Age | Commit message (Collapse) | Author | |
---|---|---|---|
2001-03-09 | Change the EVP_somecipher() and EVP_somedigest() | Dr. Stephen Henson | |
functions to return constant EVP_MD and EVP_CIPHER pointers. Update docs. | |||
2001-03-08 | Bugfix: previously the serial number file could turn negative | Bodo Möller | |
because an incompletely initialized ASN1_INTEGER was used. | |||
2001-03-08 | Integrate ec_err.[co]. | Bodo Möller | |
"make depend" | |||
2001-03-07 | Code for better build under Darwin (MacOS X). | Richard Levitte | |
Submitted by Brad Dominy <jdominy@darwinuser.org> | |||
2001-03-05 | Move ec.h to ec2.h because it is not compatible with what we will use. | Bodo Möller | |
Add EC vaporware: change relevant Makefiles and add some empty source files. "make update". | |||
2001-03-05 | New option '-subj arg' for 'openssl req' and 'openssl ca'. This | Bodo Möller | |
sets the subject name for a new request or supersedes the subject name in a given request. Add options '-batch' and '-verbose' to 'openssl req'. Submitted by: Massimiliano Pala <madwolf@hackmasters.net> Reviewed by: Bodo Moeller | |||
2001-03-04 | increase emailAddress_max | Bodo Möller | |
2001-02-27 | MacOSX doesn't have ftime(). | Richard Levitte | |
Spotted by Pieter Bowman <bowman@math.utah.edu> | |||
2001-02-24 | New function and options to check OCSP response validity. | Dr. Stephen Henson | |
2001-02-23 | I missed one. | Geoff Thorpe | |
2001-02-22 | e_os.h does not belong with the exported headers. Do not put it there | Richard Levitte | |
and make all files the depend on it include it without prefixing it with openssl/. This means that all Makefiles will have $(TOP) as one of the include directories. | |||
2001-02-22 | Windows does not know of strigs.h or strcasecmp, so when in Windows, | Richard Levitte | |
make strcasecmp a macro to _stricmp. | |||
2001-02-21 | This adds command-line support to s_server for controlling the generation | Geoff Thorpe | |
of session IDs. Namely, passing "-id_prefix <text>" will set a generate_session_id() callback that generates session IDs as random data with <text> block-copied over the top of the start of the ID. This can be viewed by watching the session ID s_client's output when it connects. This is mostly useful for testing any SSL/TLS code (eg. proxies) that wish to deal with multiple servers, when each of which might be generating a unique range of session IDs (eg. with a certain prefix). | |||
2001-02-20 | Some functions, like strdup() and strcasecmp(), are defined in | Richard Levitte | |
strings.h according to X/Open. | |||
2001-02-20 | I forgot there was a reason why the inclusions and definition of u_int | Richard Levitte | |
was made in a certain sequence. This change restores the earlier "chain of command". | |||
2001-02-20 | OpenVMS catches up. | Richard Levitte | |
2001-02-20 | Get e_os2.h to get all the system definitions correctly. | Richard Levitte | |
2001-02-20 | Fix typo. | Dr. Stephen Henson | |
2001-02-20 | Include opensslconf.h or the like early to make sure system macros get | Richard Levitte | |
correctly defined. | |||
2001-02-20 | honour '-no_tmp_rsa' | Bodo Möller | |
2001-02-20 | Use new-style system-id macros everywhere possible. I hope I haven't | Richard Levitte | |
missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS. | |||
2001-02-20 | Fix warning. | Ulf Möller | |
2001-02-19 | Make all configuration macros available for application by making | Richard Levitte | |
sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing. | |||
2001-02-19 | make update | Richard Levitte | |
2001-02-19 | New -set_serial options to 'req' and 'x509'. | Dr. Stephen Henson | |
Remove the old broken bio read of serial numbers in the 'ca' index file. This would choke if a revoked certificate was specified with a negative serial number. Fix typo in uid.c | |||
2001-02-16 | New options to 'ca' utility to support CRL entry extensions. | Dr. Stephen Henson | |
Add revelant new X509V3 extensions. Add OIDs. Fix ASN1 memory leak code to pop info if external allocation used. | |||
2001-02-15 | Add "-rand" option to s_client and s_server. | Lutz Jänicke | |
2001-02-14 | Option to disable standard block padding with EVP API. | Dr. Stephen Henson | |
Add -nopad option to enc command. Update docs. | |||
2001-02-14 | Initial OCSP SSL support. | Dr. Stephen Henson | |
2001-02-13 | New function OCSP_parse_url() and -url option for ocsp utility. | Dr. Stephen Henson | |
Doesn't handle SSL URLs yet. | |||
2001-02-12 | Modify OCSP nonce behaviour. | Dr. Stephen Henson | |
2001-02-10 | disable stdin buffering in load_cert | Bodo Möller | |
2001-02-10 | use case-insensitive comparison in set_table_opts | Bodo Möller | |
(similar to how arguments such as -inform/-outform specifications are treated) | |||
2001-02-10 | Fix CRL printing to correctly show when there are no revoked certificates. | Dr. Stephen Henson | |
Make ca.c correctly initialize the revocation date. Make ASN1_UTCTIME_set_string() and ASN1_GENERALIZEDTIME_set_string() set the string type: so they can initialize ASN1_TIME structures properly. | |||
2001-02-09 | New Option SSL_OP_CIPHER_SERVER_PREFERENCE allows TLS/SSLv3 server to override | Lutz Jänicke | |
the clients choice; in SSLv2 the client uses the server's preferences. | |||
2001-02-09 | Typo | Lutz Jänicke | |
2001-02-09 | Various Win32 related fixed. Make no-krb5 work in mkdef.pl . | Dr. Stephen Henson | |
Fix warning in apps/engine.c Remove definitions of deleted functions. Add missing definition of X509_VAL. | |||
2001-02-09 | Add missing \n's to ocsp usage message. | Dr. Stephen Henson | |
2001-02-08 | Allow various options to be included for signing and verify of | Dr. Stephen Henson | |
OCSP responses. Documentation to follow... Urgh.. this conflicted with the -VAfile patch I hope I haven't broken it. | |||
2001-02-08 | Add the -VAfile option to 'openssl ocsp'. This option will give the | Richard Levitte | |
client code certificates to use to only check response signatures. I'm not entirely sure if the way I just implemented the verification is the right way to do it, and would be happy if someone would like to review this. | |||
2001-02-07 | Fix typo preventing correct usage of -out option. | Lutz Jänicke | |
2001-02-06 | Rijdael CBC mode and partial undebugged SSL support. | Ben Laurie | |
2001-02-06 | don't dump core | Bodo Möller | |
2001-02-06 | format strings | Ulf Möller | |
2001-02-04 | Make depend. | Ben Laurie | |
2001-02-03 | If the source has already been succesfully queried, do not try to open it | Lutz Jänicke | |
again as file. | |||
2001-02-02 | Various function for commmon operations. | Dr. Stephen Henson | |
2001-01-23 | Use OpenSSL_add_all_algorithms instead of the backwards compatibility | Bodo Möller | |
alias SSLeay_add_all_algorithms | |||
2001-01-19 | Fixes to various ASN1_INTEGER routines for negative case. | Dr. Stephen Henson | |
Enhance s2i_ASN1_INTEGER(). | |||
2001-01-19 | Fix openssl passwd -1 | Bodo Möller | |