Skip to content

Try loading OpenSSL using alternative names for 1.1 and 3.x. #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
JPeterMugaas wants to merge 47 commits into
base: master
Choose a base branch
from
Open

Try loading OpenSSL using alternative names for 1.1 and 3.x. #1

JPeterMugaas wants to merge 47 commits into from

Conversation

@JPeterMugaas
Copy link

@JPeterMugaas JPeterMugaas commented Aug 5, 2024

No description provided.

rlebeau
rlebeau reviewed Aug 5, 2024
View reviewed changes
@JPeterMugaas
Remove redundant load attempt.
c189c38
@JPeterMugaas
Fix warning about value not being used.
914c8e4
@JPeterMugaas
Found alt. to SSL_load_error_strings in OpenSSL 1.1.1 headers. Mark E…
a03fa46 
…RR_free_strings as optional.
@JPeterMugaas
Added OpenSSL 1.1 alternatives for OpenSSL_add_all_ciphers and OpenSS…
1ceaa39 
…L_add_all_digests;.
@JPeterMugaas
Commented out some code that just doesn't look right.
f3a2412
@JPeterMugaas
OpenSSL 1.1 alternative to SSLeay_add_ssl_algorithms.
abb9b62
@JPeterMugaas
Forgot something. OOPS!!!
05834dc
@JPeterMugaas
Alternatives to X509_NAME_hash and SSL_get_peer_certificate.
62f20bb
@JPeterMugaas
CRYPTO_LOCK API is gone in this version.
72a4842
@JPeterMugaas
Finally got OpenSSL 3.2 to load.
c72ee44
@JPeterMugaas
The wrong .DLL was being for OpenSSL 1.1.1
35e8e9a
@JPeterMugaas
Fix EVP_CIPHER_CTX_type.
a9f7435
@JPeterMugaas
Add extra safety. Thanks to IndySockets#2 .
9c5bc46
@JPeterMugaas
Start on TLS 1.3.
bb0f080
@JPeterMugaas
More work on trying to get TLS 1.3 in this.
d464583
@JPeterMugaas
TLS 1.3 now works with "OpenSSL 1.1.1w 11 Sep 2023".
3923a04
rlebeau
rlebeau reviewed Aug 7, 2024
View reviewed changes
@JPeterMugaas
The if's were reversed to allow the user to specify a minimum.
d71ed84
@JPeterMugaas
Fixed error in if reversal.
74bb2d0 
Add function to determine if we are using OpenSSL 1.0.2 or earlier.
@JPeterMugaas
SSL_CTRL_SET_MIN_PROTO_VERSION and SSL_CTRL_SET_MAX_PROTO_VERSION are…
08ec18e 
… only available in OpenSSL 1.1.0 or later.
@JPeterMugaas
Fix more type breakage from Open SSL 1.1.0. Introduce some new functi…
8db8dab 
…ons that only load for that and greater.
@JPeterMugaas
SSL_CTX_set_info_callback now works with OpenSSL 1.0.2, 1.1.0, and th…
6c2909c 
…e 3x series.
@JPeterMugaas
SSL_CTX_set_info_callback now works with OpenSSL 1.0.2, 1.1.0, and th…
c11c3e2 
…e 3x series.
@JPeterMugaas
We can't assume TLS 1.3 is available since we support 1.0.2.
c838e2e
@JPeterMugaas
Add {Do not localize} for quoted strings that aren't meant to be loca…
04527f6 
…lized.
@JPeterMugaas
Enable @_threadid_func on Windows.
286cfa4
@JPeterMugaas
Fix put_error and try to match the locking API calls. This is from: I…
0d5662c 
…ndySockets#2
@JPeterMugaas
SSL_CTX_get_cert_store and SSL_get_ex_data_X509_STORE_CTX_idx.
c87ed17
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
rlebeau
rlebeau reviewed Aug 8, 2024
View reviewed changes
@JPeterMugaas
less_than not less_then.
a5e7e9e
@JPeterMugaas
Important change. You are NOT meant to access the fields in SSL_CTX. …
a9e83de 
…You just simply pass SSL_CTX to functions to get field values. This breaks some cert functions so I hope to fix that soon.
@JPeterMugaas
Restore Password Callback and IndySSL_CTX_load_verify_locations.
e44d6b1
rlebeau
rlebeau reviewed Aug 9, 2024
View reviewed changes
@JPeterMugaas
Add TLS_client_method and TLS_server_method.
06633ed
@JPeterMugaas
Use TLS_client_method and TLS_server_method. Verified that TLS_cclien…
50042ba 
…t_method works.
@JPeterMugaas
Fix access violation in IndySSL_CTX_use_certificate_file_PKCS1 and sk…
56006f0 
…_pop_free when CertChain is nil. Fix sk_push being assigned the wrong pointer.
@JPeterMugaas
OnStatusInfoEx now works in TIdServerIOHandlerSSLOpenSSL.
6be768e
@JPeterMugaas
Remove record structures for opaque types in OpenSSL 1.1.0 and use AP…
195b43b 
…I functions instead. Only support OpenSSL 1.1.0 or greater.
@JPeterMugaas
Add SSL_set_min_proto_version and SSL_set_max_proto_version macros.
2df1f5a
@JPeterMugaas
Several things:
9b51aa8 
1) Set min and max protocol versions in TIdSSLSocket.Accept.
2) raise exception if the API failed to set the min and max protocol versions.
3)  working TIdX509SigInfo.GetSignature.
@JPeterMugaas
Remove the usage of some depreciated functions. See: https://docs.ope…
09e2ba0 
…nssl.org/master/man3/SSL_CTX_new/#notes
@JPeterMugaas
Remove IsOpenSSL_1x since this only supports OpenSSL 1.1.0 and greate…
903a27b 
…r. Also remove workaround for the HMAC API breakage as that's no longer needed.
@JPeterMugaas
Try to merge stuff from main branch.
aa87484
@JPeterMugaas
Fix some access violations.
227ae95
@rlebeau rlebeau added this to the IndyTLSOpenSSL 2.0 milestone Dec 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rlebeau rlebeau rlebeau left review comments

Assignees

No one assigned

Labels

None yet

Projects

OpenSSL 3.x upgrade
Status: Todo

Milestone

IndyTLSOpenSSL 2.0

Development

Successfully merging this pull request may close these issues.

2 participants

@JPeterMugaas @rlebeau