vulpineawoo/solanum
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
2130 commits 2 branches 0 tags 40 MiB
Commit graph

26 commits

Author SHA1 Message Date
William Pitcock 7233e364cc gnutls: fix typo 2015-12-12 08:19:58 -06:00
William Pitcock 673ec98e71 gnutls: allow priorities to be configured 2015-12-12 08:03:59 -06:00
William Pitcock c1725bda3c ssl: allow cipher list to be overridden (closes #67) 2015-12-12 07:50:48 -06:00
William Pitcock 833b2f9cbf libratbox: implement rb_get_ssl_cipher() 2015-12-11 08:32:02 -06:00
Elizabeth Myers e6bbb41030 Add ability to change CertFP hash. 
Presently this only supports SHA1, as the machinery to actually change
the cipher is not hooked up to anything yet.
 2015-12-07 01:14:02 -06:00
William Pitcock fab6f9e80e libratbox: gnutls: we want to pass F, not F->fd to rb_listen() 2015-12-03 22:38:54 -06:00
Aaron Jones 0b05d1aad5
[libratbox] Remove an unused random function 
Nothing in the Charybdis or libratbox code calls rb_get_pseudo_random
and under OpenSSL it uses RAND_pseudo_bytes() which is both dangerous
and removed in OpenSSL version 1.1.0.
 2015-10-25 16:04:57 +00:00
William Pitcock 4cb0a93d25 libratbox/gnutls: call gnutls_rnd_refresh() to ensure our PRNG is initialized 2015-02-16 17:40:25 -06:00
Keith Buck 55abcbb20a Remove trailing whitespace from all .c and .h files. 
3134 bytes were removed.
 2014-03-03 04:25:47 +00:00
William Pitcock 7aa40f6d2c libratbox/gnutls: add gnutls v3 api compatibility without breaking v2 2014-02-08 18:34:49 +00:00
Antoine Beaupré 2bd29df9e1 Revert "libratbox: Remove broken gnutls support." 
This reverts commit f2d58c6d72.
 2013-06-10 12:19:02 -04:00
Jilles Tjoelker f2d58c6d72 libratbox: Remove broken gnutls support. 2012-04-17 22:34:11 +02:00
Keith Buck 77444dcc1f gnutls: Fix certfp server link auth. 2012-04-07 21:51:31 +00:00
Keith Buck 3d7890b99c gnutls: Fix ssld crash when executing a SSL connection to another server. 2012-04-07 17:40:22 +00:00
Elly Fong-Jones 2682bc3053 libratbox: use rb_listen(), not listen(). 
Signed-off-by: Elly Fong-Jones <elly@leptoquark.net>
 2012-04-03 01:19:07 -04:00
William Pitcock aa4737a049 libratbox: make defer_accept optional. 2012-03-17 09:48:25 -05:00
William Pitcock 07e14084eb libratbox: Use the server SSL certificate on outgoing connections. 2010-12-13 22:58:09 -06:00
Jilles Tjoelker 2cb7175cfa gnutls: I guess a gnutls_x509_crt_deinit() is needed to avoid memory leak. 2010-02-22 19:16:37 +01:00
William Pitcock 3fe59c99c7 gnutls: Add support for certfp gathering. 2010-02-22 11:13:59 -06:00
Jilles Tjoelker 7247337afa Add certfp support to libratbox and ssld. 
This lets a user connect with a client certificate, and
passes the certificate's fingerprint to ircd, which
currently just notices it to the user.

A new ssld->ircd message 'F' is used to pass on the
fingerprint.

This is only for OpenSSL for now, not GNUTLS.
 2010-01-31 19:04:20 +01:00
Valeriy Yatsko 030272f378 Update libratbox. 2008-12-22 12:49:01 +03:00
Valeriy Yatsko 3202e24921 Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 02:49:39 +03:00
Valery Yatsko a9fb3ed0f9 libratbox sync - r25796 2008-07-30 02:41:27 +04:00
Valery V Yatsko c2ac22cc46 sync libratbox - r25599 + charybdis packaging patch 2008-06-25 09:28:30 +04:00
William Pitcock f17c2ef84c Make sure x509_cred and dh_params objects are allocated. 2008-06-10 21:24:49 -05:00
William Pitcock fc8711d128 GNUTLS backend. Untested. 2008-06-10 20:33:15 -05:00