| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-01-22 | Further comment amendments to preserve formatting prior to source reformat | Matt Caswell | |
| (cherry picked from commit 4a7fa26ffd65bf36beb8d1cb8f29fc0ae203f5c5) Conflicts: crypto/x509v3/pcy_tree.c Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2015-01-22 | mark all block comments that need format preserving so that | Tim Hudson | |
| indent will not alter them when reformatting comments (cherry picked from commit 1d97c8435171a7af575f73c526d79e1ef0ee5960) Conflicts: crypto/bn/bn_lcl.h crypto/bn/bn_prime.c crypto/engine/eng_all.c crypto/rc4/rc4_utl.c crypto/sha/sha.h ssl/kssl.c ssl/t1_lib.c Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2014-09-10 | RT2560: missing NULL check in ocsp_req_find_signer | Rich Salz | |
| If we don't find a signer in the internal list, then fall through and look at the internal list; don't just return NULL. Reviewed-by: Dr. Stephen Henson <steve@openssl.org> (cherry picked from commit b2aa38a980e9fbf158aafe487fb729c492b241fb) | |||
| 2014-06-27 | Handle IPv6 addresses in OCSP_parse_url. | Tom Greenslade | |
| PR#2783 (cherry picked from commit b36f35cda964544a15d53d3fdfec9b2bab8cacb1) | |||
| 2014-06-10 | Fix null pointer errors. | Dr. Stephen Henson | |
| PR#3394 (cherry picked from commit 7a9d59c148b773f59a41f8697eeecf369a0974c2) | |||
| 2014-04-01 | Don't try and verify signatures if key is NULL (CVE-2013-0166) | Dr. Stephen Henson | |
| Add additional check to catch this in ASN1_item_verify too. (cherry picked from commit 66e8211c0b1347970096e04b18aa52567c325200) | |||
| 2013-10-07 | Constification. | Ben Laurie | |
| 2013-01-17 | constify | Dr. Stephen Henson | |
| 2013-01-15 | Generalise OCSP I/O functions to support dowloading of other ASN1 | Dr. Stephen Henson | |
| structures using HTTP. Add wrapper function to handle CRL download. | |||
| 2012-12-26 | Revert incompatible OCSP_basic_verify changes. | Dr. Stephen Henson | |
| Make partial chain chekcing work with EE certificates only. Remove unneeded -trust_other option from tocsp. (Backport from HEAD) | |||
| 2012-12-19 | Check chain is not NULL before assuming we have a validated chain. The | Dr. Stephen Henson | |
| modification to the OCSP helper purpose breaks normal OCSP verification. It is no longer needed now we can trust partial chains. | |||
| 2012-12-14 | Use new partial chain flag instead of modifying input parameters. | Dr. Stephen Henson | |
| (backport from HEAD) | |||
| 2012-12-14 | Backport OCSP fixes. | Ben Laurie | |
| 2012-11-29 | PR: 2803 | Dr. Stephen Henson | |
| Submitted by: jean-etienne.schwartz@bull.net In OCSP_basic_varify return an error if X509_STORE_CTX_init fails. | |||
| 2011-06-03 | Backport libcrypto audit: check return values of EVP functions instead | Dr. Stephen Henson | |
| of assuming they will always suceed. | |||
| 2011-05-25 | Fix the ECDSA timing attack mentioned in the paper at: | Dr. Stephen Henson | |
| http://eprint.iacr.org/2011/232.pdf Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for bringing this to our attention. | |||
| 2010-10-06 | We can't always read 6 bytes in an OCSP response: fix so error statuses | Dr. Stephen Henson | |
| are read correctly for non-blocking I/O. | |||
| 2010-06-15 | Fix warnings (From HEAD, original patch by Ben). | Dr. Stephen Henson | |
| 2010-03-12 | missing goto meant signature was never printed out | Dr. Stephen Henson | |
| 2009-09-30 | PR: 2063 | Dr. Stephen Henson | |
| Submitted by: Julia Lawall <julia@diku.dk> Approved by: steve@openssl.org Correct BIO_write error handling in ocsp_prn.c | |||
| 2009-09-30 | PR: 2064, 728 | Dr. Stephen Henson | |
| Submitted by: steve@openssl.org Add support for custom headers in OCSP requests. | |||
| 2009-01-01 | Calculate offset correctly. (Coverity ID 233) | Ben Laurie | |
| 2008-12-29 | If we're going to return errors (no matter how stupid), then we should | Ben Laurie | |
| test for them! | |||
| 2008-12-22 | This _WIN32-specific patch makes it possible to "wrap" OpenSSL in another | Andy Polyakov | |
| .DLL, in particular static build. The issue has been discussed in RT#1230 and later on openssl-dev, and mutually exclusive approaches were suggested. This completes compromise solution suggested in RT#1230. PR: 1230 | |||
| 2008-11-05 | Update obsolete email address... | Dr. Stephen Henson | |
| 2007-12-04 | Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve | Dr. Stephen Henson | |
| Use default algorithms for OCSP request and response signing. New command line option to support other digest use for OCSP certificate IDs. | |||
| 2007-10-13 | Bunch of constifications. | Andy Polyakov | |
| 2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
| 2007-08-12 | Fix warnings. | Dr. Stephen Henson | |
| 2007-06-07 | Finish gcc 4.2 changes. | Dr. Stephen Henson | |
| 2006-11-30 | Update dependencies. | Dr. Stephen Henson | |
| 2006-11-21 | Update from 0.9.8 stable. Eliminate duplicate error codes. | Dr. Stephen Henson | |
| 2006-11-13 | Don't assume requestorName is present for signed requests. ASN1 OCSP module | Dr. Stephen Henson | |
| fix: certs field is OPTIONAL. | |||
| 2006-11-13 | OCSP library tidy. Use extension to encode OCSP extensions instead of doing | Dr. Stephen Henson | |
| it manually. Make OCSP_CERTID_dup() a real function instead of a macro. | |||
| 2006-07-17 | WIN32 fixes signed/unsigned issues and slightly socket semantics. | Dr. Stephen Henson | |
| 2006-07-17 | Fix various error codes to match functions. | Dr. Stephen Henson | |
| 2006-07-17 | New non-blocking OCSP functionality. | Dr. Stephen Henson | |
| 2005-07-26 | improved error checking and some fixes | Nils Larsch | |
| PR: 1170 Submitted by: Yair Elharrar Reviewed and edited by: Nils Larsch | |||
| 2005-05-16 | Further BUILDENV refinement, further fool-proofing of Makefiles and | Andy Polyakov | |
| [most importantly] put back dependencies accidentaly eliminated in check-in #13342. | |||
| 2005-05-15 | Fool-proofing Makefiles | Andy Polyakov | |
| 2005-05-12 | Some C compilers produce warnings or compilation errors if an attempt | Dr. Stephen Henson | |
| is made to directly cast a function of one type to what it considers and incompatible type. In particular gcc 3.4.2. Add new openssl_fcast macro to place functions into a form where the compiler will allow them to be cast. The current version achives this by casting to: void function(void). | |||
| 2005-05-11 | Fix more error codes. | Bodo Möller | |
| (Also improve util/ck_errf.pl script, and occasionally fix source code formatting.) | |||
| 2005-04-12 | Rebuild error codes. | Dr. Stephen Henson | |
| 2005-04-11 | Add emacs cache files to .cvsignore. | Richard Levitte | |
| 2005-03-31 | Consistency. | Ben Laurie | |
| 2005-03-31 | Give everything prototypes (well, everything that's actually used). | Ben Laurie | |
| 2005-03-30 | Blow away Makefile.ssl. | Ben Laurie | |
| 2004-11-02 | Don't use $(EXHEADER) directly in for loops, as most shells will break | Richard Levitte | |
| if $(EXHEADER) is empty. Notified by many, solution suggested by Carson Gaspar <carson@taltos.org> | |||
| 2004-05-17 | After the latest round of header-hacking, regenerate the dependencies in | Geoff Thorpe | |
| the Makefiles. NB: this commit is probably going to generate a huge posting and it is highly uninteresting to read. | |||
| 2004-04-19 | make update | Geoff Thorpe | |
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |