
#2895 , #2935 : support OCSP stapling
2021-06-23 08:36:38 +02:00
Günter Obiltschnig
907e240ff2
#3269 : Poco::Net::Context initialization with empty certificateFile
2021-06-15 14:05:56 +02:00
Günter Obiltschnig
7917abf727
#2418 : SecureServerSocket doesn't work with IpV6
2021-06-15 10:23:22 +02:00
Günter Obiltschnig
ab010473b9
#3299 : NetSSL: Allow per-Context InvalidCertificateHandler
2021-06-06 18:11:05 +02:00
Günter Obiltschnig
d33a39a987
#2816 : Modernise TLS configuration
2020-02-04 09:33:31 +01:00
Günter Obiltschnig
839009d9b5
fix header comments
2020-01-23 18:57:05 +01:00
Günter Obiltschnig
bcbef6833c
fix DLL export
2020-01-23 18:14:24 +01:00
Günter Obiltschnig
d65bf03a83
fixes and improvements to FTP(S)ClientSession
2020-01-23 17:55:30 +01:00
Günter Obiltschnig
878b8bbeca
fixes for FTPSClientSession
2020-01-23 13:29:54 +01:00
Günter Obiltschnig
5d481ff493
merge FTPSClientSession from develop-experimental
2020-01-23 11:57:28 +01:00
Günter Obiltschnig
e1f09a602b
cleanup and modernization
2020-01-10 12:20:30 +01:00
Günter Obiltschnig
821d80b76e
cleanup
2020-01-10 11:34:35 +01:00
Günter Obiltschnig
a2f8f8fbe1
NetSSL_OpenSSL: better way to specify TLS version for Context
2020-01-09 21:25:30 +01:00
Günter Obiltschnig
ec8ea48062
SecureSMTPClientSession now uses _host from SMTPClientSession
2019-05-16 14:35:19 +02:00
Günter Obiltschnig
6000982c8b
added preliminary TLSv1.3 support with OpenSSL version 1.1.1
2018-08-24 10:47:05 +02:00
proller
bada9ed2b9
Backport #2257 to Poco 1.9.1
2018-08-18 11:09:43 +02:00
Ed
27d4c8c373
Don't include <openssl/fips.h> for later OpenSSL ( #2358 )
2018-06-04 11:49:03 -05:00
Joerg-Christian Boehme
5fb10f6746
Set EVP private key on SSL context ( #2259 )
2018-06-03 11:27:32 -05:00
Günter Obiltschnig
4f562c0e6b
fix Windows openssl library pragmas
2018-03-07 09:17:32 +01:00
Günter Obiltschnig
451f05121e
#2197 : fix style
2018-03-05 22:15:39 +01:00
Günter Obiltschnig
38c9328db6
fix style
2018-03-05 19:54:01 +01:00
Joerg-Christian Boehme
4c05d4baf7
Improve ssl context, include a function to add CA certificates.
2018-03-05 13:37:45 +01:00
Aleksandar Fabijanic
76c5bf8dc7
fix link ifdef
2017-10-23 15:24:13 -05:00
Alex Fabijanic
741fead666
add openssl autolink to NetSSL
2017-09-23 16:19:14 -05:00
Günter Obiltschnig
04e7e04d4d
Remove \$Id`$ headers
2017-09-09 11:14:06 +02:00
Guenter Obiltschnig
f7ba58c80f
fix for GH #1160 : Poco::Net::NetException "SSL Exception: error:1409F07F:SSL routines:ssl3_write_pending:bad write retry
2016-02-26 20:15:58 +01:00
Guenter Obiltschnig
dee1efd56a
added Context::preferServerCiphers()
2016-01-19 16:01:17 +01:00
Guenter Obiltschnig
82c6c5f149
added support for ECDH, new Context ctor
2016-01-19 15:19:14 +01:00
Guenter Obiltschnig
e9b2b3bcdd
NetSSL: add support for disabling certain protocols
2016-01-19 11:36:02 +01:00
Guenter Obiltschnig
b124d5b392
merged doc fixes from develop branch
2015-10-10 17:32:31 +02:00
Guenter Obiltschnig
d74afb9492
doc fix
2014-10-10 08:12:56 +02:00
Guenter Obiltschnig
1a81dbef15
enabled TLSv1.1 and 1.2 support in configuration
2014-09-02 18:54:12 +02:00
Guenter Obiltschnig
16ef87e6c8
added support for TLSv1.1 and TLSv1.2 to Context
2014-09-02 17:23:47 +02:00
Roger Meier
b0581433a7
LICENSE: add info about SPDX-License-Identifier usage and use it
...
fix: remove executable flag and change back to 100644 (was 100755)
Signed-off-by: Roger Meier <r.meier@siemens.com >
2014-05-14 08:38:09 +02:00
Guenter Obiltschnig
2341a1d236
SecureSMTPClientSession bugfix: save hostname for cert validation
2014-05-12 16:01:56 +02:00
Roger Meier
628a06f718
LICENSE: add info about SPDX-License-Identifier usage and use it
...
Signed-off-by: Roger Meier <roger@bufferoverflow.ch >
2014-05-04 21:02:42 +02:00
Guenter Obiltschnig
f764673c61
cert hostname validation is case insensitive and stricter for wildcard certificates
2014-04-09 17:05:54 +02:00
Guenter Obiltschnig
436737171d
Poco::Net::X509Certificate::verify() no longer uses DNS reverse lookups to validate host names
2014-04-09 16:36:14 +02:00
Guenter Obiltschnig
8f07db4aa3
various fixes - see CHANGELOG
2013-11-14 21:54:41 +01:00
Guenter Obiltschnig
981b0a1ae4
fixed GH# 251: HTTPStreamFactory::unregisterFactory missing implementation?
2013-08-02 18:07:36 +02:00