summaryrefslogtreecommitdiffstats
path: root/tdeio/kssl
Commit message (Collapse)AuthorAgeFilesLines
* Replace Qt with TQtMichele Calgaro2023-11-151-11/+11
| | | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit c8ece3630d4d21acaf1749fc2cf660a0463070c3)
* Replace QObject, QWidget, QImage, QPair, QRgb, QColor, QChar, QString, ↵Michele Calgaro2023-09-254-5/+5
| | | | | | | QIODevice with TQ* version Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit 4c0dae60b2fbc60996fc8f4bd29ee6219b869527)
* Replace Q_OBJECT with TQ_OBJECTMichele Calgaro2023-07-203-3/+3
| | | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit 8eb500c4e81229a9853e2f9bac4f39450083f3d7)
* Replace _OBJECT_NAME_STRING defines with actual strings. This relates to the ↵Michele Calgaro2023-07-132-4/+4
| | | | | | | merging of tqtinterface with tqt3. Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit 36c049e135b0cec7cf97b41888860186813df5f0)
* Fix FTBFS caused by previous commitMichele Calgaro2023-06-121-1/+1
| | | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit 9440fb5585daea464012451a5afd358e785826d2)
* SunOS spesific SSL pathesDenis Kozadaev2023-06-121-2/+11
| | | | | Signed-off-by: Denis Kozadaev <denis@dilos.org> (cherry picked from commit ee09921685589497c72a3cb7c11d5c3e1605631d)
* KSSL: Add names for OpenSSL 3.x libraries to SSL libraries search.Slávek Banko2022-08-231-23/+33
| | | | | | | | Use OPENSSL_SHLIB_VERSION for default libraries version. This relates to issue #176. Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* KSSL: fixed detection of correct 'SSL_get_peer_certificate' method. This ↵Michele Calgaro2022-07-031-1/+2
| | | | | | resolves incompatibility with openSSL 3.0. Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* KSSL: Rebuilt local certificates bundleMavridis Philippe2022-02-012-0/+1233
| | | | Signed-off-by: Mavridis Philippe <mavridisf@gmail.com>
* KSSL: Added ISRG root certs for LetsEncryptMavridis Philippe2022-02-014-0/+50
| | | | Signed-off-by: Mavridis Philippe <mavridisf@gmail.com>
* Renaming of files in preparation for code style tools.Michele Calgaro2020-12-0625-31/+31
| | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* Removed code formatting modelines.Michele Calgaro2020-09-271-1/+0
| | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* Fix LibreSSL detection at tdeio/kssl/Matías Fonzo2020-01-181-4/+4
| | | | Signed-off-by: Matías Fonzo <selk@dragora.org>
* Fix missing return values in kopenssl.François Andriot2019-12-041-0/+7
| | | | | Signed-off-by: François Andriot <francois.andriot@free.fr> Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* Fixed type in LIBRESSL usage. This relates to a comment made on issue #28.Michele Calgaro2019-09-191-1/+1
| | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-09-041-2/+2
| | | | | | | | | | The first argument of the OPENSSL_init_ssl and OPENSSL_init_crypto functions must be a 64-bit int, not a 32-bit int, as this caused unpredictable OpenSSL behavior. This resolves bug 3024. Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* Fix remaining brandings in tdelibs and adopt to modern age.Chris2019-07-211-1/+1
| | | | Signed-off-by: Chris <xchrisx@uber.space>
* Added some checks in KSSL (in TDEIO) to correctly recognize LibreSSL (which ↵Mavridis Philippe2019-05-102-3/+4
| | | | | | | | is a fork of OpenSSL 1.0.1b) This resolves issue #28. Signed-off-by: Mavridis Philippe <mfilippos@yandex.ru>
* Use system libdir when searching for dynamically loaded libraries.Slávek Banko2019-02-241-33/+8
| | | | | | This prevents finding an incorrect architecture on multi-arch systems. Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-02-211-2/+24
| | | | Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* KPasswordEdit::password() now returns a TQString instead of a const char *. ↵Michele Calgaro2018-11-271-10/+7
| | | | | | This relates to bug 2961. Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* QT_NO_* -> TQT_NO_* renaming.Michele Calgaro2018-10-171-1/+1
| | | | Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* KSSL: Set hostname in TLSext to enable SNI supportSlávek Banko2017-04-091-0/+6
| | | | Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* KSSL: Use TLS_client_method instead of TLSv1_client_methodSlávek Banko2017-04-091-7/+9
| | | | | | | This enables TLS protocols newer than v1.0 This resolves bug 2764 Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
* Added support for OpenSSL 1.1Slávek Banko2017-01-0112-362/+975
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some KOpenSSLProxy methods have been renamed to be consistent with OpenSSL 1.1 API names and to prevent hidden API changes. To ensure API / ABI compatibility, the original methods are still included but have been marked as deprecated. + SSLv23_client_method => TLS_client_method + X509_STORE_CTX_set_chain => X509_STORE_CTX_set0_untrusted + sk_dup => OPENSSL_sk_dup + sk_free => OPENSSL_sk_free + sk_new => OPENSSL_sk_new + sk_num => OPENSSL_sk_num + sk_pop => OPENSSL_sk_pop + sk_push => OPENSSL_sk_push + sk_value => OPENSSL_sk_value Additional methods have been added to KOpenSSLProxy to support the new OpenSSL 1.1 API functions that provide access to the (now) opaque SSL structures. Compatibility with OpenSSL < 1.1 is handled internally in KOpenSSLProxy. + BIO_get_data + DSA_get0_key + DSA_get0_pqg + EVP_PKEY_base_id + EVP_PKEY_get0_DSA + EVP_PKEY_get0_RSA + RSA_get0_key + X509_CRL_get0_lastUpdate + X509_CRL_get0_nextUpdate + X509_OBJECT_get0_X509 + X509_OBJECT_get_type + X509_STORE_CTX_get_current_cert + X509_STORE_CTX_get_error + X509_STORE_CTX_get_error_depth + X509_STORE_CTX_set_error + X509_STORE_get0_objects + X509_STORE_set_verify_cb + X509_get0_signature + X509_getm_notAfter + X509_getm_notBefore + X509_subject_name_cmp + _SSL_session_reused + _SSL_set_options Method "KSSL::setSession" has been renamed to "KSSL::takeSession" and its functionality has changed: the session is now transferred from the argument object to the invoked object. Since it is only used internally in TDE and the functionality is different, the method with the previous name has not been preserved. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
* Parse GENERALIZEDTIME ASN structuresTimothy Pearson2016-09-061-12/+21
| | | | This fixes certificate dates beyond year 2049.
* Fix crash on KSSLCertificate deallocation when a CRL is held in the ↵Timothy Pearson2015-10-231-0/+2
| | | | KSSLCertificate object
* Fix memory leak when deleting a KSSLCertificate that holds a CRLTimothy Pearson2015-10-233-1/+17
|
* Add initial CRL support to KSSLCertificateTimothy Pearson2015-09-034-4/+88
|
* Fix unused variable compiler warningsTimothy Pearson2015-09-031-5/+4
|
* Fix compiler warning regarding missing bracesTimothy Pearson2015-09-031-18/+22
|
* Check if SSL symbols exist before attempting to load themTimothy Pearson2013-11-101-171/+174
| | | | This relates to Bug 1655
* Rename KWallet to TDEWalletTimothy Pearson2013-08-271-2/+2
|
* Fix security issue when displaying certificate informations (CVE-2011-3365)Francois Andriot2013-06-011-6/+15
|
* Rename additional header files to avoid conflicts with KDE4Timothy Pearson2013-02-1510-18/+18
|
* Rename common header files for consistency with class renamingTimothy Pearson2013-02-143-3/+3
|
* Rename KLocale to enhance compatibility with KDE4Timothy Pearson2013-02-011-2/+2
|
* Rename KStandard for enhanced compatibility with KDE4Timothy Pearson2013-01-313-4/+4
|
* Rename a number of libraries and executables to avoid conflicts with KDE4Timothy Pearson2013-01-27126-0/+17878