e83e791a7a
Do not attempt to set an SNI hostname on a server
2016-03-03 13:58:31 -08:00
62d1425971
Add SNI support to Factor
...
Fixes #1527
2016-03-03 09:48:20 -08:00
bfd656df17
Dump everything before TLSv1
...
All versions of SSL are deprecated and have major security issues. Just
kill the whole thing. If you want to deliberately expose yourself to
POODLE, you can do it on your own time.
2016-03-01 19:43:06 -05:00
3f07cbd194
io.sockets.secure.openssl: Nuke RSA.
2016-03-01 14:02:47 -08:00
12af22f3ee
openssl: only set RSA keys if required to do so
...
Modern OpenSSL and LibreSSL both do not require SSL_CTX_set_tmp_rsa to
be called unless SSL_CTX_need_tmp_rsa returns true, and LibreSSL and
OpenSSL compiled with deprecation warnings both will fail if this
happens. This commit resolves that.
With this change, it becomes possible to use LibreSSL in place of
OpenSSL with Factor.
2016-02-23 08:11:04 -05:00
8073c8a77e
Update OpenSSL calls to work with LibreSSL/newer OpenSSL
...
RSA_generate_key has been deprecated, and is not available in either
LibreSSL or newer OpenSSL that are not compiled with deprecated call
support. This commit switches to the still-supported
RSA_generate_key_ex, which is supported by both libraries.
Note that this is still insufficient for Factor to work under LibreSSL,
though we now get a call further than before.
2016-02-22 14:21:39 -08:00
69d5a3a276
io.sockets: remove send-n-times, broadcast-n-times.
2016-02-20 18:37:08 -08:00
e4347f5254
io.sockets: Add more utility words for working with udp.
2016-02-19 19:21:13 -08:00
0a3b4b4872
io.sockets.secure.debug: use <test-secure-config> in some places
...
the word can be reused in a few places when setting up ssl. it removes
some duplicated code
2015-10-04 01:25:11 +02:00
e477f6996f
Fix comments to be ! not #!.
2015-09-08 16:15:10 -07:00
ceb75057da
change ERROR: words from throw-foo back to foo.
2015-08-13 16:13:05 -07:00
b6be8685c3
basis: ERROR: changes.
2015-08-13 03:20:39 -07:00
5eec781b40
use ``if*`` instead of ``dup [ ] [ drop ] if``.
2015-07-20 22:24:30 -07:00
5d6632514a
io.sockets: make host-name a hook and throw correct errors.
2015-07-16 13:15:14 -07:00
892c62e1dc
factor: second stab at [ ] [ ] unit-test -> { } [ ] unit-test
2015-07-03 09:39:59 -07:00
59f3b1ea57
Revert "factor: rename [ ] [ ] unit-test -> { } [ ] unit-test using a refactoring tool!"
...
Needs a bit more work.
This reverts commit 7e54cc2824
2015-07-02 13:47:06 -07:00
7e54cc2824
factor: rename [ ] [ ] unit-test -> { } [ ] unit-test using a refactoring tool!
2015-07-02 11:36:08 -07:00
999aa7c897
factor: clean up spaces in -tests files
2015-07-02 10:34:01 -07:00
e3cb325040
factor: clean up whitespace in -docs files
2015-07-02 10:31:22 -07:00
352e5de16a
core, basis, extra: Remove DOS line endings from files.
...
Remove whitespace from end of lines.
Add a newline to the end of each file.
2015-06-29 17:25:40 -07:00
b366a06c41
use reject instead of [ ... not ] filter.
2015-05-12 18:50:34 -07:00
7badef25ce
libc: reduce code duplication.
2014-11-21 10:19:12 -08:00
39093727b1
libc: rename (io-error) to throw-errno.
2014-11-21 09:29:45 -08:00
3f362dfc99
destructors: change check-disposed not to drop the disposable.
2014-11-21 08:19:05 -08:00
45bd145596
io: use errno case instead of cond.
2014-11-20 19:46:14 -08:00
831ec24b14
io.sockets.windows: Spacing cleanup.
2014-11-18 14:06:24 -08:00
cab001234a
io.sockets.windows: Fix unit test--recover leaves socket on stack, nip
...
it.
2014-11-18 14:02:44 -08:00
f79d61060e
io.buffers: cleanup interface a bit.
2014-11-16 18:54:24 -08:00
bbab41ade4
io.sockets.windows.tests: plugs the socket leaks ( #1104 )
2014-11-12 19:32:44 -08:00
8033741135
io/ui: slim down the USE: list
2014-10-24 17:33:27 -07:00
8c58b99b1d
Revert "openssl: define a startup-hook so that openssl initializes automatically"
...
This reverts commit 981ea313a0
2014-08-05 12:14:53 -07:00
6ea98afc99
io.sockets.secure.openssl: We don't care what the error is as long as it fails.
2014-07-09 22:32:32 -07:00
377180baf6
io.sockets.secure.windows: Fix using, remove duplication.
2014-07-07 21:44:40 -05:00
59c5373263
io.sockets.secure: Another fix for cross-platform openssl.
2014-07-07 18:45:22 -07:00
075a86f5d9
io.sockets.secure: Move some code from secure.unix to secure.openssl. Add a hook for finding sockets to upgrade.
2014-07-07 18:34:41 -07:00
981ea313a0
openssl: define a startup-hook so that openssl initializes automatically
2014-06-06 14:12:09 -07:00
50ca01a4d8
io.sockets.windows: Fix using.
2014-04-23 20:07:32 -07:00
e3323818cc
io.sockets.secure.openssl: disable tests for now.
2014-04-22 08:16:53 -07:00
06912460b4
io.sockets.secure.openssl: use must-fail-with.
2014-04-22 07:41:23 -07:00
6f87c2afc7
io.sockets: use must-fail-with for resolve-host errors.
2014-04-20 10:02:04 -07:00
24cb41aa13
io.sockets: don't need "0 or" for addrinfo.
2014-04-20 09:30:03 -07:00
e1206d5ef1
io.sockets: add word addrinfo-error to signal host lookup failures
...
If the getaddrinfo call fails, and you want to handle that failure in
a structured way, then you need a designated error type to know what
went wrong.
2014-04-20 09:29:31 -07:00
516ffcc311
io.sockets.secure.openssl.tests: more and better SSL_connect tests
...
Better error handling so it should be easier to see why the tests fail
on the build server (#1036 ).
2014-04-18 10:06:46 -07:00
df3417c5b7
io.sockets.secure.openssl: more docs
2014-04-18 10:06:46 -07:00
e473ef628d
io.sockets.secure.openssl: big refactoring, all error handling merged into one check-ssl-error word
2014-04-18 10:06:46 -07:00
a3eba146fd
io.sockets: example for the with-socket function
2014-04-14 08:42:09 -07:00
b79bd45908
io.sockets: example for resolve-host
2014-04-14 08:42:08 -07:00
d123f589f7
io.sockets.secure.openssl: Check error code in unit test.
2014-04-08 12:08:58 -07:00
a02e8e3cda
io.sockets.secure.openssl: Fix using list.
2014-04-02 23:11:52 -05:00
ee19a97869
io.sockets.windows: wrap ioctlsocket and related constants to enable
...
setting sockets in non-blocking mode
2014-04-02 16:50:20 -05:00
Benjamin Pollack
Doug Coleman
Björn Lindqvist
John Benediktsson