Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-03-14 | Initialize cipher context in KRB5 | Dr. Stephen Henson | |
("D. Russell" <russelld@aol.net>) Allow HMAC functions to use an alternative ENGINE. | |||
2002-03-14 | use BIO_nwrite() more properly to demonstrate the general idea of | Bodo Möller | |
BIO_nwrite0/BIO_nwrite (the previous code was OK for BIO pairs but not in general) | |||
2002-03-13 | Undo previous patch: avoid warnings by #undef'ing | Dr. Stephen Henson | |
duplicate definitions. Suggested by "Kenneth R. Robinette" <support@securenetterm.com> | |||
2002-03-12 | Fix Kerberos warnings with VC++. | Dr. Stephen Henson | |
2002-03-12 | Fix ASN1 additions for KRB5 | Dr. Stephen Henson | |
2002-03-12 | Fix various warnings when compiling with KRB5 code. | Dr. Stephen Henson | |
2002-02-28 | use ERR_peek_last_error() instead of ERR_peek_error() | Bodo Möller | |
2002-02-28 | Increase internal security when using strncpy, by making sure the resulting ↵ | Richard Levitte | |
string is NUL-terminated | |||
2002-02-28 | Add 'void *' argument to app_verify_callback. | Bodo Möller | |
Submitted by: D. K. Smetters <smetters@parc.xerox.com> Reviewed by: Bodo Moeller | |||
2002-02-27 | Fix the fix (Yoram Zahavi)... | Lutz Jänicke | |
2002-02-26 | Make sure to remove bad sessions in SSL_clear() (found by Yoram Zahavi). | Lutz Jänicke | |
2002-02-22 | Fix for AIX. | Dr. Stephen Henson | |
Submitted by Dawn Whiteside <dwhitesi@tiercel.uwaterloo.ca> | |||
2002-02-13 | ECDSA support | Bodo Möller | |
Submitted by: Nils Larsch <nla@trustcenter.de> | |||
2002-02-10 | Make removal from session cache more robust. | Lutz Jänicke | |
2002-02-08 | Do not store unneeded data. | Lutz Jänicke | |
2002-01-14 | Bugfix: In ssl3_accept, don't use a local variable 'got_new_session' | Bodo Möller | |
to indicate that a real handshake is taking place (the value will be lost during multiple invocations). Set s->new_session to 2 instead. | |||
2002-01-14 | Return -1 from ssl3_get_server_done (ssl3/s3_clnt.c) if | Bodo Möller | |
the SSL_R_LENGTH_MISMATCH error is detected. | |||
2002-01-12 | Prototype info function. | Ben Laurie | |
2002-01-12 | Add client_cert_cb prototype. | Ben Laurie | |
2001-12-28 | ssl3_read_bytes bug fix | Ulf Möller | |
Submitted by: D P Chang <dpc@qualys.com> Reviewed by: Bodo | |||
2001-12-17 | remove redundant ERR_load_... declarations | Bodo Möller | |
2001-12-09 | Improve back compatibility. | Ben Laurie | |
2001-11-23 | For future portability reasons MIT is moving all macros to function | Bodo Möller | |
calls. This patch allows compilation either way. Submitted by: Jeffrey Altman <jaltman@columbia.edu> | |||
2001-11-14 | cast to unsigned int, not to int to avoid the warning -- all these | Bodo Möller | |
values really are unsigned | |||
2001-11-14 | unsigned int vs. int. | Richard Levitte | |
2001-11-10 | make code a little more similar to what it looked like before the fixes, | Bodo Möller | |
call ssl2_part_read again to parse error message | |||
2001-11-10 | Implement msg_callback for SSL 2.0. | Bodo Möller | |
Important SSL 2.0 bugfixes (bugs found while implementing msg_callback). | |||
2001-10-30 | Change the shared library support so the shared libraries get built | Richard Levitte | |
sooner and the programs get built against the shared libraries. This requires a bit more work. Things like -rpath and the possibility to still link the programs statically should be included. Some cleanup is also needed. This will be worked on. | |||
2001-10-29 | Addapt VMS scripts to the newer disk layout system ODS-5, which allows more ↵ | Richard Levitte | |
than one period and mixed size characters in file names | |||
2001-10-25 | Consistency with s2_... and s23_... variants (no real functional | Bodo Möller | |
change) | |||
2001-10-25 | Assume TLS 1.0 when ClientHello fragment is too short. | Bodo Möller | |
2001-10-24 | Fix SSL handshake functions and SSL_clear() such that SSL_clear() | Bodo Möller | |
never resets s->method to s->ctx->method when called from within one of the SSL handshake functions. | |||
2001-10-24 | Deprecate the macro MAC_OS_pre_X. | Richard Levitte | |
2001-10-22 | Fix memory leak. | Bodo Möller | |
2001-10-20 | Call msg_callback with correct length parameter if ssl3_write_bytes had to | Bodo Möller | |
be called multiple times | |||
2001-10-20 | New functions SSL[_CTX]_set_msg_callback(). | Bodo Möller | |
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices. | |||
2001-10-17 | gcc complained about "write" being shadowed even though the "write" | Bodo Möller | |
variable name occured just in a function *prototype* -- so rename it | |||
2001-10-17 | Wrong place... | Richard Levitte | |
2001-10-17 | The EVP_*Init_ex() functions take one extra argument. Let's default | Richard Levitte | |
it to NULL. | |||
2001-10-17 | Modify EVP cipher behaviour in a similar way | Dr. Stephen Henson | |
to digests to retain compatibility. | |||
2001-10-16 | Add per-SSL 'msg_callback' with 'msg_callback_arg'. | Bodo Möller | |
Both have per-SSL_CTX defaults. These new values can be set by calling SSL[_CTX]_[callback_]ctrl with codes SSL_CTRL_SET_MSG_CALLBACK and SSL_CTRL_SET_MSG_CALLBACK_ARG. So far, the callback is never actually called. Also rearrange some SSL_CTX struct members (some exist just in SSL_CTXs, others are defaults for SSLs and are either copied during SSL_new, or used if the value in the SSL is not set; these three classes of members were not in a logical order), and add some missing assignments to SSL_dup. | |||
2001-10-16 | Retain compatibility of EVP_DigestInit() and EVP_DigestFinal() | Dr. Stephen Henson | |
with existing code. Modify library to use digest *_ex() functions. | |||
2001-10-16 | The message header for fake SSL 3.0/TLS 1.0 client hellos created from | Bodo Möller | |
SSL 2.0 client hellos added with the previous commit was totally wrong -- it must start with the message type, not the protocol version. (Not that this particular header is actually used anywhere ...) | |||
2001-10-15 | For consistency, set s->init_num in the 'reuse_message' case | Bodo Möller | |
(if s23_srvr.c faked the message, s->init_num is 0). | |||
2001-10-15 | Change ssl3_get_message and the functions using it so that complete | Bodo Möller | |
'Handshake' protocol structures are kept in memory, including 'msg_type' and 'length'. (This is in preparation of future support for callbacks that get to peek at handshake messages and the like.) | |||
2001-10-15 | Fix ssl3_get_message handle message fragmentation correctly. | Bodo Möller | |
2001-10-15 | the previous commit accidentily removed 'ret = 1' from the SSL_ST_OK | Bodo Möller | |
case of ssl3_accept | |||
2001-10-10 | To avoid commit wars over dependencies, let's make it so things that | Richard Levitte | |
depend on the environment, like the presence of the OpenBSD crypto device or of Kerberos, do not change the dependencies within OpenSSL. | |||
2001-10-04 | SSL_add_dir_cert_subjects_to_stack for Win32 finally implemented. | Richard Levitte | |
Submitted by Massimo Santin <msantin@santineassociati.com>. | |||
2001-10-04 | 'make update' | Richard Levitte | |