Age | Commit message (Collapse) | Author | |
---|---|---|---|
1999-11-12 | Merge some common functionality in the apps, delete | Dr. Stephen Henson | |
the encryption option in the pkcs7 utility (they never did anything) and add a couple more options to pkcs7. | |||
1999-11-11 | Add password command line options to some utils. Fix and update man | Dr. Stephen Henson | |
pages. | |||
1999-11-10 | Very preliminary POD format documentation for some | Dr. Stephen Henson | |
of the openssl utility commands... | |||
1999-11-08 | Fix to the -revoke option in ca. It was leaking memory, crashing and just | Dr. Stephen Henson | |
plain not working :-( Also fix some memory leaks in the new X509_NAME code. Fix so new app_rand code doesn't crash 'x509' and move #include so it compiles under Win32. | |||
1999-11-04 | Allow additional information to be attached to a | Dr. Stephen Henson | |
certificate: currently this includes trust settings and a "friendly name". | |||
1999-11-03 | Fix assembler for Alpha (tested only on DEC OSF not Linux or *BSD). The | Mark J. Cox | |
problem was that one of the replacement routines had not been working since SSLeay releases. For now the offending routine has been replaced with non-optimised assembler. Even so, this now gives around 95% performance improvement for 1024 bit RSA signs. | |||
1999-10-29 | Fix to PKCS#7 routines so it can decrypt some oddball RC2 handling. | Dr. Stephen Henson | |
1999-10-27 | Continued multibyte character support. | Dr. Stephen Henson | |
Add a bunch of functions to simplify the creation of X509_NAME structures. Change the X509_NAME_entry_add stuff in req/ca so it no longer uses X509_NAME_entry_count(): passing -1 has the same effect. | |||
1999-10-26 | Always hash the pid in the first iteration in ssleay_rand_bytes, | Bodo Möller | |
don't try to detect fork()s by looking at getpid(). The reason is that threads sharing the same memory can have different PIDs; it's inefficient to run RAND_seed each time a different thread calls RAND_bytes. | |||
1999-10-26 | Make md_rand.c more robust. | Bodo Möller | |
1999-10-26 | Don't be overly paranoid. | Bodo Möller | |
1999-10-26 | Various randomness handling bugfixes and improvements -- | Bodo Möller | |
some utilities that should have used RANDFILE did not, and -rand handling was broken except in genrsa. | |||
1999-10-21 | New function ASN1_mbstring_copy() to handle ASN1 string copying. Ultimately | Dr. Stephen Henson | |
this will be used to clear up the horrible DN mess. | |||
1999-10-20 | Replace the macros in asn1.h with function equivalents. Also make UTF8Strings | Dr. Stephen Henson | |
tolerated in certificates. | |||
1999-10-13 | Initial support for certificate purpose checking: this will | Dr. Stephen Henson | |
ultimately lead to certificate chain verification. It is VERY EXPERIMENTAL at present though. | |||
1999-10-11 | Add EX_DATA support to X509. | Dr. Stephen Henson | |
Fix a bug in the X509_get_d2i() functions which didn't check if crit was NULL. | |||
1999-10-09 | New functions to parse and get extensions. | Dr. Stephen Henson | |
1999-10-07 | RC4 tune-up featuring 30-40% performance improvement on most RISC | Andy Polyakov | |
platforms. See crypto/rc4/rc4_enc.c for further details. | |||
1999-10-05 | Fix for bug in pkcs12 program and typo in ASN1_tag2str(). | Dr. Stephen Henson | |
1999-10-05 | Fix for bug in pkcs12 program and typo in ASN1_tag2str(). | Dr. Stephen Henson | |
1999-10-04 | New option -dhparam to s_server to allow the DH parameter file to be set | Dr. Stephen Henson | |
explicitly. Previously it couldn't be changed because it was hard coded as "server.pem". | |||
1999-10-04 | Add support for public key input and output in rsa and dsa utilities with some | Dr. Stephen Henson | |
new DSA public key functions that were missing. Also beginning of a cache for X509_EXTENSION structures: this will allow them to be accessed more quickly for things like certificate chain verification... | |||
1999-10-04 | Fix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message | Dr. Stephen Henson | |
contains no certificates. Also fix typo in RANLIB changes. | |||
1999-10-02 | Fix for base64 BIO decoding bug | Dr. Stephen Henson | |
1999-09-24 | Fix typo that I introduced when reformatting lines. | Bodo Möller | |
1999-09-21 | Keep line lengths < 80 characters. | Bodo Möller | |
1999-09-20 | Fix to make s_client and s_server work under Windows. A bit of a hack but | Dr. Stephen Henson | |
an improvement on not working at all. | |||
1999-09-18 | Add new sign and verify members to RSA_METHOD and change SSL code to use sign | Dr. Stephen Henson | |
and verify rather than direct encrypt/decrypt. | |||
1999-09-18 | Various CRL enhancements tidies and workaround for broken CRLs. | Dr. Stephen Henson | |
1999-09-10 | Use non-copying BIO interface in ssltest.c. | Bodo Möller | |
1999-09-08 | some more patches for avoiding problems with non-automatic variables | Bodo Möller | |
1999-09-08 | This is preliminary support for an "RSA null" cipher. Unfortunately when | Dr. Stephen Henson | |
OpenSSL is compiled with NO_RSA, no RSA operations can be used: including key generation storage and display of RSA keys. Since these operations are not covered by the RSA patent (my understanding is it only covers encrypt, decrypt, sign and verify) they can be included: this is an often requested feature, attempts to use the patented operations return an error code. This is enabled by setting RSA_NULL. This means that if a particular application has its own legal US RSA implementation then it can use that instead by setting it as the default RSA method. Still experimental and needs some fiddling of the other libraries so they have some options that don't attempt to use RSA if it isn't allowed. | |||
1999-09-07 | Non-copying interface to BIO pairs. | Bodo Möller | |
It's still totally untested ... | |||
1999-09-07 | New function to convert ASN1 tag values to strings. Also fix typo in asn1.h | Dr. Stephen Henson | |
1999-09-04 | New UTF8 utility functions to parse/generate UTF8 strings. | Dr. Stephen Henson | |
1999-09-03 | Fix server behaviour when facing backwards-compatible client hellos. | Bodo Möller | |
1999-09-03 | Add new 'spkac' utility and several SPKAC utility functions. | Dr. Stephen Henson | |
1999-08-28 | RIPEMD160 shape-up. Final touch. | Andy Polyakov | |
1999-08-27 | Allow the extension section specified in config files to be overridden | Dr. Stephen Henson | |
on the command line for various utilities. | |||
1999-08-25 | Allow the 1.OU="my OU" syntax in 'ca' for SPKACs. | Dr. Stephen Henson | |
1999-08-25 | Allow extensions to be added to certificate requests, update the sample | Dr. Stephen Henson | |
config file (change RAW to DER). | |||
1999-08-24 | Fix for a bug which meant encrypting BIOs sometimes wouldn't read the final | Dr. Stephen Henson | |
block. | |||
1999-08-23 | Initial support for DH_METHOD. Also added a DH lock. A few changes made to | Dr. Stephen Henson | |
DSA_METHOD to make it more consistent with RSA_METHOD. | |||
1999-08-22 | Initial support for DSA_METHOD... | Dr. Stephen Henson | |
1999-08-19 | Allow memory bios to be read only and change PKCS#7 routines to use them. | Dr. Stephen Henson | |
1999-08-18 | Fix horrible (and hard to track down) bug in ssl23_get_client_hello: | Bodo Möller | |
In case of a restart, v[0] and v[1] were incorrectly initialised. This was interpreted by ssl3_get_client_key_exchange as an RSA decryption failure (don't ask me why) and caused it to create a _random_ master key instead (even weirder), which obviously led to incorrect input to ssl3_generate_master_secret and thus caused "block cipher pad is wrong" error messages from ssl3_enc for the client's Finished message. Arrgh. | |||
1999-08-17 | Fix PKCS7_ENC_CONTENT_new() to include a sensible default content type and add | Dr. Stephen Henson | |
support for encrypted content type in PKCS7_set_content(). | |||
1999-08-11 | Add functions to allow extensions to be added to certificate requests. | Dr. Stephen Henson | |
Modify obj_dat.pl to take its files from the command line. Usage is now perl obj_dat.pl objects.h obj_dat.h this should avoid redirection shell escape problems under Win32. | |||
1999-08-09 | Support for parsing of certificate extensions in PKCS#10 requests: these are | Dr. Stephen Henson | |
used by things like Xenroll. Also include documentation for extendedKeyUsage extension. | |||
1999-08-09 | -crlf option. | Bodo Möller | |