openssl - Mirror of https://github.com/openssl/openssl

Age	Commit message (Collapse)	Author
2002-07-14	Replace 'ecdsaparam' commandline utility by 'ecparam'	Bodo Möller
	(the same keys can be used for ECC schemes other than ECDSA) and add some new options. Similarly, use string "EC PARAMETERS" instead of "ECDSA PARAMETERS" in 'PEM' format. Fix ec_asn1.c (take into account the desired conversion form). 'make update'. Submitted by: Nils Larsch
2002-07-10	Reorder inclusion of header files:	Lutz Jänicke
	des_old.h redefines crypt: #define crypt(b,s)\ DES_crypt((b),(s)) This scheme leads to failure, if header files with the OS's true definition of crypt() are processed _after_ des_old.h was processed. This is e.g. the case on HP-UX with unistd.h. As evp.h now again includes des.h (which includes des_old.h), this problem only came up after this modification. Solution: move header files (indirectly) including e_os.h before the header files (indirectly) including evp.h. Submitted by: Reviewed by: PR:
2002-07-10	Ciphers with NULL encryption were not properly handled because they were	Lutz Jänicke
	not covered by the strength bit mask. Submitted by: Reviewed by: PR: 130
2002-07-09	emtpy fragments are not necessary for SSL_eNULL	Bodo Möller
	(but noone uses it anyway) fix t1_enc.c: use OPENSSL_NO_RC4, not NO_RC4
2002-07-04	AES cipher suites are now official (RFC3268)	Bodo Möller

2002-06-27	Pass CFLAG to dependency makers, so non-standard system include paths are	Richard Levitte
	handled properly. Part of PR 75
2002-06-14	New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBC	Bodo Möller
	vulnerability workaround (included in SSL_OP_ALL). PR: #90
2002-06-06	Merge from 0.9.7-stable.	Richard Levitte

2002-05-23	Recover from errors	Richard Levitte

2002-05-22	Allow the use of the TCP/IP stack keyword TCPIP and NONE	Richard Levitte

2002-05-07	Fix ciphersuite list to enforce low priority for RC4.	Bodo Möller

2002-05-07	ensure that, for each strength, RC4 ciphers have least preference	Bodo Möller
	in the default ciphersuite list
2002-05-07	refer to latest draft for AES ciphersuites	Bodo Möller

2002-05-06	fix warning	Bodo Möller

2002-05-05	disable AES ciphersuites unless explicitly requested	Bodo Möller

2002-05-05	fix casts	Bodo Möller

2002-04-29	undo nonsense patch (r is signed or we have signedness mismatches elsewhere)	Bodo Möller

2002-04-29	Fix unsigned vs. signed clash	Richard Levitte

2002-04-29	Synchronise with 0.9.7-stable.	Richard Levitte

2002-04-29	Synchronise with 0.9.7-stable.	Richard Levitte

2002-04-20	Signedness mismatch.	Richard Levitte
	Notified by Bernd Matthes <bernd.matthes@gemplus.com>
2002-04-18	Make sure the opened directory is closed on exit.	Richard Levitte
	Notified by Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>
2002-04-14	fix length field we create when converting SSL 2.0 format into SSL 3.0/TLS ↵	Bodo Möller
	1.0 format (the bug was introduced with message callback support)
2002-04-13	Implement known-IV countermeasure.	Bodo Möller
	Fix length checks in ssl3_get_client_hello(). Use s->s3->in_read_app_data differently to fix ssl3_read_internal().
2002-03-19	Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).	Lutz Jänicke

2002-03-19	Initialize ciph_ctx in kssl.c	Dr. Stephen Henson

2002-03-15	fix ssl3_pending	Bodo Möller

2002-03-14	Add missing strength entries.	Lutz Jänicke

2002-03-14	Initialize cipher context in KRB5	Dr. Stephen Henson
	("D. Russell" <russelld@aol.net>) Allow HMAC functions to use an alternative ENGINE.
2002-03-14	use BIO_nwrite() more properly to demonstrate the general idea of	Bodo Möller
	BIO_nwrite0/BIO_nwrite (the previous code was OK for BIO pairs but not in general)
2002-03-13	Undo previous patch: avoid warnings by #undef'ing	Dr. Stephen Henson
	duplicate definitions. Suggested by "Kenneth R. Robinette" <support@securenetterm.com>
2002-03-12	Fix Kerberos warnings with VC++.	Dr. Stephen Henson

2002-03-12	Fix ASN1 additions for KRB5	Dr. Stephen Henson

2002-03-12	Fix various warnings when compiling with KRB5 code.	Dr. Stephen Henson

2002-02-28	use ERR_peek_last_error() instead of ERR_peek_error()	Bodo Möller

2002-02-28	Increase internal security when using strncpy, by making sure the resulting ↵	Richard Levitte
	string is NUL-terminated
2002-02-28	Add 'void *' argument to app_verify_callback.	Bodo Möller
	Submitted by: D. K. Smetters <smetters@parc.xerox.com> Reviewed by: Bodo Moeller
2002-02-27	Fix the fix (Yoram Zahavi)...	Lutz Jänicke

2002-02-26	Make sure to remove bad sessions in SSL_clear() (found by Yoram Zahavi).	Lutz Jänicke

2002-02-22	Fix for AIX.	Dr. Stephen Henson
	Submitted by Dawn Whiteside <dwhitesi@tiercel.uwaterloo.ca>
2002-02-13	ECDSA support	Bodo Möller
	Submitted by: Nils Larsch <nla@trustcenter.de>
2002-02-10	Make removal from session cache more robust.	Lutz Jänicke

2002-02-08	Do not store unneeded data.	Lutz Jänicke

2002-01-14	Bugfix: In ssl3_accept, don't use a local variable 'got_new_session'	Bodo Möller
	to indicate that a real handshake is taking place (the value will be lost during multiple invocations). Set s->new_session to 2 instead.
2002-01-14	Return -1 from ssl3_get_server_done (ssl3/s3_clnt.c) if	Bodo Möller
	the SSL_R_LENGTH_MISMATCH error is detected.
2002-01-12	Prototype info function.	Ben Laurie

2002-01-12	Add client_cert_cb prototype.	Ben Laurie

2001-12-28	ssl3_read_bytes bug fix	Ulf Möller
	Submitted by: D P Chang <dpc@qualys.com> Reviewed by: Bodo
2001-12-17	remove redundant ERR_load_... declarations	Bodo Möller

2001-12-09	Improve back compatibility.	Ben Laurie