| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-01-22 | Run util/openssl-format-source -v -c . | Matt Caswell | |
| Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2011-09-23 | use keyformat for -x509toreq, don't hard code PEM | Dr. Stephen Henson | |
| 2010-06-15 | Fix warnings (From HEAD, original patch by Ben). | Dr. Stephen Henson | |
| 2010-01-12 | PR: 2136 | Dr. Stephen Henson | |
| Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at> Add options to output hash using older algorithm compatible with OpenSSL versions before 1.0.0 | |||
| 2009-10-18 | Add new function X509_STORE_set_verify_cb and use it in apps | Dr. Stephen Henson | |
| 2009-07-27 | Change STRING to OPENSSL_STRING etc as common words such | Dr. Stephen Henson | |
| as "STRING" cause conflicts with other headers/libraries. | |||
| 2009-07-14 | Oops, use right function name... | Dr. Stephen Henson | |
| 2009-07-13 | Update from HEAD. | Dr. Stephen Henson | |
| 2009-06-26 | Allow checking of self-signed certifictes if a flag is set. | Dr. Stephen Henson | |
| 2009-03-23 | Typo in usage message. | Dr. Stephen Henson | |
| 2009-01-07 | Updatde from stable branch. | Dr. Stephen Henson | |
| 2008-06-04 | More type-checking. | Ben Laurie | |
| 2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
| 2006-05-07 | Add support for default public key digest type ctrl. | Dr. Stephen Henson | |
| 2006-04-19 | Remove link between digests and signature algorithms. | Dr. Stephen Henson | |
| Use cross reference table in ASN1_item_sign(), ASN1_item_verify() to eliminate the need for algorithm specific code. | |||
| 2005-08-20 | Remove ASN1_METHOD code replace with new ASN1 alternative. | Dr. Stephen Henson | |
| 2005-07-16 | make | Nils Larsch | |
| ./configure no-deprecated [no-dsa] [no-dh] [no-ec] [no-rsa] make depend all test work again PR: 1159 | |||
| 2005-04-05 | some const fixes | Nils Larsch | |
| 2005-04-02 | use SHA-1 as the default digest for the apps/openssl commands | Nils Larsch | |
| 2005-03-31 | Give everything prototypes (well, everything that's actually used). | Ben Laurie | |
| 2004-12-05 | Use X509_cmp_time() in -checkend option, to support GeneralizedTime. | Dr. Stephen Henson | |
| 2004-11-13 | Fix x509.c so it creates serial number file again if no | Dr. Stephen Henson | |
| serial number is supplied on command line. | |||
| 2004-05-12 | Make self signing option of 'x509' use random serial numbers too. | Dr. Stephen Henson | |
| 2004-04-21 | New option to 'x509' -next_serial. This outputs the certificate | Dr. Stephen Henson | |
| serial number plus 1 to the output file. Its purpose is to allow serial number files to be initialized when random serial numbers are used. | |||
| 2004-04-21 | Use X509_get_serialNumber() instead of accessing internals in x509.c | Dr. Stephen Henson | |
| 2004-04-19 | header cleanup in apps/ | Geoff Thorpe | |
| 2003-12-27 | Use BUF_strlcpy() instead of strcpy(). | Richard Levitte | |
| Use BUF_strlcat() instead of strcat(). Use BIO_snprintf() instead of sprintf(). In some cases, keep better track of buffer lengths. This is part of a large change submitted by Markus Friedl <markus@openbsd.org> | |||
| 2003-09-21 | In order to get the expected self signed error when | Dr. Stephen Henson | |
| calling X509_verify_cert() in x509.c the cert should not be added to the trusted store. | |||
| 2003-07-03 | Add -issuer_hash and make -subject_hash the default way to get the | Richard Levitte | |
| subject hash, with -hash a synonym kept around for backward compatibility reasons. PR: 650 | |||
| 2003-04-04 | Convert save_serial() to work like save_index(), and add a | Richard Levitte | |
| rotate_serial() that works like rotate_index(). | |||
| 2003-04-03 | Remove unused variable. | Richard Levitte | |
| 2003-04-03 | Make it possible to have multiple active certificates with the same | Richard Levitte | |
| subject. | |||
| 2003-03-31 | No need to test -setalias twice. | Richard Levitte | |
| PR: 556 | |||
| 2003-01-30 | Add the possibility to build without the ENGINE framework. | Richard Levitte | |
| PR: 287 | |||
| 2002-12-03 | EXIT() may mean return(). That's confusing, so let's have it really mean | Richard Levitte | |
| exit() in whatever way works for the intended platform, and define OPENSSL_EXIT() to have the old meaning (the name is of course because it's only used in the openssl program) | |||
| 2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
| 2002-11-11 | Variables on the stack must be initialized or we can't depend on any | Richard Levitte | |
| initial value. For errline/errorline, we did depend on that, erroneously | |||
| 2002-11-08 | -CAserial does take a filename argument. | Richard Levitte | |
| PR: 332 | |||
| 2002-08-12 | get rid of EVP_PKEY_ECDSA (now we have EVP_PKEY_EC instead) | Bodo Möller | |
| Submitted by: Nils Larsch | |||
| 2002-08-01 | Make it possible to load keys from stdin, and restore that | Richard Levitte | |
| functionality in the programs that had that before. Part fo PR 164 | |||
| 2002-07-29 | Only use DSA-functions if available. | Lutz Jänicke | |
| Submitted by: "Hellan,Kim KHE" <KHE@kmd.dk> Reviewed by: PR: 167 | |||
| 2002-05-30 | CAformat should not be used for CA key format. | Richard Levitte | |
| 2002-02-22 | Config code updates. | Dr. Stephen Henson | |
| CONF_modules_unload() now calls CONF_modules_finish() automatically. Default use of section openssl_conf moved to CONF_modules_load() Load config file in several openssl utilities. Most utilities now load modules from the config file, though in a few (such as version) this isn't done because it couldn't be used for anything. In the case of ca and req the config file used is the same as the utility itself: that is the -config command line option can be used to specify an alternative file. | |||
| 2002-02-13 | ECDSA support | Bodo Möller | |
| Submitted by: Nils Larsch <nla@trustcenter.de> | |||
| 2001-09-12 | Reduce the header dependencies on engine.h in apps/. | Geoff Thorpe | |
| 2001-09-01 | Make the necessary changes to work with the recent "ex_data" overhaul. | Geoff Thorpe | |
| See the commit log message for that for more information. NB: X509_STORE_CTX's use of "ex_data" support was actually misimplemented (initialisation by "memset" won't/can't/doesn't work). This fixes that but requires that X509_STORE_CTX_init() be able to handle errors - so its prototype has been changed to return 'int' rather than 'void'. All uses of that function throughout the source code have been tracked down and adjusted. | |||
| 2001-06-28 | Modify apps to use NCONF code instead of old CONF code. | Dr. Stephen Henson | |
| Add new extension functions which work with NCONF. Tidy up extension config routines and remove redundant code. Fix NCONF_get_number(). Todo: more testing of apps to see they still work... | |||
| 2001-06-23 | Use apps_shutdown() in all applications, in case someone decides not | Richard Levitte | |
| to go the monolith way (does anyone do that these days?). NOTE: a few applications are missing in this commit. I've a few more changes in them that I haven't tested yet. | |||
| 2001-06-18 | Provide an application-common setup function for engines and use it | Richard Levitte | |
| everywhere. | |||
| 2001-05-30 | Extend all the loading functions to take an engine pointer, a pass | Richard Levitte | |
| string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too. | |||
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |