- Aug 03, 2012
-
-
Dr. Stephen Henson authored
New function X509_chain_up_ref to dup and up the reference count of a STACK_OF(X509): replace equivalent functionality in several places by the equivalent call.
-
Dr. Stephen Henson authored
-
- Jul 27, 2012
-
-
Dr. Stephen Henson authored
by a certificate chain. Add additional tests to handle client certificates: checks for matching certificate type and issuer name comparison. Print out results of checks for each candidate chain tested in s_server/s_client.
-
- Jul 24, 2012
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jul 23, 2012
-
-
Dr. Stephen Henson authored
possible to have different stores per SSL structure or one store in the parent SSL_CTX. Include distint stores for certificate chain verification and chain building. New ctrl SSL_CTRL_BUILD_CERT_CHAIN to build and store a certificate chain in CERT structure: returing an error if the chain cannot be built: this will allow applications to test if a chain is correctly configured. Note: if the CERT based stores are not set then the parent SSL_CTX store is used to retain compatibility with existing behaviour.
-
- Jul 20, 2012
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jul 19, 2012
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jul 18, 2012
-
-
Dr. Stephen Henson authored
that are disabled for this session (as opposed to always disabled by configuration).
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jul 15, 2012
-
-
Andy Polyakov authored
2% less instructions in SIMD code paths, so 2% improvement in average:-)
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
-
- Jul 08, 2012
-
-
Dr. Stephen Henson authored
details in s_client. Also add ctrl to set client certificate types. If not used sensible values will be included based on supported signature algorithms: for example if we don't include any DSA signing algorithms the DSA certificate type is omitted. Fix restriction in old code where certificate types would be truncated if it exceeded TLS_CT_NUMBER.
-
- Jul 05, 2012
-
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
Add aliases for SSL_CTX_set_not_resumable_session_callback and SSL_set_not_resumable_session_callback on top of that.
-
- Jul 04, 2012
-
-
Dr. Stephen Henson authored
-
- Jul 03, 2012
-
-
Dr. Stephen Henson authored
Reported by: David McCullough <david_mccullough@mcafee.com> Restore fips configuration module from 0.9.8.
-
Dr. Stephen Henson authored
Always perform nexproto callback argument initialisation in s_server otherwise we use uninitialised data if -nocert is specified.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-