Skip to content
  1. Sep 12, 2009
    • Dr. Stephen Henson's avatar
      PR: 2023 · 94480b57
      Dr. Stephen Henson authored
      Submitted by: James Beckett <jmb.openssl@nospam.hackery.net>, steve
      Approved by: steve@openssl.org
      
      Fix documentation errors in d2i_X509 manual pages.
      94480b57
    • Dr. Stephen Henson's avatar
      PR: 2025 · 7689ed34
      Dr. Stephen Henson authored
      Submitted by: Tomas Mraz <tmraz@redhat.com>
      Approved by: steve@openssl.org
      
      Constify SSL_CIPHER_description
      7689ed34
    • Dr. Stephen Henson's avatar
      PR: 1411 · 33130b07
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Allow use of trusted certificates in SSL_CTX_use_chain_file()
      33130b07
  2. Sep 11, 2009
    • Dr. Stephen Henson's avatar
      PR: 2038 · 08882ac5
      Dr. Stephen Henson authored
      Submitted by: Artem Chuprina <ran@cryptocom.ru>
      Approved by: steve@openssl.org
      
      Avoid double call to BIO_free().
      08882ac5
  3. Sep 09, 2009
  4. Sep 07, 2009
    • Dr. Stephen Henson's avatar
      PR: 2031 · b5ca7df5
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Tolerate application/timestamp-response which some servers send out.
      b5ca7df5
  5. Sep 06, 2009
  6. Sep 04, 2009
  7. Sep 02, 2009
    • Dr. Stephen Henson's avatar
      PR: 2020 · 2d1cbca9
      Dr. Stephen Henson authored
      Submitted by: Keith Beckman <kbeckman@mcg.edu>,  Tomas Mraz <tmraz@redhat.com>
      Checked by: steve@openssl.org
      
      Fix improperly capitalized references to WWW::Curl::Easy.
      2d1cbca9
    • Dr. Stephen Henson's avatar
      PR: 2029 · fc680569
      Dr. Stephen Henson authored
      Submitted by: Tomas Mraz <tmraz@redhat.com>
      Checked by: steve@openssl.org
      
      Fix so that the legacy digest EVP_dss1() still works.
      fc680569
    • Dr. Stephen Henson's avatar
      PR: 2013 · 17b5326b
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Include a flag ASN1_STRING_FLAG_MSTRING when a multi string type is created.
      This makes it possible to tell if the underlying type is UTCTime,
      GeneralizedTime or Time when the structure is reused and X509_time_adj_ex()
      can handle each case in an appropriate manner.
      
      Add error checking to CRL generation in ca utility when nextUpdate is being
      set.
      17b5326b
    • Dr. Stephen Henson's avatar
      PR: 2009 · 3d9b105f
      Dr. Stephen Henson authored
      Submitted by: "Alexei Khlebnikov" <alexei.khlebnikov@opera.com>
      Approved by: steve@openssl.org
      
      Avoid memory leak and fix error reporting in d2i_SSL_SESSION(). NB: although
      the ticket mentions buffer overruns this isn't a security issue because
      the SSL_SESSION structure is generated internally and it should never be
      possible to supply its contents from an untrusted application (this would
      among other things destroy session cache security).
      3d9b105f
    • Dr. Stephen Henson's avatar
      PR: 2022 · 70dc09eb
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Fix DTLS record header length bug.
      70dc09eb
    • Dr. Stephen Henson's avatar
      Tidy up and fix verify callbacks to avoid structure dereference, use of · 17716680
      Dr. Stephen Henson authored
      obsolete functions and enhance to handle new conditions such as policy printing.
      17716680
  8. Aug 31, 2009
  9. Aug 26, 2009
    • Dr. Stephen Henson's avatar
      PR: 2005 · a6dab873
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Some systems have broken IPv6 headers and/or implementations. If
      OPENSSL_USE_IPV6 is set to 0 IPv6 is not used, if it is set to 1 it is used
      and if undefined an attempt is made to detect at compile time by checking
      if AF_INET6 is set and excluding known problem platforms.
      a6dab873
    • Dr. Stephen Henson's avatar
      PR: 2006 · 480b9e5d
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Do not use multiple DTLS records for a single user message
      480b9e5d
    • Dr. Stephen Henson's avatar
      PR: 2015 · 19c5314f
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Define LIBDIR properly.
      19c5314f
  10. Aug 18, 2009
  11. Aug 15, 2009
  12. Aug 12, 2009
  13. Aug 10, 2009
    • Dr. Stephen Henson's avatar
      Typo · 77c7f17a
      Dr. Stephen Henson authored
      77c7f17a
    • Dr. Stephen Henson's avatar
      PR: 1999 · b318cfb1
      Dr. Stephen Henson authored
      Submitted by: "Bayram Kurumahmut" <kbayram@ubicom.com>
      Approved by: steve@openssl.org
      
      Don't use HAVE_FORK in apps/speed.c it can conflict with configured version.
      b318cfb1
    • Dr. Stephen Henson's avatar
      PR: 2004 · e33d2901
      Dr. Stephen Henson authored
      Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
      Approved by: steve@openssl.org
      
      Handle fractional seconds properly in ASN1_GENERALIZEDTIME_print
      e33d2901
    • Dr. Stephen Henson's avatar
      PR: 2003 · 6727565a
      Dr. Stephen Henson authored
      Make it possible to install OpenSSL in directories with name other
      than "lib" for example "lib64". Based on patch from Jeremy Utley.
      6727565a
  14. Aug 09, 2009
  15. Aug 06, 2009
  16. Aug 05, 2009
    • Dr. Stephen Henson's avatar
      PR: 2002 · e075341d
      Dr. Stephen Henson authored
      Submitted by: Tomas Mraz <tmraz@redhat.com>
      Obtained from: steve@openssl.org
      
      Fix bug in libssl and krb5 linking in Makefile.org
      e075341d
    • Dr. Stephen Henson's avatar
      Oops! · bc32dbbe
      Dr. Stephen Henson authored
      bc32dbbe