Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-02-01 | Improve WINCE support. | Andy Polyakov | |
Submitted by: Pierre Delaage (cherry picked from commit a006fef78e56b078549a80f4bb4518b6a02eba84) Resolved conflicts: crypto/bio/bss_dgram.c ssl/d1_lib.c util/pl/VC-32.pl | |||
2013-11-14 | Fix compilation with no-nextprotoneg. | Piotr Sikora | |
PR#3106 | |||
2013-10-07 | Constification. | Ben Laurie | |
2013-06-12 | Typo: don't call RAND_cleanup during app startup. | Dr. Stephen Henson | |
2013-03-28 | Call RAND_cleanup in openssl application. | Dr. Stephen Henson | |
(cherry picked from commit 944bc29f9004cf8851427ebfa83ee70b8399da57) | |||
2013-01-18 | Add code to download CRLs based on CRLDP extension. | Dr. Stephen Henson | |
Just a sample, real world applications would have to be cleverer. | |||
2013-01-18 | New option to add CRLs for s_client and s_server. | Dr. Stephen Henson | |
2013-01-17 | Typo (PR2959). | Dr. Stephen Henson | |
2013-01-17 | add option to get a certificate or CRL from a URL | Dr. Stephen Henson | |
2012-12-19 | Backport X509 hostname, IP address and email checking code from HEAD. | Dr. Stephen Henson | |
2011-11-13 | Add Next Protocol Negotiation. | Ben Laurie | |
2011-10-09 | Backport PSS signature support from HEAD. | Dr. Stephen Henson | |
2011-05-11 | Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERN | Dr. Stephen Henson | |
all ssl related structures are opaque and internals cannot be directly accessed. Many applications will need some modification to support this and most likely some additional functions added to OpenSSL. The advantage of this option is that any application supporting it will still be binary compatible if SSL structures change. (backport from HEAD). | |||
2009-10-31 | Add option to allow in-band CRL loading in verify utility. Add function | Dr. Stephen Henson | |
load_crls and tidy up load_certs. Remove useless purpose variable from verify utility: now done with args_verify. | |||
2009-09-30 | PR: 2064, 728 | Dr. Stephen Henson | |
Submitted by: steve@openssl.org Add support for custom headers in OCSP requests. | |||
2009-08-05 | PR: 2000 | Dr. Stephen Henson | |
Submitted by: Vadim Zeitlin <vz-openssl@zeitlins.org> Approved by: steve@openssl.org Make no-comp compile without warnings. | |||
2009-07-27 | Change STRING to OPENSSL_STRING etc as common words such | Dr. Stephen Henson | |
as "STRING" cause conflicts with other headers/libraries. | |||
2008-11-24 | Update from stable-branch. | Dr. Stephen Henson | |
2008-11-16 | Integrate J-PAKE and TLS-PSK. Increase PSK buffer size. Fix memory leaks. | Ben Laurie | |
2008-11-12 | Update from stable branch. | Dr. Stephen Henson | |
2008-10-26 | Add JPAKE. | Ben Laurie | |
2008-08-06 | Remove the dual-callback scheme for numeric and pointer thread IDs, | Geoff Thorpe | |
deprecate the original (numeric-only) scheme, and replace with the CRYPTO_THREADID object. This hides the platform-specifics and should reduce the possibility for programming errors (where failing to explicitly check both thread ID forms could create subtle, platform-specific bugs). Thanks to Bodo, for invaluable review and feedback. | |||
2008-07-03 | Revert my earlier CRYPTO_THREADID commit, I will commit a reworked | Geoff Thorpe | |
version some time soon. | |||
2008-06-02 | Avoid case in ca.c fix. | Dr. Stephen Henson | |
2008-05-31 | Stop const mismatch warning in VC++. | Dr. Stephen Henson | |
2008-05-26 | LHASH revamp. make depend. | Ben Laurie | |
2008-03-28 | There was a need to support thread ID types that couldn't be reliably cast | Geoff Thorpe | |
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed version was added but it required portable code to check *both* modes to determine equality. This commit maintains the availability of both thread ID types, but deprecates the type-specific accessor APIs that invoke the callbacks - instead a single type-independent API is used. This simplifies software that calls into this interface, and should also make it less error-prone - as forgetting to call and compare *both* thread ID accessors could have led to hard-to-debug/infrequent bugs (that might only affect certain platforms or thread implementations). As the CHANGES note says, there were corresponding deprecations and replacements in the thread-related functions for BN_BLINDING and ERR too. | |||
2008-03-12 | And so it begins... | Dr. Stephen Henson | |
Initial support for CMS. Add zlib compression BIO. Add AES key wrap implementation. Generalize S/MIME MIME code to support CMS and/or PKCS7. | |||
2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
2007-04-11 | New -mac and -macopt options to dgst utility. Reimplement -hmac option in | Dr. Stephen Henson | |
terms of new API. | |||
2006-04-17 | If we include winsock2.h then FD_SET wants an unsigned type for an fd. | Dr. Stephen Henson | |
2006-04-09 | Add RSA ctrl for padding mode, add ctrl support in pkeyutl. | Dr. Stephen Henson | |
2006-04-08 | Reformat pkeyutl.c, add support for verify operation but nothing actually | Dr. Stephen Henson | |
supports it (yet). | |||
2006-03-28 | Fix bug where freed OIDs could be accessed in EVP_cleanup() by | Dr. Stephen Henson | |
defering freeing in OBJ_cleanup(). | |||
2005-11-06 | Collect timing procedures in apps/apps.c. It's a bit cruel patch, as it | Andy Polyakov | |
temporarily[!] removes support for couple of esoteric platforms [well, Netware, vxWorks and VMS]. | |||
2005-11-04 | Eliminate remaining calls to stat in apps/apps.c and unify WIN32_rename for | Andy Polyakov | |
all Windows targets. | |||
2005-11-04 | Eliminate dependency on read/write/stat in apps under _WIN32. | Andy Polyakov | |
2005-11-03 | Get rid of arcane reference to _fmode in apps/apps.h. Binary open is | Andy Polyakov | |
handles properly by bss_file.c, which renders _fmode redundant. | |||
2005-08-31 | Integrated support for PVK files. | Dr. Stephen Henson | |
2005-08-21 | Command line support for RSAPublicKey format. | Dr. Stephen Henson | |
2005-04-19 | Various Win32 and other fixes for warnings and compilation errors. | Dr. Stephen Henson | |
Fix Win32 build system to use 'Makefile' instead of 'Makefile.ssl'. | |||
2005-04-15 | const fixes | Nils Larsch | |
2005-04-05 | some const fixes | Nils Larsch | |
2004-09-07 | Reformat smime utility. | Dr. Stephen Henson | |
Add support for policy checking in verify utility. | |||
2004-09-06 | New X509_VERIFY_PARAM structure and associated functionality. | Dr. Stephen Henson | |
This tidies up verify parameters and adds support for integrated policy checking. Add support for policy related command line options. Currently only in smime application. WARNING: experimental code subject to change. | |||
2004-05-17 | Remove some unnecessary recursive includes from the internal apps.h header, | Geoff Thorpe | |
and include bn.h in those C files that need bignum functionality. | |||
2004-04-20 | Reduce chances of issuer and serial number duplication by use of random | Dr. Stephen Henson | |
initial serial numbers. PR: 842 | |||
2003-11-28 | Move another common functionality (reproduced so far with cut'n'paste) | Richard Levitte | |
to apps.c, and give it the hopefully descriptive name parse_yesno(). | |||
2003-11-28 | Forgot to change the declaration of do_subject() to one of parse_name()... | Richard Levitte | |
2003-11-28 | Allow multi-valued rdns in subjects. This adds the -multivalue-rdn option | Richard Levitte | |
to 'openssl req' and 'openssl ca'. PR: 779 Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de> Reviewed by: Richard Levitte (there will be some follow-up changes) |