summaryrefslogtreecommitdiffstats
path: root/ssl
AgeCommit message (Collapse)Author
2002-10-10TypoRichard Levitte
2002-10-10RFC 2712 redefines the codes for use of Kerberos 5 in SSL/TLS.Richard Levitte
PR: 189
2002-10-09Use double dashes so makedepend doesn't misunderstand the flags weRichard Levitte
give it. For 0.9.7 and up, that means util/domd needs to remove those double dashes from the argument list when gcc is used to find the dependencies.
2002-09-26fix more race conditionsBodo Möller
Submitted by: "Patrick McCormick" <patrick@tellme.com> PR: 262
2002-09-25Add missing brackets.Lutz Jänicke
Submitted by: "Chris Brook" <cbrook@v-one.com>
2002-09-25really fix race conditionsBodo Möller
Submitted by: "Patrick McCormick" <patrick@tellme.com> PR: 262 PR: 291
2002-09-23really fix race conditionBodo Möller
PR: 262
2002-09-19there is no minimum length for session IDsBodo Möller
PR: 274
2002-09-19fix race conditionBodo Möller
PR: 262
2002-08-16Reorder cleanup sequence in SSL_CTX_free() to leave ex_data for remove_cb().Lutz Jänicke
Submitted by: Reviewed by: PR: 212
2002-08-15use correct function code in error messageBodo Möller
2002-08-15Sometimes, the value of the variable containing the compiler call canRichard Levitte
become rather large. This becomes a problem when the default 1024 character large buffer that WRITE uses isn't enough. WRITE/SYMBOL uses a 2048 byte large buffer instead.
2002-08-14Instead of returning errors when certain flags are unusable, just ignore them.Richard Levitte
That will make the test go through even if DH (or in some cases ECDH) aren't built into OpenSSL. PR: 216, part 2
2002-08-12remove commentBodo Möller
Submitted by: Douglas Stebila
2002-08-12remove debug messagesBodo Möller
Submitted by: Douglas Stebila
2002-08-12fix commentBodo Möller
Submitted by: Douglas Stebila
2002-08-12get rid of EVP_PKEY_ECDSA (now we have EVP_PKEY_EC instead)Bodo Möller
Submitted by: Nils Larsch
2002-08-09make updateBodo Möller
2002-08-09fix warningsBodo Möller
2002-08-09ECC ciphersuite supportBodo Möller
Submitted by: Douglas Stebila <douglas.stebila@sun.com> (Authors: Vipul Gupta and Sumit Gupta, Sun Microsystems Laboratories)
2002-08-03oops -- must use EVP_MD_size, not EVP_MD_block_sizeBodo Möller
2002-08-02get rid of OpenSSLDieBodo Möller
2002-07-31Make sure to use $(MAKE) everywhere instead of make.Richard Levitte
Part of PR 181
2002-07-30Typo.Lutz Jänicke
Submitted by: Jeffrey Altman <jaltman@columbia.edu> Reviewed by: PR: 169
2002-07-30OpenSSL Security Advisory [30 July 2002]Lutz Jänicke
Changes marked "(CHATS)" were sponsored by the Defense Advanced Research Projects Agency (DARPA) and Air Force Research Laboratory, Air Force Materiel Command, USAF, under agreement number F30602-01-2-0537.
2002-07-30"make update"Lutz Jänicke
2002-07-19New cipher selection options COMPLEMENTOFALL and COMPLEMENTOFDEFAULT.Lutz Jänicke
Submitted by: Reviewed by: PR: 127
2002-07-14Replace 'ecdsaparam' commandline utility by 'ecparam'Bodo Möller
(the same keys can be used for ECC schemes other than ECDSA) and add some new options. Similarly, use string "EC PARAMETERS" instead of "ECDSA PARAMETERS" in 'PEM' format. Fix ec_asn1.c (take into account the desired conversion form). 'make update'. Submitted by: Nils Larsch
2002-07-10Reorder inclusion of header files:Lutz Jänicke
des_old.h redefines crypt: #define crypt(b,s)\ DES_crypt((b),(s)) This scheme leads to failure, if header files with the OS's true definition of crypt() are processed _after_ des_old.h was processed. This is e.g. the case on HP-UX with unistd.h. As evp.h now again includes des.h (which includes des_old.h), this problem only came up after this modification. Solution: move header files (indirectly) including e_os.h before the header files (indirectly) including evp.h. Submitted by: Reviewed by: PR:
2002-07-10Ciphers with NULL encryption were not properly handled because they wereLutz Jänicke
not covered by the strength bit mask. Submitted by: Reviewed by: PR: 130
2002-07-09emtpy fragments are not necessary for SSL_eNULLBodo Möller
(but noone uses it anyway) fix t1_enc.c: use OPENSSL_NO_RC4, not NO_RC4
2002-07-04AES cipher suites are now official (RFC3268)Bodo Möller
2002-06-27Pass CFLAG to dependency makers, so non-standard system include paths areRichard Levitte
handled properly. Part of PR 75
2002-06-14New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBCBodo Möller
vulnerability workaround (included in SSL_OP_ALL). PR: #90
2002-06-06Merge from 0.9.7-stable.Richard Levitte
2002-05-23Recover from errorsRichard Levitte
2002-05-22Allow the use of the TCP/IP stack keyword TCPIP and NONERichard Levitte
2002-05-07Fix ciphersuite list to enforce low priority for RC4.Bodo Möller
2002-05-07ensure that, for each strength, RC4 ciphers have least preferenceBodo Möller
in the default ciphersuite list
2002-05-07refer to latest draft for AES ciphersuitesBodo Möller
2002-05-06fix warningBodo Möller
2002-05-05disable AES ciphersuites unless explicitly requestedBodo Möller
2002-05-05fix castsBodo Möller
2002-04-29undo nonsense patch (r *is* signed or we have signedness mismatches elsewhere)Bodo Möller
2002-04-29Fix unsigned vs. signed clashRichard Levitte
2002-04-29Synchronise with 0.9.7-stable.Richard Levitte
2002-04-29Synchronise with 0.9.7-stable.Richard Levitte
2002-04-20Signedness mismatch.Richard Levitte
Notified by Bernd Matthes <bernd.matthes@gemplus.com>
2002-04-18Make sure the opened directory is closed on exit.Richard Levitte
Notified by Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>
2002-04-14fix length field we create when converting SSL 2.0 format into SSL 3.0/TLS ↵Bodo Möller
1.0 format (the bug was introduced with message callback support)
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-25 11:40:08 +0000