Commits · 15481c5e42d7cf47c829bc2cd5a7c3a69781c26a · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jan 20, 2013
- Don't include comp.h if no-comp set. · 15481c5e
  Dr. Stephen Henson authored Jan 20, 2013
  
  15481c5e
Jan 19, 2013
- engines/ccgost: GOST fixes [from master]. · 366b60b9
  Andy Polyakov authored Jan 19, 2013
```
Submitted by: Dmitry Belyavsky, Seguei Leontiev
PR: 2821
```
  366b60b9
- .gitignore adjustments · 4782444a
  Andy Polyakov authored Jan 19, 2013
  
  4782444a
Jan 14, 2013
- Merge branch 'OpenSSL_1_0_1-stable' of /home/steve/src/git/openssl into OpenSSL_1_0_1-stable · 8a17e161
  Dr. Stephen Henson authored Jan 14, 2013
  
  8a17e161
- Fix some clang warnings. · 72f27cd2
  Ben Laurie authored Jan 13, 2013
  
  72f27cd2
Jan 13, 2013
- Merge branch 'OpenSSL_1_0_1-stable' of openssl.net:openssl into OpenSSL_1_0_1-stable · 3b3674ae
  Dr. Stephen Henson authored Jan 13, 2013
  
  3b3674ae
- Correct EVP_PKEY_verifyrecover to EVP_PKEY_verify_recover (RT 2955). · 9d75e765
  Ben Laurie authored Jan 12, 2013
  
  9d75e765
Jan 12, 2013
- Correct EVP_PKEY_verifyrecover to EVP_PKEY_verify_recover (RT 2955). · bf07bd4d
  Ben Laurie authored Jan 12, 2013
  
  bf07bd4d
Jan 07, 2013
- Update debug-steve64 · 296cc7f4
  Dr. Stephen Henson authored Jan 07, 2013
  
  296cc7f4
- Add .gitignore · 3d929846
  Dr. Stephen Henson authored Jan 07, 2013
  
  3d929846
- In FIPS mode use PKCS#8 format when writing private keys: · 51447d5d
  Dr. Stephen Henson authored Jan 07, 2013
```
traditional format uses MD5 which is prohibited in FIPS mode.
```
  51447d5d
- Change default bits to 1024 · 1dcf520f
  Dr. Stephen Henson authored Jan 07, 2013
  
  1dcf520f
Dec 30, 2012
- make no-comp compile · fca84dab
  Dr. Stephen Henson authored Dec 30, 2012
  
  fca84dab
Dec 23, 2012
- add missing \n · 3ea1e135
  Dr. Stephen Henson authored Dec 23, 2012
  
  3ea1e135
Dec 16, 2012
- VC-32.pl: fix typo [from HEAD]. · dd6639bd
  Andy Polyakov authored Dec 16, 2012
```
Submitted by: Pierre Delaage
```
  dd6639bd
Dec 14, 2012
- Documentation improvements by Chris Palmer (Google). · bee05503
  Ben Laurie authored Dec 14, 2012
  
  bee05503
Dec 13, 2012
- Document -pubkey option. · fc57c58c
  Ben Laurie authored Dec 13, 2012
  
  fc57c58c
- Make verify return errors. · 5bb6d965
  Ben Laurie authored Dec 13, 2012
  
  5bb6d965
- Add 64 bit target. · 28e1bd35
  Ben Laurie authored Dec 13, 2012
  
  28e1bd35
Dec 06, 2012
- Fix two bugs which affect delta CRL handling: · dd83cc29
  Dr. Stephen Henson authored Dec 06, 2012
```
Use -1 to check all extensions in CRLs.
Always set flag for freshest CRL.
```
  dd83cc29
Dec 05, 2012
- aes-s390x.pl: fix XTS bugs in z196-specific code path [from HEAD]. · ea005985
  Andy Polyakov authored Dec 05, 2012
  
  ea005985
Dec 04, 2012
- check mval for NULL too · a650314f
  Dr. Stephen Henson authored Dec 04, 2012
  
  a650314f
Dec 03, 2012
- fix leak · 54fdc39a
  Dr. Stephen Henson authored Dec 03, 2012
  
  54fdc39a
Dec 01, 2012
- aes-s389x.pl: harmonize software-only code path [from HEAD]. · 7dc98a62
  Andy Polyakov authored Dec 01, 2012
  
  7dc98a62
Nov 29, 2012

PR: 2803 · f20ba1c9

Dr. Stephen Henson authored Nov 29, 2012

Submitted by: jean-etienne.schwartz@bull.net

In OCSP_basic_varify return an error if X509_STORE_CTX_init fails.

f20ba1c9

Nov 22, 2012
- reject zero length point format list or supported curves extensions · 7c356294
  Dr. Stephen Henson authored Nov 22, 2012
  
  7c356294
Nov 21, 2012

PR: 2908 · eb3a3911

Dr. Stephen Henson authored Nov 21, 2012

Submitted by: Dmitry Belyavsky <beldmit@gmail.com>

Fix DH double free if parameter generation fails.

eb3a3911

Nov 20, 2012
- fix leaks · 540f7c75
  Dr. Stephen Henson authored Nov 20, 2012
  
  540f7c75
Nov 19, 2012
- correct docs · d6342aab
  Dr. Stephen Henson authored Nov 19, 2012
  
  d6342aab
Nov 18, 2012

PR: 2880 · e7b85bc4

Dr. Stephen Henson authored Nov 18, 2012

Submitted by: "Florian RÃ¼chel" <florian.ruechel@ruhr-uni-bochum.de>

Correctly handle local machine keys in the capi ENGINE.

e7b85bc4

Nov 15, 2012
- add "missing" TLSv1.2 cipher alias · 07eaaab2
  Dr. Stephen Henson authored Nov 15, 2012
  
  07eaaab2
Oct 16, 2012
- Don't require tag before ciphertext in AESGCM mode · 96f7fafa
  Dr. Stephen Henson authored Oct 16, 2012
  
  96f7fafa
- aix[64]-cc: get MT support right [from HEAD]. · 487a0df7
  Andy Polyakov authored Oct 16, 2012
```
PR: 2896
```
  487a0df7
Oct 05, 2012
- Fix EC_KEY initialization race. · 09ef5f62
  Bodo Möller authored Oct 05, 2012
```
Submitted by: Adam Langley
```
  09ef5f62
Sep 24, 2012
- Fix Valgrind warning. · bcc0e4ca
  Bodo Möller authored Sep 24, 2012
```
Submitted by: Adam Langley
```
  bcc0e4ca
- * Configure: make the debug-levitte-linux{elf,noasm} less extreme. · caac8fef
  Richard Levitte authored Sep 24, 2012
  
  caac8fef
Sep 21, 2012

Minor enhancement to PR#2836 fix. Instead of modifying SSL_get_certificate · 353e8451

Dr. Stephen Henson authored Sep 21, 2012

change the current certificate (in s->cert->key) to the one used and then
SSL_get_certificate and SSL_get_privatekey will automatically work.

Note for 1.0.1 and earlier also includes backport of the function
ssl_get_server_send_pkey.

353e8451

* ssl/t1_enc.c (tls1_change_cipher_state): Stupid bug. Fortunately in · d1451f18
Richard Levitte authored Sep 21, 2012
```
  debugging code that's seldom used.
```
d1451f18

Sep 17, 2012

Fix warning. · c3a5b7b8
Bodo Möller authored Sep 17, 2012
```
Submitted by: Chromium Authors
```
c3a5b7b8

Call OCSP Stapling callback after ciphersuite has been chosen, so the · 70d91d60

Ben Laurie authored Sep 17, 2012

right response is stapled. Also change SSL_get_certificate() so it
returns the certificate actually sent.

See http://rt.openssl.org/Ticket/Display.html?id=2836.

70d91d60