generic-library/poco
1
0
Fork 0
mirror of https://github.com/pocoproject/poco.git synced 2025-07-05 18:01:38 +02:00
Code Issues Projects Releases Wiki Activity
4,514 Commits 159 Branches 73 Tags
Commit Graph

72 Commits

Author SHA1 Message Date
Conor Burgess
16414e4fbf If openssl > 1.0.2, use it to verify hostnames against certificates, with test (#1885) 2017-09-13 09:32:52 -05:00
Günter Obiltschnig
06373b5d0c remove '$Id$' headers 2017-09-09 10:50:32 +02:00
Alex Fabijanic
c81de1d34b fix FTPS win build, license, header guards; fix few warnings 2017-08-31 12:20:49 -05:00
micheleselea
dd573b98d8 Add FTPS (FTP over explicit SSL) implementation (#1866) 
* FTPSClientSession

Add class to support FTPS (explicit FTP over SSL). Testcase done but just  TestSuite_x64_vs140.vcxproj modified

* FTPS project file

Added FTPS files to v140 project

* FTPS makefile

Added FTPS file to makefile

* testsuit compile

Fix compile of testsuite

* comment misspelled

checked misspelled comment, and re-add WebSocket testsuite

* remove warning

reorder constructor inizializzations in order to remove gcc -Wreorder warning

* testsuite compile

Correct Makefile in testsuite

* Makefile testsuite

add DialogServer to testsuite makefile

* test build

fix build of testsuite

* add FTPSStreamFactory

* vs140 32bit

* build and test for vs150
 2017-08-31 07:30:10 -05:00
FrancisANDRE
ac6110ce1e Rollback fix #1605 since it breaks the unit test 
HTTPSClientSessionTest::testCachedSession()
 2017-03-15 18:23:37 +01:00
Guenter Obiltschnig
b2477e4c94 #1605: try to do a proper SSL_shutdown() 2017-02-22 21:42:02 +01:00
Günter Obiltschnig
bfaa161c61 Crypto and NetSSL fixes for OpenSSL 1.1 2016-11-28 00:23:52 +01:00
Guenter Obiltschnig
5df7f69b08 fixed GH #1472: HTTP(S)StreamFactory should send a User-Agent header 2016-10-26 12:59:33 +02:00
Guenter Obiltschnig
c943727354 style fix 2016-09-26 19:17:38 +02:00
Guenter Obiltschnig
ae3c4a4ba3 fixed some warnings and minor issues detected by clang-analyzer 
Conflicts:
	Data/src/RecordSet.cpp
 2016-09-13 11:40:59 +02:00
Günter Obiltschnig
81b140e0a9 Revert "GH #1050 NetSSL_OpenSSL: fix gcc -Wshadow warnings" 2016-09-05 08:31:43 +02:00
Guenter Obiltschnig
1662bc87a1 fixed GH #1303: HTTPSClientSession::sendRequest() fails if server has wildcard cert 2016-07-03 12:48:50 +02:00
Miklos Vajna
617f2635ad GH #1050 NetSSL_OpenSSL: fix gcc -Wshadow warnings 2016-03-14 16:09:50 +01:00
Guenter Obiltschnig
443e54fdde use TLS_*_method() instead of deprecated SSLv23_*_method() if OpenSSL version is >= 1.1; initialize default/fallback client context to support all TLS protocols, not just TLSv1 2016-03-12 12:20:22 +01:00
Guenter Obiltschnig
b2ac870240 fixed GH# 1184: Attempting to connect via a proxy throws a DNS error "Host not found" 2016-03-10 09:55:46 +01:00
Guenter Obiltschnig
0efc7c4cf3 fix for GH #1160: Poco::Net::NetException "SSL Exception: error:1409F07F:SSL routines:ssl3_write_pending:bad write retry 2016-02-26 20:14:19 +01:00
Guenter Obiltschnig
59b5b4e46e added Context::preferServerCiphers() 2016-01-19 16:02:15 +01:00
Guenter Obiltschnig
20c772d17b added support for ECDH, new Context ctor 2016-01-19 15:20:08 +01:00
Guenter Obiltschnig
556b4bd32f NetSSL: add support for disabling certain protocols 2016-01-19 11:37:47 +01:00
Guenter Obiltschnig
829746feb1 fix line endings 2015-10-09 16:53:21 +02:00
Guenter Obiltschnig
6bb1f4ad62 improved SSLManager to automatically set-up a reasonable client Context if none is configured 2015-10-06 09:42:41 +02:00
Günter Obiltschnig
ee9794f087 Merge pull request #943 from zosrothko/develop 
Proposed changes for fixing NetSSL_OpenSSL and adding portability function in Sharedmemory
 2015-09-19 15:46:57 +02:00
FrancisANDRE
3e3c9da626 Protect TLSv1, TLSv1_1 and TLSv1_2 entry point references by proper 
OpenSSL constant

Signed-off-by: FrancisANDRE <zosrothko@orange.fr>
 2015-09-19 08:24:37 +02:00
Guenter Obiltschnig
619950bb2a HTTPSessionInstantiator: respect global proxy config 2015-09-17 11:58:19 +02:00
Guenter Obiltschnig
3b31772717 fixed comments 2014-11-21 09:05:25 +01:00
Guenter Obiltschnig
781acfa0bd added nonProxyHosts to ProxyConfig to allow bypassing proxy for certain hosts 2014-11-11 22:54:44 +01:00
Guenter Obiltschnig
420c3b55a7 added support for global HTTP proxy configuration 2014-11-09 17:22:10 +01:00
Guenter Obiltschnig
558091d53f fixed a memory leak if the CA file was not found while creating the Context (the OpenSSL context would leak) 2014-10-18 17:22:07 +02:00
Guenter Obiltschnig
84adc737d4 - don't throw if SSL client unexpectedly closes connection as this seems to be the normal behavior of web browsers (seen with Chrome and IE) 2014-10-02 14:58:45 +02:00
Günter Obiltschnig
a2617235fe #538 more dtor fixes and some style fixes along the way 2014-09-29 12:09:01 +02:00
Guenter Obiltschnig
544229302e #538 prevent destructors from throwing exceptions 2014-09-19 09:46:49 +02:00
Guenter Obiltschnig
a56c21a250 style cleanup 2014-09-17 11:46:31 +02:00
Rangell Reale
21f2e115eb * Allows SecureStreamSocket::attach to be used in server connections 
* Move order of condition for isLocalHost in peer certificate verification, to skip DNS lookup if not needed
 2014-09-12 16:43:52 -03:00
Günter Obiltschnig
a4488f2f76 fixed server context initialization 2014-09-03 11:26:09 +02:00
Guenter Obiltschnig
1a81dbef15 enabled TLSv1.1 and 1.2 support in configuration 2014-09-02 18:54:12 +02:00
Guenter Obiltschnig
3f1e2c002a added support for TLSv1.1 and TLSv1.2 to Context 2014-09-02 17:30:02 +02:00
Guenter Obiltschnig
16ef87e6c8 added support for TLSv1.1 and TLSv1.2 to Context 2014-09-02 17:23:47 +02:00
Oldřich Jedlička
f4465ea1e3 Catch also NoAddressFoundException from DNS. 
The certificate validation might fail on NoAddressFoundException - if the
hostname from certificate could not be translated to IP address.
 2014-06-09 10:11:53 +02:00
Roger Meier
b0581433a7 LICENSE: add info about SPDX-License-Identifier usage and use it 
fix: remove executable flag and change back to 100644 (was 100755)

Signed-off-by: Roger Meier <r.meier@siemens.com>
 2014-05-14 08:38:09 +02:00
Guenter Obiltschnig
2341a1d236 SecureSMTPClientSession bugfix: save hostname for cert validation 2014-05-12 16:01:56 +02:00
Roger Meier
628a06f718 LICENSE: add info about SPDX-License-Identifier usage and use it 
Signed-off-by: Roger Meier <roger@bufferoverflow.ch>
 2014-05-04 21:02:42 +02:00
Guenter Obiltschnig
f764673c61 cert hostname validation is case insensitive and stricter for wildcard certificates 2014-04-09 17:05:54 +02:00
Guenter Obiltschnig
436737171d Poco::Net::X509Certificate::verify() no longer uses DNS reverse lookups to validate host names 2014-04-09 16:36:14 +02:00
Guenter Obiltschnig
3838d665a0 improved error handling, specifically socket timeouts 2013-12-13 12:36:24 +01:00
Guenter Obiltschnig
8f07db4aa3 various fixes - see CHANGELOG 2013-11-14 21:54:41 +01:00
Guenter Obiltschnig
981b0a1ae4 fixed GH# 251: HTTPStreamFactory::unregisterFactory missing implementation? 2013-08-02 18:07:36 +02:00
Guenter Obiltschnig
476a7e4f31 fixed a potential endless loop in SecureStreamSocketImpl::sendBytes() 
and also removed unnecessary code
 2013-05-25 00:07:27 +02:00
Alex
ed24d96dda edited for coding standard compliance 2013-01-16 23:14:34 -06:00
Henrique Magarotto
f269e1ca23 ssl & unclean shutdown response 2013-01-15 17:58:10 -02:00
Guenter Obiltschnig
a628c56a01 - Poco::Net::HTTPSSessionInstantiator::registerInstantiator() now optionally accepts a Poco::Net::Context object. 2012-11-10 11:48:35 +01:00