- Feb 21, 2001
-
-
Geoff Thorpe authored
-
Geoff Thorpe authored
of session IDs. Namely, passing "-id_prefix <text>" will set a generate_session_id() callback that generates session IDs as random data with <text> block-copied over the top of the start of the ID. This can be viewed by watching the session ID s_client's output when it connects. This is mostly useful for testing any SSL/TLS code (eg. proxies) that wish to deal with multiple servers, when each of which might be generating a unique range of session IDs (eg. with a certain prefix).
-
Geoff Thorpe authored
SSL/TLS session IDs in a server. According to RFC2246, the session ID is an arbitrary value chosen by the server. It can be useful to have some control over this "arbitrary value" so as to choose it in ways that can aid in things like external session caching and balancing (eg. clustering). The default session ID generation is to fill the ID with random data. The callback used by default is built in to ssl_sess.c, but registering a callback in an SSL_CTX or in a particular SSL overrides this. BTW: SSL callbacks will override SSL_CTX callbacks, and a new SSL structure inherits any callback set in its 'parent' SSL_CTX. The header comments describe how this mechanism ticks, and source code comments describe (hopefully) why it ticks the way it does. Man pages are on the way ... [NB: Lutz was also hacking away and helping me to figure out how best to do this.]
-
Geoff Thorpe authored
-
Richard Levitte authored
-
Richard Levitte authored
form '#if defined(...) || defined(...) || ...' and '#if !defined(...) && !defined(...) && ...'. This also avoids the growing number of special cases it was previously handling (some of them wrongly).
-
Richard Levitte authored
-
- Feb 20, 2001
-
-
Richard Levitte authored
-
Richard Levitte authored
example) are declared with some extra linkage information. This generates a warning when using the function name as a value to a regular function pointer with the "correct" definition of the function. Therefore, use a macro to cast the appropriate function on VMS.
-
Richard Levitte authored
strings.h according to X/Open.
-
Richard Levitte authored
was made in a certain sequence. This change restores the earlier "chain of command".
-
Richard Levitte authored
-
Geoff Thorpe authored
callbacks, and their prototypes were consistent as they were. These casts need reversing. Also, I personally find line breaks during parameter lists (ie a line ending in a comma) easier to read at a glance than line breaks at the end of a function call and before a dereference on the return value (ie a line ending in a closed-bracket followed by a line starting with "->").
-
Ulf Möller authored
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
Dr. Stephen Henson authored
-
Richard Levitte authored
OCSP_CRLID_new and OCSP_crlID_new clash on case-insensitive systems.
-
Richard Levitte authored
-
Richard Levitte authored
get a chance to be defined. Make a batter file name translator (uhm, no, that's not the finished variant :-)).
-
Richard Levitte authored
get a chance to be defined.
-
Richard Levitte authored
correctly defined.
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
lots of silly warnings from the compiler.
-
Bodo Möller authored
-
Richard Levitte authored
-
Richard Levitte authored
get a chance to be defined.
-
Richard Levitte authored
-
Richard Levitte authored
variants of stdio.h that define NULL in such a way that it's "unsafe" to use for function pointer casting.
-
Bodo Möller authored
-
Richard Levitte authored
missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS.
-
Bodo Möller authored
Mention BN_[pseudo_]rand with top=-1 in CHANGES.
-
Richard Levitte authored
-
Richard Levitte authored
-
Ulf Möller authored
-
Ulf Möller authored
-
Ulf Möller authored
-
- Feb 19, 2001
-
-
Ulf Möller authored
-