338 check-ins using file tests/keytest1.tcl version 897f9f74ad
2024-05-28
| ||
15:27 | Smarter way to handle typecasting in Tls_Free() Closed-Leaf check-in: 402b6db186 user: jan.nijtmans tags: nijtmans | |
15:00 | Fix Tls_Error() signature check-in: 53b28536f9 user: jan.nijtmans tags: nijtmans | |
14:44 | Fix tlsUuid.h usage and openssl dll installation in makefile.vc check-in: 138a0b52c8 user: jan.nijtmans tags: nijtmans | |
2024-05-27
| ||
21:50 | re-generate configure check-in: ebf674a714 user: jan.nijtmans tags: nijtmans | |
2024-03-12
| ||
14:21 | More simple code formatting ... no change in functionality check-in: f69776b946 user: jan.nijtmans tags: nijtmans | |
2024-03-05
| ||
13:57 | Update to latest acinclude.m4 check-in: cbbb604ed3 user: jan.nijtmans tags: nijtmans | |
2024-02-27
| ||
14:40 | Add missing acinclude.m4 and aclocal.m4 check-in: 0c8191a479 user: jan.nijtmans tags: nijtmans | |
2024-02-24
| ||
22:07 | Eliminate some deprecated function usages. Disable ssl3 by default too (just as ssl2) check-in: 3090c676df user: jan.nijtmans tags: nijtmans | |
21:07 | Improve error-handling, e.g. using Tcl_SetErrorCode() check-in: e8f554a732 user: jan.nijtmans tags: nijtmans | |
16:59 | No need for LAPPEND_LONG, use LAPPEND_INT check-in: 4f6f9b9874 user: jan.nijtmans tags: nijtmans | |
2024-02-23
| ||
22:57 | Use LAPPEND_STR() and friends check-in: 6e95e7672d user: jan.nijtmans tags: nijtmans | |
21:27 | REASON() -> GET_ERR_REASON(). Add some more utilities to tlsInt.h (not used yet) check-in: 42f5f29486 user: jan.nijtmans tags: nijtmans | |
15:25 | Fix [bb7085cfdc]: Test tlsIO-8.1 breaks on FreeBSD check-in: 5128841292 user: jan.nijtmans tags: nijtmans | |
14:48 | Merge "dh" branch from: [https://chiselapp.com/user/bohagan/repository/TCLTLS/timeline?r=dh]. The "gen_dh_params" script is no longer necessary check-in: 6aeb4fa6ee user: jan.nijtmans tags: nijtmans | |
13:08 | Add "tls::build-info" command check-in: 355a10cf0e user: jan.nijtmans tags: nijtmans | |
11:57 | Added set option support. Source: https://www.androwish.org/home/info/1af65d23b6962476 check-in: baec6798d6 user: jan.nijtmans tags: nijtmans | |
11:00 | Move tls.htm -> doc/tls.html. Start conversion to HTML5 check-in: f4edd2b33b user: jan.nijtmans tags: nijtmans | |
10:19 | Fix ciphers.test testcases for OpenSSL 3.0. Remove files no longer needed check-in: b8d4646795 user: jan.nijtmans tags: nijtmans | |
09:13 | Code formatting. TlsCloseProc is no longer needed in Tcl 9. check-in: 2382e3457d user: jan.nijtmans tags: nijtmans | |
2024-02-22
| ||
20:02 | No need to define Tcl_Size in tlsInt.h: already handled by TEA check-in: a66c2b01b1 user: jan.nijtmans tags: nijtmans | |
17:51 | Forward declaration no longer necessary check-in: 93c001e9c4 user: jan.nijtmans tags: nijtmans | |
17:40 | Fix [006bd0c74e]: PATCH: BIO_CTRL_PUSH not handled. Also add some changes from androwish: [https://www.androwish.org/home/info/982ebf9d31a60440] check-in: 1b8c76f783 user: jan.nijtmans tags: nijtmans | |
13:49 | A lot of formatting, no change in functionality. check-in: 46ffe75283 user: jan.nijtmans tags: nijtmans | |
07:56 | Applied patch to add OpenSSL3 KTLS trivial processing. Description: Patch adds trivial processing for BIO_CTRL_GET_KTLS_SEND and BIO_CTRL_GET_KTLS_RECV control commands to make tcltls working with OpenSSL 3.0. See also: - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1006587 - https://bugzilla.redhat.com/show_bug.cgi?id=2088363 Source: https://sources.debian.org/src/tcltls/1.7.22-3/debian/patches/openssl3.patch check-in: 0f781794ab user: jan.nijtmans tags: nijtmans | |
07:52 | TlsIO.test Hostname Fix. Patch by Sergei Golovan (Debian) to make the client socket connect to localhost instead of [info hostname] to prevent intermittent test failures inside mock(1). Also, account for a change in error message "unsupported protocol" instead of "wrong version number". -- Sergei Golovan <email address hidden> Thu, 18 Jul 2019 15:00:18 +0300 Source: https://sources.debian.org/src/tcltls/1.7.22-3/debian/patches/hostname-tests.patch check-in: 913359443b user: jan.nijtmans tags: nijtmans | |
07:35 | Patch by Sergei Golovan (Debian) to replace 1024 bit certificates with 2048 bit ones because the new OpenSSL refuses to load small keys ("ee key too small"). Source: https://sources.debian.org/src/tcltls/1.7.22-3/debian/patches/certs-tests.patch check-in: fecca6f35e user: jan.nijtmans tags: nijtmans | |
2024-02-21
| ||
23:10 | Few more tweaks check-in: 195f14da6c user: jan.nijtmans tags: nijtmans | |
22:57 | Stop support for OpenSSL < v1.1.1 check-in: f2101dcc16 user: jan.nijtmans tags: nijtmans | |
2024-02-20
| ||
20:57 | "make install" now works on MacOS too (uses .dylib in stead of .so, no "doc" yet) check-in: 6778f7f147 user: jan.nijtmans tags: nijtmans | |
16:18 | Don't depend on Tcl 8.3 ..... check-in: c4ff285b07 user: jan.nijtmans tags: nijtmans | |
16:09 | Add missing win/nmakehlp.c. Typo in tclOpts.h check-in: e2c4b7ced2 user: jan.nijtmans tags: nijtmans | |
15:53 | Win README: I think, it is the x64 native prompt, as 64 bit is targeted. check-in: db3bebd670 user: oehhar tags: nijtmans | |
15:35 | We don't support SSL3 on Windows (apparently), so do the same for UNIX check-in: 79c94fdb6b user: jan.nijtmans tags: nijtmans | |
15:27 | Take over more TEA changes from: [https://chiselapp.com/user/bohagan/repository/TCLTLS/index] check-in: 28faaabb20 user: jan.nijtmans tags: nijtmans | |
14:58 | Move all *.c and *.h files to the /generic/ directory. Update win/makefile.vc from [https://chiselapp.com/user/bohagan/repository/TCLTLS/index] check-in: b921cb3e6e user: jan.nijtmans tags: nijtmans | |
13:30 | Use (char *)NULL as sentinel in Tcl_AppendResult() check-in: ab6b683a51 user: jan.nijtmans tags: nijtmans | |
13:12 | Merge makefile.vc improvements from Kevin, and his README.txt check-in: 66551cd602 user: jan.nijtmans tags: nijtmans | |
13:10 | Merge 1.8 Closed-Leaf check-in: 08c2b4ad63 user: jan.nijtmans tags: codebykevin, nijtmans | |
13:00 | Make all C-/H-files Tcl 9-ready, with all kinds of code-cleanup. Build environment not handled yet. check-in: ceb72b0012 user: jan.nijtmans tags: nijtmans | |
2024-02-19
| ||
21:55 | Less compiler warnings check-in: 0cfe6dfb3c user: jan.nijtmans tags: nijtmans | |
20:16 | Merge tls-1.7 check-in: 8e0be2f6e9 user: jan.nijtmans tags: nijtmans | |
19:23 | No need to allocate a Tcl_ChannelType Leaf check-in: 7af51313f8 user: jan.nijtmans tags: tls-1.7 | |
2024-02-16
| ||
14:03 | One more check-in: 93eb73fd80 user: jan.nijtmans tags: tls-1.7 | |
13:54 | Merge 1.7 check-in: b8b1970122 user: jan.nijtmans tags: nijtmans | |
13:53 | Remove all end-of-line spacing check-in: 9345b54eaa user: jan.nijtmans tags: tls-1.7 | |
2024-02-12
| ||
10:39 | Merge 1.8 check-in: 3824e80ab5 user: jan.nijtmans tags: codebykevin, nijtmans | |
10:32 | Merge 1.7. Forget about Tcl < 8.6 for this branch check-in: 01caf8a372 user: jan.nijtmans tags: nijtmans | |
10:22 | Tcl_GetStringFromObj() -> Tcl_GetString(). Update ChangeLog/README.txt check-in: 663996a17b user: jan.nijtmans tags: tls-1.7 | |
2024-01-25
| ||
22:56 | Extracted from https://www.codebykevin.com/fossil.cgi/tcltls check-in: 737ebb9576 user: jan.nijtmans tags: codebykevin, nijtmans | |
22:41 | Add some newer TEA files, not enough to build yet check-in: 6a87953d33 user: jan.nijtmans tags: nijtmans | |
22:22 | Somewhat better TEA support, not complete yet. Make this the continuation of the tls-1.7 branch. main/trunk will continue with 1.8.0 check-in: b7b0bd5a8f user: jan.nijtmans tags: tls-1.7 | |
2024-01-24
| ||
14:35 | First changes needed for Tcl 9.0 check-in: 3057d6e2e0 user: jan.nijtmans tags: nijtmans | |
2023-03-04
| ||
19:33 | Casting clean-ups to fix compiler warnings. Source: https://sourceforge.net/p/tls/patches/11/ and https://sourceforge.net/p/tls/patches/_discuss/thread/988300e7/b6bb/attachment/patch-warnings check-in: 227a7d7d10 user: bohagan tags: trunk | |
18:54 | Added names of unavailable protocols to error messages so its easier to understand. Source: https://sourceforge.net/p/tls/patches/14/ File: protocols.patch check-in: 6a3f83340d user: bohagan tags: trunk | |
17:58 | Minor updates to catch NULL channels. Source: https://www.androwish.org/home/info/982ebf9d31a60440 [982ebf9d31] check-in: 270bf9327b user: bohagan tags: trunk | |
16:14 | Merge feature-dump-keys into main check-in: bed86d3303 user: bohagan tags: trunk | |
15:44 | Merge add-support-alpn into main check-in: 4b4daeada4 user: bohagan tags: trunk | |
15:41 | Added doc update Closed-Leaf check-in: 2a9db3009c user: bohagan tags: add-support-alpn | |
14:51 | Added doc update Closed-Leaf check-in: e0f002ecb1 user: bohagan tags: feature-dump-keys | |
2022-05-30
| ||
16:14 | Bug [8de7f5aa07]: Add support for dumping SSL keys check-in: 2c773b9a38 user: schelte tags: feature-dump-keys | |
16:12 | Create new branch named "feature-dump-keys" check-in: f6b9f887ef user: rkeene tags: feature-dump-keys | |
16:11 | Fixed broken merge check-in: 352cf6c71b user: rkeene tags: add-support-alpn | |
16:08 | Bug [e1f9a21c67]: Start of ALPN support check-in: 07bafe02de user: schelte tags: add-support-alpn | |
16:07 | Create new branch named "add-support-alpn" check-in: 283dc6f133 user: rkeene tags: add-support-alpn | |
2021-01-14
| ||
12:56 | Ticket [604bb68b5c] : rudimentary nmake build system check-in: b5c41cdeb6 user: oehhar tags: trunk | |
2020-10-15
| ||
10:54 | Corrected instructions. Removed already applied patch Closed-Leaf check-in: b6aa13660a user: oehhar tags: bug-604bb68b5c-nmake | |
10:36 | Ticket [604bb68b5c]. Add first sketch of a nmake build. check-in: 2babef91c5 user: oehhar tags: bug-604bb68b5c-nmake | |
2020-10-12
| ||
20:39 | TclTLS 1.7.22 Closed-Leaf check-in: 367f5093db user: rkeene tags: tls-1-7, tls-1-7-22 | |
20:38 | Merged in trunk check-in: 81f58fc458 user: rkeene tags: tls-1-7 | |
20:32 | add "version" element with SSL/TLS protocol version to tls::status check-in: 9c32a526ed user: resuna tags: trunk | |
2020-05-04
| ||
15:12 | TclTLS 1.7.21 check-in: 922479df76 user: rkeene tags: tls-1-7, tls-1-7-21 | |
15:11 | Merged in trunk check-in: 0f00af3bbb user: rkeene tags: tls-1-7 | |
15:10 | Integrated mjanssen's work on loading certificates and keys as values check-in: b08bbeb9a1 user: rkeene tags: trunk | |
15:09 | Only load private key if we loaded a non-default certificate Closed-Leaf check-in: 51a2b1ec9a user: rkeene tags: mjanssen-asn1-certs | |
15:02 | Updated to support cert/certfile independantly of key/keyfile check-in: 952ef184e6 user: rkeene tags: mjanssen-asn1-certs | |
14:57 | Corrected wrong use of "key" check-in: f3a497fc67 user: rkeene tags: mjanssen-asn1-certs | |
14:54 | Add documentation for -key and -cert check-in: 60e0733e5a user: rkeene tags: mjanssen-asn1-certs | |
2019-11-15
| ||
17:15 | Fixed bug where syms file is cleaned in the wrong stage check-in: c82e9cbcbd user: rkeene tags: trunk | |
16:41 | TclTLS 1.7.20 check-in: e5ec321a1b user: rkeene tags: tls-1-7, tls-1-7-20 | |
16:40 | Merged in trunk check-in: 5ee220305f user: rkeene tags: tls-1-7 | |
2019-11-12
| ||
17:49 | Started work on mbedTLS backend Leaf check-in: 37d16cba38 user: rkeene tags: backend-mbedtls | |
17:48 | MSVC Win maker (WIP, got wiped out, re-constitution in progress) Leaf check-in: f92c42c849 user: rkeene tags: readd-win-msvc | |
17:47 | Started readding MSVC Windows build support check-in: 8478c7ec08 user: rkeene tags: readd-win-msvc | |
17:46 | Makefile cleanup check-in: b9af6e4772 user: rkeene tags: trunk | |
17:36 | Update configure script to check compiler flags during linking check-in: 01719ee8de user: rkeene tags: trunk | |
2019-09-20
| ||
18:23 | Updated to indicate that OpenSSL/LibreSSL are required to build and use check-in: 0aa88d2997 user: rkeene tags: trunk | |
2019-06-19
| ||
18:25 | TclTLS 1.7.19 check-in: 3d0bcddafd user: rkeene tags: tls-1-7, tls-1-7-19 | |
18:13 | Update autoconf scripts from repo check-in: 5bd22a4abd user: rkeene tags: trunk | |
17:58 | Better handling of symbols in our shared object check-in: 3af2fe0ca8 user: rkeene tags: trunk | |
17:45 | Make hardening optional, disabled by default when statically linking because it requires the linking program to fully participate check-in: 25024a31b0 user: rkeene tags: trunk | |
2019-06-17
| ||
18:08 | Align code with option names check-in: 4945b7588e user: mjanssen tags: mjanssen-asn1-certs | |
14:27 | Do not expose implementation details in user interface check-in: ef0be0d731 user: mjanssen tags: mjanssen-asn1-certs | |
12:05 | Add support for ASN1 blobs for certificates and keys check-in: 49278969f2 user: mjanssen tags: mjanssen-asn1-certs | |
2019-05-29
| ||
18:52 | Try to find headers in a specific path and do not allow "mp_int"/"mp_digit" to conflict with other things Leaf check-in: bd8b53ced2 user: rkeene tags: x-header-work | |
2019-04-25
| ||
16:51 | TclTLS 1.7.18 check-in: fb6a7404da user: rkeene tags: tls-1-7, tls-1-7-18 | |
16:51 | Merged in changes from trunk check-in: a64e691ada user: rkeene tags: tls-1-7 | |
2019-04-12
| ||
16:58 | Better handling of shared/static naming issues check-in: 2c8d3629bc user: rkeene tags: trunk | |
2019-04-09
| ||
18:47 | Make extension filename more centralized check-in: 8e730964e5 user: rkeene tags: trunk | |
18:14 | Fix issues formatting wiki documentation check-in: 710e4a917a user: rkeene tags: trunk | |
18:13 | Document the "certificate" member of the dictionary returned by "tls::status" check-in: 3323193385 user: rkeene tags: trunk | |
17:57 | TclTLS 1.7.17 check-in: a598aa8a6b user: rkeene tags: tls-1-7, tls-1-7-17 | |
17:56 | Merged in changes from trunk check-in: 03a182febb user: rkeene tags: tls-1-7 | |
17:55 | Merged in TLS 1.3 support check-in: 737b9c0d46 user: rkeene tags: trunk | |
17:25 | Better handling of reading certificate PEM data, resolves [2059171e7d] check-in: 8e0ed4e723 user: rkeene tags: trunk | |
17:04 | Added remaining TLSv1.3 support Closed-Leaf check-in: 569c10f3b2 user: rkeene tags: enhancement/tls-1.3 | |
15:58 | Better handling of the case where the shared and static extensions are the same (AIX) check-in: 9c59fec751 user: rkeene tags: trunk | |
2018-11-08
| ||
00:23 | Note that TLSv1.3 is a lot different in API, this branch is incomplete check-in: 7978a539fc user: rkeene tags: enhancement/tls-1.3 | |
2018-11-07
| ||
23:51 | Added missing TLSv1.3 support check-in: efc1e122f2 user: rkeene tags: enhancement/tls-1.3 | |
23:27 | Started adding support for TLSv1.3 check-in: e245d231ee user: rkeene tags: enhancement/tls-1.3 | |
2018-10-30
| ||
14:20 | Applied patch from Jinhu to address [94c6a431fee] check-in: afec51b85b user: rkeene tags: trunk | |
2018-02-07
| ||
15:38 | TclTLS 1.7.16 check-in: 23e328d64b user: rkeene tags: tls-1-7, tls-1-7-16 | |
15:38 | Merged in changes from trunk check-in: aa700f94f2 user: rkeene tags: tls-1-7 | |
15:37 | Updated to reset "eofchar" and "encoding" when importing channels as well as translation and blocking (part of [f798e2ea12]) check-in: 1d757f7e2d user: rkeene tags: trunk | |
2017-12-21
| ||
20:27 | TclTLS 1.7.15 check-in: 0f9a47f3b3 user: rkeene tags: tls-1-7, tls-1-7-15 | |
20:26 | Merged in changes from trunk check-in: 57a047ac4b user: rkeene tags: tls-1-7 | |
20:25 | Merged in changes to address [f798e2ea12]. The code to manipulate the channel options may not be needed at all, we will review it to see if there are any issues with removing it altogether check-in: a811816bd3 user: rkeene tags: trunk | |
05:34 | Added experiment patch for [f798e2ea12] to preserve channel state when importing a channel Closed-Leaf check-in: 60f37290f3 user: rkeene tags: bug-f798e2ea12 | |
2017-11-08
| ||
15:00 | TclTLS 1.7.14 check-in: 70cbcd6815 user: rkeene tags: tls-1-7, tls-1-7-14 | |
14:59 | Still looking into this Leaf check-in: 7793b78e70 user: rkeene tags: bug-eof-loop-6dd5588df6-2 | |
2017-10-17
| ||
03:57 | Updated to use a more commonly accepted regexp when replacing the OpenSSL function name (addresses [6c9bf49455]) check-in: 12bf5e37e0 user: rkeene tags: trunk | |
2017-09-21
| ||
16:07 | More soft-EOF mappings Leaf check-in: d63ee30cb2 user: rkeene tags: bug-eof-loop-6dd5588df6 | |
14:15 | Added support for detecting writes after we have told the channel that we are in EOF and start returning errors in that case check-in: 7e5e4e2114 user: rkeene tags: bug-eof-loop-6dd5588df6 | |
2017-09-01
| ||
00:27 | TclTLS 1.7.13 check-in: 4c0960be87 user: rkeene tags: tls-1-7, tls-1-7-13 | |
00:16 | Try harder to ensure the right SSL libraries are used check-in: 6704c33e48 user: rkeene tags: trunk | |
2017-08-31
| ||
18:57 | Updated to support a user specifying a pkgconfig path for OpenSSL check-in: c3e5ea305b user: rkeene tags: trunk | |
2017-05-30
| ||
20:46 | Updated to use the shell to to find the shell rather than relying on /usr/bin/env check-in: 1370fceb9d user: rkeene tags: trunk | |
2017-05-01
| ||
14:45 | TclTLS 1.7.12 check-in: d0b9b91b33 user: rkeene tags: tls-1-7, tls-1-7-12 | |
14:45 | Merged in changes from trunk check-in: 0cd14baf5e user: rkeene tags: tls-1-7 | |
14:42 | Print a debug message when handshaking works but an error is being captured check-in: 87d7c791f5 user: rkeene tags: trunk | |
14:41 | Fixed an issue where EAGAIN was translated into a successful handshake, addressing [1367823d51] check-in: 689d55e070 user: rkeene tags: trunk | |
14:32 | Reformatted handshake command code check-in: 2893572aa6 user: rkeene tags: trunk | |
2017-04-18
| ||
18:31 | Added support for a configure option to specify the built-in DH params size called "--with-builtin-dh-params-size" check-in: 5e7de567cf user: rkeene tags: trunk | |
18:17 | Added pre-computed DH params for fallback values for 4096 and 8192 bit sizes, in addition to 2048 check-in: 6286921174 user: rkeene tags: trunk | |
14:39 | Updated gen_dh_params to support specifying a number of bits -- currently the only supported value is 2048 check-in: b128e0d4e4 user: rkeene tags: trunk | |
14:29 | Updated references to DH parameter bit sizes and ensure error messages are printed if generating fails entirely check-in: 83b1dea4d4 user: rkeene tags: trunk | |
2016-12-17
| ||
15:44 | TclTLS 1.7.11 check-in: 813f937d12 user: rkeene tags: tls-1-7, tls-1-7-11 | |
15:44 | Merged in changes from trunk check-in: 04c303f1f5 user: rkeene tags: tls-1-7 | |
15:43 | Integrated -autoservername feature (addresses [0d4541b86d]) check-in: 42735119d8 user: rkeene tags: trunk | |
2016-12-14
| ||
16:08 | Updated test suite with new error message results Closed-Leaf check-in: 8863101cbe user: rkeene tags: feature-0d4541b86d-autoservername | |
16:03 | Updated error message to be consistent with "lsearch" output under similar failures check-in: 4e441206d6 user: rkeene tags: feature-0d4541b86d-autoservername | |
14:45 | Made trunk builds identify as TclTLS 1.8.0 check-in: f625a3272a user: rkeene tags: trunk | |
14:43 | TclTLS 1.7.10 check-in: f0d0acd4b5 user: rkeene tags: tls-1-7, tls-1-7-10 | |
14:42 | Merged in trunk check-in: a87c836d6c user: rkeene tags: tls-1-7 | |
14:40 | Updated EOF while reading from the BIO to map to soft EOF check-in: 24ce678ecd user: rkeene tags: trunk | |
14:07 | Consolidated rules for parsing options and now verify them in tls::init as well check-in: 98b60c41b6 user: rkeene tags: feature-0d4541b86d-autoservername | |
06:27 | Updated example to include "-autoservername" check-in: 219e71c672 user: rkeene tags: feature-0d4541b86d-autoservername | |
06:18 | Started work on adding an "-autoservername" option to tls::socket which will automatically add the -servername <host> option check-in: f0c5ec5595 user: rkeene tags: feature-0d4541b86d-autoservername | |
01:10 | Minor update to the README check-in: c920627e0b user: rkeene tags: trunk | |
2016-12-13
| ||
22:04 | Merged in trunk Leaf check-in: 1ebb5befd0 user: rkeene tags: feature-multibackend | |
21:50 | Remove spurious sentence check-in: 4dca0b3137 user: rkeene tags: trunk | |
21:37 | Updated documentation to indicate additional options check-in: a880307e5d user: rkeene tags: trunk | |
20:46 | Treat tls.tcl.h as a normal file and always regenerate it, and never distribute it -- end users will need "od" to create it check-in: 97cbb17f4f user: rkeene tags: trunk | |
20:39 | More work on a better install target and added a basic uninstall target check-in: 6339a69a26 user: rkeene tags: trunk | |
20:23 | TclTLS 1.7.9 check-in: 7b0845cfb3 user: rkeene tags: tls-1-7, tls-1-7-9 | |
20:23 | Merged in trunk check-in: c4cb2ec7d1 user: rkeene tags: tls-1-7 | |
20:23 | Updated install target to be more compliant for other platforms check-in: 942287db68 user: rkeene tags: trunk | |
20:04 | Reduced verbosity to normal levels for testing, can be added back with TESTFLAGS check-in: bfceaaf9bb user: rkeene tags: trunk | |
19:22 | Updated to latest remote tcl.m4 check-in: 271aa29c27 user: rkeene tags: trunk | |
18:55 | TclTLS 1.7.8 check-in: 22c5b96dcd user: rkeene tags: tls-1-7, tls-1-7-8 | |
18:54 | Merged in trunk check-in: f7d1440f12 user: rkeene tags: tls-1-7 | |
18:49 | Less heavy handed rewriting of error codes in Tcl BIO check-in: d8ce3045d5 user: rkeene tags: trunk | |
18:49 | Mapped OpenSSL errors for read/write wants to EAGAIN check-in: ad1752cdaf user: rkeene tags: trunk | |
18:42 | Fixed help string for ssl-fastpath to correctly indicate that it is disabled by default check-in: 80d0949714 user: rkeene tags: trunk | |
18:25 | Updated to return an error if automake fails check-in: 953de83652 user: rkeene tags: trunk | |
17:29 | Made the "test" target more useful when doing out-of-source-dir builds check-in: de649c9c44 user: rkeene tags: trunk | |
17:17 | TclTLS 1.7.7 check-in: 027e77a11d user: rkeene tags: tls-1-7, tls-1-7-7 | |
17:15 | Merged in trunk check-in: 6aff73e57a user: rkeene tags: tls-1-7 | |
17:14 | Updated to allow a specified prefix to override the detected Tcl package path check-in: 97b136826e user: rkeene tags: trunk | |
16:48 | Updated to latest remote shobj.m4 check-in: 4ab0af9e58 user: rkeene tags: trunk | |
16:44 | Updated to clean up Windows additional objects created check-in: dff67f7506 user: rkeene tags: trunk | |
16:39 | Rename configure.in to configure.ac check-in: 6bf4105947 user: rkeene tags: trunk | |
16:12 | Disable fastpath by default check-in: 7032f97f3d user: rkeene tags: trunk | |
16:11 | Fixed weird asymmetry in build of tls.tcl.h, which was required for out-of-tree builds check-in: 05099e9a1e user: rkeene tags: trunk | |
16:05 | TclTLS 1.7.6 check-in: ba6e2a082f user: rkeene tags: tls-1-7, tls-1-7-6 | |
16:05 | Merged in trunk check-in: 53bd8f71ad user: rkeene tags: tls-1-7 | |
16:00 | Updated to return soft errors on during SSL negotiation retries on reads and hard errors on SSL negotiation during writes or handshake commands check-in: b9557ba691 user: rkeene tags: trunk | |
15:43 | Made repeated failures to handshake return fatal errors and made handshake code use the same logic as the rest of the OpenSSL read error checking check-in: 1b7959d27a user: rkeene tags: trunk | |
15:29 | Reverted [f79122ae17] check-in: 50d8da007b user: rkeene tags: trunk | |
08:48 | Updated to fatally fail if the handshake fatally fails check-in: f79122ae17 user: rkeene tags: trunk | |
08:30 | Added new remote file check-in: a81aa8026e user: rkeene tags: trunk | |
08:19 | Added a "test" target check-in: 1eecfa3244 user: rkeene tags: trunk | |
08:16 | Handle more cases of I/O errors check-in: 7170c34dbc user: rkeene tags: trunk | |
08:15 | Removed UBSan from default debugging build, in case it is also non-functional check-in: 7e34e34190 user: rkeene tags: trunk | |
07:55 | Removed an uninitialized read during debugging output and made OutputProc TLS initializations resemble InputProc's version check-in: 7e57900ba3 user: rkeene tags: trunk | |
07:42 | Updated I/O handling to properly deal with errors and passing that error code up the stack check-in: fe1f0ecd35 user: rkeene tags: trunk | |
07:19 | Enhanced support for syscall error checking from BIOs check-in: 538876ebf5 user: rkeene tags: trunk | |
07:06 | Updated to include a pre-made tls.tcl.h in the distribution check-in: 18f663c190 user: rkeene tags: trunk | |
07:00 | Remove the address sanitizer from the debugging build since it may cause problems when used as a library -- a special build should be available for it check-in: 717a5d1c42 user: rkeene tags: trunk | |
07:00 | Made SSLv2/SSLv3 compiled in by default (since they are now disabled by default) and made other options more consistently checked check-in: a23045b659 user: rkeene tags: trunk | |
06:56 | Simplified code for detecting which SSL protocols to use -- disabled SSLv2 and SSLv3 by default if other options are available check-in: aaac45cfca user: rkeene tags: trunk | |
06:47 | Removed extraenous cleanup check-in: 5798396954 user: rkeene tags: trunk | |
06:39 | Commented out debugging printf for returning from the locking function as well check-in: 8e27f5595c user: rkeene tags: trunk | |
06:39 | Added additional ignores check-in: 5315cfb88d user: rkeene tags: trunk | |
06:27 | Updated to use POSIX tool "od" to create tls.tcl.h and since we can now rebuild this file more freely, do so to "fully" support out-of-source-dir builds check-in: 34ff31cd97 user: rkeene tags: trunk | |
05:52 | Fixed typo in configure help check-in: 2ceafae87f user: rkeene tags: trunk | |
05:17 | TclTLS 1.7.5 check-in: 1303418e93 user: rkeene tags: tls-1-7, tls-1-7-5 | |
05:16 | Merged in trunk check-in: c151a09350 user: rkeene tags: tls-1-7 | |
05:16 | Updated to indicate that this will take a while on stderr -- otherwise it just gets redirected to the file check-in: a7c535ae28 user: rkeene tags: trunk | |
05:12 | TclTLS 1.7.4 check-in: bf1b98ee65 user: rkeene tags: tls-1-7, tls-1-7-4 | |
05:12 | Merged in trunk check-in: b0a2b0d909 user: rkeene tags: tls-1-7 | |
05:12 | Merged in work for the I/O layer being updated check-in: 2f45dac5f7 user: rkeene tags: trunk | |
05:11 | Updated to properly sanitize memory needed for the dynamically allocated locks Closed-Leaf check-in: f73f94ae35 user: rkeene tags: wip-fix-io-layer | |
04:50 | Updated to not declare variables for checking for fastpath unless fastpath is being compiled in check-in: 0a5d288053 user: rkeene tags: wip-fix-io-layer | |
04:48 | Updated BIO handling to be more clear check-in: 2dbea6a68d user: rkeene tags: wip-fix-io-layer | |
04:48 | Updated to support retrying TLS negotiations if we get an EAGAIN error check-in: f2deea0396 user: rkeene tags: wip-fix-io-layer | |
03:46 | Made all unused variables self-assignments check-in: 7b169db8a3 user: rkeene tags: wip-fix-io-layer | |
03:40 | Fixed uninitialized use of variable check-in: 942e844672 user: rkeene tags: wip-fix-io-layer | |
03:35 | Cleaned up more things check-in: 4579316443 user: rkeene tags: wip-fix-io-layer | |
03:27 | Silence warnings about ignoring this return value by explicitly ignoring it check-in: 41f972bfbf user: rkeene tags: wip-fix-io-layer | |
03:21 | Merged in trunk check-in: e5c9bfe50f user: rkeene tags: wip-fix-io-layer | |
03:20 | Updated to deal with locking slightly better, maybe check-in: 387697ce68 user: rkeene tags: trunk | |
2016-12-12
| ||
22:40 | Merged in trunk check-in: 83a3aff031 user: rkeene tags: wip-fix-io-layer | |
22:39 | Enabled more warnings check-in: b255cfbc6b user: rkeene tags: trunk | |
22:29 | Merged in trunk check-in: 77c3091474 user: rkeene tags: wip-fix-io-layer | |
22:28 | Added hardening and debugging flags check-in: 8d5b3e826a user: rkeene tags: trunk | |
22:10 | Updated to dynamically allocate mutexes and support being de-initialized check-in: abf861e4d5 user: rkeene tags: trunk | |
18:50 | Added a note about generating primes taking a while check-in: c3a7dbada8 user: rkeene tags: trunk | |
01:56 | Disabled checking the client certificate and aborting if not found check-in: 916215af0a user: rkeene tags: wip-fix-io-layer | |
01:51 | Made I/O test more useful when debugging is on and updated to deal with newer versions of OpenSSL check-in: 270ffbbc3e user: rkeene tags: wip-fix-io-layer | |
01:15 | Updated wording in debugging message to be more accurate check-in: 6462992c95 user: rkeene tags: wip-fix-io-layer | |
01:14 | More work on improving I/O routines check-in: 7df7a8696e user: rkeene tags: wip-fix-io-layer | |
01:13 | Updated debugging printf() calls to write to a temporary buffer so that multiple calls are not mixed up when writing check-in: 4c6adaabfc user: rkeene tags: wip-fix-io-layer | |
2016-12-11
| ||
23:57 | Added a flag for fastpath so that errors can be found while using it check-in: 8b2b046ff5 user: rkeene tags: wip-fix-io-layer | |
21:22 | Rewrote state engine for OpenSSL connection establishment to be more easily reasoned about check-in: 77e904c4e2 user: rkeene tags: wip-fix-io-layer | |
20:05 | Fixed pass-through to fetch file descriptor using a pointer check-in: b5ba86f2be user: rkeene tags: wip-fix-io-layer | |
19:20 | Updated to support optionally enabling/disabling a faster path for talking to the underlying channel check-in: d25ae3c232 user: rkeene tags: wip-fix-io-layer | |
19:12 | Corrected extraneous format specifier check-in: ff4801f473 user: rkeene tags: wip-fix-io-layer | |
19:10 | Added a lot of work towards fixing the I/O layer check-in: ee7ea6a917 user: rkeene tags: wip-fix-io-layer | |
2016-12-10
| ||
05:17 | Merged in changes from trunk check-in: d60f868f2c user: rkeene tags: feature-multibackend | |
05:12 | More clean-up and modernization check-in: 5fc38beddb user: rkeene tags: trunk | |
05:02 | Remove obsolete references check-in: fc00b36be8 user: rkeene tags: trunk | |
05:02 | More modernization of the code check-in: 2771dc7670 user: rkeene tags: trunk | |
04:52 | Updated to define the target of the build check-in: e9c8a6c1b6 user: rkeene tags: feature-multibackend | |
04:42 | Renamed TLS BIO driver to indicate its OpenSSL-specific-ness check-in: bd4aba3487 user: rkeene tags: feature-multibackend | |
04:30 | Create new branch named "feature-multibackend" check-in: 1ea42ade67 user: rkeene tags: feature-multibackend | |
04:29 | Minor whitespace cleanup check-in: 88815cbc52 user: rkeene tags: trunk | |
02:55 | Removed backwards compatibility hacks and much reformatting check-in: f087e1fe61 user: rkeene tags: trunk | |
01:43 | Reformatted BIO code check-in: c34f472c39 user: rkeene tags: trunk | |
00:52 | Updated the style for prototypes check-in: 2db3a07c5e user: rkeene tags: trunk | |
00:48 | Added additional debugging check-in: 9686856dd3 user: rkeene tags: trunk | |
2016-12-09
| ||
14:55 | Updated to latest remote tcl.m4 check-in: 0561feec30 user: rkeene tags: trunk | |
2016-12-08
| ||
08:50 | Added a consolidated check for pre-OpenSSL 1.1 API usage check-in: 66023e665f user: rkeene tags: trunk | |
08:36 | Moved BIO_ wrappers into the BIO source and added more debugging output check-in: 333d833f31 user: rkeene tags: trunk | |
08:35 | Updated protocol negotiation test to use newer versions of TLS since SSLv3 is becoming less supported check-in: 2de09464e0 user: rkeene tags: trunk | |
07:37 | Integrated OpenSSL 1.1 patches check-in: a23ed6f309 user: rkeene tags: trunk | |
07:35 | Remove a version number fixups Closed-Leaf check-in: ec53c2b85e user: rkeene tags: openssl-1.1 | |
07:32 | Do not try to set memory functions -- prototype is broken in newer version and older versions have bugs related to it check-in: bbe273b3dc user: rkeene tags: openssl-1.1 | |
07:25 | Whitspace formatting changes check-in: 2ed4afb942 user: rkeene tags: openssl-1.1 | |
07:08 | Updated fallback DH params for OpenSSL, supporting OpenSSL 1.1 and older versions check-in: bc2460fc22 user: rkeene tags: openssl-1.1 | |
07:07 | Fixed backwards compatibility macro for BIOs check-in: 517bea2716 user: rkeene tags: openssl-1.1 | |
07:06 | Removed unused interfaces check-in: 613eb92e79 user: rkeene tags: openssl-1.1 | |
06:53 | Initial working version of OpenSSL 1.1.0 API support adapted from patch from Sergei Golovan and Jeremy Sowden check-in: af83631fbb user: rkeene tags: openssl-1.1 | |
06:33 | Create new branch named "openssl-1.1" check-in: 6a78084630 user: rkeene tags: openssl-1.1 | |
04:26 | Merged in work for TclTLS 1.7 to trunk check-in: 0409513536 user: rkeene tags: trunk | |
04:24 | Updated to remove comment from rendered HTML in documentation check-in: ea2c60a999 user: rkeene tags: tls-1-7 | |
04:23 | Added script to update documentation check-in: b297166a47 user: rkeene tags: tls-1-7 | |
04:04 | Added Roy Keene to list of authors with new version noted check-in: 2724e0d4a6 user: rkeene tags: tls-1-7 | |
04:01 | Update TclTLS HTML to include the version number of the release check-in: 6473e7ef29 user: rkeene tags: tls-1-7 | |
04:01 | Updated header with a link to the homepage check-in: 41aaeb0607 user: rkeene tags: tls-1-7 | |
2016-12-07
| ||
23:00 | Better support for searching for how to link statically to LibSSL check-in: 8083f26fa7 user: rkeene tags: tls-1-7 | |
21:34 | TclTLS 1.7.3 check-in: ce64f41aec user: rkeene tags: tls-1-7, tls-1-7-3 | |
21:32 | Updated gen_dh_params to be really POSIX sh compliant check-in: 43e088c82f user: rkeene tags: tls-1-7 | |
21:27 | Updated to latest version of tcl.m4 check-in: 9e86ba53f9 user: rkeene tags: tls-1-7 | |
20:57 | Updated gen_dh_params to run with the POSIX shell check-in: 32ccafd13f user: rkeene tags: tls-1-7 | |
20:45 | Removed dependency on Makefile for tls.tcl -- so distributions don't try to rebuild it check-in: a23793abf0 user: rkeene tags: tls-1-7 | |
19:34 | TclTLS 1.7.2 check-in: 91466b9a3c user: rkeene tags: tls-1-7, tls-1-7-2 | |
19:33 | Corrected logic bug with setting RPATH in the opposite case check-in: 4c474ca32b user: rkeene tags: tls-1-7 | |
19:31 | Updated to default to not setting the RPATH if we are linking statically to the SSL library check-in: 9f920bf04f user: rkeene tags: tls-1-7 | |
19:22 | Updated to detect static linking options dynamically check-in: a0dcb20ebc user: rkeene tags: tls-1-7 | |
19:21 | Updated to latest remote shobj.m4 check-in: d33155cd64 user: rkeene tags: tls-1-7 | |
18:48 | Updated to latest remote shobj.m4 check-in: d93dbb42a4 user: rkeene tags: tls-1-7 | |
18:46 | Updated to use detected archive extension check-in: 653f7cec68 user: rkeene tags: tls-1-7 | |
18:45 | Simplified setting of RPATH check-in: 8390ad0b38 user: rkeene tags: tls-1-7 | |
18:45 | Updated to latest remote shobj.m4 check-in: ebc8167da3 user: rkeene tags: tls-1-7 | |
18:19 | Updated autoconf macro to deal with RPATH better check-in: e7e20d5486 user: rkeene tags: tls-1-7 | |
18:12 | Updated to set RPATH by default for non-static builds check-in: 0d87394f84 user: rkeene tags: tls-1-7 | |
18:11 | Added support for statically linking to the SSL library check-in: bba90634b2 user: rkeene tags: tls-1-7 | |
17:20 | Added VPATH to deal with out of tree builds with GNU make check-in: e6dd81d3db user: rkeene tags: tls-1-7 | |
17:18 | Updated to create a ".linkadd" file when creating a static archive for static linking that describes what we need to link to check-in: 7a4440b028 user: rkeene tags: tls-1-7 | |
16:53 | Added a dependency on the Makefile for most targets check-in: 22c5d6a6be user: rkeene tags: tls-1-7 | |
16:48 | Removed extraneous "extern", causing linking failures on Windows check-in: ee4e44d78d user: rkeene tags: tls-1-7 | |
16:41 | Set a default channel type version check-in: fe5bc0bc67 user: rkeene tags: tls-1-7 | |
16:25 | Fixed check for SSL_set_tlsext_host_name check-in: 8df81b363a user: rkeene tags: tls-1-7 | |
16:22 | Remove weird "force_off" configuration check-in: 7245859364 user: rkeene tags: tls-1-7 | |
16:20 | Updated from latest remote tcl.m4 check-in: 7231dd89c8 user: rkeene tags: tls-1-7 | |
16:20 | Fixed check for SSL_set_tlsext_host_name and added support for forcing options that were manually specified check-in: 4aedc3e201 user: rkeene tags: tls-1-7 | |
15:34 | More specific check for non-BIO failures check-in: e10ce6579d user: rkeene tags: tls-1-7 | |
15:25 | Added a check for a BIO error check-in: 79ea996cac user: rkeene tags: tls-1-7 | |
15:12 | Added more debugging check-in: ed1ce834df user: rkeene tags: tls-1-7 | |
15:10 | More work towards getting the state engine for waiting for a connection to come back together check-in: 5aea4802ca user: rkeene tags: tls-1-7 | |
15:02 | Updated wording of debug messages to be correct check-in: 7c044da68e user: rkeene tags: tls-1-7 | |
15:00 | Added more debugging check-in: 82acecb1a4 user: rkeene tags: tls-1-7 | |
14:56 | Updated to store the Tcl EOF flag, in case it gets reset in between calls -- causing debugging builds to operate differently than normal builds check-in: 28b99767e9 user: rkeene tags: tls-1-7 | |
14:51 | More debugging check-in: 9bb0350edb user: rkeene tags: tls-1-7 | |
14:43 | More debugging around TLS retries check-in: e84900f887 user: rkeene tags: tls-1-7 | |
14:38 | Added additional debugging around asyncronous sockets check-in: 033849bf66 user: rkeene tags: tls-1-7 | |
2016-12-06
| ||
20:56 | Added a fallback for Tcl 8.4 with minimal support for loading the package check-in: 9c0b46c781 user: rkeene tags: tls-1-7 | |
16:53 | Updated to ensure that the SNI functinality was available from the SSL library check-in: 7f86ac3e48 user: rkeene tags: tls-1-7 | |
16:38 | Enabled a more tolerant (if confusing) mechanism for requiring Tcl 8.5 check-in: 0ee20f0650 user: rkeene tags: tls-1-7 | |
16:27 | Updated to indicate that we require Tcl 8.5 check-in: 301d32328a user: rkeene tags: tls-1-7 | |
16:18 | Indicated in help that an argument is required for --with-ssl check-in: 8fcef79719 user: rkeene tags: tls-1-7 | |
16:15 | Updated to support the --with-ssl-dir configure option check-in: e37183415a user: rkeene tags: tls-1-7 | |
15:36 | Added support for specifying a path to OpenSSL/LibreSSL check-in: 1af85e464a user: rkeene tags: tls-1-7 | |
15:23 | Updated to allow the user to override autodetection of libraries for OpenSSL/etc check-in: 2d15b1f24e user: rkeene tags: tls-1-7 | |
15:08 | Updated to verify all commands are available before starting autogen check-in: 301214a2d6 user: rkeene tags: tls-1-7 | |
05:24 | Updated to make updating the remote m4 files optional and not the default check-in: 4257f23d7c user: rkeene tags: tls-1-7 | |
04:56 | Fixed search for "xxd" to not check for a prefixed version check-in: 4aa7638d1a user: rkeene tags: tls-1-7 | |
04:42 | Ensure that defines are not duplicated check-in: f0726c57a4 user: rkeene tags: tls-1-7 | |
2016-12-05
| ||
17:04 | Disable protocols if they are not compiled in check-in: 8e510a3598 user: rkeene tags: tls-1-7 | |
16:58 | Enforce socket in blocking mode during test where "gets" is expected to wait for a reply check-in: dc7bbc6de6 user: rkeene tags: tls-1-7 | |
16:57 | Updated to support configure options to disable/enable specific protocols check-in: c75c1f1d50 user: rkeene tags: tls-1-7 | |
16:44 | Moved OpenSSL and LibreSSL checks to an external file check-in: 07852b1ee9 user: rkeene tags: tls-1-7 | |
16:44 | Added a separate M4 file for doing OpenSSL checks check-in: c4983df965 user: rkeene tags: tls-1-7 | |
2016-12-02
| ||
21:29 | Updated to fail if we are unable to get OpenSSL configuration check-in: d5323765c7 user: rkeene tags: tls-1-7 | |
21:25 | Updated to check for "xxd" check-in: 1f75d05931 user: rkeene tags: tls-1-7 | |
21:25 | Fixed typo check-in: abe0565ce2 user: rkeene tags: tls-1-7 | |
21:23 | More popular variant of transformation check-in: 9890a43141 user: rkeene tags: tls-1-7 | |
19:50 | Made version number semver check-in: f5cb9df1f2 user: rkeene tags: tls-1-7 | |
19:39 | Cleanup BIO creation to be more correct check-in: f0312b63df user: rkeene tags: tls-1-7 | |
19:00 | Minor casting to address compiler warnings check-in: e3b94c4a74 user: rkeene tags: tls-1-7 | |
18:58 | Double check that we got a usable value at all from the verification callback check-in: 664badad67 user: rkeene tags: tls-1-7 | |
18:55 | Fixed signed-ness issue with init script check-in: fa844b3fcc user: rkeene tags: tls-1-7 | |
18:54 | Do not remove aclocal directory, it is now versioned check-in: a51ce7aac9 user: rkeene tags: tls-1-7 | |
18:52 | Updated to include a copy of the autoconf macros we use in our version control, autogen will update them check-in: f755cb09a6 user: rkeene tags: tls-1-7 | |
16:41 | Ensure initialization happens only once even with unthreaded Tcl check-in: 10e3f2e20c user: rkeene tags: tls-1-7 | |
16:28 | For unsupported options do even less check-in: 3842146243 user: rkeene tags: tls-1-7 | |
16:25 | Added an --enable-debug and made debug-printf macro more fancy check-in: 8a3f4fc732 user: rkeene tags: tls-1-7 | |
16:13 | Cleaned up compiler warnings with debugging statements casting pointers to ints check-in: ac2c67d21d user: rkeene tags: tls-1-7 | |
16:09 | Minor cleanup of global variables and void function check-in: ee18d6c91e user: rkeene tags: tls-1-7 | |
2016-12-01
| ||
21:51 | Updated to support a deterministic mode check-in: bf7f82b5e8 user: rkeene tags: tls-1-7 | |
21:36 | Updated to generate DH parameters more dynamically check-in: 3d5e70d1d5 user: rkeene tags: tls-1-7 | |
20:51 | Removed unused source file check-in: 2f2650a648 user: rkeene tags: tls-1-7 | |
20:49 | Run ranlib on static archives check-in: 93cbbb7ee9 user: rkeene tags: tls-1-7 | |
20:45 | Added additional ignore for temporary working directory check-in: f0d43d5e59 user: rkeene tags: tls-1-7 | |
2016-11-30
| ||
13:49 | Removed unneeded setting of auto_path (set from all.tcl) check-in: 8695903dbb user: rkeene tags: tls-1-7 | |
2016-11-29
| ||
23:49 | Ignore static target check-in: db17641211 user: rkeene tags: tls-1-7 | |
23:47 | Ignore generated file check-in: a5ce94c94d user: rkeene tags: tls-1-7 | |
23:46 | Updated key tests check-in: baa98c9b5d user: rkeene tags: tls-1-7 | |