- Dec 11, 1999
-
-
Dr. Stephen Henson authored
-
- Dec 10, 1999
-
-
Dr. Stephen Henson authored
Also fix a memory leak in PKCS#7 routines.
-
- Dec 05, 1999
-
-
Dr. Stephen Henson authored
-
- Dec 03, 1999
-
-
Bodo Möller authored
Never use des_set_key (it depends on the global variable des_check_key), but usually des_set_key_unchecked. Only destest.c bothered to look at the return values of des_set_key, but it did not set des_check_key -- if it had done so, most checks would have failed because of wrong parity and because of weak keys.
-
Dr. Stephen Henson authored
-
- Dec 02, 1999
-
-
Dr. Stephen Henson authored
either and has a static and dynamic mix.
-
- Dec 01, 1999
-
-
Dr. Stephen Henson authored
-
- Nov 30, 1999
-
-
Ben Laurie authored
-
- Nov 29, 1999
-
-
Dr. Stephen Henson authored
SSL_CTX and SSL, functions to set them and defaults if no values set.
-
- Nov 27, 1999
-
-
Dr. Stephen Henson authored
trust settings of the root CA. After a few fixes it seems to work OK. Still need to add support to SSL and S/MIME code though.
-
Dr. Stephen Henson authored
in a table. Doesn't do too much yet. Make the -<digestname> options in 'x509' affect all relevant options. Change the name of the 'notrust' options to 'reject' as this causes less confusion and is a better description of the effect. A few constification changes.
-
- Nov 26, 1999
-
-
Dr. Stephen Henson authored
Extend the X509_PURPOSE structure to include shortnames for purposed and default trust ids. Still need some extendable trust checking code and integration with the SSL and S/MIME code.
-
- Nov 24, 1999
-
-
Dr. Stephen Henson authored
at present. However nothing enables it yet so this doesn't matter :-)
-
- Nov 23, 1999
-
-
Dr. Stephen Henson authored
Fix so EVP_PKEY_rset_*() check return codes.
-
- Nov 21, 1999
-
-
Dr. Stephen Henson authored
New universal public key format. Fix CRL+cert load problem in by_file.c Make verify report errors when loading files or dirs
-
- Nov 19, 1999
-
-
Dr. Stephen Henson authored
-
- Nov 17, 1999
-
-
Dr. Stephen Henson authored
-
- Nov 16, 1999
-
-
Bodo Möller authored
-
Dr. Stephen Henson authored
Remove rc4-64 from ciphers since it doesn't exist...
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Nov 15, 1999
-
-
Mark J. Cox authored
Previously, the returned SSL_SESSION didn't have its reference count incremented so the SSL_SESSION could be freed at any time causing seg-faults if the pointer was subsequently used. Code that uses SSL_get_session must now make a corresponding SSL_SESSION_free() call when it is done to avoid memory leaks (or blocked up session caches). Submitted By: Geoff Thorpe <geoff@eu.c2.net>
-
- Nov 14, 1999
-
-
Dr. Stephen Henson authored
Fix to stop null being added to attributes. Modify X509_LOOKUP, X509_INFO to handle auxiliary info.
-
Dr. Stephen Henson authored
add documentation for 'enc'.
-
- Nov 12, 1999
-
-
Richard Levitte authored
-
Dr. Stephen Henson authored
Merge some common functionality in the apps, delete the encryption option in the pkcs7 utility (they never did anything) and add a couple more options to pkcs7.
-
- Nov 11, 1999
-
-
Dr. Stephen Henson authored
pages.
-
- Nov 10, 1999
-
-
Dr. Stephen Henson authored
of the openssl utility commands...
-
- Nov 08, 1999
-
-
Dr. Stephen Henson authored
plain not working :-( Also fix some memory leaks in the new X509_NAME code. Fix so new app_rand code doesn't crash 'x509' and move #include so it compiles under Win32.
-
- Nov 04, 1999
-
-
Dr. Stephen Henson authored
certificate: currently this includes trust settings and a "friendly name".
-
- Nov 03, 1999
-
-
Mark J. Cox authored
problem was that one of the replacement routines had not been working since SSLeay releases. For now the offending routine has been replaced with non-optimised assembler. Even so, this now gives around 95% performance improvement for 1024 bit RSA signs.
-
- Oct 29, 1999
-
-
Dr. Stephen Henson authored
-
- Oct 27, 1999
-
-
Dr. Stephen Henson authored
Add a bunch of functions to simplify the creation of X509_NAME structures. Change the X509_NAME_entry_add stuff in req/ca so it no longer uses X509_NAME_entry_count(): passing -1 has the same effect.
-
- Oct 26, 1999
-
-
Bodo Möller authored
don't try to detect fork()s by looking at getpid(). The reason is that threads sharing the same memory can have different PIDs; it's inefficient to run RAND_seed each time a different thread calls RAND_bytes.
-
Bodo Möller authored
-
Bodo Möller authored
-
Bodo Möller authored
some utilities that should have used RANDFILE did not, and -rand handling was broken except in genrsa.
-
- Oct 21, 1999
-
-
Dr. Stephen Henson authored
this will be used to clear up the horrible DN mess.
-
- Oct 20, 1999
-
-
Dr. Stephen Henson authored
tolerated in certificates.
-
- Oct 13, 1999
-
-
Dr. Stephen Henson authored
ultimately lead to certificate chain verification. It is VERY EXPERIMENTAL at present though.
-