openssl: free peer certificate after validating it

Signed-off-by: Felix Fietkau <[email protected]>

add missing include files

Signed-off-by: Felix Fietkau <[email protected]>

openssl: disable host CN checks for cyassl (TODO)

Signed-off-by: Felix Fietkau <[email protected]>

polarssl: check us->notify_verify_error for NULL before calling it

Signed-off-by: Felix Fietkau <[email protected]>

ustream-example-client: fix usage information

Signed-off-by: Felix Fietkau <[email protected]>

implement certificate validation (including CN verification)

Signed-off-by: Felix Fietkau <[email protected]>

fix CyaSSL build

Signed-off-by: Felix Fietkau <[email protected]>

Write pending data after connecting

fixes issues with incoming writes before the ssl negotiation is complete

Signed-off-by: Felix Fietkau <[email protected]>

add client example code

Signed-off-by: Felix Fietkau <[email protected]>

polarssl: enable client side ssl verification if a certificate was loaded

Signed-off-by: Felix Fietkau <[email protected]>

give the main context a type instead of making it void *

Signed-off-by: Felix Fietkau <[email protected]>

ustream-ssl: always check connection at the beginning of a session

Signed-off-by: Felix Fietkau <[email protected]>

ustream-server-example: close connection on error

Signed-off-by: Felix Fietkau <[email protected]>

example: rename to ustream-example-server

Signed-off-by: Felix Fietkau <[email protected]>

polarssl: fix error check on write

Signed-off-by: Felix Fietkau <[email protected]>

polarssl: add support for version 1.3

Signed-off-by: Felix Fietkau <[email protected]>

Add version detection of CyaSSL and make the cyassl backend compatible with both legacy and current CyaSSL versions

avoid installing internal header files

Signed-off-by: Felix Fietkau <[email protected]>

polarssl: disable perfect forward secrecy, it slows down each connection handshake by about 130 ms of cpu-bound activity

Signed-off-by: Felix Fietkau <[email protected]>

consume all data after a socket write error

Signed-off-by: Felix Fietkau <[email protected]>

add polarssl support

Signed-off-by: Felix Fietkau <[email protected]>

split cyassl and openssl sources, add ssl library abstraction

Signed-off-by: Felix Fietkau <[email protected]>

example: ignore SIGPIPE

Signed-off-by: Felix Fietkau <[email protected]>

build: remove install prefix override

Signed-off-by: Felix Fietkau <[email protected]>

fix read polling by putting the buffer prepare in a loop

allow user to process more than a single buffer's worth of data in one call

Signed-off-by: Felix Fietkau <[email protected]>

add s->poll wrapper

Signed-off-by: Felix Fietkau <[email protected]>

use libm with cyassl

Signed-off-by: Felix Fietkau <[email protected]>

remove commented out include/link directories

Signed-off-by: Felix Fietkau <[email protected]>

add copyright info and license

Signed-off-by: Felix Fietkau <[email protected]>

fix compile errors on linux

Signed-off-by: Felix Fietkau <[email protected]>

return -1/0 instead of ssl specific return codes when setting crt/key files

Signed-off-by: Felix Fietkau <[email protected]>

only export one symbol from the lib, containing a struct with all functions. useful for using ustream-ssl as a plugin

Signed-off-by: Felix Fietkau <[email protected]>

install headers and library

fix logic inversion

Initial import