index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
CHANGES
Age
Commit message (
Expand
)
Author
2013-01-18
Add code to download CRLs based on CRLDP extension.
Dr. Stephen Henson
2013-01-18
New option to add CRLs for s_client and s_server.
Dr. Stephen Henson
2013-01-17
initial support for delta CRL generations by diffing two full CRLs
Dr. Stephen Henson
2013-01-17
New functions to set lookup_crls callback and to retrieve internal X509_STORE
Dr. Stephen Henson
2013-01-16
print out issuer and subject unique identifier fields in certificates
Dr. Stephen Henson
2013-01-15
Generalise OCSP I/O functions to support dowloading of other ASN1
Dr. Stephen Henson
2012-12-29
Delegate command line handling for many common options in s_client/s_server to
Dr. Stephen Henson
2012-12-29
add SSL_CONF functions and documentation (backport from HEAD)
Dr. Stephen Henson
2012-12-26
SSL/TLS record tracing code (backport from HEAD).
Dr. Stephen Henson
2012-12-26
Add support for printing out and retrieving EC point formats extension.
Dr. Stephen Henson
2012-12-26
Add ctrl and utility functions to retrieve raw cipher list sent by client in
Dr. Stephen Henson
2012-12-26
Add three Suite B modes to TLS code, supporting RFC6460.
Dr. Stephen Henson
2012-12-26
add suite B chain validation flags and associated verify errors
Dr. Stephen Henson
2012-12-26
Make tls1_check_chain return a set of flags indicating checks passed
Dr. Stephen Henson
2012-12-26
Abort handshake if signature algorithm used not supported by peer.
Dr. Stephen Henson
2012-12-26
check EC tmp key matches preferences
Dr. Stephen Henson
2012-12-26
Add support for certificate stores in CERT structure. This makes it
Dr. Stephen Henson
2012-12-26
New function ssl_set_client_disabled to set masks for any ciphersuites
Dr. Stephen Henson
2012-12-26
Add new ctrl to retrieve client certificate types, print out
Dr. Stephen Henson
2012-12-26
Separate client and server permitted signature algorithm support: by default
Dr. Stephen Henson
2012-12-26
Add certificate callback. If set this is called whenever a certificate
Dr. Stephen Henson
2012-12-26
New functions to retrieve certificate signatures and signature OID NID.
Dr. Stephen Henson
2012-12-26
Add new "valid_flags" field to CERT_PKEY structure which determines what
Dr. Stephen Henson
2012-12-26
Reorganise supported signature algorithm extension processing.
Dr. Stephen Henson
2012-12-26
Add support for application defined signature algorithms for use with
Dr. Stephen Henson
2012-12-26
Make it possible to delete all certificates from an SSL structure.
Dr. Stephen Henson
2012-12-19
Integrate host, email and IP address checks into X509_verify.
Dr. Stephen Henson
2012-12-19
Backport X509 hostname, IP address and email checking code from HEAD.
Dr. Stephen Henson
2012-12-14
Backport OCSP fixes.
Ben Laurie
2012-12-13
Make verify return errors.
Ben Laurie
2012-09-26
add -trusted_first option and verify flag (backport from HEAD)
Dr. Stephen Henson
2012-09-19
MIPS assembly pack: jumbo update from HEAD.
Andy Polyakov
2012-09-11
Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificate
Dr. Stephen Henson
2012-09-11
Call OCSP Stapling callback after ciphersuite has been chosen, so the
Ben Laurie
2012-08-29
Add linux-x32 target [from HEAD].
Andy Polyakov
2012-05-29
Missing from previous commit.
Ben Laurie
2012-05-13
Experimental multi-implementation support for FIPS capable OpenSSL.
Dr. Stephen Henson
2012-05-11
PR: 2813
Dr. Stephen Henson
2012-05-11
PR: 2811
Dr. Stephen Henson
2012-05-10
Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 and
Dr. Stephen Henson
2012-05-10
Reported by: Solar Designer of Openwall
Dr. Stephen Henson
2012-04-26
Don't try to use unvalidated composite ciphers in FIPS mode
Dr. Stephen Henson
2012-04-26
CHANGES: clarify.
Andy Polyakov
2012-04-26
CHANGES: fix typos and clarify.
Andy Polyakov
2012-04-25
Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL and
Dr. Stephen Henson
2012-04-25
s23_clnt.c: ensure interoperability by maitaining client "version capability"
Andy Polyakov
2012-04-19
update date
Dr. Stephen Henson
2012-04-19
Check for potentially exploitable overflows in asn1_d2i_read_bio
Dr. Stephen Henson
2012-04-17
Disable SHA-2 ciphersuites in < TLS 1.2 connections.
Bodo Möller
2012-04-17
Additional workaround for PR#2771
Dr. Stephen Henson
[next]
