Age | Commit message (Collapse) | Author | |
---|---|---|---|
2011-06-03 | Backport libcrypto audit: check return values of EVP functions instead | Dr. Stephen Henson | |
of assuming they will always suceed. | |||
2011-05-25 | Fix the ECDSA timing attack mentioned in the paper at: | Dr. Stephen Henson | |
http://eprint.iacr.org/2011/232.pdf Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for bringing this to our attention. | |||
2010-10-06 | We can't always read 6 bytes in an OCSP response: fix so error statuses | Dr. Stephen Henson | |
are read correctly for non-blocking I/O. | |||
2010-06-15 | Fix warnings (From HEAD, original patch by Ben). | Dr. Stephen Henson | |
2010-03-12 | missing goto meant signature was never printed out | Dr. Stephen Henson | |
2009-09-30 | PR: 2063 | Dr. Stephen Henson | |
Submitted by: Julia Lawall <julia@diku.dk> Approved by: steve@openssl.org Correct BIO_write error handling in ocsp_prn.c | |||
2009-09-30 | PR: 2064, 728 | Dr. Stephen Henson | |
Submitted by: steve@openssl.org Add support for custom headers in OCSP requests. | |||
2009-01-01 | Calculate offset correctly. (Coverity ID 233) | Ben Laurie | |
2008-12-29 | If we're going to return errors (no matter how stupid), then we should | Ben Laurie | |
test for them! | |||
2008-12-22 | This _WIN32-specific patch makes it possible to "wrap" OpenSSL in another | Andy Polyakov | |
.DLL, in particular static build. The issue has been discussed in RT#1230 and later on openssl-dev, and mutually exclusive approaches were suggested. This completes compromise solution suggested in RT#1230. PR: 1230 | |||
2008-11-05 | Update obsolete email address... | Dr. Stephen Henson | |
2007-12-04 | Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve | Dr. Stephen Henson | |
Use default algorithms for OCSP request and response signing. New command line option to support other digest use for OCSP certificate IDs. | |||
2007-10-13 | Bunch of constifications. | Andy Polyakov | |
2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
2007-08-12 | Fix warnings. | Dr. Stephen Henson | |
2007-06-07 | Finish gcc 4.2 changes. | Dr. Stephen Henson | |
2006-11-30 | Update dependencies. | Dr. Stephen Henson | |
2006-11-21 | Update from 0.9.8 stable. Eliminate duplicate error codes. | Dr. Stephen Henson | |
2006-11-13 | Don't assume requestorName is present for signed requests. ASN1 OCSP module | Dr. Stephen Henson | |
fix: certs field is OPTIONAL. | |||
2006-11-13 | OCSP library tidy. Use extension to encode OCSP extensions instead of doing | Dr. Stephen Henson | |
it manually. Make OCSP_CERTID_dup() a real function instead of a macro. | |||
2006-07-17 | WIN32 fixes signed/unsigned issues and slightly socket semantics. | Dr. Stephen Henson | |
2006-07-17 | Fix various error codes to match functions. | Dr. Stephen Henson | |
2006-07-17 | New non-blocking OCSP functionality. | Dr. Stephen Henson | |
2005-07-26 | improved error checking and some fixes | Nils Larsch | |
PR: 1170 Submitted by: Yair Elharrar Reviewed and edited by: Nils Larsch | |||
2005-05-16 | Further BUILDENV refinement, further fool-proofing of Makefiles and | Andy Polyakov | |
[most importantly] put back dependencies accidentaly eliminated in check-in #13342. | |||
2005-05-15 | Fool-proofing Makefiles | Andy Polyakov | |
2005-05-12 | Some C compilers produce warnings or compilation errors if an attempt | Dr. Stephen Henson | |
is made to directly cast a function of one type to what it considers and incompatible type. In particular gcc 3.4.2. Add new openssl_fcast macro to place functions into a form where the compiler will allow them to be cast. The current version achives this by casting to: void function(void). | |||
2005-05-11 | Fix more error codes. | Bodo Möller | |
(Also improve util/ck_errf.pl script, and occasionally fix source code formatting.) | |||
2005-04-12 | Rebuild error codes. | Dr. Stephen Henson | |
2005-04-11 | Add emacs cache files to .cvsignore. | Richard Levitte | |
2005-03-31 | Consistency. | Ben Laurie | |
2005-03-31 | Give everything prototypes (well, everything that's actually used). | Ben Laurie | |
2005-03-30 | Blow away Makefile.ssl. | Ben Laurie | |
2004-11-02 | Don't use $(EXHEADER) directly in for loops, as most shells will break | Richard Levitte | |
if $(EXHEADER) is empty. Notified by many, solution suggested by Carson Gaspar <carson@taltos.org> | |||
2004-05-17 | After the latest round of header-hacking, regenerate the dependencies in | Geoff Thorpe | |
the Makefiles. NB: this commit is probably going to generate a huge posting and it is highly uninteresting to read. | |||
2004-04-19 | make update | Geoff Thorpe | |
2004-03-04 | Typos. | Dr. Stephen Henson | |
Reported by: Jose Castejon-Amenedo <Jose.Castejon-Amenedo@hp.com> | |||
2004-03-01 | Avoid a memory leak in OCSP_parse_url(). | Richard Levitte | |
Notified by Paul Siegel <psiegel@corestreet.com> | |||
2004-02-19 | Use an OCTET STRING for the encoding of an OCSP nonce value. | Dr. Stephen Henson | |
The old raw format can't be handled by some implementations and updates to RFC2560 will make this mandatory. | |||
2003-12-27 | Use sh explicitely to run point.sh | Richard Levitte | |
This is part of a large change submitted by Markus Friedl <markus@openbsd.org> | |||
2003-04-03 | Correct a lot of printing calls. Remove extra arguments... | Richard Levitte | |
2003-03-14 | Don't give an error if response reason absent in OCSP HTTP. | Dr. Stephen Henson | |
2003-01-16 | Armor against systems without ranlib... | Lutz Jänicke | |
Submitted by: Thierry Lelegard <thierry.lelegard@canal-plus.fr> PR: 461 | |||
2002-12-29 | make update | Richard Levitte | |
2002-11-13 | Correct support for SunOS 4.1.3_U1. | Richard Levitte | |
PR: 227 | |||
2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
2002-11-07 | Typo in OCSP ASN1 module | Dr. Stephen Henson | |
2002-10-09 | Use double dashes so makedepend doesn't misunderstand the flags we | Richard Levitte | |
give it. For 0.9.7 and up, that means util/domd needs to remove those double dashes from the argument list when gcc is used to find the dependencies. | |||
2002-08-09 | make update | Bodo Möller | |
2002-08-01 | OCSP and KRB5 Makefil.ssl should be consistent with all the others | Richard Levitte | |