Age | Commit message (Collapse) | Author |
|
Changed the behavior of the verify_fun option so that
the application can be responsible for handling path validation
errors even on the server side. Also replaced the not yet
documented validate_extensions_fun to be handled by the
verify_fun instead.
If the verify callback fun returns {fail, Reason}, the verification process is
immediately stopped and an alert is sent to the peer and the TLS/SSL
handshake is terminated. If the verify callback fun returns {valid,
UserState}, the verification process is continued. If the verify callback
fun always returns {valid, UserState}, the TLS/SSL handshake will not be
terminated with respect to verification failures and the connection
will be established. The verify callback fun will also be
able to verify application specific extensions.
|
|
Added support for inputing certificates and keys directly in DER format
these options will override the pem-file options if specified.
|
|
* tj/ct-timestamp-granularity:
Include milliseconds in timestamps in Common Test log entries
OTP-8808
|
|
* nick/ssh/fix-process-leak/OTP-8807:
Fix race condition when terminating a connection.
fix process leak in ssh_system_sup (dynamicaly created childs where not cleaned up)
|
|
|
|
cleaned up)
The ssh_system_sup supervisor supervises one ssh_subsystem_sup process for
every client connection. There was no functionality to free resources
(terminate_child/ delete_child) when a client connection was closed.
Which lead to one ssh_subsystem_sup and one ssh_channel_sup process left over.
This commit adds ssh_system_sup:stop_subsystem/2 and code that calls it
in ssh_connection_manager:terminate/2.
|
|
* dgud/ssl-commit-example-certs:
Cleanup ssl configure parts
Remove cert building from Makefiles
Checkin example certs instead of generating them.
|
|
Conflicts:
lib/kernel/doc/src/notes.xml
lib/kernel/vsn.mk
|
|
* rani/sctp-sndrcvinfo/OTP-8795:
Fix xfer_active close expection for Solaris behaviour
Keep default #sctp_sndrcvinfo{} fields on gen_sctp:send/4
Fill in sinfo_assoc_id in struct sctp_sndrcvinfo for getopt()
Conflicts:
lib/kernel/test/gen_sctp_SUITE.erl
|
|
* rani/sctp-linger-bugfix/OTP-8726:
Fix SCTP linger option
|
|
* lars/et/broken-links-in-documentation/OTP-8796:
Fixed broken links in the documentation.
|
|
|
|
* 'hb/kernel/net_set_ticktime/OTP-8787' of ../hasse_otp:
Fix a bug that could cause the net_kernel process to crash.
|
|
* pg/fix-hipe-load:
Fix hipe:load/1
OTP-8802
|
|
* mp/fix-hipe-icode-exceptions:
fix crash in hipe_icode_exceptions
OTP-8800
|
|
* dgud/public_key/make_cert_fix:
Complete rename of erl_make_certs
Rename
Fix issuer issue in generated certs
|
|
* maint-r13:
Remove copyright headers in vsn.mk files
Conflicts:
lib/appmon/vsn.mk
lib/erl_docgen/vsn.mk
lib/inets/vsn.mk
lib/kernel/vsn.mk
lib/reltool/vsn.mk
lib/ssl/vsn.mk
lib/stdlib/vsn.mk
lib/tools/vsn.mk
lib/tv/vsn.mk
lib/xmerl/vsn.mk
|
|
|
|
|
|
Copyright notices serve no useful purpose in vsn.mk files, and
only complicate scripts that automatically update version numbers.
|
|
Avoiding cross-compilation and other problems by keeping them in git
instead of generating them each time. I think the reason to generate
them was that a valid date limitation, now that we can specify
the date, I have set them to be valid for 15 years.
|
|
|
|
|
|
* maint-r13:
asn1 tests: Remove duplicated SUITE data directories
Update of vsn.mk, relnotes and appup for patch in R13B04 track
Add support for Extension addition group
Conflicts:
lib/asn1/test/Makefile
lib/asn1/test/asn1_SUITE.erl.src
lib/asn1/vsn.mk
OTP-8598
|
|
Handling of unkown CA certificats was changed in ssl and
public_key to work as intended.
In the process of doing this some test cases has been corrected as
they where wrong but happened to work together with the
incorrect unknown CA handling.
|
|
|
|
|
|
Changed test so that the test cases testing all different ciphers
also sends data so that that the calls to crypto cipher functions
are also tested.
|
|
inet:setopts(S, [{linger,{true,2}}]) returned {error,einval} for
SCTP sockets. The inet_drv had a bug when checking the option size.
|
|
* dgud/ssl/handskake_client_key/OTP-8793:
Fix handshake problem with multiple messages in one packet
|
|
* dgud/ssl/empty_msg_problem/OTP-8790:
Fix receiving empty packets.
|
|
into dev
* lars/docbuilder/center-tag-problem-in-edoc-to-xml/OTP-8784:
Fixed problem with tbody when all tables are handled the same.
Fixed problem with a centered table that was transformed into an xml document which then produced mis-formatted html.
|
|
* lars/erl_docgen/xsl-html-gen-for-comref/OTP-8792:
Fixed the transformation from xml to html of the funcs block in comref pages.
|
|
|
|
* lars/xmerl/removed-empty-file/OTP-8789:
Removed the empty file xmerl_dtd.erl.
|
|
|
|
|
|
This fixes a problem in the HiPE compiler's BEAM-to-Icode
pass where it can crash due to the BEAM compiler's merging
of identical basic blocks with different exception handling
contexts. This bug has been latent, but is now exposed by
what appears to be more aggressive optimizations in BEAM.
The added comment explains things in more detail.
|
|
* pan/ets_binary_overhead/OTP-8762:
Remove binary overhead counter from ets objects
|
|
* pan/ets_select_reverse/OTP-7863:
Add documentation for ets:select_reverse/1/2/3
Add testcase for ets:select_reverse/1/2/3
|
|
* pan/ms_transform_warnings/OTP-6759:
Add testcases for ms_transform warning and fix scoping
Add warnings for shadowed variables in ms_transform funs
|
|
* pg/fix-crypto-rc4_encrypt_with_state:
Fix RC4 stream cipher binding (crypto:rc4_encrypt_with_state/2)
OTP-8781 - RC4 stream cipher didn't work. This since the new NIF
implementation of crypto:rc4_encrypt_with_state/2
introduced in crypto-2.0 didn't return an updated
state. (Thanks to Paul Guyot)
|
|
* rickard/ssl-cross/OTP-8791:
Fix SSL build failure when building in minimal source tree
Fix SSL build failure when building in minimal source tree
|
|
Building in a source tree without prebuilt platform independent
build results failed on the SSL examples when building on
Windows.
|
|
Empty packets where not delivered from ssl, it incorrectly assumed
there was no data.
|
|
Building in a source tree without prebuilt platform independent
build results failed on the SSL examples when cross building.
This has been solved by not building the SSL examples during a
cross build.
|
|
hipe:load/1 (and unexported hipe:load/2) just did not work. Calling it
would fail with a badmatch because only the hipe chunk was passed to
do_load/3's third parameter called WholeModule. Since this parameter is
then passed to beam_lib:all_chunks/1 which accepts the whole module as a
binary as well as a path to the beam file, and since a path is exactly
what we have in load/2, the fix consists in letting do_load/3 accept a
path and passing it from load/2.
|
|
* maint-r13:
Add test suite for jinterface
|
|
../kenneth_otp into HEAD
* 'kenneth/asn1/ExtensionAdditionGroup/OTP-8598' of ../kenneth_otp:
Update of vsn.mk, relnotes and appup for patch in R13B04 track
Add support for Extension addition group
|
|
* 'bjorn/asn1/eliminate-duplicate-data-dir' of ../bjorn_otp:
asn1 tests: Remove duplicated SUITE data directories
|