| 110c6f7 | Richard Levitte | 10 April 2003, 20:37:53 UTC | Include the 0.9.6j news. This file will be retagged. | 10 April 2003, 20:37:53 UTC |
| 27f7d43 | Richard Levitte | 10 April 2003, 20:29:08 UTC | Forgot to code the status bits for release. This file will be retagged. | 10 April 2003, 20:29:08 UTC |
| 5964e95 | Richard Levitte | 10 April 2003, 20:22:15 UTC | Time to release 0.9.7b. The tag will be OpenSSL_0_9_7b. | 10 April 2003, 20:22:15 UTC |
| f78ae9c | Richard Levitte | 10 April 2003, 20:10:22 UTC | make update. | 10 April 2003, 20:10:22 UTC |
| e072e16 | Richard Levitte | 10 April 2003, 19:33:11 UTC | New NEWS | 10 April 2003, 19:33:11 UTC |
| 7a79b56 | Richard Levitte | 10 April 2003, 19:11:35 UTC | Remove all those infernal stupid CR characters | 10 April 2003, 19:11:35 UTC |
| 74b0c41 | Richard Levitte | 10 April 2003, 18:36:34 UTC | There's a problem building shared libraries on the sco5-gcc target. However, it's time for a release, so I'm just adding an enty in PROBLEMS, and will hopefully solve this for a later release | 10 April 2003, 18:36:34 UTC |
| bbfbd4b | Richard Levitte | 10 April 2003, 05:46:55 UTC | Explicitely tell the compiler we're mips3 for the target irix-mips3-cc. | 10 April 2003, 05:46:55 UTC |
| 88ec5a6 | Dr. Stephen Henson | 10 April 2003, 01:13:37 UTC | Only call redirected rsa_sign or rsa_verify if the pointer is set. This allows, for example, a smart card to redirect rsa_sign and keep the default rsa_verify. | 10 April 2003, 01:13:37 UTC |
| 75fcbb4 | Dr. Stephen Henson | 10 April 2003, 00:03:22 UTC | Typo. | 10 April 2003, 00:03:22 UTC |
| e4e049e | Richard Levitte | 09 April 2003, 06:50:39 UTC | Dont forget req. | 09 April 2003, 06:50:39 UTC |
| 225e35b | Richard Levitte | 09 April 2003, 05:25:22 UTC | Typo | 09 April 2003, 05:25:22 UTC |
| 9f81f23 | Richard Levitte | 08 April 2003, 11:54:32 UTC | Set LD_LIBRARY_PATH when linking, since OpenUnix' ld uses it to create a library search path. Correct typos. | 08 April 2003, 11:54:32 UTC |
| 0ae4ad9 | Richard Levitte | 08 April 2003, 11:07:13 UTC | Include rand.h, so RAND_status() and friends get properly declared. | 08 April 2003, 11:07:13 UTC |
| a157379 | Lutz Jänicke | 08 April 2003, 06:28:34 UTC | Fix ordering of compare functions: strncmp() must be used first, as it the cipher name in the list is not guaranteed to be at least "buflen" long. PR: 567 Submitted by: "Matt Harren" <matth@cs.berkeley.edu> | 08 April 2003, 06:28:34 UTC |
| 1ed3815 | Richard Levitte | 08 April 2003, 06:02:00 UTC | We seem to carry some rests of the 0.9.6 [engine] ENGINE framework, here in form of unneeded direct calls through the engine pointer.. | 08 April 2003, 06:02:00 UTC |
| 2731055 | Richard Levitte | 08 April 2003, 06:00:17 UTC | We seem to carry some rests of the 0.9.6 [engine] ENGINE framework in form of unneeded includes of openssl/engine.h. | 08 April 2003, 06:00:17 UTC |
| 78490b9 | Richard Levitte | 07 April 2003, 19:15:29 UTC | RSA_FLAG_SIGN_VER indicates the special rsa_sign and rsa_verify function pointers should be used. It doesn't necessarely mean it should go through the ENGINE framework. | 07 April 2003, 19:15:29 UTC |
| 86ccb91 | Richard Levitte | 05 April 2003, 21:21:29 UTC | Do not call ENGINE_setup_bsd_cryptodev() when OPENSSL_NO_ENGINE is defined. PR: 564 | 05 April 2003, 21:21:29 UTC |
| 8e4552e | Richard Levitte | 04 April 2003, 14:41:40 UTC | make update | 04 April 2003, 14:41:40 UTC |
| bc4a5ed | Richard Levitte | 04 April 2003, 14:21:04 UTC | Transfer the changes to detect multiline comments and the GCC extension __attribute__. | 04 April 2003, 14:21:04 UTC |
| d5157a6 | Richard Levitte | 03 April 2003, 23:35:16 UTC | Make %p and %# work properly, at least with pointers and floats. | 03 April 2003, 23:35:16 UTC |
| d07e7c3 | Richard Levitte | 03 April 2003, 22:12:50 UTC | It's recommended to use req rather than x509 to create self-signed certificates | 03 April 2003, 22:12:50 UTC |
| 8f35294 | Richard Levitte | 03 April 2003, 21:55:57 UTC | Typo correction | 03 April 2003, 21:55:57 UTC |
| 2bdcfbd | Richard Levitte | 03 April 2003, 18:50:48 UTC | Reset the version number of the issuer certificate? I believe this hasn't been tested in a long while... | 03 April 2003, 18:50:48 UTC |
| 46b695d | Bodo Möller | 02 April 2003, 09:50:55 UTC | make RSA blinding thread-safe | 02 April 2003, 09:50:55 UTC |
| 6076f21 | Richard Levitte | 01 April 2003, 10:59:40 UTC | It seems like gcc-drivven shared library building on OpenUnix 8 requires -shared rather than -G. | 01 April 2003, 10:59:40 UTC |
| be34231 | Richard Levitte | 31 March 2003, 13:56:55 UTC | No need to test -setalias twice. PR: 556 | 31 March 2003, 13:56:55 UTC |
| 54e7336 | Richard Levitte | 31 March 2003, 13:24:04 UTC | Don't feil when indent is 0. PR: 559 | 31 March 2003, 13:24:04 UTC |
| c6b220d | Richard Levitte | 31 March 2003, 13:06:27 UTC | Add usage string for -fingerprint. PR: 560 | 31 March 2003, 13:06:27 UTC |
| d1c5c16 | Richard Levitte | 28 March 2003, 08:57:09 UTC | OpenUNIX 8 has some problems using -G with gcc. Maybe using gnu-shared works better (will be tested tonight). | 28 March 2003, 08:57:09 UTC |
| 931756b | Lutz Jänicke | 27 March 2003, 22:03:11 UTC | Add warning about unwanted side effect when calling SSL_CTX_free(): sessions in the external session cache might be removed. Submitted by: "Nadav Har'El" <nyh@math.technion.ac.il> PR: 547 | 27 March 2003, 22:03:11 UTC |
| 39e76bc | Dr. Stephen Henson | 26 March 2003, 00:47:07 UTC | Update ocsp usage message and docs. | 26 March 2003, 00:47:07 UTC |
| 961b565 | Richard Levitte | 25 March 2003, 21:17:31 UTC | Let's limit the extent of the definition of _XOPEN_SOURCE. | 25 March 2003, 21:17:31 UTC |
| 142cdf5 | Richard Levitte | 25 March 2003, 20:56:10 UTC | Missed a few dollars. PR: 528 | 25 March 2003, 20:56:10 UTC |
| 1e2b14e | Dr. Stephen Henson | 24 March 2003, 16:58:01 UTC | Get X509_V_FLAG_CRL_CHECK_ALL logic the right way round. PR:544 | 24 March 2003, 16:58:01 UTC |
| 4fe70c7 | Dr. Stephen Henson | 24 March 2003, 16:57:08 UTC | Get X509_V_FLAG_CRL_CHECK_ALL logic the right way round. PR:544 | 24 March 2003, 16:57:08 UTC |
| 21eb91c | Lutz Jänicke | 23 March 2003, 10:16:04 UTC | Add SCO5 shared library scripts. Upate SVR5 scripts for the upcoming 0.9.7b. Submitted by: Boyd Lynn Gerber <gerberb@zenez.com> | 23 March 2003, 10:16:04 UTC |
| 9d80973 | Richard Levitte | 20 March 2003, 16:34:29 UTC | Add documentation for -starttls (s_client) and -id_prefix (s_server). PR: 542 | 20 March 2003, 16:34:29 UTC |
| e4fb312 | Richard Levitte | 20 March 2003, 11:44:31 UTC | Some shells (ksh in this case) don't say 'command not found'. PR: 540 | 20 March 2003, 11:44:31 UTC |
| 1296e72 | Richard Levitte | 20 March 2003, 11:42:01 UTC | Spelling errors. PR: 538 | 20 March 2003, 11:42:01 UTC |
| f077cf6 | Richard Levitte | 20 March 2003, 11:37:55 UTC | Make sure that all the library paths are modified in prepend mode, not replace mode. PR: 528 | 20 March 2003, 11:37:55 UTC |
| a69cc10 | Richard Levitte | 20 March 2003, 11:15:16 UTC | hinv may generate more than one line (1 line per CPU). PR: 520 | 20 March 2003, 11:15:16 UTC |
| 2dd060d | Richard Levitte | 20 March 2003, 10:57:12 UTC | Shut up an ANSI compiler about uninitialised variables. PR: 517 | 20 March 2003, 10:57:12 UTC |
| 546490c | Richard Levitte | 20 March 2003, 10:50:40 UTC | Add the target linux-ia64-ecc, suggested by Keith Thompson <kst@sdsc.edu>. PR: 516 | 20 March 2003, 10:50:40 UTC |
| 409a5de | Bodo Möller | 19 March 2003, 19:19:58 UTC | countermeasure against new Klima-Pokorny-Rosa atack | 19 March 2003, 19:19:58 UTC |
| 84b1e84 | Bodo Möller | 19 March 2003, 18:58:55 UTC | make sure RSA blinding works when the PRNG is not properly seeded; enable it automatically only for the built-in engine | 19 March 2003, 18:58:55 UTC |
| 5250725 | Dr. Stephen Henson | 19 March 2003, 13:56:32 UTC | Fix Certificate and CRL adding in X509_load_cert_crl_file: an X509_INFO structure can contain more than one object, for example a certififcate and a CRL. | 19 March 2003, 13:56:32 UTC |
| 84d5ad6 | Bodo Möller | 18 March 2003, 12:50:21 UTC | fix formatting | 18 March 2003, 12:50:21 UTC |
| 96c15b8 | Ben Laurie | 18 March 2003, 12:12:10 UTC | Turn on RSA blinding by default. | 18 March 2003, 12:12:10 UTC |
| 4fc2bf0 | Dr. Stephen Henson | 15 March 2003, 01:29:18 UTC | Fix for no-ec on Windows. | 15 March 2003, 01:29:18 UTC |
| 2007fe6 | Dr. Stephen Henson | 14 March 2003, 23:37:17 UTC | Don't give an error if response reason absent in OCSP HTTP. | 14 March 2003, 23:37:17 UTC |
| ee435c0 | Dr. Stephen Henson | 14 March 2003, 01:45:44 UTC | Add entry for domainComponent so it is treated correctly. Add table order test to end of a_strnid.c | 14 March 2003, 01:45:44 UTC |
| 3f69123 | Dr. Stephen Henson | 13 March 2003, 21:26:31 UTC | Get the PEDANTIC stuff right this time... | 13 March 2003, 21:26:31 UTC |
| 86a925b | Geoff Thorpe | 13 March 2003, 20:23:19 UTC | Fix a bone-head bug. This warrants a CHANGES entry because it could affect applications if they were passing a bogus 'flags' parameter yet having things work as they wanted anyway. | 13 March 2003, 20:23:19 UTC |
| 954d8e4 | Dr. Stephen Henson | 13 March 2003, 14:10:11 UTC | Return an error if gmtime returns NULL. | 13 March 2003, 14:10:11 UTC |
| b575dff | Dr. Stephen Henson | 12 March 2003, 02:38:35 UTC | Avoid warnings for no-engine and PEDANTIC | 12 March 2003, 02:38:35 UTC |
| b35ca7b | Dr. Stephen Henson | 12 March 2003, 02:31:12 UTC | Fixes for EVP_DigestInit_ex() and OPENSSL_NO_ENGINE. | 12 March 2003, 02:31:12 UTC |
| 0102bb9 | Bodo Möller | 28 February 2003, 15:16:30 UTC | memset problem has been handled PR: 343 | 28 February 2003, 15:16:30 UTC |
| 57bc776 | Dr. Stephen Henson | 27 February 2003, 14:08:44 UTC | Encryption BIOs misbehave when used with non blocking I/O. Two fixes: 1. If BIO_write() fails inside enc_write() it should return the total number of bytes successfully written. 2. If BIO_write() fails during BIO_flush() it should return immediately with the error code: previously it would fall through to the final encrypt, corrupting the buffer. | 27 February 2003, 14:08:44 UTC |
| 0461b8c | Dr. Stephen Henson | 27 February 2003, 13:03:27 UTC | Typo. | 27 February 2003, 13:03:27 UTC |
| bd8e228 | Bodo Möller | 24 February 2003, 17:16:32 UTC | year 2003 | 24 February 2003, 17:16:32 UTC |
| bad99f6 | Ulf Möller | 22 February 2003, 23:13:55 UTC | get rid of a bad character | 22 February 2003, 23:13:55 UTC |
| 5600a9c | Ulf Möller | 22 February 2003, 23:00:25 UTC | Add instructions for building the MinGW target in Cygwin, and rearrange some of the other text for better readability. | 22 February 2003, 23:00:25 UTC |
| 607ae30 | Ulf Möller | 22 February 2003, 22:59:01 UTC | replace symlink with copy, as in head | 22 February 2003, 22:59:01 UTC |
| 37d9503 | Ulf Möller | 22 February 2003, 18:02:46 UTC | mingw related cleanups, as in head | 22 February 2003, 18:02:46 UTC |
| a103389 | Richard Levitte | 22 February 2003, 15:04:06 UTC | Remove duplication and have clean depend on libclean | 22 February 2003, 15:04:06 UTC |
| 0480574 | Ulf Möller | 22 February 2003, 01:25:37 UTC | mingw related changes as in head | 22 February 2003, 01:25:37 UTC |
| dab0aaa | Richard Levitte | 19 February 2003, 12:55:39 UTC | Let's move on to development of 0.9.7b. | 19 February 2003, 12:55:39 UTC |
| 6fcf1db | Richard Levitte | 19 February 2003, 12:33:55 UTC | Time to release 0.9.7a. The tag will be OpenSSL_0_9_7a. | 19 February 2003, 12:33:55 UTC |
| 352df99 | Richard Levitte | 19 February 2003, 12:04:16 UTC | Security fix: Vaudenay timing attack on CBC. An advisory will be posted to the web. Expect a release within the hour. | 19 February 2003, 12:04:16 UTC |
| a3063b3 | Richard Levitte | 19 February 2003, 11:54:57 UTC | Make sure the memory allocation routines check for negative sizes | 19 February 2003, 11:54:57 UTC |
| cf13eaf | Richard Levitte | 19 February 2003, 11:22:18 UTC | Borland C++ Builder 5 complains about unreachable statements. | 19 February 2003, 11:22:18 UTC |
| cc811b1 | Richard Levitte | 18 February 2003, 12:15:13 UTC | Make the no-err option work properly | 18 February 2003, 12:15:13 UTC |
| a81d9af | Bodo Möller | 16 February 2003, 20:10:26 UTC | Remove "+Olibcalls" option from HPUX targets. Reportedly this option is deprecated, and on some systems "make test" fails if it is included. PR: 495 | 16 February 2003, 20:10:26 UTC |
| 1dc94d4 | Bodo Möller | 14 February 2003, 14:43:31 UTC | mask old error codes so that mkerr.pl does not re-add them | 14 February 2003, 14:43:31 UTC |
| 5a2485c | Bodo Möller | 14 February 2003, 14:40:04 UTC | make update | 14 February 2003, 14:40:04 UTC |
| 142398d | Richard Levitte | 14 February 2003, 13:30:43 UTC | Add support for IA64. PR: 454 | 14 February 2003, 13:30:43 UTC |
| 6c0118e | Richard Levitte | 14 February 2003, 13:11:44 UTC | Handle krb5 libraries separately and make sure only libssl.so depends on it. | 14 February 2003, 13:11:44 UTC |
| 765ca5e | Richard Levitte | 14 February 2003, 08:56:25 UTC | Update linux-mips and linux-mipsel to support threads and shared libraries. I also updated the bn_ops field with values taken from OpenBSD-mips. PR: 498 | 14 February 2003, 08:56:25 UTC |
| 97333ea | Richard Levitte | 14 February 2003, 05:24:25 UTC | Pay attention to disabled SSL versions. PR: 500 | 14 February 2003, 05:24:25 UTC |
| b088a2d | Richard Levitte | 14 February 2003, 05:20:28 UTC | Change no_rmd160 to no_ripemd for consistency. PR: 500 | 14 February 2003, 05:20:28 UTC |
| b9447ec | Richard Levitte | 14 February 2003, 01:03:06 UTC | Make it possible to disable OCSP, the speed application, and the use of sockets. PR: 358 | 14 February 2003, 01:03:06 UTC |
| 73bec6d | Richard Levitte | 13 February 2003, 08:53:43 UTC | Oh, the destest program did look at the return value... | 13 February 2003, 08:53:43 UTC |
| e4b9573 | Richard Levitte | 12 February 2003, 17:20:50 UTC | Adjust DES_cbc_cksum() so the returned value is the same as MIT's mit_des_cbc_cksum(). The difference was first observed, then verified by looking at the MIT source. | 12 February 2003, 17:20:50 UTC |
| c13eba9 | Dr. Stephen Henson | 12 February 2003, 17:05:17 UTC | Option to disable auto SSL chain building. | 12 February 2003, 17:05:17 UTC |
| 4309b74 | Bodo Möller | 12 February 2003, 14:17:38 UTC | comments | 12 February 2003, 14:17:38 UTC |
| c0d4f62 | Richard Levitte | 06 February 2003, 19:30:14 UTC | PKCS#1 has a new RFC, which we do implement | 06 February 2003, 19:30:14 UTC |
| a004b06 | Bodo Möller | 06 February 2003, 18:07:23 UTC | additional sanity checks for arguments to EC_POINTs_mul() | 06 February 2003, 18:07:23 UTC |
| 98eab43 | Bodo Möller | 06 February 2003, 18:00:20 UTC | EC_GROUP_get_extra_data() should not set an error when it returns NULL. (NB: this is not an API change because this internal function is unused in 0.9.7. 0.9.8-dev will use it, and will contain a similar change). | 06 February 2003, 18:00:20 UTC |
| ef03883 | Bodo Möller | 05 February 2003, 16:50:50 UTC | typo in WIN16 section Submitted by: Toni Andjelkovic <toni@soth.at> | 05 February 2003, 16:50:50 UTC |
| 636631c | Bodo Möller | 05 February 2003, 16:37:17 UTC | SSL_add_dir_cert_subjects_to_stack now exists for WIN32 | 05 February 2003, 16:37:17 UTC |
| 02ff8c1 | Bodo Möller | 04 February 2003, 12:57:37 UTC | typo | 04 February 2003, 12:57:37 UTC |
| 0b0be7a | Bodo Möller | 04 February 2003, 12:26:48 UTC | Update PRNG entry: - OpenSSL version differences - Sun /dev/urandom patch information | 04 February 2003, 12:26:48 UTC |
| 83df7b2 | Richard Levitte | 31 January 2003, 12:20:41 UTC | We can't say in advance what the argument to BIO_socket_ioctl() should be, so let's make that a void *. Also, BIO_socket_nbio() should send it an int argument, not a long. PR: 457 | 31 January 2003, 12:20:41 UTC |
| 90c60ee | Richard Levitte | 30 January 2003, 22:02:31 UTC | Document -engine where missing. PR: 424 | 30 January 2003, 22:02:31 UTC |
| 8e1e238 | Richard Levitte | 30 January 2003, 21:49:16 UTC | A few small bugs with BIO popping. PR: 364 | 30 January 2003, 21:49:16 UTC |
| 88c1fec | Richard Levitte | 30 January 2003, 20:03:48 UTC | The util scripts need to handled no-hw. PR: 327 | 30 January 2003, 20:03:48 UTC |
| 981469c | Richard Levitte | 30 January 2003, 19:05:27 UTC | The MASM situation is more difficult than described so far. It is part of VC++ 7. PR: 327 | 30 January 2003, 19:05:27 UTC |
| b5a4fd9 | Richard Levitte | 30 January 2003, 19:01:59 UTC | For VC++7 and up, the file is VSVARS32.BAT. PR: 327 | 30 January 2003, 19:01:59 UTC |
