summaryrefslogtreecommitdiff
path: root/src/modules/extra
AgeCommit message (Collapse)Author
2016-08-17m_sqlite3 Fix possible memory leak when opening a database failsAttila Molnar
2016-07-22m_ssl_openssl Verify DH params being non-NULL before setting it on the contextAttila Molnar
Fixes issue reported by @m4rkw on IRC
2016-06-21m_ssl_gnutls, m_ssl_openssl After a read schedule another read if data ↵Attila Molnar
remains in the buffer of the SSL library
2016-02-11Update m_ssl_gnutls to use libgnutls-30 for gnutls 3.4Adam
2015-05-10m_ssl_gnutls Hold users in pre-registration state until the handshake is ↵Attila Molnar
completed
2014-10-26Remove some dead code found by CoverityAttila Molnar
2014-10-25Use gnutls_rnd instead of gcry_randomize on newer GnuTLS versions.Peter Powell
This is a modified version of 690c372. Fixes #905.
2014-10-20m_ssl_openssl Add compile time option that allows disabling renegotiationsAttila Molnar
2014-10-20m_ssl_openssl Add compile time option to enable ECDHAttila Molnar
2014-10-20m_ssl_gnutls Add compile time option for allowing sha256 certificate ↵Attila Molnar
fingerprints
2014-10-16Initialize all fields of issl_session on module load in SSL modulesAttila Molnar
2014-10-16Add interface to SSL modules that allows other modules to obtain the raw SSL ↵Attila Molnar
session of a socket
2014-10-16m_ssl_gnutls Refcount GnuTLS objects, free them when they are no longer in ↵Attila Molnar
use instead of at /rehash ssl time
2014-10-15m_ssl_openssl Fix debug messageAttila Molnar
2014-10-15m_ssl_openssl Reset data_to_write for new sessionsAttila Molnar
2014-10-15m_ssl_openssl Free the ssl_cert object as soon as the session is closed ↵Attila Molnar
instead of waiting for the next VerifyCertificate() or new connection
2014-10-15m_ssl_openssl Remove bogus errno assignment from CloseSession()Attila Molnar
2014-10-14m_ssl_openssl Return an error from the IOHook read and write functions if ↵Attila Molnar
the handshake returns 0 The meaning of a 0 return value quoted from the manual: The TLS/SSL handshake was not successful but was shut down controlled and by the specifications of the TLS/SSL protocol.
2014-10-14m_ssl_openssl Add user-friendly config options for setting a few OpenSSL ↵Attila Molnar
context options
2014-10-10m_ssl_openssl Allow configuring raw OpenSSL context optionsAttila Molnar
2014-10-10m_ssl_openssl Disable session caching and session ticketsAttila Molnar
2014-10-10m_ssl_openssl Enable single (EC)DH use and disable SSL v2Attila Molnar
Options enabled: - SSL_OP_NO_SSLv2 - SSL_OP_SINGLE_DH_USE - SSL_OP_SINGLE_ECDH_USE (if it exists) Partial backport of #856 by @jvehent
2014-10-08m_ssl_openssl Clear the error queue before every SSL_* callAttila Molnar
2014-10-03m_ssl_gnutls Re-set DH params when the gnutls_certificate_credentials_t ↵Attila Molnar
struct is reallocated
2014-09-02m_sqlite3 Fix cleanup of unsuccessful database connectionsAttila Molnar
2014-07-24Make sure the DN strings obtained from the SSL mods are always validAttila Molnar
2014-04-13Change Windows libraries to be dynamically linkedAdam
2014-04-13m_ssl_openssl Avoid Applink on Windows by calling PEM_read_bio_DHparams() ↵Attila Molnar
instead of PEM_read_DHparams()
2014-01-26m_ssl_openssl Fix memory leaks on /rehash ssl, unload and in VerifyCertificate()Attila Molnar
2014-01-24Set a session id on our server ssl context in m_ssl_openssl. It is required ↵Adam
for some clients which try to restore SSL sessions.
2013-08-13m_ssl_gnutls Fix feature testing and cipher suite related errors on older ↵attilamolnar
GnuTLS versions Use the (old) LIBGNUTLS_VERSION_* defines as a fallback when GNUTLS_VERSION_* is unavailable Fixes #595 reported by @rhylan
2013-07-16m_ssl_openssl Fix inverted check that prevented certificates from being ↵attilamolnar
recognized as trusted
2013-06-05Remove unnecessary string copies and dead codeattilamolnar
2013-06-04m_pgsql Same fix as 0e09600a431d0e0f2cde6457e088d84caf6d6f5dattilamolnar
2013-06-01m_mysql Fix escaping strings longer than MAXBUF/2attilamolnar
Quotes from the documentation: "You must allocate the to buffer to be at least length*2+1 bytes long. (In the worst case, each character may need to be encoded as using two bytes, and you need room for the terminating null byte.)" "The return value is the length of the encoded string, not including the terminating null character." http://dev.mysql.com/doc/refman/5.6/en/mysql-real-escape-string.html
2013-05-22m_mysql Fix crash on rehash when the database tags have been changed in the ↵attilamolnar
config
2013-05-18m_geoip Set cc in OnSetConnectClass to the newly created string if it was NULLattilamolnar
2013-05-02m_ssl_gnutls Call gnutls_transport_set_errno() on Windows onlyattilamolnar
2013-05-02Fix gnutls (again) on Windows by using gnutls_transport_set_errno()Adam
2013-04-24m_ssl_gnutls Add ability to load DH params from fileattilamolnar
This greatly decreases the load time because the DH parameters no longer have to be (re)generated each time the module is loaded
2013-04-16Fix m_ssl_gnutls and perhaps some other things on Windows by recognizing ↵Adam
WSAEWOULDBLOCK
2013-03-29m_ldapoper Make the module actually workattilamolnar
Fixes #439 reported by @rhylan
2013-03-29m_ldapoper Fix memory leakattilamolnar
See 1813369adecc1efc9812e90c40c21dc32e4965c9 for details
2013-03-15m_ssl_openssl Make it clear that a CA file is not mandatoryattilamolnar
2013-02-17m_ssl_gnutls Fix null pointer dereference in case gnutls_xxx_get_name() ↵attilamolnar
returns NULL
2013-01-28m_ssl_gnutls Fix build with GnuTLS 1.xattilamolnar
Fixes #409 reported by @SaberUK
2012-12-25m_ldapoper Fix typo spotted by @lordsith49attilamolnar
Fixes #392
2012-12-17Fixed m_ssl_gnutls build on Windows; gnutls.h uses ssize_t which is defined ↵Adam
in gcrypt.h
2012-12-04Unbreak m_geoipattilamolnar
2012-12-02Register all commands, modes and extensions using AddService()attilamolnar
AddService() throws an exception if an item cannot be registered, modules no longer need to worry about AddMode() etc. failing
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-19 11:39:30 +0000