cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/08/01 06:07:54 Modified:jni/native/src ssl.c Log: Check if we have OpenSSL >= 0.9.7 Revision ChangesPath 1.39 +5 -1 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c ==

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c sslutils.c

mturk 2005/06/12 00:33:08 Modified:jni/java/org/apache/tomcat/jni SSL.java jni/native/include ssl_private.h jni/native/src ssl.c sslcontext.c sslutils.c Added: jni/java/org/apache/tomcat/jni PasswordCallback.java Log: Change PasswordCallback in

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

mturk 2005/06/11 11:22:25 Modified:jni/native/src ssl.c sslcontext.c Log: Native part of changes in SSL.java and SSLContext.java Revision ChangesPath 1.33 +9 -1 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

mturk 2005/06/11 00:03:45 Modified:jni/examples/org/apache/tomcat/jni SSLServer.java jni/java/org/apache/tomcat/jni SSLSocket.java jni/native/include ssl_private.h jni/native/os/netware system.c jni/native/os/unix system.c

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

jean-frederic clere wrote: OK, I will create a SSLBIO.java/sslbio.c to go on testing/experimenting using with the BIOCallback, the interest there is to use an hardware accelator with openssl. Please, can you give me a day to finish initial implementation. Hardware accelerator is used by de

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

Mladen Turk wrote: jean-frederic clere wrote: It does not, because it should fit inside the APR standard socket implementation. Having callbacks would actually make a thing way slower, because we would have to call the native, and from the native call the Java that would call back the native a

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/09 03:44:06 Modified:jni/native/src ssl.c Log: Release the byte array elements with JNI_ABORT, because we are not interested in copying the data back from the write call. Revision ChangesPath 1.31 +2 -1 jakarta-tomcat-connectors/jni/native/src/

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/09 03:24:53 Modified:jni/native/src ssl.c Log: Check for exceptions when allocating a new byte array. Also use critial methods instead array copying. On each call delete a local reference to the object so that GC clears that ASAP. Revision ChangesPath

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

jean-frederic clere wrote: It does not, because it should fit inside the APR standard socket implementation. Having callbacks would actually make a thing way slower, because we would have to call the native, and from the native call the Java that would call back the native again. Well we just

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

Mladen Turk wrote: Bill Barker wrote: I am not 100% happy with the code. Mladen already asked me to rollback the changes. It looked OK to me. Basically it's the APR implementation of SSLEngine. Don't really see a problem. It does not, because it should fit inside the APR standard soc

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

jfclere 2005/06/09 02:33:40 Modified:jni/java/org/apache/tomcat/jni BIOCallback.java jni/native/src ssl.c Log: Change the BIOCallback interface to use write(byte[] buf) and read(byte[] buf); The buff is in the native encoding that allows to use it for both stdio/s

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

jfclere 2005/06/09 02:13:55 Modified:jni/examples/org/apache/tomcat/jni SSLServer.java jni/java/org/apache/tomcat/jni BIOCallback.java SSL.java SSLContext.java jni/native/src ssl.c sslcontext.c Log: Undo my previous commit. R

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

Bill Barker wrote: I am not 100% happy with the code. Mladen already asked me to rollback the changes. It looked OK to me. Basically it's the APR implementation of SSLEngine. Don't really see a problem. It does not, because it should fit inside the APR standard socket implementation. Ha

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

- Original Message - From: "jean-frederic clere" <[EMAIL PROTECTED]> To: "Tomcat Developers List" Sent: Thursday, June 09, 2005 12:20 AM Subject: Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c [EMAIL PROTECTED] wrote: jfcle

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

jean-frederic clere wrote: [EMAIL PROTECTED] wrote: Log: Change the BIOCallback interface to use write(byte[] buf) and read(byte[] buf); Add SSL_accept to do the client handshake. Arrange the corresponding example. +++ CUT +++ Hi, I am not 100% happy with the code. Mladen alrea

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

[EMAIL PROTECTED] wrote: jfclere 2005/06/08 09:52:58 Modified:jni/examples/org/apache/tomcat/jni SSLServer.java jni/java/org/apache/tomcat/jni BIOCallback.java SSL.java SSLContext.java jni/native/src ssl.c sslcontext.c Log: Chan

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

jfclere 2005/06/08 09:52:58 Modified:jni/examples/org/apache/tomcat/jni SSLServer.java jni/java/org/apache/tomcat/jni BIOCallback.java SSL.java SSLContext.java jni/native/src ssl.c sslcontext.c Log: Change the BIOCallback interfac

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/07 11:46:09 Modified:jni/native/src ssl.c Log: Make sure 2048 and 4096 bit temp keys are initialized to NULL. Revision ChangesPath 1.26 +9 -7 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c =

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/07 11:42:06 Modified:jni/native/src ssl.c Log: Use SSL as class name for setPassword(BIO) Revision ChangesPath 1.25 +3 -3 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c =

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/07 11:38:48 Modified:jni/java/org/apache/tomcat/jni SSL.java jni/native/src ssl.c Log: Add function for setting the global password. Something like JSSE keystore password. Revision ChangesPath 1.13 +7 -1 jakarta-tomcat-connector

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslutils.c

mturk 2005/06/07 11:22:22 Modified:jni/java/org/apache/tomcat/jni SSL.java jni/native/include ssl_private.h jni/native/src ssl.c sslutils.c Log: Use global RSA and DSA temp keys. Also do not initialize 2048 bit key at startup unless explicitly aske

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/07 04:14:21 Modified:jni/java/org/apache/tomcat/jni SSL.java jni/native/src ssl.c Log: Add function for setting the global password callback BIO. Revision ChangesPath 1.10 +7 -1 jakarta-tomcat-connectors/jni/java/org/apache/tomcat

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c sslutils.c

mturk 2005/06/07 04:05:07 Modified:jni/native/include ssl_private.h jni/native/src ssl.c sslcontext.c sslutils.c Log: Add global password callback handle. In case we set the callback BIO per context then it will be used to allow multple passwords and keys per vho

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/06/06 01:14:50 Modified:jni/native/include ssl_private.h jni/native/src ssl.c Log: Fix temp key generation. Revision ChangesPath 1.14 +2 -2 jakarta-tomcat-connectors/jni/native/include/ssl_private.h Index: ssl_private.h ==

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c

mturk 2005/06/02 02:52:46 Modified:jni/java/org/apache/tomcat/jni SSL.java SSLContext.java jni/native/src ssl.c sslcontext.c Log: Add functions for defining acceptable CA names. Revision ChangesPath 1.8 +3 -1 jakarta-tomcat-connectors/jni/java

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c sslutils.c

mturk 2005/06/02 00:44:39 Modified:jni/java/org/apache/tomcat/jni SSLContext.java jni/native/include ssl_private.h jni/native/src ssl.c sslcontext.c sslutils.c Log: Add more configuration directives to SSL Context. Revision ChangesPath 1.9

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c sslutils.c

mturk 2005/06/01 03:45:03 Modified:jni/native/include ssl_private.h jni/native/src ssl.c sslcontext.c sslutils.c Log: Add reference counter to BIO handler, so that multiple context can register the same BIO. Revision ChangesPath 1.8 +6 -1 ja

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslcontext.c sslutils.c

mturk 2005/06/01 01:19:39 Modified:jni/java/org/apache/tomcat/jni SSLContext.java jni/native/include ssl_private.h jni/native/src ssl.c sslcontext.c sslutils.c Log: Add functions for setting error and password prompt BIO callbacks. Revision Chang

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/31 23:38:09 Modified:jni/java/org/apache/tomcat/jni SSL.java SSLContext.java jni/native/include ssl_private.h tcn.h jni/native/src ssl.c Log: Add BIO callback to be able to use callback inside JVM for things like logging and password pr

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c sslutils.c

mturk 2005/05/29 23:17:54 Modified:jni/native/include ssl_private.h tcn.h jni/native/src ssl.c sslutils.c Log: Add random seed functions for PRNG initialization. Revision ChangesPath 1.4 +100 -2 jakarta-tomcat-connectors/jni/native/include/ssl_p

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/24 02:34:05 Modified:jni/native/src ssl.c Log: Break compile if HAVE_OPENSSL was not defined. Later we can add dummy funcs if we agree to allow compiling without SSL toolkit Revision ChangesPath 1.12 +2 -1 jakarta-tomcat-connectors/jni/native/s

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/24 02:19:12 Modified:jni/native/src ssl.c Log: Fix compile time warnings about unused variables and casting Revision ChangesPath 1.10 +4 -1 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c ===

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/23 00:20:27 Modified:jni/native/src ssl.c Log: Use thread locking to ensure thread-safetyness in OpenSSL. Revision ChangesPath 1.9 +71 -0 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c =

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/20 02:59:15 Modified:jni/native/src ssl.c Log: Do not call ENGINE_free is not initialized. Revision ChangesPath 1.8 +2 -1 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/20 02:56:48 Modified:jni/native/src ssl.c Log: Fix chekcing for nCipher "chil" engine. Revision ChangesPath 1.7 +6 -4 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/20 02:50:20 Modified:jni/native/src ssl.c Log: Use ssl engine if supported by OpenSSL Revision ChangesPath 1.6 +37 -18jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c =

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/20 02:25:39 Modified:jni/java/org/apache/tomcat/jni SSL.java jni/native/src ssl.c Log: Add engine param to SSL.initialize to enable hardware devices. Revision ChangesPath 1.3 +70 -2 jakarta-tomcat-connectors/jni/java/org/apache/to

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/05/20 00:01:04 Modified:jni/native libtcnative.dsp tcnative.dsp jni/native/src ssl.c Added: jni/java/org/apache/tomcat/jni SSL.java jni/native/include ssl_private.h Log: Add SSL.java for OpenSSL generic constants and functions and

Re: cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

I assume this is going to be a compile/configure time option ? What about using a different approach - generate multiple .so files, one with common/base/non-optional functionality, and one for each optional library. Compile time options makes it hard to distribute compiled binaries and add more

cvs commit: jakarta-tomcat-connectors/jni/native/src ssl.c

mturk 2005/02/02 23:47:49 Added: jni/native/src ssl.c Log: Add OpenSSL support. Revision ChangesPath 1.1 jakarta-tomcat-connectors/jni/native/src/ssl.c Index: ssl.c === /* Copyri