Commits · bc · BC / public / external / sofia-sip

14 Jan, 2021 1 commit
- Drop support for TLS versions below 1.2 · 10879f5f
  johan authored Jan 14, 2021
  
  10879f5f
25 Nov, 2020 3 commits
- Compatibility with openssl prior to 1.1.1 · 5515d183
  johan authored Nov 25, 2020
  
  5515d183
- TLS server enforce its cipher list order of preference · 08247311
  johan authored Nov 25, 2020
  
  08247311
- Disable SSL renegotiation and compression · 60d1a336
  johan authored Nov 25, 2020
  
  60d1a336
06 Nov, 2020 1 commit
- Release 1.13.45bc · 9cb99bb8
  François Grisez authored Nov 06, 2020
  
  9cb99bb8
05 Nov, 2020 1 commit
- Add a TLS tport policy flag to accept connections without client certificate · e3d17bec
  François Grisez authored Nov 05, 2020
```
This is usefull to make a server asks for a client certificate, but
without failing if the client cannot provide anything.
```
  e3d17bec
11 May, 2020 1 commit
- SDP parser improvement: authorize RS/RR bandwidth modifiers (RFC 3556) · 065f337a
  François Grisez authored May 11, 2020
  
  065f337a
06 Apr, 2020 1 commit
- Fix invalid read in tport_getaddrinfo() · 5e43be4f
  François Grisez authored Mar 31, 2020
  
  5e43be4f
03 Jan, 2020 1 commit
- Fix crash caused by a double shutdown of TLS sessions · 74935f9c
  François Grisez authored Dec 04, 2019
  
  74935f9c
23 Sep, 2019 2 commits
- Fix memory leak in sofia-sip, when examinig certificates with X509v3 extensions. · 290846f1
  Simon Morlat authored Sep 23, 2019
  
  290846f1
- Clarify sofia-sip policy regarding CNAME vs SubjectAltName. · f0e76eb5
  Simon Morlat authored Sep 23, 2019
```
https://tools.ietf.org/html/rfc5922#section-7.1 says that SubjectAltName should be the only one considered when present, but implementations MAY use CN as well for backward compatibility.
This commit implements the backward compatibility.
```
  f0e76eb5
20 Sep, 2019 2 commits
- Workaround for openssl>=1.1. otherName won't work · d29b4cf4
  Simon Morlat authored Sep 20, 2019
  
  d29b4cf4
- Finally implement a way to get otherName attribute of x509 v3 extensions. · 0fdc9b48
  Simon Morlat authored Sep 20, 2019
  
  0fdc9b48
03 Sep, 2019 1 commit
- Upgrade version number (to fix a miss in before last commit) · a8b247cc
  Simon Morlat authored Sep 03, 2019
  
  a8b247cc
02 Sep, 2019 1 commit
- Fix a possible infinite loop with keepalive timer in flexisip, when EWOULDBLOCK happens. · 0e6ad3de
  Simon Morlat authored Sep 02, 2019
  
  0e6ad3de
09 Aug, 2019 1 commit
- Add support for x509 "otherName" of SAN. · bb3143dd
  Simon Morlat authored Aug 09, 2019
  
  bb3143dd
06 Apr, 2019 1 commit
- Fix compilation error in msg_parser.h with modern compilers. · 8c66a5b2
  Simon Morlat authored Apr 06, 2019
  
  8c66a5b2
27 Mar, 2019 1 commit

Fix mistake in my previous commit. The usage I made of tls_events() was not... · 6cec5174

Simon Morlat authored Mar 27, 2019

Fix mistake in my previous commit. The usage I made of tls_events() was not correct, which resulted in code that could never be executed.

6cec5174

26 Mar, 2019 1 commit
- Revert "Fix bug in url_escape()" · 0875d4cf
  François Grisez authored Mar 26, 2019
```
This reverts commit 9ccfe7a4.
```
  0875d4cf
08 Mar, 2019 1 commit
- Fix bug in url_escape() · 9ccfe7a4
  François Grisez authored Mar 08, 2019
```
Some non-ASCII characters wasn't escaped.
```
  9ccfe7a4
06 Mar, 2019 1 commit

Fix: don't send tls keepalive after an EWOULDBLOCK event. This makes a crash... · 981df70a

Simon Morlat authored Mar 06, 2019

Fix: don't send tls keepalive after an EWOULDBLOCK event. This makes a crash in an assert because the write is never retried.
Furthermore, it makes no sense to send a keepalive if there is data already pending.

981df70a

24 Jan, 2019 1 commit
- Avoid sofia-sip header files to be re-installed if they haven't changed. · f2b5ed37
  Simon Morlat authored Jan 24, 2019
  
  f2b5ed37
07 Jan, 2019 1 commit
- Upgrade sofia sip version number · c306b85c
  Erwan Croze authored Jan 07, 2019
  
  c306b85c
28 Dec, 2018 1 commit
- Add tport error value in outgoing_create to send a 503 · 90cccf36
  Erwan Croze authored Dec 28, 2018
  
  90cccf36
16 Nov, 2018 2 commits
- Merge branch 'dev/fix_tls_setup' into 'bc' · d8c0e52c
  Simon Morlat authored Nov 16, 2018
```
Fix TLS setup

See merge request !1
```
  d8c0e52c
- Fix TLS setup - Use both default system certificates and additionally provided... · 697e869b
  Nicolas Michon authored Nov 16, 2018
```
Fix TLS setup - Use both default system certificates and additionally provided CA certifiates chains
```
  697e869b
16 Oct, 2018 1 commit
- Fix build on Debian < 9 · 8520077a
  François Grisez authored Oct 16, 2018
  
  8520077a
05 Oct, 2018 1 commit
- Fix to be able to use EECDH ciphers with OpenSSL · f3887afc
  Sylvain Berfini authored Oct 05, 2018
  
  f3887afc
19 Sep, 2018 1 commit

Removing the max depth seems to have triggered an issue with an SSL handshake... · c4816a5c

Simon Morlat authored Sep 19, 2018

Removing the max depth seems to have triggered an issue with an SSL handshake that never terminates, causing flexisip unable to serve clients.

c4816a5c

14 Sep, 2018 2 commits
- Remove stupid default limit of 2 for X509 certificate verify chain. · 76875b09
  Simon Morlat authored Sep 14, 2018
  
  76875b09
- Make sofia sip use openssl default locations for CA certificates. · a613e4e8
  Simon Morlat authored Sep 14, 2018
  
  a613e4e8
13 Sep, 2018 1 commit
- Use TLS certificates from linux's standard path (/etc/ssl/certs), and allow... · 2d8fffb7
  Simon Morlat authored Sep 13, 2018
```
Use TLS certificates from linux's standard path (/etc/ssl/certs), and allow wildcard certificate despite RFC5922.
```
  2d8fffb7
11 Sep, 2018 1 commit
- Merge branch 'bc' of https://gitlab.linphone.org/BC/public/external/sofia-sip into bc · 2d4be4e9
  Simon Morlat authored Sep 11, 2018
  
  2d4be4e9
14 Aug, 2018 2 commits
- Disable Graylisting hack when MDNS is activated · 592aa3dd
  Mickaël Turnel authored Aug 14, 2018
  
  592aa3dd
- All MDNS processing has been moved from the resolver to the query · 7386de6c
  Mickaël Turnel authored Aug 14, 2018
```
This fixes some crashes due to the fact that each query has the same resolver
```
  7386de6c
03 Jul, 2018 1 commit
- Add accessor to know if a tport is server. · 132b84fa
  Simon Morlat authored Apr 24, 2018
```
(cherry picked from commit 279f184b)
```
  132b84fa
24 Apr, 2018 1 commit
- Add accessor to know if a tport is server. · 279f184b
  Simon Morlat authored Apr 24, 2018
  
  279f184b
17 Apr, 2018 1 commit
- Merge branch 'master' into bc · 14fb8fd9
  Mickaël Turnel authored Apr 17, 2018
  
  14fb8fd9
16 Apr, 2018 2 commits
- upgrade version number · 2a34c524
  Benjamin REIS authored Apr 16, 2018
  
  2a34c524
- fix typo · 6286d470
  Benjamin REIS authored Apr 16, 2018
  
  6286d470