| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-10-09 | Don't disable TLS v1.2 by default now. | Dr. Stephen Henson | |
| 2011-10-07 | New -force_pubkey option to x509 utility to supply a different public | Dr. Stephen Henson | |
| key to the one in a request. This is useful for cases where the public key cannot be used for signing e.g. DH. | |||
| 2011-09-23 | use keyformat for -x509toreq, don't hard code PEM | Dr. Stephen Henson | |
| 2011-09-23 | PR: 2347 | Dr. Stephen Henson | |
| Submitted by: Tomas Mraz <tmraz@redhat.com> Reviewed by: steve Fix usage message. | |||
| 2011-05-25 | PR: 2527 | Dr. Stephen Henson | |
| Submitted by: Marcus Meissner <meissner@suse.de> Reviewed by: steve Set cnf to NULL to avoid possible double free. | |||
| 2011-05-19 | Implement FIPS_mode and FIPS_mode_set | Dr. Stephen Henson | |
| 2011-05-12 | Enter FIPS mode by calling FIPS_module_mode_set in openssl.c until | Dr. Stephen Henson | |
| FIPS_mode_set is implemented. | |||
| 2011-05-11 | make kerberos work with OPENSSL_NO_SSL_INTERN | Dr. Stephen Henson | |
| 2011-05-09 | Initial TLS v1.2 client support. Include a default supported signature | Dr. Stephen Henson | |
| algorithms extension (including everything we support). Swicth to new signature format where needed and relax ECC restrictions. Not TLS v1.2 client certifcate support yet but client will handle case where a certificate is requested and we don't have one. | |||
| 2011-05-06 | Continuing TLS v1.2 support: add support for server parsing of | Dr. Stephen Henson | |
| signature algorithms extension and correct signature format for server key exchange. All ciphersuites should now work on the server but no client support and no client certificate support yet. | |||
| 2011-04-29 | Initial incomplete TLS v1.2 support. New ciphersuites added, new version | Dr. Stephen Henson | |
| checking added, SHA256 PRF support added. At present only RSA key exchange ciphersuites work with TLS v1.2 as the new signature format is not yet implemented. | |||
| 2011-04-29 | Initial "opaque SSL" framework. If an application defines | Dr. Stephen Henson | |
| OPENSSL_NO_SSL_INTERN all ssl related structures are opaque and internals cannot be directly accessed. Many applications will need some modification to support this and most likely some additional functions added to OpenSSL. The advantage of this option is that any application supporting it will still be binary compatible if SSL structures change. | |||
| 2011-04-23 | More fixes for DSA FIPS overrides. | Dr. Stephen Henson | |
| 2011-04-23 | Make sure overrides work for RSA/DSA. | Dr. Stephen Henson | |
| 2011-04-06 | Add fips hmac key to dgst utility. | Dr. Stephen Henson | |
| 2011-04-04 | FIPS mode support for openssl utility: doesn't work properly yet due | Dr. Stephen Henson | |
| to missing DRBG support in libcrypto. | |||
| 2011-03-25 | Corrections to the VMS build system. | Richard Levitte | |
| Submitted by Steven M. Schweda <sms@antinode.info> | |||
| 2011-03-25 | For VMS, implement the possibility to choose 64-bit pointers with | Richard Levitte | |
| different options: "64" The build system will choose /POINTER_SIZE=64=ARGV if the compiler supports it, otherwise /POINTER_SIZE=64. "64=" The build system will force /POINTER_SIZE=64. "64=ARGV" The build system will force /POINTER_SIZE=64=ARGV. | |||
| 2011-03-23 | make update (1.1.0-dev) | Richard Levitte | |
| This meant alarger renumbering in util/libeay.num due to symbols appearing in 1.0.0-stable and 1.0.1-stable. However, since there's been no release on this branch yet, it should be harmless. | |||
| 2011-03-20 | * apps/makeapps.com: Add srp. | Richard Levitte | |
| 2011-03-20 | * apps/makeapps.com: Forgot to end the check for /POINTER_SIZE=64=ARGV | Richard Levitte | |
| with turning trapping back on. * test/maketests.com: Do the same check for /POINTER_SIZE=64=ARGV here. * test/clean-test.com: A new script for cleaning up. | |||
| 2011-03-20 | * apps/openssl.c: For VMS, take care of copying argv if needed much earlier, | Richard Levitte | |
| directly in main(). 'if needed' also includes when argv is a 32 bit pointer in an otherwise 64 bit environment. * apps/makeapps.com: When using /POINTER_SIZE=64, try to use the additional =ARGV, but only if it's supported. Fortunately, DCL is very helpful telling us in this case. | |||
| 2011-03-19 | After some adjustments, apply the changes OpenSSL 1.0.0d on OpenVMS | Richard Levitte | |
| submitted by Steven M. Schweda <sms@antinode.info> | |||
| 2011-03-17 | Fix warnings about ignored return values. | Dr. Stephen Henson | |
| 2011-03-16 | Missing SRP files. | Ben Laurie | |
| 2011-03-13 | PR: 2469 | Dr. Stephen Henson | |
| Submitted by: Jim Studt <jim@studt.net> Reviewed by: steve Check mac is present before trying to retrieve mac iteration count. | |||
| 2011-03-12 | Fix warnings: signed/unisgned comparison, shadowing (in some cases global | Dr. Stephen Henson | |
| functions such as rand() ). | |||
| 2011-03-12 | Add SRP support. | Ben Laurie | |
| 2011-03-12 | Fix warning. | Ben Laurie | |
| 2011-03-10 | make no-dsa work again | Dr. Stephen Henson | |
| 2011-02-06 | Fix duplicate code and typo. | Dr. Stephen Henson | |
| 2011-02-03 | make update | Bodo Möller | |
| 2011-01-09 | Constify. | Ben Laurie | |
| 2010-12-14 | Part of the IF structure didn't get pasted here... | Richard Levitte | |
| PR: 2393 | |||
| 2010-12-14 | First attempt at adding the possibility to set the pointer size for the ↵ | Richard Levitte | |
| builds on VMS. PR: 2393 | |||
| 2010-12-12 | apps/x590.c: harmonize usage of STDout and out_err. | Andy Polyakov | |
| PR: 2323 | |||
| 2010-11-18 | fix no SIGALRM case in speed.c | Dr. Stephen Henson | |
| 2010-11-16 | add TLS v1.1 options to s_server | Dr. Stephen Henson | |
| 2010-11-11 | PR: 2366 | Dr. Stephen Henson | |
| Submitted by: Damien Miller <djm@mindrot.org> Reviewed by: steve Stop pkeyutl crashing if some arguments are missing. Also make str2fmt tolerate NULL parameter. | |||
| 2010-09-05 | Fixes to NPN from Adam Langley. | Ben Laurie | |
| 2010-08-26 | For better forward-security support, add functions | Bodo Möller | |
| SSL_[CTX_]set_not_resumable_session_callback. Submitted by: Emilia Kasper (Google) [A part of this change affecting ssl/s3_lib.c was accidentally commited separately, together with a compilation fix for that file; see s3_lib.c CVS revision 1.133 (http://cvs.openssl.org/chngview?cn=19855).] | |||
| 2010-07-28 | Add Next Protocol Negotiation. | Ben Laurie | |
| 2010-07-27 | Sign mismatch. | Ben Laurie | |
| 2010-07-09 | gcm128.c: API modification and readability improvements, | Andy Polyakov | |
| add ghash benchmark to apps/speed.c. | |||
| 2010-07-05 | i variable is used on some platforms | Dr. Stephen Henson | |
| 2010-06-12 | Fix warnings. | Ben Laurie | |
| 2010-05-27 | PR: 2262 | Dr. Stephen Henson | |
| Submitted By: Victor Wagner <vitus@cryptocom.ru> Fix error reporting in load_key function. | |||
| 2010-05-15 | oops, revert test patch | Dr. Stephen Henson | |
| 2010-05-15 | PR: 2253 | Dr. Stephen Henson | |
| Submitted By: Ger Hobbelt <ger@hobbelt.com> Check callback return value when outputting errors. | |||
| 2010-04-06 | PR: 2220 | Dr. Stephen Henson | |
| Fixes to make OpenSSL compile with no-rc4 | |||
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |