summaryrefslogtreecommitdiffstats
path: root/kio/kssl
Commit message (Collapse)AuthorAgeFilesLines
* KSSL: Rebuilt local certificates bundleMavridis Philippe2022-02-172-0/+1233
| | | | | Signed-off-by: Mavridis Philippe <mavridisf@gmail.com> (cherry picked from commit 49ea1c8db20d7957d8075054b744b7ad0d2c9765)
* KSSL: Added ISRG root certs for LetsEncryptMavridis Philippe2022-02-174-0/+50
| | | | | Signed-off-by: Mavridis Philippe <mavridisf@gmail.com> (cherry picked from commit 3b873f0258315981dcf41f6c800687bfe4d9f9dc)
* Fix LibreSSL detection at tdeio/kssl/Matías Fonzo2021-02-031-4/+4
| | | | | Signed-off-by: Matías Fonzo <selk@dragora.org> (cherry picked from commit aa9b9581a97daa50855d815b6724b9112448c96f)
* Fix missing return values in kopenssl.François Andriot2019-12-041-0/+7
| | | | | | Signed-off-by: François Andriot <francois.andriot@free.fr> Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit a6bbb9e7bc21382b504c8c6fe408a766a3890bb6)
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-09-041-2/+2
| | | | | | | | | | | The first argument of the OPENSSL_init_ssl and OPENSSL_init_crypto functions must be a 64-bit int, not a 32-bit int, as this caused unpredictable OpenSSL behavior. This resolves bug 3024. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit a2ad929640f62ee1f854564366ce1cd8547de455)
* Use system libdir when searching for dynamically loaded libraries.Slávek Banko2019-02-271-33/+8
| | | | | | | This prevents finding an incorrect architecture on multi-arch systems. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit 8a859540c3cb306844288144a06028dc302408d6)
* Fix SSL initialization for OpenSSL >= 1.1.Slávek Banko2019-02-211-2/+24
| | | | | Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit 43609c8a21144b56a53d53757639fc6c6298c10d)
* KSSL: Set hostname in TLSext to enable SNI supportSlávek Banko2017-07-221-0/+6
| | | | | Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit 45cf7d13eb68be0fd469fd49275c000a2c7bcc2f)
* KSSL: Use TLS_client_method instead of TLSv1_client_methodSlávek Banko2017-07-221-7/+9
| | | | | | | | This enables TLS protocols newer than v1.0 This resolves bug 2764 Signed-off-by: Slávek Banko <slavek.banko@axis.cz> (cherry picked from commit adb9d9d2b0bfbb0f856673e663aad7c4a63020eb)
* Added support for OpenSSL 1.1Slávek Banko2017-07-2212-362/+975
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some KOpenSSLProxy methods have been renamed to be consistent with OpenSSL 1.1 API names and to prevent hidden API changes. To ensure API / ABI compatibility, the original methods are still included but have been marked as deprecated. + SSLv23_client_method => TLS_client_method + X509_STORE_CTX_set_chain => X509_STORE_CTX_set0_untrusted + sk_dup => OPENSSL_sk_dup + sk_free => OPENSSL_sk_free + sk_new => OPENSSL_sk_new + sk_num => OPENSSL_sk_num + sk_pop => OPENSSL_sk_pop + sk_push => OPENSSL_sk_push + sk_value => OPENSSL_sk_value Additional methods have been added to KOpenSSLProxy to support the new OpenSSL 1.1 API functions that provide access to the (now) opaque SSL structures. Compatibility with OpenSSL < 1.1 is handled internally in KOpenSSLProxy. + BIO_get_data + DSA_get0_key + DSA_get0_pqg + EVP_PKEY_base_id + EVP_PKEY_get0_DSA + EVP_PKEY_get0_RSA + RSA_get0_key + X509_CRL_get0_lastUpdate + X509_CRL_get0_nextUpdate + X509_OBJECT_get0_X509 + X509_OBJECT_get_type + X509_STORE_CTX_get_current_cert + X509_STORE_CTX_get_error + X509_STORE_CTX_get_error_depth + X509_STORE_CTX_set_error + X509_STORE_get0_objects + X509_STORE_set_verify_cb + X509_get0_signature + X509_getm_notAfter + X509_getm_notBefore + X509_subject_name_cmp + _SSL_session_reused + _SSL_set_options Method "KSSL::setSession" has been renamed to "KSSL::takeSession" and its functionality has changed: the session is now transferred from the argument object to the invoked object. Since it is only used internally in TDE and the functionality is different, the method with the previous name has not been preserved. Signed-off-by: Slávek Banko <slavek.banko@axis.cz> Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it> (cherry picked from commit e1861cb6811f7bac405ece204407ca46c000a453)
* Parse GENERALIZEDTIME ASN structuresTimothy Pearson2017-07-221-12/+21
| | | | | This fixes certificate dates beyond year 2049. (cherry picked from commit 07dbb3b5c92ed22f71123eb84806d55f9962c60b)
* Fix crash on KSSLCertificate deallocation when a CRL is held in the ↵Timothy Pearson2017-07-221-0/+2
| | | | | | KSSLCertificate object (cherry picked from commit 62a597d75224844be9a98952a586fc5c0406561e)
* Fix memory leak when deleting a KSSLCertificate that holds a CRLTimothy Pearson2017-07-223-1/+17
| | | | (cherry picked from commit 9bf244dd97e89bf47dd70fe47a4f00a3f372f875)
* Add initial CRL support to KSSLCertificateTimothy Pearson2017-07-224-4/+88
| | | | (cherry picked from commit 5896a404bcc63085cf0a50d232d2d631a5107228)
* Check if SSL symbols exist before attempting to load themTimothy Pearson2015-12-231-171/+174
| | | | | This relates to Bug 1655 (cherry picked from commit e757d3d6ae93cf967d54c566e9c003b0f9cc3a9c)
* Fix security issue when displaying certificate informations (CVE-2011-3365)Francois Andriot2013-06-011-6/+15
| | | | (cherry picked from commit a67a48107f8996a6c753fdd02d15e234dbd17ceb)
* Fix runtime openssl library detection on multiarchTimothy Pearson2012-06-081-17/+41
| | | | | This closes Bug 809 (cherry picked from commit 09d01cacf80d21ad213e6520b35e7f06e9546a83)
* Remove additional unneeded tq method conversionsTimothy Pearson2012-06-025-5/+5
| | | | (cherry picked from commit a51cd9949c4e6c726a84a61de3cfadd30cefb5c7)
* Rename old tq methods that no longer need a unique nameTimothy Pearson2012-06-023-7/+7
| | | | (cherry picked from commit 984c25aa6969e55896e9a13c8e7f7b8a58991a4e)
* Rename tqsetAlignment to fix bindingsTimothy Pearson2012-06-021-7/+7
| | | | (cherry picked from commit b212a1de50010bf9f8ff93123281a6956291cdf2)
* Use non-tq sizeHint functions to fix bindingsTimothy Pearson2012-06-021-1/+1
| | | | (cherry picked from commit d4e11a5f488204ab8886e167c7c4af1e6e16ab58)
* Fix broken root certificates in kdelibs kssltpearson2011-10-061-23/+23
| | | | | | | This repairs spurious certificate warning errors on secure connections via Konqueror/KHTML git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1257611 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Convert remaining references to kde3 (e.g. in paths) to trinitytpearson2011-08-211-1/+1
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1248408 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* rename the following methods:tpearson2011-08-104-8/+8
| | | | | | | | | tqfind find tqreplace replace tqcontains contains git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1246075 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Make kdelibs support X-TDE-* in XDG desktop filestpearson2011-08-051-1/+1
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1245191 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Convert remainder of kdelibs to use currently defined tqt object name defstpearson2011-04-022-4/+4
| | | | | | | This might fix the kio ssl problem git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1226906 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Allow kdelibs to function correctly with TQt for Qt4tpearson2011-02-153-3/+3
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1220926 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Initial conversion for TQt for Qt4 3.4.0 TP2tpearson2011-01-1311-40/+40
| | | | | | | | This will also compile with TQt for Qt3, and should not cause any problems with dependent modules such as kdebase. If it does then it needs to be fixed! git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1214149 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* [kdelibs] move "-include tqt.h" directive to CMAKE_CXX_FLAGS; move ↵samelian2011-01-111-5/+0
| | | | | | TQT_CFLAGS_OTHER definitions to main CMakeLists.txt; remove useless defintions git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1213800 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Revert automated changestpearson2011-01-0722-116/+116
| | | | | | | | Sorry guys, they are just not ready for prime time Work will continue as always git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1212479 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Automated conversion for enhanced compatibility with TQt for Qt4 3.4.0 TP1tpearson2011-01-0322-116/+116
| | | | | | | NOTE: This will not compile with Qt4 (yet), however it does compile with Qt3 git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1211081 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* [kdelibs] added initial cmake supportsamelian2010-10-054-0/+114
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1182854 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Critical security patches for the following vulnerabilities:tpearson2010-09-293-1/+15
| | | | | | | | | | | | CVE-2009-0689 CVE-2009-1687 CVE-2009-1690 CVE-2009-1698 CVE-2009-2702 git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1180823 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* * Large set of SuSE patches to fix bugs and add functionalitytpearson2010-09-024-15/+57
| | | | | | | * kdemm is included but not used by knotify as it does not work out of the box git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1171141 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* TQt conversion fixestpearson2010-08-026-16/+16
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1158447 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Trinity Qt initial conversiontpearson2010-07-3142-776/+776
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1157647 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Synchronize KDE3 SSL root certificates with KDE4 certificatestpearson2010-05-0713-304/+899
| | | | git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1123812 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
* Copy the KDE 3.5 branch to branches/trinity for new KDE 3.5 features.toma2009-11-25114-0/+17094
BUG:215923 git-svn-id: svn://anonsvn.kde.org/home/kde/branches/trinity/kdelibs@1054174 283d02a7-25f6-0310-bc7c-ecb5cbfe19da
generated by cgit v1.2.1 (git 2.18.0) at 2024-12-02 12:50:33 +0000