| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2002-11-13 | Security fixes brought forward from 0.9.7. | Ben Laurie | |
| 2002-11-05 | avoid Purify warnings | Bodo Möller | |
| Submitted by: Nils Larsch | |||
| 2002-11-05 | fix typo | Bodo Möller | |
| 2002-10-31 | Remove all referenses to RSAref, since that's been gone for more than | Richard Levitte | |
| a year. | |||
| 2002-10-29 | Sun has agreed to removing the covenant language from most files. | Bodo Möller | |
| Submitted by: Sheueling Chang <Sheueling.Chang@Sun.COM> | |||
| 2002-10-29 | Correct and enhance the behaviour of "internal" session caching as it | Geoff Thorpe | |
| relates to SSL_CTX flags and the use of "external" session caching. The existing flag, "SSL_SESS_CACHE_NO_INTERNAL_LOOKUP" remains but is supplemented with a complimentary flag, "SSL_SESS_CACHE_NO_INTERNAL_STORE". The bitwise OR of the two flags is also defined as "SSL_SESS_CACHE_NO_INTERNAL" and is the flag that should be used by most applications wanting to implement session caching *entirely* by its own provided callbacks. As the documented behaviour contradicted actual behaviour up until recently, and since that point behaviour has itself been inconsistent anyway, this change should not introduce any compatibility problems. I've adjusted the relevant documentation to elaborate about how this works. Kudos to "Nadav Har'El" <nyh@math.technion.ac.il> for diagnosing these anomalies and testing this patch for correctness. PR: 311 | |||
| 2002-10-28 | increase permissible message length so that we can handle | Bodo Möller | |
| CertificateVerify for 4096 bit RSA signatures | |||
| 2002-10-15 | Typos. | Richard Levitte | |
| PR: 189 | |||
| 2002-10-15 | Typos. | Richard Levitte | |
| PR: 189 | |||
| 2002-10-14 | makedepend complains when a header file is included more than once in | Richard Levitte | |
| the same source file. | |||
| 2002-10-10 | Typo | Richard Levitte | |
| 2002-10-10 | RFC 2712 redefines the codes for use of Kerberos 5 in SSL/TLS. | Richard Levitte | |
| PR: 189 | |||
| 2002-10-09 | Use double dashes so makedepend doesn't misunderstand the flags we | Richard Levitte | |
| give it. For 0.9.7 and up, that means util/domd needs to remove those double dashes from the argument list when gcc is used to find the dependencies. | |||
| 2002-09-26 | fix more race conditions | Bodo Möller | |
| Submitted by: "Patrick McCormick" <patrick@tellme.com> PR: 262 | |||
| 2002-09-25 | Add missing brackets. | Lutz Jänicke | |
| Submitted by: "Chris Brook" <cbrook@v-one.com> | |||
| 2002-09-25 | really fix race conditions | Bodo Möller | |
| Submitted by: "Patrick McCormick" <patrick@tellme.com> PR: 262 PR: 291 | |||
| 2002-09-23 | really fix race condition | Bodo Möller | |
| PR: 262 | |||
| 2002-09-19 | there is no minimum length for session IDs | Bodo Möller | |
| PR: 274 | |||
| 2002-09-19 | fix race condition | Bodo Möller | |
| PR: 262 | |||
| 2002-08-16 | Reorder cleanup sequence in SSL_CTX_free() to leave ex_data for remove_cb(). | Lutz Jänicke | |
| Submitted by: Reviewed by: PR: 212 | |||
| 2002-08-15 | use correct function code in error message | Bodo Möller | |
| 2002-08-15 | Sometimes, the value of the variable containing the compiler call can | Richard Levitte | |
| become rather large. This becomes a problem when the default 1024 character large buffer that WRITE uses isn't enough. WRITE/SYMBOL uses a 2048 byte large buffer instead. | |||
| 2002-08-14 | Instead of returning errors when certain flags are unusable, just ignore them. | Richard Levitte | |
| That will make the test go through even if DH (or in some cases ECDH) aren't built into OpenSSL. PR: 216, part 2 | |||
| 2002-08-12 | remove comment | Bodo Möller | |
| Submitted by: Douglas Stebila | |||
| 2002-08-12 | remove debug messages | Bodo Möller | |
| Submitted by: Douglas Stebila | |||
| 2002-08-12 | fix comment | Bodo Möller | |
| Submitted by: Douglas Stebila | |||
| 2002-08-12 | get rid of EVP_PKEY_ECDSA (now we have EVP_PKEY_EC instead) | Bodo Möller | |
| Submitted by: Nils Larsch | |||
| 2002-08-09 | make update | Bodo Möller | |
| 2002-08-09 | fix warnings | Bodo Möller | |
| 2002-08-09 | ECC ciphersuite support | Bodo Möller | |
| Submitted by: Douglas Stebila <douglas.stebila@sun.com> (Authors: Vipul Gupta and Sumit Gupta, Sun Microsystems Laboratories) | |||
| 2002-08-03 | oops -- must use EVP_MD_size, not EVP_MD_block_size | Bodo Möller | |
| 2002-08-02 | get rid of OpenSSLDie | Bodo Möller | |
| 2002-07-31 | Make sure to use $(MAKE) everywhere instead of make. | Richard Levitte | |
| Part of PR 181 | |||
| 2002-07-30 | Typo. | Lutz Jänicke | |
| Submitted by: Jeffrey Altman <jaltman@columbia.edu> Reviewed by: PR: 169 | |||
| 2002-07-30 | OpenSSL Security Advisory [30 July 2002] | Lutz Jänicke | |
| Changes marked "(CHATS)" were sponsored by the Defense Advanced Research Projects Agency (DARPA) and Air Force Research Laboratory, Air Force Materiel Command, USAF, under agreement number F30602-01-2-0537. | |||
| 2002-07-30 | "make update" | Lutz Jänicke | |
| 2002-07-19 | New cipher selection options COMPLEMENTOFALL and COMPLEMENTOFDEFAULT. | Lutz Jänicke | |
| Submitted by: Reviewed by: PR: 127 | |||
| 2002-07-14 | Replace 'ecdsaparam' commandline utility by 'ecparam' | Bodo Möller | |
| (the same keys can be used for ECC schemes other than ECDSA) and add some new options. Similarly, use string "EC PARAMETERS" instead of "ECDSA PARAMETERS" in 'PEM' format. Fix ec_asn1.c (take into account the desired conversion form). 'make update'. Submitted by: Nils Larsch | |||
| 2002-07-10 | Reorder inclusion of header files: | Lutz Jänicke | |
| des_old.h redefines crypt: #define crypt(b,s)\ DES_crypt((b),(s)) This scheme leads to failure, if header files with the OS's true definition of crypt() are processed _after_ des_old.h was processed. This is e.g. the case on HP-UX with unistd.h. As evp.h now again includes des.h (which includes des_old.h), this problem only came up after this modification. Solution: move header files (indirectly) including e_os.h before the header files (indirectly) including evp.h. Submitted by: Reviewed by: PR: | |||
| 2002-07-10 | Ciphers with NULL encryption were not properly handled because they were | Lutz Jänicke | |
| not covered by the strength bit mask. Submitted by: Reviewed by: PR: 130 | |||
| 2002-07-09 | emtpy fragments are not necessary for SSL_eNULL | Bodo Möller | |
| (but noone uses it anyway) fix t1_enc.c: use OPENSSL_NO_RC4, not NO_RC4 | |||
| 2002-07-04 | AES cipher suites are now official (RFC3268) | Bodo Möller | |
| 2002-06-27 | Pass CFLAG to dependency makers, so non-standard system include paths are | Richard Levitte | |
| handled properly. Part of PR 75 | |||
| 2002-06-14 | New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBC | Bodo Möller | |
| vulnerability workaround (included in SSL_OP_ALL). PR: #90 | |||
| 2002-06-06 | Merge from 0.9.7-stable. | Richard Levitte | |
| 2002-05-23 | Recover from errors | Richard Levitte | |
| 2002-05-22 | Allow the use of the TCP/IP stack keyword TCPIP and NONE | Richard Levitte | |
| 2002-05-07 | Fix ciphersuite list to enforce low priority for RC4. | Bodo Möller | |
| 2002-05-07 | ensure that, for each strength, RC4 ciphers have least preference | Bodo Möller | |
| in the default ciphersuite list | |||
| 2002-05-07 | refer to latest draft for AES ciphersuites | Bodo Möller | |
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |