Age | Commit message (Collapse) | Author | |
---|---|---|---|
2005-12-05 | Update from 0.9.8-stable. | Dr. Stephen Henson | |
2005-12-02 | New functions to support opaque EVP_CIPHER_CTX handling. | Dr. Stephen Henson | |
2005-11-20 | Extensive OID code enhancement and fixes. | Dr. Stephen Henson | |
2005-11-15 | disable some invalid ciphersuites | Bodo Möller | |
2005-11-15 | deFUDify: don't require OPENSSL_EC_BIN_PT_COMP | Bodo Möller | |
2005-11-06 | Update from stable branch. | Dr. Stephen Henson | |
2005-11-01 | Document it | Richard Levitte | |
2005-10-26 | harmonize with 0.9.7-stable and 0.9.8-stable variants of CHANGES | Bodo Möller | |
2005-10-22 | Change bn_mul_mont declaration and BN_MONT_CTX. Update CHANGES. | Andy Polyakov | |
2005-10-19 | one time CAN->CVE update | Mark J. Cox | |
2005-10-15 | Add in CHANGES for 0.9.7i. | Richard Levitte | |
2005-10-11 | Make sure head CHANGES is up to date, we refer to this in announce.txt | Mark J. Cox | |
2005-10-08 | New option SSL_OP_NO_COMP to disable compression. New ctrls to set | Dr. Stephen Henson | |
maximum send fragment size. Allocate I/O buffers accordingly. | |||
2005-10-01 | new option "openssl ciphers -V" | Bodo Möller | |
2005-09-02 | Two new verify flags functions. | Dr. Stephen Henson | |
2005-09-01 | Initial support for ASN1 print code. | Dr. Stephen Henson | |
WARNING WARNING WARNING, experimental code, handle with care, use at your own risk, may contain nuts. | |||
2005-08-31 | Integrated support for PVK files. | Dr. Stephen Henson | |
2005-08-25 | Keep cipher lists sorted in the source instead of sorting them at | Nils Larsch | |
runtime, thus removing the need for a lock. Add a test to ssltest to verify that the cipher lists are sorted. | |||
2005-08-23 | recent DH change does not avoid *all* possible small-subgroup attacks; | Bodo Möller | |
let's be clear about that | |||
2005-08-21 | Make D-H safer, include well-known primes. | Ben Laurie | |
2005-08-21 | Command line support for RSAPublicKey format. | Dr. Stephen Henson | |
2005-08-20 | Remove ASN1_METHOD code replace with new ASN1 alternative. | Dr. Stephen Henson | |
2005-08-14 | Let the TLSv1_method() etc. functions return a const SSL_METHOD | Nils Larsch | |
pointer and make the SSL_METHOD parameter in SSL_CTX_new, SSL_CTX_set_ssl_version and SSL_set_ssl_method const. | |||
2005-08-07 | Final(?) WinCE update. | Andy Polyakov | |
2005-08-05 | Initialize SSL_METHOD structures at compile time. This removes the need | Dr. Stephen Henson | |
for locking code. The CRYPTO_LOCK_SSL_METHOD lock is now no longer used. | |||
2005-08-04 | Allow PKCS7_decrypt() to work if no cert supplied. | Dr. Stephen Henson | |
2005-07-25 | Add support for setting IDP too. | Dr. Stephen Henson | |
2005-07-25 | Allow setting of all fields in CRLDP. Few cosmetic changes to output. | Dr. Stephen Henson | |
2005-07-24 | Print out previously unsupported fields in CRLDP by i2r instead of i2v. | Dr. Stephen Henson | |
Cosmetic changes to IDP printout. | |||
2005-07-23 | Initial print only support for IDP CRL extension. | Dr. Stephen Henson | |
2005-07-05 | Changes from the 0.9.8 branch. | Richard Levitte | |
2005-07-05 | Changes from the 0.9.8 branch. | Richard Levitte | |
2005-07-05 | CHANGES and TABLE sync with 0.9.8. | Andy Polyakov | |
2005-07-04 | Update from stable branch. | Dr. Stephen Henson | |
2005-06-02 | Typo. | Dr. Stephen Henson | |
2005-06-02 | Update CHANGES. | Dr. Stephen Henson | |
2005-05-29 | Change the source and output paths for 'chil' and '4758cca' engines so that | Geoff Thorpe | |
dynamic loading is consistent with respect to engine ids. | |||
2005-05-26 | make sure DSA signing exponentiations really are constant-time | Bodo Möller | |
2005-05-18 | Version changes where needed. | Richard Levitte | |
2005-05-16 | Change wording for BN_mod_exp_mont_consttime() entry | Bodo Möller | |
2005-05-16 | Implement fixed-window exponentiation to mitigate hyper-threading | Bodo Möller | |
timing attacks. BN_FLG_EXP_CONSTTIME requests this algorithm, and this done by default for RSA/DSA/DH private key computations unless RSA_FLAG_NO_EXP_CONSTTIME/DSA_FLAG_NO_EXP_CONSTTIME/ DH_FLAG_NO_EXP_CONSTTIME is set. Submitted by: Matthew D Wood Reviewed by: Bodo Moeller | |||
2005-05-15 | Make -CSP option work again in pkcs12 utility by checking for | Dr. Stephen Henson | |
attribute in EVP_PKEY structure. | |||
2005-05-11 | Don't use the SSL 2.0 Client Hello format if SSL 2.0 is disabled | Bodo Möller | |
with the SSL_OP_NO_SSLv2 option. | |||
2005-05-10 | give EC_GROUP_new_by_nid a more meanigful name: | Nils Larsch | |
EC_GROUP_new_by_nid -> EC_GROUP_new_by_curve_name | |||
2005-05-09 | give EC_GROUP_*_nid functions a more meaningful name | Bodo Möller | |
EC_GROUP_get_nid -> EC_GROUP_get_curve_name EC_GROUP_set_nid -> EC_GROUP_set_curve_name | |||
2005-05-01 | Support for smime-type MIME parameter. | Dr. Stephen Henson | |
2005-04-26 | Port BN_MONT_CTX_set_locked() from stable branch. | Dr. Stephen Henson | |
The function rsa_eay_mont_helper() has been removed because it is no longer needed after this change. | |||
2005-04-26 | some updates for the blinding code; summary: | Nils Larsch | |
- possibility of re-creation of the blinding parameters after a fixed number of uses (suggested by Bodo) - calculatition of the rsa::e in case it's absent and p and q are present (see bug report #785) - improve the performance when if one rsa structure is shared by more than a thread (see bug report #555) - fix the problem described in bug report #827 - hide the definition ot the BN_BLINDING structure in bn_blind.c | |||
2005-04-26 | Add DTLS support. | Ben Laurie | |
2005-04-25 | first step to melt down ChangeLog.0_9_7-stable_not-in-head :-) | Bodo Möller | |