| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-10-09 | Backport PSS signature support from HEAD. | Dr. Stephen Henson | |
| 2011-10-09 | Backport of password based CMS support from HEAD. | Dr. Stephen Henson | |
| 2011-06-03 | New function X509_ALGOR_set_md() to set X509_ALGOR ↵ | Dr. Stephen Henson | |
| (DigestAlgorithmIdentifier) from a digest algorithm (backport from HEAD). | |||
| 2010-10-03 | Add call to ENGINE_register_all_complete() to ENGINE_load_builtin_engines(), | Dr. Stephen Henson | |
| this means that some implementations will be used automatically, e.g. aesni, we do this for cryptodev anyway. Setup cpuid in ENGINE_load_builtin_engines() too as some ENGINEs use it. | |||
| 2010-01-22 | Tolerate PKCS#8 DSA format with negative private key. | Dr. Stephen Henson | |
| 2010-01-12 | PR: 2136 | Dr. Stephen Henson | |
| Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at> Add options to output hash using older algorithm compatible with OpenSSL versions before 1.0.0 | |||
| 2009-04-03 | Update from 0.9.8-stable. | Dr. Stephen Henson | |
| 2009-01-15 | Update certificate hash line format to handle canonical format | Dr. Stephen Henson | |
| and avoid MD5 dependency. | |||
| 2008-11-12 | Revert the size_t modifications from HEAD that had led to more | Geoff Thorpe | |
| knock-on work than expected - they've been extracted into a patch series that can be completed elsewhere, or in a different branch, before merging back to HEAD. | |||
| 2008-11-01 | More size_tification. | Ben Laurie | |
| 2008-10-07 | Experimental new date handling routines. These fix issues with X509_time_adj() | Dr. Stephen Henson | |
| and should avoid any OS date limitations such as the year 2038 bug. | |||
| 2008-09-01 | Initial support for delta CRLs. If "use deltas" flag is set attempt to find | Dr. Stephen Henson | |
| a delta CRL in addition to a full CRL. Check and search delta in addition to the base. | |||
| 2008-08-20 | Initial indirect CRL support. | Dr. Stephen Henson | |
| 2008-08-08 | Initial support for name constraints certificate extension. | Dr. Stephen Henson | |
| TODO: robustness checking on name forms. | |||
| 2008-03-12 | And so it begins... | Dr. Stephen Henson | |
| Initial support for CMS. Add zlib compression BIO. Add AES key wrap implementation. Generalize S/MIME MIME code to support CMS and/or PKCS7. | |||
| 2008-02-11 | Utility attribute function to retrieve attribute data from an expected | Dr. Stephen Henson | |
| type. Useful for many attributes which are single valued and can only have one type. | |||
| 2007-09-26 | Support for certificate status TLS extension. | Dr. Stephen Henson | |
| 2006-12-11 | use const ASN1_TIME * | Nils Larsch | |
| 2006-12-06 | Fix change to OPENSSL_NO_RFC3779 | Dr. Stephen Henson | |
| 2006-11-27 | Add RFC 3779 support. | Ben Laurie | |
| 2006-11-16 | Remove illegal IMPLEMENT macros from header file. | Dr. Stephen Henson | |
| 2006-11-06 | remove SSLEAY_MACROS code | Nils Larsch | |
| 2006-10-03 | Place standard CRL behaviour in default X509_CRL_METHOD new functions to | Dr. Stephen Henson | |
| create, free and set default CRL method. | |||
| 2006-09-21 | Tidy up CRL handling by checking for critical extensions when it is | Dr. Stephen Henson | |
| loaded. Add new function X509_CRL_get0_by_serial() to lookup a revoked entry to avoid the need to access the structure directly. Add new X509_CRL_METHOD to allow common CRL operations (verify, lookup) to be redirected. | |||
| 2006-09-10 | Add verify callback functions to lookup a STACK of matching certs or CRLs | Dr. Stephen Henson | |
| based on subject name. New thread safe functions to retrieve matching STACK from X509_STORE. Cache some IDP components. | |||
| 2006-07-25 | Support for multiple CRLs with same issuer name in X509_STORE. Modify | Dr. Stephen Henson | |
| verify logic to try to use an unexpired CRL if possible. | |||
| 2006-07-24 | Cache some CRL related extensions. | Dr. Stephen Henson | |
| 2006-07-20 | Use correct pointer types for various functions. | Dr. Stephen Henson | |
| 2006-07-18 | Store canonical encodings of Name structures. Update X509_NAME_cmp() to use | Dr. Stephen Henson | |
| them. | |||
| 2006-05-17 | Extended PBES2 function supporting application supplied IV and PRF NID. | Dr. Stephen Henson | |
| 2006-03-20 | Initial support for pluggable public key ASN1 support. Process most public | Dr. Stephen Henson | |
| key ASN1 handling through a single EVP_PKEY_ASN1_METHOD structure and move the spaghetti algorithm specific code to a single ASN1 module for each algorithm. | |||
| 2006-02-12 | RFC 3161 compliant time stamp request creation, response generation | Ulf Möller | |
| and response verification. Submitted by: Zoltan Glozik <zglozik@opentsa.org> Reviewed by: Ulf Moeller | |||
| 2005-05-15 | Make -CSP option work again in pkcs12 utility by checking for | Dr. Stephen Henson | |
| attribute in EVP_PKEY structure. | |||
| 2005-05-11 | Fix more error codes. | Bodo Möller | |
| (Also improve util/ck_errf.pl script, and occasionally fix source code formatting.) | |||
| 2005-03-31 | Consistency. | Ben Laurie | |
| 2005-03-31 | Give everything prototypes (well, everything that's actually used). | Ben Laurie | |
| 2005-03-30 | Constification. | Ben Laurie | |
| 2004-12-28 | Add functionality needed to process proxy certificates. | Richard Levitte | |
| 2004-10-04 | Fix race condition when CRL checking is enabled. | Dr. Stephen Henson | |
| 2004-04-19 | (oops) Apologies all, that last header-cleanup commit was from the wrong | Geoff Thorpe | |
| tree. This further reduces header interdependencies, and makes some associated cleanups. | |||
| 2004-03-23 | Initial support for certificate policy checking and evaluation. | Dr. Stephen Henson | |
| This is currently *very* experimental and needs to be more fully integrated with the main verification code. | |||
| 2004-03-15 | Constify d2i, s2i, c2i and r2i functions and other associated | Richard Levitte | |
| functions and macros. This change has associated tags: LEVITTE_before_const and LEVITTE_after_const. Those will be removed when this change has been properly reviewed. | |||
| 2003-10-24 | Remove duplicate prototypes have already been (correctly) added to rsa.h, | Geoff Thorpe | |
| as this is already included by x509.h anyway. | |||
| 2003-07-23 | Avoid clashes with Win32 names in WinCrypt.h | Dr. Stephen Henson | |
| 2003-04-03 | Add functionality to help making self-signed certificate. | Richard Levitte | |
| 2003-03-20 | Make sure we get the definition of a number of OPENSSL_NO_* macros. | Richard Levitte | |
| 2002-11-18 | Add the ASN.1 structures and functions for CertificatePair, which is | Richard Levitte | |
| defined as follows (according to X.509_4thEditionDraftV6.pdf): CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- } The only thing I'm not sure about is if it's implicit or explicit tags that I should count on. For now, I'm thinking explicit, but will gladly stand corrected. Also implement the PEM functions to read and write certificate pairs, and defined the PEM tag as "CERTIFICATE PAIR". This needed to be defined, mostly for the sake of the LDAP attribute crossCertificatePair, but may prove useful elsewhere as well. | |||
| 2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
| 2002-10-14 | makedepend complains when a header file is included more than once in | Richard Levitte | |
| the same source file. | |||
| 2002-10-03 | Various enhancements to PKCS#12 code, new | Dr. Stephen Henson | |
| medium level API, improved PKCS12_create and additional functionality in pkcs12 utility. | |||
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |