Permalink
Commits on Jun 12, 2017
Commits on Apr 28, 2017
Commits on Apr 16, 2017
  1. 2.048: fixed small memory leaks during destruction of socket and cont…

    …ext, RT#120643
    Steffen Ullrich committed Apr 16, 2017
Commits on Feb 16, 2017
  1. 2.047 better fix for problem which 2.046 tried to fix but broke LWP t…

    …his way
    Steffen Ullrich committed Feb 16, 2017
Commits on Feb 15, 2017
  1. 2.046 cleanup everything in DESTROY and make sure to start with a fre…

    …sh %{*self} in configure_SSL
    
     because it can happen that a GLOB gets used again without calling DESTROY (#56)
    Steffen Ullrich committed Feb 15, 2017
Commits on Feb 13, 2017
  1. release as 2.045

    small fix in t/protocol_version.t to use older versions of Net::SSLeay  with openssl build w/o SSLv3 support
    Steffen Ullrich committed Feb 13, 2017
  2. when setting SSL_keepSocketOnError to true the socket will not be clo…

    …sed on fatal error
    
     This is a modified version of #53/
    Steffen Ullrich committed Feb 13, 2017
  3. optimization: don't track SSL objects and CTX in *CREATED_IN_THIS_THR…

    …EAD if perl is compiled w/o thread support
    Steffen Ullrich committed Feb 13, 2017
  4. Merge pull request #53 from hubandr/handshake_failed_stop_ssl

    Handshake failed stop ssl
    committed on GitHub Feb 13, 2017
Commits on Feb 8, 2017
  1. Merge pull request #52 from jwilk/spelling

    Fix typos
    committed on GitHub Feb 8, 2017
Commits on Feb 7, 2017
Commits on Feb 5, 2017
  1. Fix typos

    jwilk committed Feb 5, 2017
Commits on Feb 2, 2017
Commits on Jan 26, 2017
  1. 2.044 protect various 'eval'-based capability detections at startup w…

    …ith a localized
    
      __DIE__ handler. This way dynamically requiring IO::Socket::SSL as done by
      various third party software should cause less problems even if there is a
      global __DIE__ handler which does not properly deal with 'eval'.
    Steffen Ullrich committed Jan 26, 2017
Commits on Jan 6, 2017
  1. 2.043 - make t/session_ticket.t work with OpenSSL 1.1.0.

    Steffen Ullrich committed Jan 6, 2017
Commits on Jan 5, 2017
Commits on Jan 4, 2017
  1. 2.041 disable session ticket callback for now until the feature is

      fully implemented in Net::SSLeay
    Steffen Ullrich committed Jan 4, 2017
Commits on Dec 17, 2016
  1. release as 2.040

    document signature_alg in Utils::CERT_asHash
    Steffen Ullrich committed Dec 17, 2016
  2. Fix number used for SSLEAY_DIR/OPENSSL_DIR since this changed with Op…

    …enSSL 1.1.
    
    This caused it to not find the default path for CA any longer with OpenSSL 1.1.
    Steffen Ullrich committed Dec 17, 2016
Commits on Dec 12, 2016
  1. testlib: clear __DIE__ handler in child

    Steffen Ullrich committed Dec 12, 2016
  2. Merge pull request #47 from odenbach/serial

    Decode the serial number the right way, include signature algorithm in CERT_asHash
    committed on GitHub Dec 12, 2016
Commits on Dec 9, 2016
  1. Include signature algorithm in CERT_asHash

    The signature algorithm used to sign the certificate is quite interesting, especially if you are looking for old SHA-1 certificates.
    odenbach committed on GitHub Dec 9, 2016
  2. Decode the serial number the right way

    Hi,
    
    for certificates with really large serial numbers CERT_asHash returned -1 as serial number. After reading the Net::SSLeay documentation I changed the decoding function to ASN1_INTEGER_get_dec:
    
    BEWARE: If the value stored in ASN1_INTEGER is greater than max. integer that can be stored in 'long' type (usually 32bit but may vary according to platform) then this function will return -1. For getting large ASN1_INTEGER values consider using "P_ASN1_INTEGER_get_dec" or "P_ASN1_INTEGER_get_hex".
    odenbach committed on GitHub Dec 9, 2016
Commits on Nov 20, 2016
  1. 2.039:

    adapt to the changed behavior of SSL_read on EOF without SSL shutdown
    which was introducted with OpenSSL 1.1.0c.
    Steffen Ullrich committed Nov 20, 2016
Commits on Oct 8, 2016
  1. - don't check if SSL_key_file and SSL_cert_file are files, instead just

      check if they can be opened which includes that they are readable
    - for SSL_ca_file skip the check for -f, open(..) should be sufficient
    Steffen Ullrich committed Oct 8, 2016
Commits on Sep 17, 2016
  1. 2.038

    - restrict session ticket callback to Net::SSLeay 1.79+ since version before
      contains bug. Add test for session reuse
    - extend SSL fingerprint to pubkey digest, i.e. 'sha1$pub$xxxxxx....'
    - fix t/external/ocsp.t to use different server (under my control) to check
      OCSP stapling
    Steffen Ullrich committed Sep 17, 2016
Commits on Aug 22, 2016
  1. 2.037

    fix session cache del_session: it freed the session but did not properly
    remove it from the cache. Further reuse causes crash.
    Steffen Ullrich committed Aug 22, 2016
Commits on Aug 11, 2016
  1. forgot Changes information

    Steffen Ullrich committed Aug 11, 2016
  2. released as 2.035

    Steffen Ullrich committed Aug 11, 2016
  3. configure_SSL: return if context creation failed, might result in seg…

    …fault otherwise
    Steffen Ullrich committed Aug 11, 2016
  4. switched to different hosts for live OCSP tests in the hope that these

     use the same certificates world-wide
    Steffen Ullrich committed Aug 11, 2016
Commits on Aug 10, 2016
  1. update expected certificate fingerprints for external tests

    Steffen Ullrich committed Aug 10, 2016