Age | Commit message (Collapse) | Author | |
---|---|---|---|
2010-08-26 | For better forward-security support, add functions | Bodo Möller | |
SSL_[CTX_]set_not_resumable_session_callback. Submitted by: Emilia Kasper (Google) [A part of this change affecting ssl/s3_lib.c was accidentally commited separately, together with a compilation fix for that file; see s3_lib.c CVS revision 1.133 (http://cvs.openssl.org/chngview?cn=19855).] | |||
2010-07-28 | Add Next Protocol Negotiation. | Ben Laurie | |
2010-07-27 | Sign mismatch. | Ben Laurie | |
2010-07-09 | gcm128.c: API modification and readability improvements, | Andy Polyakov | |
add ghash benchmark to apps/speed.c. | |||
2010-07-05 | i variable is used on some platforms | Dr. Stephen Henson | |
2010-06-12 | Fix warnings. | Ben Laurie | |
2010-05-27 | PR: 2262 | Dr. Stephen Henson | |
Submitted By: Victor Wagner <vitus@cryptocom.ru> Fix error reporting in load_key function. | |||
2010-05-15 | oops, revert test patch | Dr. Stephen Henson | |
2010-05-15 | PR: 2253 | Dr. Stephen Henson | |
Submitted By: Ger Hobbelt <ger@hobbelt.com> Check callback return value when outputting errors. | |||
2010-04-06 | PR: 2220 | Dr. Stephen Henson | |
Fixes to make OpenSSL compile with no-rc4 | |||
2010-03-14 | free up sigopts STACK | Dr. Stephen Henson | |
2010-03-14 | clear bogus errors in ca utility | Dr. Stephen Henson | |
2010-03-14 | add -sigopt option to ca utility | Dr. Stephen Henson | |
2010-03-12 | new sigopt and PSS support for req and x509 utilities | Dr. Stephen Henson | |
2010-03-10 | don't leave bogus errors in the queue | Dr. Stephen Henson | |
2010-03-07 | oops | Dr. Stephen Henson | |
2010-03-07 | The OID sanity check was incorrect. It should only disallow *leading* 0x80 | Dr. Stephen Henson | |
values. | |||
2010-03-05 | Add -engine_impl option to dgst which will use an implementation of | Dr. Stephen Henson | |
an algorithm from the supplied engine instead of just the default one. | |||
2010-03-03 | PR: 2183 | Dr. Stephen Henson | |
PR#1999 broke fork detection by assuming HAVE_FORK was set for all platforms. Include original HAVE_FORK detection logic while allowing it to be overridden on specific platforms with -DHAVE_FORK=1 or -DHAVE_FORK=0 | |||
2010-03-01 | use supplied ENGINE in genrsa | Dr. Stephen Henson | |
2010-02-27 | oops, revert verify.c change | Dr. Stephen Henson | |
2010-02-27 | Add Kerberos fix which was in 0.9.8-stable but never committed to HEAD and | Dr. Stephen Henson | |
1.0.0. Original fix was on 2007-Mar-09 and had the log message: "Fix kerberos ciphersuite bugs introduced with PR:1336." | |||
2010-02-26 | include TVS 1.1 version string | Dr. Stephen Henson | |
2010-02-25 | add -trusted_first option and verify flag | Dr. Stephen Henson | |
2010-02-25 | allow setting of verify names in command line utilities and print out verify ↵ | Dr. Stephen Henson | |
names in verify utility | |||
2010-02-12 | PR: 2170 | Dr. Stephen Henson | |
Submitted by: Magnus Lilja <lilja.magnus@gmail.com> Make -c option in dgst work again. | |||
2010-02-02 | PR: 2161 | Dr. Stephen Henson | |
Submitted by: Doug Goldstein <cardoe@gentoo.org>, Steve. Make no-dsa, no-ecdsa and no-rsa compile again. | |||
2010-01-28 | Experimental renegotiation support in s_server test -www server. | Dr. Stephen Henson | |
2010-01-27 | revert wrongly committed test code | Dr. Stephen Henson | |
2010-01-27 | typo | Dr. Stephen Henson | |
2010-01-27 | Have the VMS build system catch up with the 1.0.0-stable branch. | Richard Levitte | |
2010-01-22 | Tolerate PKCS#8 DSA format with negative private key. | Dr. Stephen Henson | |
2010-01-17 | apps/speed.c: limit loop counters to 2^31 in order to avoid overflows | Andy Polyakov | |
in performance calculations. For the moment there is only one code fast enough to suffer from this: Intel AES-NI engine. PR: 2096 | |||
2010-01-12 | PR: 2136 | Dr. Stephen Henson | |
Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at> Add options to output hash using older algorithm compatible with OpenSSL versions before 1.0.0 | |||
2010-01-06 | Fix compilation on older Linux. Linux didn't always have sockaddr_storage, | Andy Polyakov | |
not to mention that first sockaddr_storage had __ss_family, not ss_family. In other words it makes more sense to avoid sockaddr_storage... | |||
2009-12-27 | Add simple external session cache to s_server. This serialises sessions | Dr. Stephen Henson | |
just like a "real" server making it easier to trace any problems. | |||
2009-12-16 | New option to enable/disable connection to unpatched servers | Dr. Stephen Henson | |
2009-12-08 | Add ctrl and macro so we can determine if peer support secure renegotiation. | Dr. Stephen Henson | |
2009-12-07 | Initial experimental TLSv1.1 support | Dr. Stephen Henson | |
2009-12-02 | Replace the broken SPKAC certification with the correct version. | Dr. Stephen Henson | |
2009-11-26 | Experimental CMS password based recipient Info support. | Dr. Stephen Henson | |
2009-11-12 | Update from 1.0.0-stable | Richard Levitte | |
2009-11-11 | add missing parts of reneg port, fix apps patch | Dr. Stephen Henson | |
2009-11-11 | commit missing apps code for reneg fix | Dr. Stephen Henson | |
2009-10-31 | Add missing functions to allow access to newer X509_STORE_CTX status | Dr. Stephen Henson | |
information. Add more informative message to verify callback to indicate when CRL path validation is taking place. | |||
2009-10-31 | Add option to allow in-band CRL loading in verify utility. Add function | Dr. Stephen Henson | |
load_crls and tidy up load_certs. Remove useless purpose variable from verify utility: now done with args_verify. | |||
2009-10-28 | Add -no_cache option to s_server | Dr. Stephen Henson | |
2009-10-18 | Use new X509_STORE_set_verify_cb function instead of old macro. | Dr. Stephen Henson | |
2009-10-15 | Fix for WIN32 and possibly other platforms which don't define in_port_t. | Dr. Stephen Henson | |
2009-10-15 | PR: 2069 | Dr. Stephen Henson | |
Submitted by: Michael Tuexen <tuexen@fh-muenster.de> Approved by: steve@openssl.org IPv6 support for DTLS. |