summaryrefslogtreecommitdiffstats
path: root/tdeio/kssl
Commit message (Collapse)AuthorAgeFilesLines
* Added support for OpenSSL 1.1Slávek Banko2017-01-0112-362/+975
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some KOpenSSLProxy methods have been renamed to be consistent with OpenSSL 1.1 API names and to prevent hidden API changes. To ensure API / ABI compatibility, the original methods are still included but have been marked as deprecated. + SSLv23_client_method => TLS_client_method + X509_STORE_CTX_set_chain => X509_STORE_CTX_set0_untrusted + sk_dup => OPENSSL_sk_dup + sk_free => OPENSSL_sk_free + sk_new => OPENSSL_sk_new + sk_num => OPENSSL_sk_num + sk_pop => OPENSSL_sk_pop + sk_push => OPENSSL_sk_push + sk_value => OPENSSL_sk_value Additional methods have been added to KOpenSSLProxy to support the new OpenSSL 1.1 API functions that provide access to the (now) opaque SSL structures. Compatibility with OpenSSL < 1.1 is handled internally in KOpenSSLProxy. + BIO_get_data + DSA_get0_key + DSA_get0_pqg + EVP_PKEY_base_id + EVP_PKEY_get0_DSA + EVP_PKEY_get0_RSA + RSA_get0_key + X509_CRL_get0_lastUpdate + X509_CRL_get0_nextUpdate + X509_OBJECT_get0_X509 + X509_OBJECT_get_type + X509_STORE_CTX_get_current_cert + X509_STORE_CTX_get_error + X509_STORE_CTX_get_error_depth + X509_STORE_CTX_set_error + X509_STORE_get0_objects + X509_STORE_set_verify_cb + X509_get0_signature + X509_getm_notAfter + X509_getm_notBefore + X509_subject_name_cmp + _SSL_session_reused + _SSL_set_options Method "KSSL::setSession" has been renamed to "KSSL::takeSession" and its functionality has changed: the session is now transferred from the argument object to the invoked object. Since it is only used internally in TDE and the functionality is different, the method with the previous name has not been preserved. Signed-off-by: Slávek Banko <[email protected]> Signed-off-by: Michele Calgaro <[email protected]> (cherry picked from commit e1861cb6811f7bac405ece204407ca46c000a453)
* Fix crash on KSSLCertificate deallocation when a CRL is held in the ↵Timothy Pearson2017-01-011-0/+2
| | | | | | KSSLCertificate object (cherry picked from commit 62a597d75224844be9a98952a586fc5c0406561e)
* Fix memory leak when deleting a KSSLCertificate that holds a CRLTimothy Pearson2017-01-013-1/+17
| | | | (cherry picked from commit 9bf244dd97e89bf47dd70fe47a4f00a3f372f875)
* Add initial CRL support to KSSLCertificateTimothy Pearson2017-01-014-4/+88
| | | | (cherry picked from commit 5896a404bcc63085cf0a50d232d2d631a5107228)
* Parse GENERALIZEDTIME ASN structuresTimothy Pearson2016-09-081-12/+21
| | | | | | This fixes certificate dates beyond year 2049. (cherry picked from commit 07dbb3b5c92ed22f71123eb84806d55f9962c60b)
* Check if SSL symbols exist before attempting to load themTimothy Pearson2013-11-101-171/+174
| | | | This relates to Bug 1655
* Rename KWallet to TDEWalletTimothy Pearson2013-08-271-2/+2
|
* Fix security issue when displaying certificate informations (CVE-2011-3365)Francois Andriot2013-06-011-6/+15
|
* Rename additional header files to avoid conflicts with KDE4Timothy Pearson2013-02-1510-18/+18
|
* Rename common header files for consistency with class renamingTimothy Pearson2013-02-143-3/+3
|
* Rename KLocale to enhance compatibility with KDE4Timothy Pearson2013-02-011-2/+2
|
* Rename KStandard for enhanced compatibility with KDE4Timothy Pearson2013-01-313-4/+4
|
* Rename a number of libraries and executables to avoid conflicts with KDE4Timothy Pearson2013-01-27126-0/+17878