summaryrefslogtreecommitdiffstats
path: root/doc
AgeCommit message (Collapse)Author
2001-11-10remove incorrect 'callback' prototypeBodo Möller
2001-11-10msg_callback documentationBodo Möller
2001-11-08clarifyBodo Möller
2001-10-26New options to allow req to accept UTF8 strings as input.Dr. Stephen Henson
2001-10-25remove compatibility notes that no longer applyUlf Möller
2001-10-25Correct some links...Richard Levitte
2001-10-25Change the DES documentation to reflect the current status. Note thatRichard Levitte
some password reading functions are really part of the UI compatibility library...
2001-10-25mention des_old.hBodo Möller
2001-10-25Add '-noemailDN' option to 'openssl ca'. This prevents inclusion ofBodo Möller
the e-mail address in the DN (i.e., it will go into a certificate extension only). The new configuration file option 'email_in_dn = no' has the same effect. Submitted by: Massimiliano Pala madwolf@openca.org
2001-10-25Remove DES_random_seed() but retain des_random_seed() for now. ChangeRichard Levitte
the docs to reflect this change and correct libeay.num.
2001-10-24Due to an increasing number of clashes between modern OpenSSL andRichard Levitte
libdes (which is still used out there) or other des implementations, the OpenSSL DES functions are renamed to begin with DES_ instead of des_. Compatibility routines are provided and declared by including openssl/des_old.h. Those declarations are the same as were in des.h when the OpenSSL project started, which is exactly how libdes looked at that time, and hopefully still looks today. The compatibility functions will be removed in some future release, at the latest in version 1.0.
2001-10-20New functions SSL[_CTX]_set_msg_callback().Bodo Möller
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices.
2001-10-17document SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATIONBodo Möller
2001-10-17Update docs.Dr. Stephen Henson
2001-10-16Update docs.Dr. Stephen Henson
2001-10-12Update information as a partial response to the postLutz Jänicke
From: "Chris D. Peterson" <cpeterson@aventail.com> Subject: Implementation Issues with OpenSSL To: openssl-users@openssl.org Date: Wed, 22 Aug 2001 16:13:17 -0700 The patch included in the original post may improve the internal session list handling (and is therefore worth a seperate investigation). No change to the list handling will however solve the problems of incorrect SSL_SESSION_free() calls. The session list is only one possible point of failure, dangling pointers would also occur for SSL object currently using the session. The correct solution is to only use SSL_SESSION_free() when applicable!
2001-10-08Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)Lutz Jänicke
2001-09-13Typo.Lutz Jänicke
2001-09-13One more manual page.Lutz Jänicke
2001-09-13Rework section about return values another time (based on hints fromLutz Jänicke
Bodo Moeller).
2001-09-11Make maximum certifcate chain size accepted from the peer applicationLutz Jänicke
settable (proposed by "Douglas E. Engert" <deengert@anl.gov>).
2001-09-07ispellUlf Möller
2001-09-03Use uniformly chosen witnesses for Miller-Rabin testBodo Möller
(by using new BN_pseudo_rand_range function)
2001-08-24More docs.Lutz Jänicke
2001-08-23Typo.Lutz Jänicke
2001-08-23More manual pages. Constify.Lutz Jänicke
2001-08-23As discussed recently on openssl-users.Lutz Jänicke
2001-08-23Make clear, that using the compression layer is currently not recommended.Lutz Jänicke
2001-08-22typo.Ulf Möller
2001-08-21One more manual page...Lutz Jänicke
2001-08-21Documentation on how to handle compression methods.Lutz Jänicke
Hopefully it is clear enough, that it is currently not recommended.
2001-08-20More interdependencies with respect to shutdown behaviour.Lutz Jänicke
2001-08-19Alert description strings for TLSv1 and documentation.Lutz Jänicke
2001-08-17More details about session timeout settings.Lutz Jänicke
2001-08-17One more function documented.Lutz Jänicke
2001-08-17SSL_shutdown() has even more properties...Lutz Jänicke
2001-08-17One more step on the way for complete documentation...Lutz Jänicke
2001-08-17Unidirectional shutdown is allowed according to the RFC.Lutz Jänicke
2001-08-16Better description of the behaviour of SSL_shutdown() as it is now, brokenLutz Jänicke
or not.
2001-08-08add missing linkBodo Möller
2001-08-03Don't disable rollback attack detection as a recommended bug workaround.Lutz Jänicke
2001-07-31Reworked manual pages with a lot of input from Bodo Moeller.Lutz Jänicke
2001-07-31Document DES changes better.Ben Laurie
2001-07-27Undo DH_generate_key() change: s3_srvr.c was using it correctlyBodo Möller
2001-07-25Don't preserve existing keys in DH_generate_key.Bodo Möller
2001-07-25Fix wrong information about SSL_set_connect_state()...Lutz Jänicke
2001-07-23Additional inline reference.Lutz Jänicke
2001-07-23Add missing reference.Lutz Jänicke
2001-07-21Documentation about ephemeral key exchangeLutz Jänicke
2001-07-20Updated explanation.Lutz Jänicke
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-11 00:26:07 +0000