summaryrefslogtreecommitdiffstats
path: root/CHANGES
AgeCommit message (Collapse)Author
1999-11-12Merge some common functionality in the apps, deleteDr. Stephen Henson
the encryption option in the pkcs7 utility (they never did anything) and add a couple more options to pkcs7.
1999-11-11Add password command line options to some utils. Fix and update manDr. Stephen Henson
pages.
1999-11-10Very preliminary POD format documentation for someDr. Stephen Henson
of the openssl utility commands...
1999-11-08Fix to the -revoke option in ca. It was leaking memory, crashing and justDr. Stephen Henson
plain not working :-( Also fix some memory leaks in the new X509_NAME code. Fix so new app_rand code doesn't crash 'x509' and move #include so it compiles under Win32.
1999-11-04Allow additional information to be attached to aDr. Stephen Henson
certificate: currently this includes trust settings and a "friendly name".
1999-11-03Fix assembler for Alpha (tested only on DEC OSF not Linux or *BSD). TheMark J. Cox
problem was that one of the replacement routines had not been working since SSLeay releases. For now the offending routine has been replaced with non-optimised assembler. Even so, this now gives around 95% performance improvement for 1024 bit RSA signs.
1999-10-29Fix to PKCS#7 routines so it can decrypt some oddball RC2 handling.Dr. Stephen Henson
1999-10-27Continued multibyte character support.Dr. Stephen Henson
Add a bunch of functions to simplify the creation of X509_NAME structures. Change the X509_NAME_entry_add stuff in req/ca so it no longer uses X509_NAME_entry_count(): passing -1 has the same effect.
1999-10-26Always hash the pid in the first iteration in ssleay_rand_bytes,Bodo Möller
don't try to detect fork()s by looking at getpid(). The reason is that threads sharing the same memory can have different PIDs; it's inefficient to run RAND_seed each time a different thread calls RAND_bytes.
1999-10-26Make md_rand.c more robust.Bodo Möller
1999-10-26Don't be overly paranoid.Bodo Möller
1999-10-26Various randomness handling bugfixes and improvements --Bodo Möller
some utilities that should have used RANDFILE did not, and -rand handling was broken except in genrsa.
1999-10-21New function ASN1_mbstring_copy() to handle ASN1 string copying. UltimatelyDr. Stephen Henson
this will be used to clear up the horrible DN mess.
1999-10-20Replace the macros in asn1.h with function equivalents. Also make UTF8StringsDr. Stephen Henson
tolerated in certificates.
1999-10-13Initial support for certificate purpose checking: this willDr. Stephen Henson
ultimately lead to certificate chain verification. It is VERY EXPERIMENTAL at present though.
1999-10-11Add EX_DATA support to X509.Dr. Stephen Henson
Fix a bug in the X509_get_d2i() functions which didn't check if crit was NULL.
1999-10-09New functions to parse and get extensions.Dr. Stephen Henson
1999-10-07RC4 tune-up featuring 30-40% performance improvement on most RISCAndy Polyakov
platforms. See crypto/rc4/rc4_enc.c for further details.
1999-10-05Fix for bug in pkcs12 program and typo in ASN1_tag2str().Dr. Stephen Henson
1999-10-05Fix for bug in pkcs12 program and typo in ASN1_tag2str().Dr. Stephen Henson
1999-10-04New option -dhparam to s_server to allow the DH parameter file to be setDr. Stephen Henson
explicitly. Previously it couldn't be changed because it was hard coded as "server.pem".
1999-10-04Add support for public key input and output in rsa and dsa utilities with someDr. Stephen Henson
new DSA public key functions that were missing. Also beginning of a cache for X509_EXTENSION structures: this will allow them to be accessed more quickly for things like certificate chain verification...
1999-10-04Fix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed messageDr. Stephen Henson
contains no certificates. Also fix typo in RANLIB changes.
1999-10-02Fix for base64 BIO decoding bugDr. Stephen Henson
1999-09-24Fix typo that I introduced when reformatting lines.Bodo Möller
1999-09-21Keep line lengths < 80 characters.Bodo Möller
1999-09-20Fix to make s_client and s_server work under Windows. A bit of a hack butDr. Stephen Henson
an improvement on not working at all.
1999-09-18Add new sign and verify members to RSA_METHOD and change SSL code to use signDr. Stephen Henson
and verify rather than direct encrypt/decrypt.
1999-09-18Various CRL enhancements tidies and workaround for broken CRLs.Dr. Stephen Henson
1999-09-10Use non-copying BIO interface in ssltest.c.Bodo Möller
1999-09-08some more patches for avoiding problems with non-automatic variablesBodo Möller
1999-09-08This is preliminary support for an "RSA null" cipher. Unfortunately whenDr. Stephen Henson
OpenSSL is compiled with NO_RSA, no RSA operations can be used: including key generation storage and display of RSA keys. Since these operations are not covered by the RSA patent (my understanding is it only covers encrypt, decrypt, sign and verify) they can be included: this is an often requested feature, attempts to use the patented operations return an error code. This is enabled by setting RSA_NULL. This means that if a particular application has its own legal US RSA implementation then it can use that instead by setting it as the default RSA method. Still experimental and needs some fiddling of the other libraries so they have some options that don't attempt to use RSA if it isn't allowed.
1999-09-07Non-copying interface to BIO pairs.Bodo Möller
It's still totally untested ...
1999-09-07New function to convert ASN1 tag values to strings. Also fix typo in asn1.hDr. Stephen Henson
1999-09-04New UTF8 utility functions to parse/generate UTF8 strings.Dr. Stephen Henson
1999-09-03Fix server behaviour when facing backwards-compatible client hellos.Bodo Möller
1999-09-03Add new 'spkac' utility and several SPKAC utility functions.Dr. Stephen Henson
1999-08-28RIPEMD160 shape-up. Final touch.Andy Polyakov
1999-08-27Allow the extension section specified in config files to be overriddenDr. Stephen Henson
on the command line for various utilities.
1999-08-25Allow the 1.OU="my OU" syntax in 'ca' for SPKACs.Dr. Stephen Henson
1999-08-25Allow extensions to be added to certificate requests, update the sampleDr. Stephen Henson
config file (change RAW to DER).
1999-08-24Fix for a bug which meant encrypting BIOs sometimes wouldn't read the finalDr. Stephen Henson
block.
1999-08-23Initial support for DH_METHOD. Also added a DH lock. A few changes made toDr. Stephen Henson
DSA_METHOD to make it more consistent with RSA_METHOD.
1999-08-22Initial support for DSA_METHOD...Dr. Stephen Henson
1999-08-19Allow memory bios to be read only and change PKCS#7 routines to use them.Dr. Stephen Henson
1999-08-18Fix horrible (and hard to track down) bug in ssl23_get_client_hello:Bodo Möller
In case of a restart, v[0] and v[1] were incorrectly initialised. This was interpreted by ssl3_get_client_key_exchange as an RSA decryption failure (don't ask me why) and caused it to create a _random_ master key instead (even weirder), which obviously led to incorrect input to ssl3_generate_master_secret and thus caused "block cipher pad is wrong" error messages from ssl3_enc for the client's Finished message. Arrgh.
1999-08-17Fix PKCS7_ENC_CONTENT_new() to include a sensible default content type and addDr. Stephen Henson
support for encrypted content type in PKCS7_set_content().
1999-08-11Add functions to allow extensions to be added to certificate requests.Dr. Stephen Henson
Modify obj_dat.pl to take its files from the command line. Usage is now perl obj_dat.pl objects.h obj_dat.h this should avoid redirection shell escape problems under Win32.
1999-08-09Support for parsing of certificate extensions in PKCS#10 requests: these areDr. Stephen Henson
used by things like Xenroll. Also include documentation for extendedKeyUsage extension.
1999-08-09-crlf option.Bodo Möller
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-31 21:35:17 +0000