Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-05-16 | Fix incorrect =over 4 location. | Lutz Jänicke | |
Submitted by: David Waitzman <djw@bbn.com> Reviewed by: Lutz Jaenicke PR: [openssl.org #38] | |||
2002-05-08 | Small documentation fix for EVP_CipherFinal or EVP_CipherFinal_ex. | Richard Levitte | |
Notified by Stella Power <snpower@maths.tcd.ie>. PR: 24 | |||
2002-04-30 | Fix escaping when using the -subj option of "openssl req", document | Lutz Jänicke | |
'hidden' -nameopt support. (Robert Joop <joop@fokus.gmd.de>) | |||
2002-04-13 | another error discovered by Karsten Braaten. The number was not even | Ulf Möller | |
prime! | |||
2002-04-07 | error reported by Karsten Braaten | Ulf Möller | |
2002-03-05 | Rephrase statement on the security of two-key 3DES. | Bodo Möller | |
[Chosen plaintext attack: R. Merkle, M. Hellman: "On the Security of Multiple Encryption", CACM 24 (1981) pp. 465-467, p. 776. Known plaintext angriff: P.C. van Oorschot, M. Wiener: "A known-plaintext attack on two-key triple encryption", EUROCRYPT '90.] | |||
2002-02-28 | Add 'void *' argument to app_verify_callback. | Bodo Möller | |
Submitted by: D. K. Smetters <smetters@parc.xerox.com> Reviewed by: Bodo Moeller | |||
2002-02-27 | SSL_clear != SSL_free/SSL_new | Lutz Jänicke | |
2002-02-15 | Even though it is not really practical people should know about it. | Lutz Jänicke | |
2002-01-24 | New functions | Bodo Möller | |
ERR_peek_last_error ERR_peek_last_error_line ERR_peek_last_error_line_data (supersedes ERR_peek_top_error). Rename OPENSSL_NO_OLD_DES_SUPPORT into OPENSSL_DISABLE_OLD_DES_SUPPORT because OPENSSL_NO_... indicates disabled algorithms (according to mkdef.pl). | |||
2002-01-21 | Typos (jsyn <jsyn@openbsd.org>). | Lutz Jänicke | |
2002-01-04 | add a sentence previously deleted by accident | Bodo Möller | |
2002-01-04 | add documentation for SSLeay_version(SSLEAY_DIR) and | Bodo Möller | |
'openssl version -d' use some descriptions from Lutz' redundant manual page instead of the previous ones | |||
2002-01-04 | Tsss, SSLeay_version() was already documented, it just was not linked in. | Lutz Jänicke | |
2002-01-04 | Add information as provided by Richard Levitte on openssl-users :-) | Lutz Jänicke | |
2002-01-04 | Update PEM docs | Dr. Stephen Henson | |
2001-12-09 | Improve back compatibility. | Ben Laurie | |
2001-12-04 | I was recently informed that some people wrongly use ssleay.txt as | Richard Levitte | |
main documentation, so let's warn them a little more, so the word "OBSOLETE" really gets understood. | |||
2001-12-03 | EVP_BytesToKey documentation. | Dr. Stephen Henson | |
2001-12-01 | Add -pubkey option to req command. | Dr. Stephen Henson | |
2001-11-26 | discuss -name and default_ca more correctly (I hope) | Bodo Möller | |
2001-11-19 | Clarify reference count handling/removal of session | Lutz Jänicke | |
(shinagawa@star.zko.dec.com). | |||
2001-11-10 | remove incorrect 'callback' prototype | Bodo Möller | |
2001-11-10 | msg_callback documentation | Bodo Möller | |
2001-11-08 | clarify | Bodo Möller | |
2001-10-26 | New options to allow req to accept UTF8 strings as input. | Dr. Stephen Henson | |
2001-10-25 | remove compatibility notes that no longer apply | Ulf Möller | |
2001-10-25 | Correct some links... | Richard Levitte | |
2001-10-25 | Change the DES documentation to reflect the current status. Note that | Richard Levitte | |
some password reading functions are really part of the UI compatibility library... | |||
2001-10-25 | mention des_old.h | Bodo Möller | |
2001-10-25 | Add '-noemailDN' option to 'openssl ca'. This prevents inclusion of | Bodo Möller | |
the e-mail address in the DN (i.e., it will go into a certificate extension only). The new configuration file option 'email_in_dn = no' has the same effect. Submitted by: Massimiliano Pala madwolf@openca.org | |||
2001-10-25 | Remove DES_random_seed() but retain des_random_seed() for now. Change | Richard Levitte | |
the docs to reflect this change and correct libeay.num. | |||
2001-10-24 | Due to an increasing number of clashes between modern OpenSSL and | Richard Levitte | |
libdes (which is still used out there) or other des implementations, the OpenSSL DES functions are renamed to begin with DES_ instead of des_. Compatibility routines are provided and declared by including openssl/des_old.h. Those declarations are the same as were in des.h when the OpenSSL project started, which is exactly how libdes looked at that time, and hopefully still looks today. The compatibility functions will be removed in some future release, at the latest in version 1.0. | |||
2001-10-20 | New functions SSL[_CTX]_set_msg_callback(). | Bodo Möller | |
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices. | |||
2001-10-17 | document SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION | Bodo Möller | |
2001-10-17 | Update docs. | Dr. Stephen Henson | |
2001-10-16 | Update docs. | Dr. Stephen Henson | |
2001-10-12 | Update information as a partial response to the post | Lutz Jänicke | |
From: "Chris D. Peterson" <cpeterson@aventail.com> Subject: Implementation Issues with OpenSSL To: openssl-users@openssl.org Date: Wed, 22 Aug 2001 16:13:17 -0700 The patch included in the original post may improve the internal session list handling (and is therefore worth a seperate investigation). No change to the list handling will however solve the problems of incorrect SSL_SESSION_free() calls. The session list is only one possible point of failure, dangling pointers would also occur for SSL object currently using the session. The correct solution is to only use SSL_SESSION_free() when applicable! | |||
2001-10-08 | Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>) | Lutz Jänicke | |
2001-09-13 | Typo. | Lutz Jänicke | |
2001-09-13 | One more manual page. | Lutz Jänicke | |
2001-09-13 | Rework section about return values another time (based on hints from | Lutz Jänicke | |
Bodo Moeller). | |||
2001-09-11 | Make maximum certifcate chain size accepted from the peer application | Lutz Jänicke | |
settable (proposed by "Douglas E. Engert" <deengert@anl.gov>). | |||
2001-09-07 | ispell | Ulf Möller | |
2001-09-03 | Use uniformly chosen witnesses for Miller-Rabin test | Bodo Möller | |
(by using new BN_pseudo_rand_range function) | |||
2001-08-24 | More docs. | Lutz Jänicke | |
2001-08-23 | Typo. | Lutz Jänicke | |
2001-08-23 | More manual pages. Constify. | Lutz Jänicke | |
2001-08-23 | As discussed recently on openssl-users. | Lutz Jänicke | |
2001-08-23 | Make clear, that using the compression layer is currently not recommended. | Lutz Jänicke | |