aboutsummaryrefslogtreecommitdiffstats
path: root/socket.c
Commit message (Expand)AuthorAgeFilesLines
* Reformat.Matthias Andree2017-02-111-2/+2
* TLS: set hostname for SNI.Matthias Andree2017-02-111-0/+14
* Initial TLSv1.3 support code.Matthias Andree2017-02-111-1/+27
* Fixup protocol version handling in OpenSSL 1.0.X.Matthias Andree2016-12-121-0/+4
* Support for Debian/Ubuntu mutilated SSLv3 support.Matthias Andree2016-12-121-0/+4
* OpenSSL 1.1.0 API support.Matthias Andree2016-12-121-4/+76
* Refactor OpenSSL protocol version selection logic.Matthias Andree2016-12-121-44/+54
* Bump OpenSSL requirement to v1.0.2.Matthias Andree2016-12-111-2/+2
* Really try to continue if OpenSSL lib newer than headers used at compile-time.Matthias Andree2016-04-241-1/+0
* Enable TLS 1.1/1.2 options on LibreSSL.Matthias Andree2016-04-241-2/+2
* Avoid another C99-style comment.Matthias Andree2016-01-301-3/+2
* Avoid C99-style comment.Matthias Andree2016-01-301-2/+1
* Add OpenSSL version sanity checking.Matthias Andree2016-01-301-1/+24
* Support ssl3+ tls1.1, tls1.2 in --sslproto. Report TLS1.1/1.2 if unsupported ...Matthias Andree2015-04-111-2/+19
* Fix typo regarding SSL_OP_NO_SSLv3, and carry over one basic block from maste...Matthias Andree2015-04-111-2/+7
* Detect/report server hang-up in SSL_connect().Matthias Andree2015-04-081-1/+12
* TLS overhaul, bumping version to 6.4Matthias Andree2015-01-261-11/+17
* Also report SSL/TLS protocol version in verbose mode.Matthias Andree2015-01-161-2/+6
* Report SSL/TLS cipher, in verbose mode.Matthias Andree2015-01-161-0/+14
* Also recognize OPENSSL_NO_SSLx.Matthias Andree2015-01-161-2/+2
* Permit build on SSLv3-disabled OpenSSL,Matthias Andree2015-01-161-1/+6
* Minor bug fixes for socket.cJohn Beck2013-02-181-0/+3
* Improve X.509 certificate validation reporting.Matthias Andree2013-02-061-13/+42
* Plug a memory leak in OpenSSL's certificate verification callback.Matthias Andree2012-12-131-1/+1
* Clear SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS without SSL_CTX_clear_options()Earl Chew2012-09-031-3/+4
* Fix CVE-2011-3389 by clearing SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS...Matthias Andree2012-05-031-0/+6
* Fix build on SSLv2-disabled OpenSSL setupsMatthias Andree2011-10-261-0/+5
* Print Server certificate: banner on stdout rather than stderr.Matthias Andree2011-08-301-1/+1
* Revert SO_???TIMEO-based STARTTLS timeout handling.Matthias Andree2011-05-261-28/+1
* Fix error string.Matthias Andree2011-05-231-1/+1
* Fix socket timeout handling.Matthias Andree2011-05-221-1/+2
* Reindent.Matthias Andree2011-05-221-9/+9
* Reinstate SSLv2 support on legacy_63 branch.Matthias Andree2011-05-171-3/+5
* Drop broken test code.Matthias Andree2011-05-171-18/+0
* SockOpen(): set SO_KEEPALIVE.Matthias Andree2011-05-131-0/+9
* Add a SockTimeout(int socket, int seconds) function.Matthias Andree2011-04-291-0/+25
* In the plugin child, call _exit, not exit.Matthias Andree2011-04-291-2/+2
* Properly report EXIT_FAILURE if the plugin/plugout execvp() fails.Matthias Andree2011-04-291-2/+2
* Remove unused code.Matthias Andree2011-04-291-48/+0
* Fix typo in comment.Matthias Andree2011-04-281-1/+1
* Remove support for SSLv2 (fixes Debian Bug #622054).Matthias Andree2011-04-111-5/+3
* Fix compiler warnings.Matthias Andree2010-12-121-1/+1
* Fix Intel C++ var shadowing warnings.Matthias Andree2010-10-091-5/+5
* X.509 matching split out; disallow TLD wildcards.Matthias Andree2010-08-271-36/+0
* Disallow X.509 wildcard matches in domain literals.Matthias Andree2010-08-271-1/+17
* Require that X.509 wildcards start with "*.",Matthias Andree2010-08-271-1/+1
* Factor out name/wildcard matching code.Matthias Andree2010-08-271-17/+23
* Only report connection failures in verbose mode or if all addresses fail.Matthias Andree2010-05-191-7/+18
* Omit warning of insecure connection if --sslfingerprint matches.Matthias Andree2010-05-091-2/+2
* Hack types for cygwin_read().Matthias Andree2010-04-291-4/+4