Aleksandar Fabijanic
641d29f4ad
fix(SecureSocketImpl.cpp): Shutdown TLS1.3 connection #2776
2023-07-11 14:54:44 +02:00
Günter Obiltschnig
8f764e3505
#3880 : NetSSL_OpenSSL: Support session resumption with TLSv1.3
2023-06-06 13:06:02 +02:00
Conor Burgess
9a374ca2de
Fix error handling with OpenSSL 3.0 in SecureSocketImpl.cpp ( #3971 )
2023-03-17 10:07:37 -05:00
Alex Fabijanic
5d7a1016c2
feat(SecureSocketImpl): how to set the socket of SecureSocketImpl to no-blocking? #2352
2022-06-29 11:41:39 +02:00
Alex Fabijanic
7b051851b6
merge 1.11.2
2022-04-16 21:10:45 +02:00
Günter Obiltschnig
e99f4fd31a
#3563 : Remove support for OpenSSL < 1.0
2022-04-16 08:05:12 +02:00
Alex Fabijanic
1d4d444e08
chore: cleanup
2022-04-02 05:15:08 -07:00
Alex Fabijanic
3fb001f397
fix(Socket): shutdown fixes from pull #3448
2022-03-31 19:03:27 +00:00
Robin Lee
3bab3548f4
Basic support for OpenSSL 3.0.0 ( #3448 )
...
* updated README.md
* Create close-inactive-issues.yml
* check return codes of EVP_CIPHER_CTX_new and EVP_CipherInit
Especially with OpenSSL 3, it is possible that EVP_CipherInit may fail even when
passed a non-null cipher[1]. Without the checking, it will finally get to a
segfault.
[1] https://github.com/openssl/openssl/issues/16864
* Automatically load default and legacy providers with OpenSSL 3
Without the legacy provider [1], some ciphers are not available. For example,
the 'des-ecb' one used by test sutie is missed and the test will fail.
[1] OSSL_PROVIDER-LEGACY(7ossl)
* Make p12 ca order the same as pem
OpenSSL < 3 returns p12 ca order in reversed order. This is fixed
in OpenSSL 3. We work around it with old OpenSSL.
See:
https://github.com/openssl/openssl/issues/16421
https://github.com/openssl/openssl/pull/12641
f5eb85eb0f
2022-03-29 13:23:44 -05:00
Günter Obiltschnig
dbfd27611b
manually merge #3448 , part 1 (NetSSL)
2022-02-07 17:56:05 +01:00
Günter Obiltschnig
3ca91a8fe1
#2895 , #2935 : support OCSP stapling
2021-06-23 08:36:38 +02:00
Günter Obiltschnig
7917abf727
#2418 : SecureServerSocket doesn't work with IpV6
2021-06-15 10:23:22 +02:00
proller
bada9ed2b9
Backport #2257 to Poco 1.9.1
2018-08-18 11:09:43 +02:00
Günter Obiltschnig
320fa9c445
don't set _peerHostName from peerAddress
2017-12-21 14:32:08 +01:00
Günter Obiltschnig
04e7e04d4d
Remove \$Id`$ headers
2017-09-09 11:14:06 +02:00
Guenter Obiltschnig
ee9477afd3
fixed GH# 1184: Attempting to connect via a proxy throws a DNS error "Host not found"
2016-03-10 09:54:08 +01:00
Guenter Obiltschnig
f7ba58c80f
fix for GH #1160 : Poco::Net::NetException "SSL Exception: error:1409F07F:SSL routines:ssl3_write_pending:bad write retry
2016-02-26 20:15:58 +01:00
Guenter Obiltschnig
84adc737d4
- don't throw if SSL client unexpectedly closes connection as this seems to be the normal behavior of web browsers (seen with Chrome and IE)
2014-10-02 14:58:45 +02:00
Günter Obiltschnig
a2617235fe
#538 more dtor fixes and some style fixes along the way
2014-09-29 12:09:01 +02:00
Rangell Reale
21f2e115eb
* Allows SecureStreamSocket::attach to be used in server connections
...
* Move order of condition for isLocalHost in peer certificate verification, to skip DNS lookup if not needed
2014-09-12 16:43:52 -03:00
Roger Meier
b0581433a7
LICENSE: add info about SPDX-License-Identifier usage and use it
...
fix: remove executable flag and change back to 100644 (was 100755)
Signed-off-by: Roger Meier <r.meier@siemens.com>
2014-05-14 08:38:09 +02:00
Roger Meier
628a06f718
LICENSE: add info about SPDX-License-Identifier usage and use it
...
Signed-off-by: Roger Meier <roger@bufferoverflow.ch>
2014-05-04 21:02:42 +02:00
Guenter Obiltschnig
3838d665a0
improved error handling, specifically socket timeouts
2013-12-13 12:36:24 +01:00
Aleksandar Fabijanic
2a6d58c7f2
porting 1.4.4 rev. 1968 (fixed SF# 3559665, etc.)
2012-08-23 03:15:19 +00:00
Aleksandar Fabijanic
90a8e859bf
- SF #3552774 : Don't hide default target in subordinate makefile
...
- SF #3534307 : Building IPv6 for Linux by default
- SF #3516844 : poco missing symbols with external >=lipcre-8.13
- fix of rev. 1952 fix (porting rev.1913 from 1.4.4 (fixed SF# 3550553))
2012-08-20 00:57:17 +00:00
Aleksandar Fabijanic
369218ef37
porting rev.1913 from 1.4.4 (fixed SF# 3550553)
2012-08-18 02:24:52 +00:00
Aleksandar Fabijanic
662050937e
porting rev.1912 from 1.4.4 (fixed SF# 3552597)
2012-08-18 02:19:34 +00:00
Aleksandar Fabijanic
5a639074d9
change EOL to 'native'
2012-04-29 18:52:25 +00:00
Aleksandar Fabijanic
d75e68c027
new trunk (base for 1.5)
...
windows build only
2012-04-23 01:14:34 +00:00
Aleksandar Fabijanic
f9b60296f7
removing old trunk files
2012-04-23 00:43:14 +00:00
Marian Krivos
56c6a4f758
NetSSL_OpenSSL: complete merge to 1.4.2
2011-09-14 18:17:35 +00:00
Guenter Obiltschnig
99c48cff49
integrated changes from 1.3.5
2009-06-16 16:56:28 +00:00
Guenter Obiltschnig
75a07d7983
NetSSL library refactoring
2009-02-23 20:56:01 +00:00
Peter Schojer
8a2502bce4
added https->http redirect, improved redirect support in streamfactory, fixed client cert validation error
2008-12-19 08:10:04 +00:00
Guenter Obiltschnig
5f605414ff
OpenSSL improvements
2008-09-18 15:54:03 +00:00
Peter Schojer
de1518b091
exceptions instead of assertions
2008-09-18 10:38:22 +00:00
Guenter Obiltschnig
15b371a7a8
synced with main repository
2008-01-28 17:37:36 +00:00
Guenter Obiltschnig
a04bae94d7
synchronized trunk
2007-08-10 13:57:07 +00:00
Guenter Obiltschnig
e701c977f5
latest sources from main repository
2007-06-13 15:15:43 +00:00
Guenter Obiltschnig
72e771c9e9
committed latest 1.3 snapshot
2007-04-18 16:25:30 +00:00
Guenter Obiltschnig
1691fc3074
sync to internal repository
2007-02-23 14:48:34 +00:00
Guenter Obiltschnig
5dc1336af8
sources from main repository
2006-12-22 10:06:10 +00:00
