Skip to content
  1. Sep 12, 2009
    • Dr. Stephen Henson's avatar
      PR: 2025 · a131de9b
      Dr. Stephen Henson authored
      Submitted by: Tomas Mraz <tmraz@redhat.com>
      Approved by: steve@openssl.org
      
      Constify SSL_CIPHER_description
      a131de9b
    • Dr. Stephen Henson's avatar
      PR: 1411 · 0ddd002f
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Allow use of trusted certificates in SSL_CTX_use_chain_file()
      0ddd002f
  2. Sep 11, 2009
    • Dr. Stephen Henson's avatar
      PR: 2038 · e7209103
      Dr. Stephen Henson authored
      Submitted by: Artem Chuprina <ran@cryptocom.ru>
      Approved by: steve@openssl.org
      
      Avoid double call to BIO_free().
      e7209103
  3. Sep 09, 2009
  4. Sep 07, 2009
    • Dr. Stephen Henson's avatar
      PR: 2031 · b7e3cb31
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Tolerate application/timestamp-response which some servers send out.
      b7e3cb31
  5. Sep 06, 2009
  6. Sep 04, 2009
  7. Sep 02, 2009
    • Dr. Stephen Henson's avatar
      PR: 2020 · 196dcf93
      Dr. Stephen Henson authored
      Submitted by: Keith Beckman <kbeckman@mcg.edu>,  Tomas Mraz <tmraz@redhat.com>
      Checked by: steve@openssl.org
      
      Fix improperly capitalized references to WWW::Curl::Easy.
      196dcf93
    • Dr. Stephen Henson's avatar
      PR: 2029 · 2c11ec30
      Dr. Stephen Henson authored
      Submitted by: Tomas Mraz <tmraz@redhat.com>
      Checked by: steve@openssl.org
      
      Fix so that the legacy digest EVP_dss1() still works.
      2c11ec30
    • Dr. Stephen Henson's avatar
      PR: 2013 · e5eb96c8
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Include a flag ASN1_STRING_FLAG_MSTRING when a multi string type is created.
      This makes it possible to tell if the underlying type is UTCTime,
      GeneralizedTime or Time when the structure is reused and X509_time_adj_ex()
      can handle each case in an appropriate manner.
      
      Add error checking to CRL generation in ca utility when nextUpdate is being
      set.
      e5eb96c8
    • Dr. Stephen Henson's avatar
      PR: 2009 · 54ed003a
      Dr. Stephen Henson authored
      Submitted by: "Alexei Khlebnikov" <alexei.khlebnikov@opera.com>
      Approved by: steve@openssl.org
      
      Avoid memory leak and fix error reporting in d2i_SSL_SESSION(). NB: although
      the ticket mentions buffer overruns this isn't a security issue because
      the SSL_SESSION structure is generated internally and it should never be
      possible to supply its contents from an untrusted application (this would
      among other things destroy session cache security).
      54ed003a
    • Dr. Stephen Henson's avatar
      PR: 2022 · f18e1025
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Fix DTLS record header length bug.
      f18e1025
    • Dr. Stephen Henson's avatar
      Tidy up and fix verify callbacks to avoid structure dereference, use of · c9add317
      Dr. Stephen Henson authored
      obsolete functions and enhance to handle new conditions such as policy
      printing.
      c9add317
  8. Aug 31, 2009
  9. Aug 26, 2009
    • Dr. Stephen Henson's avatar
      PR: 2005 · b8dc932c
      Dr. Stephen Henson authored
      Submitted by: steve@openssl.org
      
      Some systems have broken IPv6 headers and/or implementations. If
      OPENSSL_USE_IPV6 is set to 0 IPv6 is not used, if it is set to 1 it is used
      and if undefined an attempt is made to detect at compile time by checking
      if AF_INET6 is set and excluding known problem platforms.
      b8dc932c
    • Dr. Stephen Henson's avatar
      PR: 2006 · 17f8d8db
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Do not use multiple DTLS records for a single user message
      17f8d8db
    • Dr. Stephen Henson's avatar
      PR: 2015 · 38437fa1
      Dr. Stephen Henson authored
      Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
      Approved by: steve@openssl.org
      
      Define LIBDIR properly.
      38437fa1
    • Richard Levitte's avatar
      Moving up the inclusion of e_os.h was a bad idea. · 82f35daa
      Richard Levitte authored
      Put it back where it was and place an inclusion of e_os2.h to get platform
      macros defined...
      82f35daa
  10. Aug 25, 2009
  11. Aug 18, 2009
  12. Aug 15, 2009
  13. Aug 12, 2009
  14. Aug 10, 2009
    • Dr. Stephen Henson's avatar
      Typo · e322b5d1
      Dr. Stephen Henson authored
      e322b5d1
    • Dr. Stephen Henson's avatar
      PR: 1999 · 01af4edc
      Dr. Stephen Henson authored
      Submitted by: "Bayram Kurumahmut" <kbayram@ubicom.com>
      Approved by: steve@openssl.org
      
      Don't use HAVE_FORK in apps/speed.c it can conflict with configured version.
      01af4edc