Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-02-27 | Detect symmetric crypto errors in PKCS7_decrypt. | Dr. Stephen Henson | |
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug. | |||
2012-02-26 | Configure: remove adding of -D_XPG4_2 -D__EXTENSIONS__ in sctp builds, | Andy Polyakov | |
see corresponding commit to HEAD for details. | |||
2012-02-26 | seed.c: Solaris portability fix from HEAD. | Andy Polyakov | |
2012-02-25 | PR: 2730 | Dr. Stephen Henson | |
Submitted by: Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se> VMS fixes: disable SCTP by default. | |||
2012-02-23 | correct CHANGESOpenSSL_1_0_1-beta3 | Dr. Stephen Henson | |
2012-02-23 | PR: 2711 | Dr. Stephen Henson | |
Submitted by: Tomas Mraz <tmraz@redhat.com> Tolerate bad MIME headers in parser. | |||
2012-02-23 | PR: 2696 | Dr. Stephen Henson | |
Submitted by: Rob Austein <sra@hactrn.net> Fix inverted range problem in RFC3779 code. Thanks to Andrew Chi for generating test cases for this bug. | |||
2012-02-23 | PR: 2727 | Dr. Stephen Henson | |
Submitted by: Bruce Stephens <bruce.stephens@isode.com> Use same construct for EXHEADER in srp/Makefile as other makefiles to cope with possibly empty EXHEADER. | |||
2012-02-22 | ABI compliance fixes. | Dr. Stephen Henson | |
Move new structure fields to end of structures. Import library codes from 1.0.0 and recreate new ones. | |||
2012-02-21 | update NEWS | Dr. Stephen Henson | |
2012-02-17 | typo | Dr. Stephen Henson | |
2012-02-16 | Fix bug in CVE-2011-4619: check we have really received a client hello | Dr. Stephen Henson | |
before rejecting multiple SGC restarts. | |||
2012-02-15 | Additional compatibility fix for MDC2 signature format. | Dr. Stephen Henson | |
Update RSA EVP_PKEY_METHOD to use the OCTET STRING form of MDC2 signature: this will make all versions of MDC2 signature equivalent. | |||
2012-02-15 | An incompatibility has always existed between the format used for RSA | Dr. Stephen Henson | |
signatures and MDC2 using EVP or RSA_sign. This has become more apparent when the dgst utility in OpenSSL 1.0.0 and later switched to using the EVP_DigestSign functions which call RSA_sign. This means that the signature format OpenSSL 1.0.0 and later used with dgst -sign and MDC2 is incompatible with previous versions. Add detection in RSA_verify so either format works. Note: MDC2 is disabled by default in OpenSSL and very rarely used in practice. | |||
2012-02-12 | PR: 2708 | Dr. Stephen Henson | |
Submitted by: Bruce Stephens <bruce.stephens@isode.com> Translate path separators correctly for $fipsdir in util/mk1mf.pl | |||
2012-02-12 | PR: 2713 | Dr. Stephen Henson | |
Submitted by: Tomas Mraz <tmraz@redhat.com> Move libraries that are not needed for dynamic linking to Libs.private in the .pc files | |||
2012-02-11 | PR: 2717 | Dr. Stephen Henson | |
Submitted by: Tim Rice <tim@multitalents.net> Make compilation work on OpenServer 5.0.7 | |||
2012-02-11 | PR: 2716 | Dr. Stephen Henson | |
Submitted by: Adam Langley <agl@google.com> Fix handling of exporter return value and use OpenSSL indentation in s_client, s_server. | |||
2012-02-11 | PR: 2703 | Dr. Stephen Henson | |
Submitted by: Alexey Melnikov <alexey.melnikov@isode.com> Fix some memory and resource leaks in CAPI ENGINE. | |||
2012-02-11 | PR: 2705 | Dr. Stephen Henson | |
Submitted by: Alexey Melnikov <alexey.melnikov@isode.com> Only create ex_data indices once for CAPI engine. | |||
2012-02-11 | Submitted by: Eric Rescorla <ekr@rtfm.com> | Dr. Stephen Henson | |
Further fixes for use_srtp extension. | |||
2012-02-11 | apps/s_cb.c: recognize latest TLS versions [from HEAD]. | Andy Polyakov | |
2012-02-10 | PR: 2704 | Dr. Stephen Henson | |
Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr> Fix srp extension. | |||
2012-02-10 | PR: 2710 | Dr. Stephen Henson | |
Submitted by: Tomas Mraz <tmraz@redhat.com> Check return codes for load_certs_crls. | |||
2012-02-10 | PR: 2714 | Dr. Stephen Henson | |
Submitted by: Tomas Mraz <tmraz@redhat.com> Make no-srp work. | |||
2012-02-10 | only cleanup ctx if we need to, save ctx flags when we do | Dr. Stephen Henson | |
2012-02-10 | add fips hmac option and fips blocking overrides to command line utilities | Dr. Stephen Henson | |
2012-02-10 | Submitted by: Eric Rescorla <ekr@rtfm.com> | Dr. Stephen Henson | |
Fix encoding of use_srtp extension to be compliant with RFC5764 | |||
2012-02-09 | Modify client hello version when renegotiating to enhance interop with | Dr. Stephen Henson | |
some servers. | |||
2012-02-02 | bn_nist.c: make new optimized code dependent on BN_LLONG [from HEAD]. | Andy Polyakov | |
2012-02-02 | hpux-parisc2-*: engage assembler [from HEAD] and make it link. | Andy Polyakov | |
2012-01-25 | ghash-x86.pl: engage original MMX version in no-sse2 builds [from HEAD]. | Andy Polyakov | |
2012-01-25 | x86_64-xlate.pl: 1.0.1-specific typo. | Andy Polyakov | |
2012-01-24 | only include bn.h once | Dr. Stephen Henson | |
2012-01-24 | only include evp.h once | Dr. Stephen Henson | |
2012-01-24 | only include string.h once | Dr. Stephen Henson | |
2012-01-22 | return error if md is NULL | Dr. Stephen Henson | |
2012-01-21 | cryptlib.c: make even non-Windows builds "strtoull-agnostic" [from HEAD]. | Andy Polyakov | |
2012-01-21 | x86_64-xlate.pl: proper solution for RT#2620 [from HEAD]. | Andy Polyakov | |
2012-01-19 | change version to beta3-dev | Dr. Stephen Henson | |
2012-01-19 | update files for beta2 releaseOpenSSL_1_0_1-beta2 | Dr. Stephen Henson | |
2012-01-19 | prepare for beta2 | Dr. Stephen Henson | |
2012-01-18 | Fix for DTLS DoS issue introduced by fix for CVE-2011-4109. | Dr. Stephen Henson | |
Thanks to Antonio Martin, Enterprise Secure Access Research and Development, Cisco Systems, Inc. for discovering this bug and preparing a fix. (CVE-2012-0050) | |||
2012-01-18 | undef some symbols that cause problems with make depend for fips builds | Dr. Stephen Henson | |
2012-01-17 | fix CHANGES entry | Dr. Stephen Henson | |
2012-01-15 | 1.0.1-specific OPNESSL vs. OPENSSL typo. | Andy Polyakov | |
PR: 2613 Submitted by: Leena Heino | |||
2012-01-15 | Fix OPNESSL vs. OPENSSL typos [from HEAD]. | Andy Polyakov | |
PR: 2613 Submitted by: Leena Heino | |||
2012-01-15 | fix warning | Dr. Stephen Henson | |
2012-01-12 | Sanitize usage of <ctype.h> functions. It's important that characters | Andy Polyakov | |
are passed zero-extended, not sign-extended [from HEAD]. PR: 2682 | |||
2012-01-12 | sparcv9cap.c: omit unused variable. | Andy Polyakov | |