- Sep 15, 2008
-
-
Dr. Stephen Henson authored
-
- Sep 14, 2008
-
-
Bodo Möller authored
Submitted by: Nagendra Modadugu
-
Bodo Möller authored
-
Bodo Möller authored
Also, "CHANGES" clean-ups.
-
Bodo Möller authored
-
- Sep 01, 2008
-
-
Dr. Stephen Henson authored
a delta CRL in addition to a full CRL. Check and search delta in addition to the base.
-
- Aug 29, 2008
-
-
Dr. Stephen Henson authored
Tidy CRL scoring system. Add new CRL path validation error.
-
- Aug 27, 2008
-
-
Dr. Stephen Henson authored
-
- Aug 20, 2008
-
-
Dr. Stephen Henson authored
-
- Aug 13, 2008
-
-
Bodo Möller authored
-
Dr. Stephen Henson authored
and CRL signing keys.
-
- Aug 12, 2008
-
-
Dr. Stephen Henson authored
Delete X509_POLICY_REF code. Fix handling of invalid policy extensions to return the correct error. Add command line option to inhibit policy mappings.
-
- Aug 08, 2008
-
-
Dr. Stephen Henson authored
TODO: robustness checking on name forms.
-
- Aug 06, 2008
-
-
Geoff Thorpe authored
deprecate the original (numeric-only) scheme, and replace with the CRYPTO_THREADID object. This hides the platform-specifics and should reduce the possibility for programming errors (where failing to explicitly check both thread ID forms could create subtle, platform-specific bugs). Thanks to Bodo, for invaluable review and feedback.
-
- Jul 30, 2008
-
-
Dr. Stephen Henson authored
Allow inibit any policy flag to be set in apps.
-
- Jul 03, 2008
-
-
Geoff Thorpe authored
version some time soon.
-
- Jun 26, 2008
-
-
Dr. Stephen Henson authored
-
- Jun 23, 2008
-
-
Bodo Möller authored
Submitted by: Huang Ying Reviewed by: Douglas Stebila
-
- Jun 09, 2008
-
-
Dr. Stephen Henson authored
-
- Jun 05, 2008
-
-
Dr. Stephen Henson authored
-
- Jun 04, 2008
-
-
Ben Laurie authored
-
- Jun 03, 2008
-
-
Ben Laurie authored
-
- Jun 01, 2008
-
-
Dr. Stephen Henson authored
-
- May 28, 2008
-
-
Bodo Möller authored
-
Bodo Möller authored
Fix flaw if 'Server Key exchange message' is omitted from a TLS handshake which could lead to a cilent crash as found using the Codenomicon TLS test suite (CVE-2008-1672) Reviewed by: openssl-security@openssl.org Obtained from: mark@awe.com
-
Bodo Möller authored
Fix double-free in TLS server name extensions which could lead to a remote crash found by Codenomicon TLS test suite (CVE-2008-0891) Reviewed by: openssl-security@openssl.org Obtained from: jorton@redhat.com
-
- May 26, 2008
-
-
Ben Laurie authored
-
- May 23, 2008
-
-
Lutz Jänicke authored
PR: 1417, 1513 Submitted by: Erik de Castro Lopo <mle+openssl@mega-nerd.com>
-
Lutz Jänicke authored
from the OpenSSL distribution.
-
- May 20, 2008
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- May 19, 2008
-
-
Dr. Stephen Henson authored
Submitted by: Ivan Nestlerode <inestlerode@us.ibm.com> Reviewed by: steve
-
Bodo Möller authored
ptr members. (So if the id_callback is bogus, we still have &errno.)
-
- Apr 30, 2008
-
-
Dr. Stephen Henson authored
-
- Apr 28, 2008
-
-
Geoff Thorpe authored
ticket #1668). PR: 1668 Submitted by: Ian Lister Reviewed by: Geoff Thorpe
-
- Apr 27, 2008
-
-
Geoff Thorpe authored
where they both use the same limb size. I've tweaked his patch slightly, so blame me if it breaks. Submitted by: Paul Sheer Reviewed by: Geoff Thorpe
-
- Apr 02, 2008
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Mar 28, 2008
-
-
Dr. Stephen Henson authored
-
Geoff Thorpe authored
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed version was added but it required portable code to check *both* modes to determine equality. This commit maintains the availability of both thread ID types, but deprecates the type-specific accessor APIs that invoke the callbacks - instead a single type-independent API is used. This simplifies software that calls into this interface, and should also make it less error-prone - as forgetting to call and compare *both* thread ID accessors could have led to hard-to-debug/infrequent bugs (that might only affect certain platforms or thread implementations). As the CHANGES note says, there were corresponding deprecations and replacements in the thread-related functions for BN_BLINDING and ERR too.
-