Skip to content
  1. Jan 08, 2001
    • Dr. Stephen Henson's avatar
      · 0b33bc65
      Dr. Stephen Henson authored
      Add set of OCSP client functions. All experimental
      and subject to addition, modifcation or deletion.
      
      Add two OCSP nonce utility functions.
      
      Fix typo in status code name.
      0b33bc65
  2. Jan 07, 2001
  3. Jan 05, 2001
  4. Jan 04, 2001
    • Dr. Stephen Henson's avatar
      Fix typo in OCSP nonce extension. · a8312c0e
      Dr. Stephen Henson authored
      Set correct type in ASN1_STRING for
      INTEGER and ENUMERATED types.
      
      Make ASN1_INTEGER_get() and ASN1_ENUMERATED_get()
      return -1 for invalid type rather than 0 (which is
      often valid). -1 may also be valid but this is less
      likely.
      
      Load OCSP error strings in ERR_load_crypto_strings().
      a8312c0e
    • Dr. Stephen Henson's avatar
      Update OCSP API. · bf0d176e
      Dr. Stephen Henson authored
      Remove extensions argument from various functions
      because it is not needed with the new extension
      code.
      
      New function OCSP_cert_to_id() to convert a pair
      of certificates into an OCSP_CERTID.
      
      New simple OCSP HTTP function. This is rather primitive
      but just about adequate to send OCSP requests and
      parse the response.
      
      Fix typo in CRL distribution points extension.
      
      Fix ASN1 code so it adds a final null to constructed
      strings.
      bf0d176e
  5. Dec 31, 2000
  6. Dec 30, 2000
  7. Dec 29, 2000
  8. Dec 28, 2000
  9. Dec 27, 2000
  10. Dec 26, 2000
  11. Dec 25, 2000
  12. Dec 24, 2000
  13. Dec 21, 2000
  14. Dec 20, 2000
    • Geoff Thorpe's avatar
      This adds support to 'tunala' for supplying DH parameters (without which it · 1cc0b0a6
      Geoff Thorpe authored
      will not support EDH cipher suites). The parameters can either be loaded
      from a file (via "-dh_file"), generated by the application on start-up
      ("-dh_special generate"), or be standard DH parameters (as used in
      s_server, etc).
      1cc0b0a6
    • Geoff Thorpe's avatar
      Some minor changes to the "tunala" demo. · beb23252
      Geoff Thorpe authored
      * Seal off some buffer functions so that only the higher-level IO functions
        are exposed.
      
      * Using the above change to buffer, add support to tunala for displaying
        traffic totals when a tunnel closes. Useful in debugging and analysis -
        you get to see the total encrypted traffic versus the total tunneled
        traffic. This shows not only how much expansion your data suffers from
        SSL (a lot if you send/receive a few bytes at a time), but also the
        overhead of SSL handshaking relative to the payload sent through the
        tunnel. This is controlled by the "-out_totals" switch to tunala.
      
      * Fix and tweak some bits in the README.
      
      Eg. sample output of "-out_totals" from a tunnel client when tunneling a brief
      "telnet" session.
      
      Tunnel closing, traffic stats follow
          SSL (network) traffic to/from server;     7305 bytes in,     3475 bytes out
          tunnelled data to/from server;            4295 bytes in,      186 bytes out
      beb23252