| d993820 | Dr. Stephen Henson | 22 March 2005, 19:15:55 UTC | Use right date in FAQ too :-) | 22 March 2005, 19:15:55 UTC |
| 9c29e78 | Dr. Stephen Henson | 22 March 2005, 19:14:42 UTC | Oops, use right date! | 22 March 2005, 19:14:42 UTC |
| 93acf33 | Dr. Stephen Henson | 22 March 2005, 18:43:41 UTC | Update README | 22 March 2005, 18:43:41 UTC |
| 5c1fd5e | Dr. Stephen Henson | 22 March 2005, 18:17:23 UTC | Update files ready for release. | 22 March 2005, 18:17:23 UTC |
| f42a827 | Dr. Stephen Henson | 22 March 2005, 18:15:56 UTC | make update | 22 March 2005, 18:15:56 UTC |
| 0c7ceb3 | Dr. Stephen Henson | 22 March 2005, 17:57:43 UTC | Docs fix. | 22 March 2005, 17:57:43 UTC |
| e54e4bc | Dr. Stephen Henson | 22 March 2005, 17:54:13 UTC | PR: 931 | 22 March 2005, 17:54:13 UTC |
| fe8b777 | Dr. Stephen Henson | 22 March 2005, 17:29:36 UTC | Fix memory leak. | 22 March 2005, 17:29:36 UTC |
| d5c2bc4 | Dr. Stephen Henson | 22 March 2005, 14:31:58 UTC | Oops... | 22 March 2005, 14:31:58 UTC |
| 61823b6 | Dr. Stephen Henson | 22 March 2005, 14:10:32 UTC | Ensure (SSL_RANDOM_BYTES - 4) of pseudo random data is used for server and client random values. | 22 March 2005, 14:10:32 UTC |
| ab0def8 | Richard Levitte | 21 March 2005, 13:49:09 UTC | There are cases when there are no files left to verify. Make sure to handle that properly. | 21 March 2005, 13:49:09 UTC |
| 6d2a709 | Ulf Möller | 19 March 2005, 11:40:41 UTC | Cygwin randomness | 19 March 2005, 11:40:41 UTC |
| b43b9de | Andy Polyakov | 15 March 2005, 09:46:14 UTC | Real Bourne shell doesn't accept ! as in "if ! grep ..." Fix this in crypto/Makefile and make Makefile.org and fips/Makefile more discreet. | 15 March 2005, 09:46:14 UTC |
| 6286bbe | Andy Polyakov | 12 March 2005, 12:15:20 UTC | Fold rules in test/Makefile and provide hooks for updated FIPS build procedures. | 12 March 2005, 12:15:20 UTC |
| 9d14506 | Andy Polyakov | 12 March 2005, 11:28:22 UTC | Cygwin to use DSO_FLFCN and mingw to use DSO_WIN32 (required for FIPS). | 12 March 2005, 11:28:22 UTC |
| 7ec40a4 | Andy Polyakov | 12 March 2005, 09:33:14 UTC | Add mingw shared support [backport from HEAD]. | 12 March 2005, 09:33:14 UTC |
| aa0d4ed | Andy Polyakov | 12 March 2005, 09:28:18 UTC | Move copying of .dll to apps/ and test/ to more appropriate place. | 12 March 2005, 09:28:18 UTC |
| 2cf68c0 | Andy Polyakov | 12 March 2005, 09:13:15 UTC | Avoid re-build avalanches with HP-UX make. | 12 March 2005, 09:13:15 UTC |
| 97d49cd | Bodo Möller | 11 March 2005, 09:00:59 UTC | fix potential memory leak when allocation fails PR: 801 Submitted by: Nils Larsch | 11 March 2005, 09:00:59 UTC |
| 126179a | Lutz Jänicke | 19 February 2005, 10:25:55 UTC | Fix type on blowfish manual page PR: 1010 Submitted by: Marc Balmer <mbalmer@openbsd.org> | 19 February 2005, 10:25:55 UTC |
| e22e6bf | Lutz Jänicke | 19 February 2005, 10:17:26 UTC | Fix hang in EGD/PRNGD query when communication socket is closed prematurely by EGD/PRNGD. PR: 1014 Submitted by: Darren Tucker <dtucker@zip.com.au> | 19 February 2005, 10:17:26 UTC |
| 2ecf923 | Dr. Stephen Henson | 14 February 2005, 21:54:29 UTC | Avoid possible memory leak. | 14 February 2005, 21:54:29 UTC |
| b7fd453 | Andy Polyakov | 06 February 2005, 13:16:42 UTC | Make util/shlib_wrap.sh [Open]BSD-friendly. [from HEAD]. | 06 February 2005, 13:16:42 UTC |
| 086dd30 | Andy Polyakov | 06 February 2005, 13:09:51 UTC | "Backport" http://cvs.openssl.org/chngview?cn=12841 from HEAD. For reference. In HEAD this approach was taken one step further. There is linux-generic32 target which is used as unified Linux target for ARM, PA-RISC, SPARCv7, S390... | 06 February 2005, 13:09:51 UTC |
| 20e5177 | Dr. Stephen Henson | 05 February 2005, 18:24:50 UTC | In FIPS mode use SHA1 as default digest in x509 and req utilities. | 05 February 2005, 18:24:50 UTC |
| bb987c7 | Dr. Stephen Henson | 05 February 2005, 17:19:23 UTC | In mkdef.pl ignore trailing whitespace in #ifdef lines | 05 February 2005, 17:19:23 UTC |
| 515ac3d | Andy Polyakov | 03 February 2005, 11:09:20 UTC | Final HP-UX specific touches to "cope with run-time linker on multi-ABI platforms." | 03 February 2005, 11:09:20 UTC |
| 43509de | Andy Polyakov | 03 February 2005, 10:19:36 UTC | Shut whiny make's up. | 03 February 2005, 10:19:36 UTC |
| dbaa6f9 | Andy Polyakov | 01 February 2005, 23:45:42 UTC | Address run-time linker problems: LD_PRELOAD issue on multi-ABI platforms and SafeDllSearchMode in Windows. | 01 February 2005, 23:45:42 UTC |
| 01b62dc | Dr. Stephen Henson | 31 January 2005, 01:46:02 UTC | Use SHA1 for test certificates so FIPS SSL/TLS tests work. | 31 January 2005, 01:46:02 UTC |
| 66d6832 | Dr. Stephen Henson | 31 January 2005, 01:40:39 UTC | Avoid memory leak. | 31 January 2005, 01:40:39 UTC |
| ecc3d27 | Dr. Stephen Henson | 31 January 2005, 01:33:36 UTC | Only allow TLS is FIPS mode. Remove old FIPS_allow_md5() calls. | 31 January 2005, 01:33:36 UTC |
| 11536fb | Dr. Stephen Henson | 31 January 2005, 01:28:17 UTC | Update year. | 31 January 2005, 01:28:17 UTC |
| 7cfcca8 | Dr. Stephen Henson | 28 January 2005, 14:03:54 UTC | Further FIPS algorithm blocking. Fixes to cipher blocking and enabling code. Add option -non-fips-allow to 'enc' and update testenc. | 28 January 2005, 14:03:54 UTC |
| 0cae19f | Richard Levitte | 27 January 2005, 11:42:25 UTC | The first argument to load_iv should really be a char ** instead of an unsigned char **, since it points at text. Thanks to Nils Larsch <nils.larsch@cybertrust.com> for pointing out the inelegance of our code :-) | 27 January 2005, 11:42:25 UTC |
| 6be00c7 | Dr. Stephen Henson | 27 January 2005, 01:49:42 UTC | More FIPS algorithm blocking. Catch attempted use of non FIPS algorithms with HMAC. Give an assertion error for applications that ignore FIPS digest errors. Make -non-fips-allow work with dgst and HMAC. | 27 January 2005, 01:49:42 UTC |
| 532d936 | Richard Levitte | 27 January 2005, 01:49:23 UTC | Check for errors from EVP_VerifyInit_ex(), or EVP_VerifyUpdate might cause a segfault... This was uncovered because EVP_VerifyInit() may fail in FIPS mode if the wrong algorithm is chosen... | 27 January 2005, 01:49:23 UTC |
| d88edf1 | Richard Levitte | 27 January 2005, 01:47:27 UTC | Get rid if the annoying warning | 27 January 2005, 01:47:27 UTC |
| f60fc19 | Dr. Stephen Henson | 26 January 2005, 20:05:46 UTC | make update | 26 January 2005, 20:05:46 UTC |
| d0edffc | Dr. Stephen Henson | 26 January 2005, 20:00:40 UTC | FIPS algorithm blocking. Non FIPS algorithms are not normally allowed in FIPS mode. Any attempt to use them via high level functions will return an error. The low level non-FIPS algorithm functions cannot return errors so they produce assertion failures. HMAC also has to give an assertion error because it (erroneously) can't return an error either. There are exceptions (such as MD5 in TLS and non cryptographic use of algorithms) and applications can override the blocking and use non FIPS algorithms anyway. For low level functions the override is perfomed by prefixing the algorithm initalization function with "private_" for example private_MD5_Init(). For high level functions an override is performed by setting a flag in the context. | 26 January 2005, 20:00:40 UTC |
| 12dfa84 | Andy Polyakov | 26 January 2005, 19:58:02 UTC | Respect the fact that most interactive shells don't restore stty settings and make it work in non-interactive mode... | 26 January 2005, 19:58:02 UTC |
| 134d6a4 | Andy Polyakov | 18 January 2005, 00:24:55 UTC | Don't zap AES CBC IV, when decrypting truncated content in place. | 18 January 2005, 00:24:55 UTC |
| 420eb6a | Dr. Stephen Henson | 14 January 2005, 17:53:16 UTC | PKCS7_verify() performance optimization. When the content is large and a memory BIO (for example from SMIME_read_PKCS7 and detached data) avoid lots of slow memory copies from the memory BIO by saving the content in a temporary read only memory BIO. | 14 January 2005, 17:53:16 UTC |
| e9ddd85 | Andy Polyakov | 14 January 2005, 16:24:45 UTC | INSTALL.DJGPP update. PR: 989 | 14 January 2005, 16:24:45 UTC |
| ea28f93 | Andy Polyakov | 14 January 2005, 16:22:02 UTC | Rely on e_os.h to appropriately define str[n]casecmp in non-POSIX environments. | 14 January 2005, 16:22:02 UTC |
| adeb20b | Andy Polyakov | 14 January 2005, 16:19:47 UTC | O_NOFOLLOW is not appropriate when opening /dev/* entries on Solaris. PR: 998 | 14 January 2005, 16:19:47 UTC |
| 086b64d | Richard Levitte | 14 January 2005, 00:16:31 UTC | make update | 14 January 2005, 00:16:31 UTC |
| 47c88d7 | Richard Levitte | 12 January 2005, 09:51:31 UTC | Correct a faulty address assignment, and add a length check (not really needed now, but may be needed in the future, who knows?). | 12 January 2005, 09:51:31 UTC |
| 630b9d7 | Richard Levitte | 11 January 2005, 18:25:28 UTC | Use EXIT() instead of exit(). | 11 January 2005, 18:25:28 UTC |
| c4929fb | Richard Levitte | 11 January 2005, 16:54:35 UTC | Clear signed vs. unsigned conflicts. Change the fingerprint accordingly. | 11 January 2005, 16:54:35 UTC |
| 97c2c81 | Richard Levitte | 11 January 2005, 06:53:30 UTC | Remove VMS_strcasecmp() from apps.c, it's not used any more. And besides, the implementation is bogus. | 11 January 2005, 06:53:30 UTC |
| 954f3c3 | Andy Polyakov | 09 January 2005, 20:43:49 UTC | FAQ update to mention no-sha0 as possible workaround for Tru64 compiler bug. | 09 January 2005, 20:43:49 UTC |
| 528584c | Andy Polyakov | 09 January 2005, 20:13:11 UTC | DJGPP documentation note update. | 09 January 2005, 20:13:11 UTC |
| 5cdf5e3 | Andy Polyakov | 09 January 2005, 17:58:18 UTC | Allow for ./config no-sha0. PR: 993 | 09 January 2005, 17:58:18 UTC |
| b58560b | Andy Polyakov | 04 January 2005, 10:21:55 UTC | DJGPP update. PR: 989 Submitted by: Doug Kaufman | 04 January 2005, 10:21:55 UTC |
| 76d0880 | Dr. Stephen Henson | 03 January 2005, 17:46:45 UTC | RSA KAT. | 03 January 2005, 17:46:45 UTC |
| 83f6916 | Andy Polyakov | 31 December 2004, 00:01:23 UTC | Borrow #include <string[s].h> from e_os.h. | 31 December 2004, 00:01:23 UTC |
| 5ca3a0a | Andy Polyakov | 30 December 2004, 23:39:06 UTC | Make whiny compilers stop complaining about missing prototype. | 30 December 2004, 23:39:06 UTC |
| 702be72 | Andy Polyakov | 30 December 2004, 22:57:19 UTC | AES CBC and CFB performance tune-up from HEAD. | 30 December 2004, 22:57:19 UTC |
| 8336cec | Andy Polyakov | 30 December 2004, 22:53:57 UTC | Fix Win32 test-suit. | 30 December 2004, 22:53:57 UTC |
| 1c8415f | Andy Polyakov | 30 December 2004, 11:08:27 UTC | Remove naming conflict between variable and label. | 30 December 2004, 11:08:27 UTC |
| 370d418 | Dr. Stephen Henson | 29 December 2004, 01:05:35 UTC | Prompt for passphrases with PKCS12 input format. | 29 December 2004, 01:05:35 UTC |
| 4aaa4f2 | Andy Polyakov | 27 December 2004, 23:48:33 UTC | Cosmetic mingw update. PR: 924 | 27 December 2004, 23:48:33 UTC |
| f709ffe | Andy Polyakov | 27 December 2004, 21:26:10 UTC | Minor cygwin update. PR: 949 | 27 December 2004, 21:26:10 UTC |
| 9e34e80 | Andy Polyakov | 27 December 2004, 14:55:19 UTC | Remove CPU detect for IRIX targets. Performance gain is less than 1%, it doesn't pay off... | 27 December 2004, 14:55:19 UTC |
| 2d16a95 | Andy Polyakov | 27 December 2004, 14:51:20 UTC | As new major IRIX release is highly unlikely to appear [and break following], I change from -notall to -none synonym in do_irix-shared to improve backward compatibility with IRIX 5.x. PR: 987 | 27 December 2004, 14:51:20 UTC |
| fe707c3 | Andy Polyakov | 20 December 2004, 13:21:25 UTC | Summarize recent backports in CHANGES. | 20 December 2004, 13:21:25 UTC |
| fb39cd8 | Andy Polyakov | 20 December 2004, 13:20:22 UTC | Improved PowerPC platform support. | 20 December 2004, 13:20:22 UTC |
| 560f01f | Andy Polyakov | 20 December 2004, 13:18:56 UTC | When re-linking files, really relink them. In other words, emulate ln -f. | 20 December 2004, 13:18:56 UTC |
| 15bbc15 | Andy Polyakov | 20 December 2004, 13:15:51 UTC | Backport of PPC BN module from HEAD. | 20 December 2004, 13:15:51 UTC |
| 1acf071 | Andy Polyakov | 20 December 2004, 13:13:14 UTC | Backport of http://cvs.openssl.org/chngview?cn=12323, as well as eliminate message size limitations on 64-bit platforms. | 20 December 2004, 13:13:14 UTC |
| 3ae613e | Andy Polyakov | 20 December 2004, 13:10:27 UTC | Backport of http://cvs.openssl.org/chngview?cn=12449, essentially a bug-fix for Win64/ia64. | 20 December 2004, 13:10:27 UTC |
| 37ece61 | Richard Levitte | 13 December 2004, 22:48:01 UTC | make update | 13 December 2004, 22:48:01 UTC |
| 9655740 | Dr. Stephen Henson | 12 December 2004, 13:18:23 UTC | Remove duplicate lines. | 12 December 2004, 13:18:23 UTC |
| 535178f | Andy Polyakov | 10 December 2004, 16:30:34 UTC | Adapt FIPS sub-tree for mingw. | 10 December 2004, 16:30:34 UTC |
| a4a88ee | Andy Polyakov | 10 December 2004, 13:15:55 UTC | Solaris x86 assembler update. | 10 December 2004, 13:15:55 UTC |
| a661c17 | Andy Polyakov | 10 December 2004, 11:37:25 UTC | Respect no-asm with fips option and disable FIPS DES assembler in shared context [because it's not PIC]. | 10 December 2004, 11:37:25 UTC |
| 13e387c | Andy Polyakov | 10 December 2004, 11:27:09 UTC | olaris x86 perlasm update [from HEAD]. | 10 December 2004, 11:27:09 UTC |
| 3dd16fb | Andy Polyakov | 09 December 2004, 22:43:29 UTC | Eliminate false dependency on 386 config option is FIPS context. At the same time limit assembler support to ELF platforms [that's what is there, ELF modules]. | 09 December 2004, 22:43:29 UTC |
| ab09133 | Andy Polyakov | 09 December 2004, 21:05:14 UTC | Engage SHA1 IA64 assembler on IA64 platforms [from HEAD]. | 09 December 2004, 21:05:14 UTC |
| 90ec459 | Andy Polyakov | 09 December 2004, 20:55:52 UTC | SHA1 assember for IA64 [from HEAD]. | 09 December 2004, 20:55:52 UTC |
| 3d5d6f9 | Andy Polyakov | 09 December 2004, 18:13:46 UTC | Cygwin specific FIPS fix-ups. | 09 December 2004, 18:13:46 UTC |
| bd5a219 | Andy Polyakov | 09 December 2004, 18:03:23 UTC | Postpone linking of shared libcrypto in FIPS build. | 09 December 2004, 18:03:23 UTC |
| 5868130 | Andy Polyakov | 09 December 2004, 18:00:26 UTC | Eliminate dependency on UNICODE macro. | 09 December 2004, 18:00:26 UTC |
| a4c9668 | Dr. Stephen Henson | 09 December 2004, 13:34:41 UTC | Automatically mark the CRL cached encoding as invalid when some operations are performed. | 09 December 2004, 13:34:41 UTC |
| f1ca15d | cvs2svn | 09 December 2004, 11:57:39 UTC | This commit was manufactured by cvs2svn to create branch 'OpenSSL_0_9_7-stable'. | 09 December 2004, 11:57:39 UTC |
| b4e0ce5 | Andy Polyakov | 09 December 2004, 11:57:38 UTC | SHA1 assembler for IA-64. | 09 December 2004, 11:57:38 UTC |
| 17f0e91 | Andy Polyakov | 07 December 2004, 11:55:56 UTC | Extend RC4 test. | 07 December 2004, 11:55:56 UTC |
| 3d4c78e | Dr. Stephen Henson | 05 December 2004, 19:53:40 UTC | More CA updates. | 05 December 2004, 19:53:40 UTC |
| 95f5b1f | Dr. Stephen Henson | 05 December 2004, 19:51:56 UTC | Update 'certs' directory. Move expired certificates to expired directory and zero assurance demontrations CAs to 'demo'. | 05 December 2004, 19:51:56 UTC |
| c78b389 | cvs2svn | 05 December 2004, 19:48:03 UTC | This commit was manufactured by cvs2svn to create branch 'OpenSSL_0_9_7-stable'. | 05 December 2004, 19:48:03 UTC |
| 3dfa23c | Dr. Stephen Henson | 05 December 2004, 19:48:02 UTC | Update 'certs' directory. Move expired certificates to expired directory and zero assurance demontrations CAs to 'demo'. | 05 December 2004, 19:48:02 UTC |
| b0ab906 | Dr. Stephen Henson | 05 December 2004, 18:26:48 UTC | Use X509_cmp_time() in -checkend option, to support GeneralizedTime. | 05 December 2004, 18:26:48 UTC |
| a37e22d | Dr. Stephen Henson | 05 December 2004, 18:26:19 UTC | Use X509_cmp_time() in -checkend option, to support GeneralizedTime. | 05 December 2004, 18:26:19 UTC |
| 41c70d4 | Dr. Stephen Henson | 05 December 2004, 01:50:56 UTC | Remaing bits of PR:620 relevant to 0.9.8. | 05 December 2004, 01:50:56 UTC |
| ec46cd8 | Dr. Stephen Henson | 05 December 2004, 01:46:03 UTC | Remaining parts of PR:620 | 05 December 2004, 01:46:03 UTC |
| da85346 | Dr. Stephen Henson | 05 December 2004, 01:04:44 UTC | Add lots of checks for memory allocation failure, error codes to indicate failure and freeing up memory if a failure occurs. PR:620 | 05 December 2004, 01:04:44 UTC |
| a0e7c8e | Dr. Stephen Henson | 05 December 2004, 01:03:15 UTC | Add lots of checks for memory allocation failure, error codes to indicate failure and freeing up memory if a failure occurs. PR:620 | 05 December 2004, 01:03:15 UTC |
| b56b02d | Dr. Stephen Henson | 05 December 2004, 00:52:18 UTC | Update year. | 05 December 2004, 00:52:18 UTC |
| a8e00b1 | Dr. Stephen Henson | 05 December 2004, 00:51:41 UTC | Update year. | 05 December 2004, 00:51:41 UTC |
