- 08 Jan, 2013 1 commit
-
-
Edward Thomson committed
-
- 17 Dec, 2012 2 commits
-
-
According to man 3 SSL_shutdown / TLS, "If a unidirectional shutdown is enough (the underlying connection shall be closed anyway), this first call to SSL_shutdown() is sufficient." Currently, an unidirectional shutdown is enough, since gitno_ssl_teardown is called by gitno_close only. Do so to avoid further errors (by misbehaving peers for example). Fixes #1129.
Michael Schubert committed -
Don't return an error just because GITNO_CONNECT_SSL_NO_CHECK_CERT is set.
Michael Schubert committed
-
- 26 Nov, 2012 1 commit
-
-
3f9eb1e5 introduced support for SSL certificates issued for IP addresses, making use of in_addr and in_addr6 structs. On FreeBSD these are defined in (a file included in) <netinet/in.h>, so include that file on FreeBSD and get the build working again.
Fraser Tweedale committed
-
- 07 Nov, 2012 1 commit
-
-
Eduardo Bart committed
-
- 06 Nov, 2012 2 commits
-
-
inet_pton is available only in windows vista or later, fixed the issue by reimplementing it using WSAStringToAddress
Eduardo Bart committed -
Philip Kelley committed
-
- 01 Nov, 2012 1 commit
-
-
Philip Kelley committed
-
- 20 Oct, 2012 1 commit
-
-
The fetch code takes advantage of this to implement a progress callback every 100kb of transfer.
Ben Straub committed
-
- 03 Sep, 2012 2 commits
-
-
SSL_get_error() allows to receive a result code for various SSL operations. Depending on the return value (see man (3) SSL_get_error) there might be additional information in the OpenSSL error queue. Return the queued message if available, otherwise set an error message corresponding to the return code.
Michael Schubert committed -
Michael Schubert committed
-
- 28 Aug, 2012 1 commit
-
-
Passing SSL_VERIFY_PEER makes OpenSSL shut down the connection if the certificate is invalid, without giving us a chance to ignore that error. Pass SSL_VERIFY_NONE and call SSL_get_verify_result if the user wanted us to check. When no CNs match, we used to jump to on_error which gave a bogus error as that's for OpenSSL errors. Jump to cert_fail so we tell the user that the error came from checking the certificate.
Carlos Martín Nieto committed
-
- 30 Jul, 2012 3 commits
-
-
SSL isn't the only way that a transport can be encrypted. The new name will make it easier to merge the SSH support.
Carlos Martín Nieto committed -
Using the callbacks makes it clearer and reduces the amount of #ifdefs and ifs and we need in the code.
Carlos Martín Nieto committed -
This allows us to add capabilitites to both at the same time, keeps them in sync and removes a lot of code. gitno_buffer now uses a callback to fill its buffer, allowing us to use the same interface for git and http (which uses callbacks).
Carlos Martín Nieto committed
-
- 24 Jul, 2012 1 commit
-
-
nulltoken committed
-
- 22 Jun, 2012 1 commit
-
-
Vicent Marti committed
-
- 20 Jun, 2012 2 commits
-
-
Chris Young committed
-
Chris Young committed
-
- 15 Jun, 2012 1 commit
-
-
Errors were due to not including winsock2 early enough.
Tim Clem committed
-
- 14 Jun, 2012 2 commits
-
-
Chris Young committed
-
- 13 Jun, 2012 1 commit
-
-
Needs AmigaOS.cmake now from CMake package at OS4Depot, or contents below: --8<-- SET(AMIGA 1) SET(CMAKE_SHARED_LIBRARY_C_FLAGS "-fPIC") SET(CMAKE_SHARED_LIBRARY_CREATE_C_FLAGS "-shared") --8<--
Chris Young committed
-
- 09 Jun, 2012 1 commit
-
-
Chris Young committed
-
- 07 Jun, 2012 2 commits
-
-
Chris Young committed
-
nulltoken committed
-
- 06 Jun, 2012 1 commit
-
-
Carlos Martín Nieto committed
-
- 27 May, 2012 1 commit
-
-
Otherwise we can't cross-compile on Linux.
Scott J. Goldman committed
-
- 26 May, 2012 1 commit
-
-
Sometimes it's useful not to perform the check. Allow it to be configurable.
Carlos Martín Nieto committed
-
- 19 May, 2012 8 commits
-
-
Carlos Martín Nieto committed
-
Carlos Martín Nieto committed
-
It's too much work for now to redo everything. Move the ssl context struct to transport.h
Carlos Martín Nieto committed -
Carlos Martín Nieto committed
-
Carlos Martín Nieto committed
-
This should help us free some resources, though the libraries do keep some buffers allocated regardless.
Carlos Martín Nieto committed -
Add specific functions that use OpenSSL instead of GnuTLS
Carlos Martín Nieto committed -
If it's not available, an error saying so will be returned when trying to use a https:// URL. This also unifies a lot of the network code to use git_transport in many places instead of an socket descriptor.
Carlos Martín Nieto committed
-
- 08 May, 2012 1 commit
-
-
Clear the error in pkt when we notice that the remote is starting to send the packfile. Fix the format string for Windows networking errors.
Carlos Martín Nieto committed
-
- 07 May, 2012 1 commit
-
-
Previously, it was defined in netops.c, but it's also needed in one of the clar tests, so I figured we might as well just make it global for the whole project. Without it, the mingw32 linker won't resolve GetProcessId() (called from the core/errors.c clar test) because of some conditionals in windows.h.
Scott J. Goldman committed
-
- 05 May, 2012 1 commit
-
-
gitno_connect() can return an error or socket, which is fine on most platforms where sockets are file descriptors (signed int), but on Windows, SOCKET is an unsigned type, which is problematic when we are trying to test if the socket was actually a negative error code. This fix seperates the error code and socket in gitno_connect(), and fixes the error handling in do_connect() functions to compensate. It appears that git_connect() and the git-transport do_connect() functions had bugs in the non-windows cases too (leaking sockets, and not properly reporting connection error, respectively) so I went ahead and fixed those too.
Scott J. Goldman committed
-