openssl - Mirror of https://github.com/openssl/openssl

Age	Commit message (Collapse)	Author
2013-06-12	Typo: don't call RAND_cleanup during app startup.	Dr. Stephen Henson
	(cherry picked from commit 90e7f983b573c3f3c722a02db4491a1b1cd87e8c)
2013-03-28	Call RAND_cleanup in openssl application.	Dr. Stephen Henson

2011-11-13	Add Next Protocol Negotiation.	Ben Laurie

2011-10-09	Backport PSS signature support from HEAD.	Dr. Stephen Henson

2011-05-11	Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERN	Dr. Stephen Henson
	all ssl related structures are opaque and internals cannot be directly accessed. Many applications will need some modification to support this and most likely some additional functions added to OpenSSL. The advantage of this option is that any application supporting it will still be binary compatible if SSL structures change. (backport from HEAD).
2009-10-31	Add option to allow in-band CRL loading in verify utility. Add function	Dr. Stephen Henson
	load_crls and tidy up load_certs. Remove useless purpose variable from verify utility: now done with args_verify.
2009-09-30	PR: 2064, 728	Dr. Stephen Henson
	Submitted by: steve@openssl.org Add support for custom headers in OCSP requests.
2009-08-05	PR: 2000	Dr. Stephen Henson
	Submitted by: Vadim Zeitlin <vz-openssl@zeitlins.org> Approved by: steve@openssl.org Make no-comp compile without warnings.
2009-07-27	Change STRING to OPENSSL_STRING etc as common words such	Dr. Stephen Henson
	as "STRING" cause conflicts with other headers/libraries.
2008-11-24	Update from stable-branch.	Dr. Stephen Henson

2008-11-16	Integrate J-PAKE and TLS-PSK. Increase PSK buffer size. Fix memory leaks.	Ben Laurie

2008-11-12	Update from stable branch.	Dr. Stephen Henson

2008-10-26	Add JPAKE.	Ben Laurie

2008-08-06	Remove the dual-callback scheme for numeric and pointer thread IDs,	Geoff Thorpe
	deprecate the original (numeric-only) scheme, and replace with the CRYPTO_THREADID object. This hides the platform-specifics and should reduce the possibility for programming errors (where failing to explicitly check both thread ID forms could create subtle, platform-specific bugs). Thanks to Bodo, for invaluable review and feedback.
2008-07-03	Revert my earlier CRYPTO_THREADID commit, I will commit a reworked	Geoff Thorpe
	version some time soon.
2008-06-02	Avoid case in ca.c fix.	Dr. Stephen Henson

2008-05-31	Stop const mismatch warning in VC++.	Dr. Stephen Henson

2008-05-26	LHASH revamp. make depend.	Ben Laurie

2008-03-28	There was a need to support thread ID types that couldn't be reliably cast	Geoff Thorpe
	to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed version was added but it required portable code to check both modes to determine equality. This commit maintains the availability of both thread ID types, but deprecates the type-specific accessor APIs that invoke the callbacks - instead a single type-independent API is used. This simplifies software that calls into this interface, and should also make it less error-prone - as forgetting to call and compare both thread ID accessors could have led to hard-to-debug/infrequent bugs (that might only affect certain platforms or thread implementations). As the CHANGES note says, there were corresponding deprecations and replacements in the thread-related functions for BN_BLINDING and ERR too.
2008-03-12	And so it begins...	Dr. Stephen Henson
	Initial support for CMS. Add zlib compression BIO. Add AES key wrap implementation. Generalize S/MIME MIME code to support CMS and/or PKCS7.
2007-09-26	Support for certificate status TLS extension.	Dr. Stephen Henson

2007-04-11	New -mac and -macopt options to dgst utility. Reimplement -hmac option in	Dr. Stephen Henson
	terms of new API.
2006-04-17	If we include winsock2.h then FD_SET wants an unsigned type for an fd.	Dr. Stephen Henson

2006-04-09	Add RSA ctrl for padding mode, add ctrl support in pkeyutl.	Dr. Stephen Henson

2006-04-08	Reformat pkeyutl.c, add support for verify operation but nothing actually	Dr. Stephen Henson
	supports it (yet).
2006-03-28	Fix bug where freed OIDs could be accessed in EVP_cleanup() by	Dr. Stephen Henson
	defering freeing in OBJ_cleanup().
2005-11-06	Collect timing procedures in apps/apps.c. It's a bit cruel patch, as it	Andy Polyakov
	temporarily[!] removes support for couple of esoteric platforms [well, Netware, vxWorks and VMS].
2005-11-04	Eliminate remaining calls to stat in apps/apps.c and unify WIN32_rename for	Andy Polyakov
	all Windows targets.
2005-11-04	Eliminate dependency on read/write/stat in apps under _WIN32.	Andy Polyakov

2005-11-03	Get rid of arcane reference to _fmode in apps/apps.h. Binary open is	Andy Polyakov
	handles properly by bss_file.c, which renders _fmode redundant.
2005-08-31	Integrated support for PVK files.	Dr. Stephen Henson

2005-08-21	Command line support for RSAPublicKey format.	Dr. Stephen Henson

2005-04-19	Various Win32 and other fixes for warnings and compilation errors.	Dr. Stephen Henson
	Fix Win32 build system to use 'Makefile' instead of 'Makefile.ssl'.
2005-04-15	const fixes	Nils Larsch

2005-04-05	some const fixes	Nils Larsch

2004-09-07	Reformat smime utility.	Dr. Stephen Henson
	Add support for policy checking in verify utility.
2004-09-06	New X509_VERIFY_PARAM structure and associated functionality.	Dr. Stephen Henson
	This tidies up verify parameters and adds support for integrated policy checking. Add support for policy related command line options. Currently only in smime application. WARNING: experimental code subject to change.
2004-05-17	Remove some unnecessary recursive includes from the internal apps.h header,	Geoff Thorpe
	and include bn.h in those C files that need bignum functionality.
2004-04-20	Reduce chances of issuer and serial number duplication by use of random	Dr. Stephen Henson
	initial serial numbers. PR: 842
2003-11-28	Move another common functionality (reproduced so far with cut'n'paste)	Richard Levitte
	to apps.c, and give it the hopefully descriptive name parse_yesno().
2003-11-28	Forgot to change the declaration of do_subject() to one of parse_name()...	Richard Levitte

2003-11-28	Allow multi-valued rdns in subjects. This adds the -multivalue-rdn option	Richard Levitte
	to 'openssl req' and 'openssl ca'. PR: 779 Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de> Reviewed by: Richard Levitte (there will be some follow-up changes)
2003-11-28	Netware-specific changes,	Richard Levitte
	PR: 780 Submitted by: Verdon Walker <VWalker@novell.com> Reviewed by: Richard Levitte
2003-09-09	Generalise the definition of strcasecmp() and strncasecmp() for	Richard Levitte
	platforms that don't (necessarely) have it. In the case of VMS, this means moving a couple of functions from apps/ to crypto/ and make them general (although only used privately).
2003-04-04	Convert save_serial() to work like save_index(), and add a	Richard Levitte
	rotate_serial() that works like rotate_index().
2003-04-03	Make it possible to have multiple active certificates with the same	Richard Levitte
	subject.
2003-01-30	Add the possibility to build without the ENGINE framework.	Richard Levitte
	PR: 287
2002-11-13	Security fixes brought forward from 0.9.7.	Ben Laurie

2002-10-10	VMS below version 7 doesn't have strcasecmp, so let's roll our own on VMS.	Richard Levitte
	PR: 184
2002-10-09	Make sure that the 'config' variable is correctly defined and declared	Richard Levitte
	for monolithic as well as non-monolithic biuld. More work is probably needed in this area. PR: 144