Age | Commit message (Collapse) | Author | |
---|---|---|---|
2009-09-30 | PR: 2064, 728 | Dr. Stephen Henson | |
Submitted by: steve@openssl.org Add support for custom headers in OCSP requests. | |||
2009-09-30 | Free SSL_CTX after BIO | Dr. Stephen Henson | |
2009-07-27 | Update from 1.0.0-stable | Dr. Stephen Henson | |
2009-04-03 | Merge from 1.0.0-stable branch. | Dr. Stephen Henson | |
2009-02-06 | Just to be awkward Ubuntu 8.10 doesn't like _XOPEN_SOURCE_EXTENDED... | Dr. Stephen Henson | |
2009-01-28 | Because DEC C - sorry, HP C - is picky about features, we need to | Richard Levitte | |
define _XOPEN_SOURCE_EXTENDED to reach fd_set and timeval types and functionality. | |||
2008-11-05 | Update obsolete email address... | Dr. Stephen Henson | |
2008-06-04 | More type-checking. | Ben Laurie | |
2008-03-16 | Fix a variety of warnings generated by some elevated compiler-fascism, | Geoff Thorpe | |
OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff... | |||
2008-01-05 | Cygwin compatibility fix to apps/ocsp.c. | Andy Polyakov | |
2008-01-03 | Netware support. | Dr. Stephen Henson | |
Submitted by: Guenter Knauf <eflash@gmx.net> | |||
2007-12-14 | Handle non-SHA1 digests for certids in OCSP test responder. | Dr. Stephen Henson | |
2007-12-04 | Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve | Dr. Stephen Henson | |
Use default algorithms for OCSP request and response signing. New command line option to support other digest use for OCSP certificate IDs. | |||
2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
2007-08-12 | Fix warnings. | Dr. Stephen Henson | |
2007-05-16 | PR: 1516 | Dr. Stephen Henson | |
Revert change in 1516 because it breaks Windows build. Use a modified version of the headers from s_client.c which has used similar functionality without any problems. | |||
2007-04-04 | Don't free a NULL. Coverity ID 112. | Ben Laurie | |
2007-04-04 | Die if serial number is invalid. | Ben Laurie | |
2007-03-29 | Apply a more modern way to get the definition of select(), except for VMS. | Richard Levitte | |
Submitted by Corinna Vinschen <vinschen@redhat.com> | |||
2006-12-25 | Needed definition of _XOPEN_SOURCE_EXTENDED so DEC C on VMS will see | Richard Levitte | |
the declarations of fd_set, select() and so on. | |||
2006-12-13 | properly initialize SSL context, check return value | Nils Larsch | |
2006-08-20 | According to documentation, including time.h declares select() on | Richard Levitte | |
OpenVMS, and possibly more. Ref: http://h71000.www7.hp.com/doc/82final/6529/6529pro_019.html#r_select | |||
2006-07-17 | WIN32 fixes signed/unsigned issues and slightly socket semantics. | Dr. Stephen Henson | |
2006-07-17 | Add -timeout option to ocsp utility. | Dr. Stephen Henson | |
2004-05-17 | Remove some unnecessary recursive includes from the internal apps.h header, | Geoff Thorpe | |
and include bn.h in those C files that need bignum functionality. | |||
2003-09-03 | New -ignore_err option in ocsp application to stop the server | Dr. Stephen Henson | |
exiting on the first error in a request. | |||
2003-04-03 | Correct a lot of printing calls. Remove extra arguments... | Richard Levitte | |
2003-04-03 | Make it possible to have multiple active certificates with the same | Richard Levitte | |
subject. | |||
2003-03-26 | Update ocsp usage message and docs. | Dr. Stephen Henson | |
2003-02-14 | Pay attention to disabled SSL versions. | Richard Levitte | |
PR: 500 | |||
2003-02-14 | Make it possible to disable OCSP, the speed application, and the use of sockets. | Richard Levitte | |
PR: 358 | |||
2002-12-03 | EXIT() may mean return(). That's confusing, so let's have it really mean | Richard Levitte | |
exit() in whatever way works for the intended platform, and define OPENSSL_EXIT() to have the old meaning (the name is of course because it's only used in the openssl program) | |||
2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
2002-10-11 | BN_bn2hex() returns "0" instead of "00" for zero. This disrputs the | Richard Levitte | |
requirement that the serial number always be an even amount of characters. PR: 248 | |||
2002-08-01 | Make it possible to load keys from stdin, and restore that | Richard Levitte | |
functionality in the programs that had that before. Part fo PR 164 | |||
2002-08-01 | Cut'n'paste error with other reposnder certificates cleared. | Richard Levitte | |
PR: 190 | |||
2002-07-10 | Reorder inclusion of header files: | Lutz Jänicke | |
des_old.h redefines crypt: #define crypt(b,s)\ DES_crypt((b),(s)) This scheme leads to failure, if header files with the OS's true definition of crypt() are processed _after_ des_old.h was processed. This is e.g. the case on HP-UX with unistd.h. As evp.h now again includes des.h (which includes des_old.h), this problem only came up after this modification. Solution: move header files (indirectly) including e_os.h before the header files (indirectly) including evp.h. Submitted by: Reviewed by: PR: | |||
2002-06-13 | Fix ext_dat.h extension ordering. | Dr. Stephen Henson | |
Reinstate -reqout code. Avoid coredump in ocsp if setup_verify fails. Fix typo in ocsp usage message. | |||
2002-02-22 | Config code updates. | Dr. Stephen Henson | |
CONF_modules_unload() now calls CONF_modules_finish() automatically. Default use of section openssl_conf moved to CONF_modules_load() Load config file in several openssl utilities. Most utilities now load modules from the config file, though in a few (such as version) this isn't done because it couldn't be used for anything. In the case of ca and req the config file used is the same as the utility itself: that is the -config command line option can be used to specify an alternative file. | |||
2001-08-23 | Load OCSP responder key before waiting for an incoming | Dr. Stephen Henson | |
connection so it can prompt for pass phrase on startup instead of after the first connection. Add -port switch to usage message. | |||
2001-07-13 | Allow OCSP server to handle multiple requests. | Dr. Stephen Henson | |
Document new OCSP options. | |||
2001-07-12 | Initial OCSP server support, using index.txt format. | Dr. Stephen Henson | |
This can process internal requests or behave like a mini responder. Todo: documentation, update usage info. | |||
2001-05-30 | Extend all the loading functions to take an engine pointer, a pass | Richard Levitte | |
string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too. | |||
2001-02-24 | New function and options to check OCSP response validity. | Dr. Stephen Henson | |
2001-02-20 | Fix typo. | Dr. Stephen Henson | |
2001-02-14 | Initial OCSP SSL support. | Dr. Stephen Henson | |
2001-02-13 | New function OCSP_parse_url() and -url option for ocsp utility. | Dr. Stephen Henson | |
Doesn't handle SSL URLs yet. | |||
2001-02-12 | Modify OCSP nonce behaviour. | Dr. Stephen Henson | |
2001-02-09 | Add missing \n's to ocsp usage message. | Dr. Stephen Henson | |
2001-02-08 | Allow various options to be included for signing and verify of | Dr. Stephen Henson | |
OCSP responses. Documentation to follow... Urgh.. this conflicted with the -VAfile patch I hope I haven't broken it. |