Age | Commit message (Collapse) | Author | |
---|---|---|---|
2001-12-09 | Improve back compatibility. | Ben Laurie | |
2001-12-07 | fix warnings (one of them was clearly justified) | Bodo Möller | |
2001-12-01 | Add -pubkey option to req command. | Dr. Stephen Henson | |
2001-11-22 | check OPENSSL_NO_... before including header files that might be | Bodo Möller | |
disabled | |||
2001-11-22 | In this particular error condition, the structural reference wasn't being | Geoff Thorpe | |
released. | |||
2001-11-15 | Make it possible to give digest names as -evp arguments. | Richard Levitte | |
2001-11-15 | If an engine isn't built in, try loading it as a shareable library | Richard Levitte | |
instead. This also makes it possible for users to simply give said shareable library as argument for the -engine option. | |||
2001-11-15 | make update | Richard Levitte | |
perl util/mkerr.pl -recurse -write -rebuild | |||
2001-11-14 | Change the order of events so the capabilities of loaded engines can | Richard Levitte | |
get listed as well. | |||
2001-11-14 | Implement STARTTLS for certain protocols, currently only supporting SMTP. | Richard Levitte | |
2001-11-10 | more output for SSL 2.0 in our msg_callback | Bodo Möller | |
2001-11-06 | Win32 fixes. | Dr. Stephen Henson | |
2001-11-06 | Fix email address delete code. | Dr. Stephen Henson | |
2001-11-05 | DOS and Windows do not like unistd.h | Richard Levitte | |
2001-11-02 | If verify fails, say why. | Ben Laurie | |
2001-10-30 | Change the shared library support so the shared libraries get built | Richard Levitte | |
sooner and the programs get built against the shared libraries. This requires a bit more work. Things like -rpath and the possibility to still link the programs statically should be included. Some cleanup is also needed. This will be worked on. | |||
2001-10-29 | Addapt VMS scripts to the newer disk layout system ODS-5, which allows more ↵ | Richard Levitte | |
than one period and mixed size characters in file names | |||
2001-10-27 | Another noemailDN fix. | Dr. Stephen Henson | |
2001-10-27 | Allow ca to certify requests containing BMPStrings and UTF8Strings. | Dr. Stephen Henson | |
2001-10-27 | Bugfixes for noemailDN option. Make it use the | Dr. Stephen Henson | |
correct name (instead of NULL) if nomailDN is not set, fix memory leaks and retain DN structure when deleting emailAddress. | |||
2001-10-26 | New options to allow req to accept UTF8 strings as input. | Dr. Stephen Henson | |
2001-10-25 | Make sure openssl speed is compilable on systems where fork() doesn't | Richard Levitte | |
exist. For now, that's all the ones we "support" except Unix. | |||
2001-10-25 | Add paralellism to speed - note that this currently causes a weird memory leak. | Ben Laurie | |
2001-10-25 | Add '-noemailDN' option to 'openssl ca'. This prevents inclusion of | Bodo Möller | |
the e-mail address in the DN (i.e., it will go into a certificate extension only). The new configuration file option 'email_in_dn = no' has the same effect. Submitted by: Massimiliano Pala madwolf@openca.org | |||
2001-10-24 | Due to an increasing number of clashes between modern OpenSSL and | Richard Levitte | |
libdes (which is still used out there) or other des implementations, the OpenSSL DES functions are renamed to begin with DES_ instead of des_. Compatibility routines are provided and declared by including openssl/des_old.h. Those declarations are the same as were in des.h when the OpenSSL project started, which is exactly how libdes looked at that time, and hopefully still looks today. The compatibility functions will be removed in some future release, at the latest in version 1.0. | |||
2001-10-21 | Reject certificates with unhandled critical extensions. | Dr. Stephen Henson | |
2001-10-21 | Stop spurious "unable to load config info" errors in req | Dr. Stephen Henson | |
2001-10-20 | New functions SSL[_CTX]_set_msg_callback(). | Bodo Möller | |
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices. | |||
2001-10-20 | Add missing EVP_CIPHER_CTX_{init,cleanup} | Dr. Stephen Henson | |
2001-10-17 | Modify EVP cipher behaviour in a similar way | Dr. Stephen Henson | |
to digests to retain compatibility. | |||
2001-10-16 | Flush buffers to prevent mixed output (Adam Back <adam@cypherspace.org>). | Lutz Jänicke | |
2001-10-16 | Retain compatibility of EVP_DigestInit() and EVP_DigestFinal() | Dr. Stephen Henson | |
with existing code. Modify library to use digest *_ex() functions. | |||
2001-10-10 | Add support for md4WithRSAEncryption. | Richard Levitte | |
2001-10-10 | 'make update' | Richard Levitte | |
2001-10-10 | 'make update' | Richard Levitte | |
2001-10-04 | 'make update' | Richard Levitte | |
2001-10-04 | Because there's chances we clash with the system's types.h, rename our | Richard Levitte | |
types.h to ossl_typ.h. | |||
2001-10-02 | sch isn't an array, how did this pass through gcc? | Richard Levitte | |
2001-10-01 | Make "openssl engine -c" list any supported digests as well as supported | Geoff Thorpe | |
ciphers. | |||
2001-09-28 | Change HZ in speed to rely on sysconf() if the clock tick is available | Richard Levitte | |
that way. Synchronise s_time with these changes. | |||
2001-09-28 | ENGINE_register_all_complete() will register all implementations of all | Geoff Thorpe | |
algorithms present in all loaded ENGINEs. The result is that if any of those ENGINEs successfully initialises, and the ENGINE_TABLE_FLAG_NOINIT flag isn't set, then they will always be used (and cached as defaults) in preference to software implementations. Ie. accidental auto-detection of acceleration hardware :-) This change stops all implementations being automatically registered in "openssl" sub-commands, so that the "setup_engine()" handler in apps.c controls which ENGINEs are registered for use. A special case has been added that will revert to this "auto-detect" logic, ie. if the "-engine" switch is used as; -engine auto | |||
2001-09-27 | Stop thinking arguments starting with - are algorithm identifiers. | Richard Levitte | |
Show timing parameters and timing functions used. It looks like some Linuxen have very weird settings for CLK_TCK. I'm very unsure about this change and will investigate further. | |||
2001-09-25 | Put the cipher info back into the "openssl engine" command. | Geoff Thorpe | |
2001-09-25 | Make necessary tweaks to apps/ files due to recent ENGINE surgery. See | Geoff Thorpe | |
crypto/engine/README for details. | |||
2001-09-24 | "make update" | Geoff Thorpe | |
2001-09-20 | make update | Bodo Möller | |
2001-09-12 | Updated dependencies from "make update" | Geoff Thorpe | |
2001-09-12 | Reduce the header dependencies on engine.h in apps/. | Geoff Thorpe | |
2001-09-10 | make update | Geoff Thorpe | |
2001-09-10 | Put all "common" initialisation in the apps_startup() and apps_shutdown() | Geoff Thorpe | |
macros in apps.h. |