| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
In generate_self_signed_certificate
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
Follow up on #29871.
Was checking the wrong parameter, causing the code to ignore provided
stream-specific SSL certificate.
|
| |
|
|
|
| |
Validate that base stream is valid before accepting/connecting.
Also remove unnecessary includes.
|
| |
|
|
|
|
|
| |
connect_to_stream now accepts optional parameter to specify which
certificates to trust.
Implement accept_stream (SSL server) with key/cert parameters to specify
the RSA key and X509 certificate resources.
|
| |
|
|
| |
Allows random bytes, RSA keys, and X509 certificates generation.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Godot core needs MD5/SHA256/AES/Base64 which used to be provided by
separate libraries.
Since we bundle mbedtls in most cases, and we can easily only include
the needed sources if we so desire, let's use it.
To simplify library changes in the future, and better isolate header
dependencies all functions have been wrapped around inside a class in
`core/math/crypto_base.h`.
If the mbedtls module is disabled, we only bundle the needed source
files independently of the `builtin_mbedtls` option.
If the module is enabled, the `builtin_mbedtls` option works as usual.
Also remove some unused headers from StreamPeerMbedTLS which were
causing build issues.
|
| | |
|
| |
|
|
|
|
| |
mbedtls_ssl_read cannot be called with a NULL buffer even if len is 0,
as those are passed to memcpy and compilers doesn't like that.
Always pass a single byte (still len 0 so nothing is actually copied)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Using codespell 1.14.0.
Method:
```
$ cat > ../godot-word-whitelist.txt << EOF
ang
doubleclick
lod
nd
numer
que
te
unselect
EOF
$ codespell -w -q 3 -I ../godot-word-whitelist.txt --skip="./thirdparty,*.po"
$ git diff // undo unwanted changes
```
|
| |
|
|
| |
Happy new year to the wonderful Godot community!
|
| | |
|
| |
|
|
|
| |
Also remove unnecessary `Export('env')` in other SCsubs,
Export should only be used when exporting *new* objects.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes the following GCC 5 warnings and actual bugs:
```
drivers/unix/net_socket_posix.cpp:562:28: warning: comparison between 'enum IP::Type' and 'enum NetSocket::Type' [-Wenum-compare]
modules/gdscript/gdscript_function.cpp:792:26: warning: comparison of constant '17' with boolean expression is always true [-Wbool-compare]
modules/gdscript/gdscript_function.cpp:792:26: warning: logical not is only applied to the left hand side of comparison [-Wlogical-not-parentheses]
modules/gdscript/gdscript_parser.cpp:5082:58: warning: comparison of constant '6' with boolean expression is always false [-Wbool-compare]
modules/gdscript/gdscript_parser.cpp:5082:58: warning: logical not is only applied to the left hand side of comparison [-Wlogical-not-parentheses]
modules/mbedtls/stream_peer_mbed_tls.cpp:286:45: warning: comparison between 'enum StreamPeerTCP::Status' and 'enum StreamPeerSSL::Status' [-Wenum-compare]
modules/mbedtls/stream_peer_mbed_tls.cpp:313:45: warning: comparison between 'enum StreamPeerTCP::Status' and 'enum StreamPeerSSL::Status' [-Wenum-compare]
```
|
| |
|
|
|
| |
Half-open TCP connection can, of course, only be detected by
writing the socket, or waiting for TCP timeout.
|
| |
|
|
|
|
| |
Note, it will only used by the Editor, not when running the game.
This allows package maintainer to compile Godot to use system installed
certificates when accessing the AssetLib.
|
| |
|
|
|
|
| |
This allows more consistency in the manner we include core headers,
where previously there would be a mix of absolute, relative and
include path-dependent includes.
|
| |
|
|
|
| |
_WIN32_WINNT redefinition fix is no longer needed as it was merged
upstream. PR 1453 is still not merged, diff updated to current state.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
This allows to disable modules based on the environment,
in particular `env[tools]` which tells us if we are
building the editor or not.
|
| | |
|
| |
|
|
| |
Fixes build on FreeBSD when system-wide mbedTLS and/or openSSL are installed
|
| |
|
|
|
| |
Using builtin_mbedtls=yes is still the default as many distributions
do not ship with mbedtls included.
|
| |
|
