Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-10-16 | Initialize all fields of issl_session on module load in SSL modules | Attila Molnar | |
2014-10-16 | Add interface to SSL modules that allows other modules to obtain the raw SSL ↵ | Attila Molnar | |
session of a socket | |||
2014-10-16 | m_ssl_gnutls Refcount GnuTLS objects, free them when they are no longer in ↵ | Attila Molnar | |
use instead of at /rehash ssl time | |||
2014-10-15 | m_ssl_openssl Fix debug message | Attila Molnar | |
2014-10-15 | m_ssl_openssl Reset data_to_write for new sessions | Attila Molnar | |
2014-10-15 | m_ssl_openssl Free the ssl_cert object as soon as the session is closed ↵ | Attila Molnar | |
instead of waiting for the next VerifyCertificate() or new connection | |||
2014-10-15 | m_ssl_openssl Remove bogus errno assignment from CloseSession() | Attila Molnar | |
2014-10-14 | m_ssl_openssl Return an error from the IOHook read and write functions if ↵ | Attila Molnar | |
the handshake returns 0 The meaning of a 0 return value quoted from the manual: The TLS/SSL handshake was not successful but was shut down controlled and by the specifications of the TLS/SSL protocol. | |||
2014-10-14 | m_ssl_openssl Add user-friendly config options for setting a few OpenSSL ↵ | Attila Molnar | |
context options | |||
2014-10-10 | m_ssl_openssl Allow configuring raw OpenSSL context options | Attila Molnar | |
2014-10-10 | m_ssl_openssl Disable session caching and session tickets | Attila Molnar | |
2014-10-10 | m_ssl_openssl Enable single (EC)DH use and disable SSL v2 | Attila Molnar | |
Options enabled: - SSL_OP_NO_SSLv2 - SSL_OP_SINGLE_DH_USE - SSL_OP_SINGLE_ECDH_USE (if it exists) Partial backport of #856 by @jvehent | |||
2014-10-08 | m_ssl_openssl Clear the error queue before every SSL_* call | Attila Molnar | |
2014-10-03 | m_ssl_gnutls Re-set DH params when the gnutls_certificate_credentials_t ↵ | Attila Molnar | |
struct is reallocated | |||
2014-09-02 | m_sqlite3 Fix cleanup of unsuccessful database connections | Attila Molnar | |
2014-07-24 | Make sure the DN strings obtained from the SSL mods are always valid | Attila Molnar | |
2014-04-13 | Change Windows libraries to be dynamically linked | Adam | |
2014-04-13 | m_ssl_openssl Avoid Applink on Windows by calling PEM_read_bio_DHparams() ↵ | Attila Molnar | |
instead of PEM_read_DHparams() | |||
2014-01-26 | m_ssl_openssl Fix memory leaks on /rehash ssl, unload and in VerifyCertificate() | Attila Molnar | |
2014-01-24 | Set a session id on our server ssl context in m_ssl_openssl. It is required ↵ | Adam | |
for some clients which try to restore SSL sessions. | |||
2013-08-13 | m_ssl_gnutls Fix feature testing and cipher suite related errors on older ↵ | attilamolnar | |
GnuTLS versions Use the (old) LIBGNUTLS_VERSION_* defines as a fallback when GNUTLS_VERSION_* is unavailable Fixes #595 reported by @rhylan | |||
2013-07-16 | m_ssl_openssl Fix inverted check that prevented certificates from being ↵ | attilamolnar | |
recognized as trusted | |||
2013-06-05 | Remove unnecessary string copies and dead code | attilamolnar | |
2013-06-04 | m_pgsql Same fix as 0e09600a431d0e0f2cde6457e088d84caf6d6f5d | attilamolnar | |
2013-06-01 | m_mysql Fix escaping strings longer than MAXBUF/2 | attilamolnar | |
Quotes from the documentation: "You must allocate the to buffer to be at least length*2+1 bytes long. (In the worst case, each character may need to be encoded as using two bytes, and you need room for the terminating null byte.)" "The return value is the length of the encoded string, not including the terminating null character." http://dev.mysql.com/doc/refman/5.6/en/mysql-real-escape-string.html | |||
2013-05-22 | m_mysql Fix crash on rehash when the database tags have been changed in the ↵ | attilamolnar | |
config | |||
2013-05-18 | m_geoip Set cc in OnSetConnectClass to the newly created string if it was NULL | attilamolnar | |
2013-05-02 | m_ssl_gnutls Call gnutls_transport_set_errno() on Windows only | attilamolnar | |
2013-05-02 | Fix gnutls (again) on Windows by using gnutls_transport_set_errno() | Adam | |
2013-04-24 | m_ssl_gnutls Add ability to load DH params from file | attilamolnar | |
This greatly decreases the load time because the DH parameters no longer have to be (re)generated each time the module is loaded | |||
2013-04-16 | Fix m_ssl_gnutls and perhaps some other things on Windows by recognizing ↵ | Adam | |
WSAEWOULDBLOCK | |||
2013-03-29 | m_ldapoper Make the module actually work | attilamolnar | |
Fixes #439 reported by @rhylan | |||
2013-03-29 | m_ldapoper Fix memory leak | attilamolnar | |
See 1813369adecc1efc9812e90c40c21dc32e4965c9 for details | |||
2013-03-15 | m_ssl_openssl Make it clear that a CA file is not mandatory | attilamolnar | |
2013-02-17 | m_ssl_gnutls Fix null pointer dereference in case gnutls_xxx_get_name() ↵ | attilamolnar | |
returns NULL | |||
2013-01-28 | m_ssl_gnutls Fix build with GnuTLS 1.x | attilamolnar | |
Fixes #409 reported by @SaberUK | |||
2012-12-25 | m_ldapoper Fix typo spotted by @lordsith49 | attilamolnar | |
Fixes #392 | |||
2012-12-17 | Fixed m_ssl_gnutls build on Windows; gnutls.h uses ssize_t which is defined ↵ | Adam | |
in gcrypt.h | |||
2012-12-04 | Unbreak m_geoip | attilamolnar | |
2012-12-02 | Register all commands, modes and extensions using AddService() | attilamolnar | |
AddService() throws an exception if an item cannot be registered, modules no longer need to worry about AddMode() etc. failing | |||
2012-12-02 | Dynamically determine the size of the eventlist[] passed to Attach() | attilamolnar | |
m_sqlauth was attached to I_OnUserDisconnect but didn't provide a handler for it, remove | |||
2012-12-02 | Attach to events and register services in init() | attilamolnar | |
2012-11-29 | Add a typedef for LocalUserList | attilamolnar | |
2012-11-29 | ldapauth: register both extensions | Robin Burchell | |
2012-11-29 | ldapauth: RAII returned ldap message. | Robin Burchell | |
This ensures it is always freed, and coincidentally fixes freeing in the case of LDAP errors. | |||
2012-11-29 | ldapauth: fix memory leak | Robin Burchell | |
ldap_get_dn() results need to be freed. Use a RAII wrapper to do this. Original code by Attila Molnar | |||
2012-11-29 | ldapauth: Allow setting virtual hosts on identification with m_ldapauth. | Robin Burchell | |
<ldapauth:host>, when set, will be applied to users identifying with ldapauth. The host can also take formatters from fields set on the DN of the user. | |||
2012-11-29 | ldapauth: Add missing verbose logging to required attributes. | Robin Burchell | |
2012-11-29 | ldapauth: Rework required attributes code to use only one exit path. | Robin Burchell | |
This makes the upcoming patch to add optional virtual host support cleaner. | |||
2012-11-28 | Change empty string assignments to .clear() or remove them entirely | attilamolnar | |
Part 2 of ba5c0db795824c3fc1ad48ce332d7bdc440cb77f |