Commits · 44adfeb6c0cc283e89b716d194ce557a592d2018 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Dec 26, 2012
- check EC tmp key matches preferences · 44adfeb6
  Dr. Stephen Henson authored Dec 26, 2012
  44adfeb6
- typo · 5ff2ef79
  Dr. Stephen Henson authored Dec 26, 2012
  
  5ff2ef79
- Add support for certificate stores in CERT structure. This makes it · b762acad
  Dr. Stephen Henson authored Dec 26, 2012
  b762acad
- add ssl_locl.h to err header files, rebuild ssl error strings · 7d779eef
  Dr. Stephen Henson authored Dec 26, 2012
  7d779eef
- set ciphers to NULL before calling cert_cb · 35b7757f
  Dr. Stephen Henson authored Dec 26, 2012
  35b7757f
- stop warning · 23195e4d
  Dr. Stephen Henson authored Dec 26, 2012
  23195e4d
- New function ssl_set_client_disabled to set masks for any ciphersuites · b28fbdfa
  Dr. Stephen Henson authored Dec 26, 2012
  b28fbdfa
- Add new ctrl to retrieve client certificate types, print out · a897502c
  Dr. Stephen Henson authored Dec 26, 2012
  a897502c
- cert_flags is unsigned · 8546add6
  Dr. Stephen Henson authored Dec 26, 2012
  8546add6
- add support for client certificate callbak, fix memory leak · aa5c5eb4
  Dr. Stephen Henson authored Dec 26, 2012
  aa5c5eb4
- new function SSL_is_server to which returns 1 is the corresponding SSL context is for a server · 731abd3b
  Dr. Stephen Henson authored Dec 26, 2012
  731abd3b
- no need to check s->server as default_nid is never used for TLS 1.2 client authentication · 7531dd18
  Dr. Stephen Henson authored Dec 26, 2012
  7531dd18
- Separate client and server permitted signature algorithm support: by default · 04c32cdd
  Dr. Stephen Henson authored Dec 26, 2012
  04c32cdd
- Add certificate callback. If set this is called whenever a certificate · 623a5e24
  Dr. Stephen Henson authored Dec 26, 2012
  623a5e24
- New functions to retrieve certificate signatures and signature OID NID. · bd9fc1d6
  Dr. Stephen Henson authored Dec 26, 2012
  bd9fc1d6
- Function tls1_check_ec_server_key is now redundant as we make · c550f2e3
  Dr. Stephen Henson authored Dec 26, 2012
  c550f2e3
- Add new "valid_flags" field to CERT_PKEY structure which determines what · 484f8762
  Dr. Stephen Henson authored Dec 26, 2012
  484f8762
- Reorganise supported signature algorithm extension processing. · c70a1fee
  Dr. Stephen Henson authored Dec 26, 2012
  c70a1fee
- Add support for application defined signature algorithms for use with · 0b362de5
  Dr. Stephen Henson authored Dec 26, 2012
  0b362de5
- Make it possible to delete all certificates from an SSL structure. · d312f7be
  Dr. Stephen Henson authored Dec 26, 2012
  d312f7be
- Revert incompatible OCSP_basic_verify changes. · 2b5e5c3d
  Dr. Stephen Henson authored Dec 26, 2012
  2b5e5c3d
Dec 23, 2012
- add missing \n · 708454f0
  Dr. Stephen Henson authored Dec 23, 2012
  
  708454f0
Dec 21, 2012
- fix typo · f1aec4de
  Dr. Stephen Henson authored Dec 21, 2012
  
  f1aec4de
Dec 20, 2012
- update/fix tocsp script (from HEAD) · 1c53a72f
  Dr. Stephen Henson authored Dec 20, 2012
  
  1c53a72f
- Backport enhancements to OCSP utility from HEAD: · 9b157602
  Dr. Stephen Henson authored Dec 20, 2012
  9b157602
- revert, missing commit message · 67e217c8
  Dr. Stephen Henson authored Dec 20, 2012
  
  67e217c8
- oops, revert · e6b650df
  Dr. Stephen Henson authored Dec 20, 2012
  
  e6b650df
- apps/ocsp.c · 7b7b667d
  Dr. Stephen Henson authored Dec 20, 2012
  
  7b7b667d
Dec 19, 2012
- Integrate host, email and IP address checks into X509_verify. · 70cd3c6b
  Dr. Stephen Henson authored Dec 19, 2012
  70cd3c6b
- Return success when the responder is active. · db05bc51
  Dr. Stephen Henson authored Dec 19, 2012
  db05bc51
- Backport X509 hostname, IP address and email checking code from HEAD. · 45da1efc
  Dr. Stephen Henson authored Dec 19, 2012
  
  45da1efc
- Check chain is not NULL before assuming we have a validated chain. The · 54a0076e
  Dr. Stephen Henson authored Dec 19, 2012
  54a0076e
Dec 16, 2012
- VC-32.pl: fix typo [from HEAD]. · f8cab37b
  Andy Polyakov authored Dec 16, 2012
  f8cab37b
Dec 14, 2012
- Use new partial chain flag instead of modifying input parameters. · 2e652776
  Dr. Stephen Henson authored Dec 14, 2012
  2e652776
- New verify flag to return success if we have any certificate in the trusted · 9a1f59cd
  Dr. Stephen Henson authored Dec 14, 2012
  9a1f59cd
- Documentation improvements by Chris Palmer (Google). · 4e72220f
  Ben Laurie authored Dec 14, 2012
  
  4e72220f
- Backport OCSP fixes. · d65b8b21
  Ben Laurie authored Dec 14, 2012
  
  d65b8b21
Dec 13, 2012
- Document -pubkey option. · 5dca1e33
  Ben Laurie authored Dec 13, 2012
  
  5dca1e33
- Make verify return errors. · 5f4cf088
  Ben Laurie authored Dec 13, 2012
  
  5f4cf088
- Ignore more. · 2a2e5379
  Ben Laurie authored Dec 13, 2012
  
  2a2e5379