- 31 5月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 15 4月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 05 4月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 15 3月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 17 2月, 2009 2 次提交
-
-
由 Dr. Stephen Henson 提交于
Increase default verify depth to 100.
-
由 Dr. Stephen Henson 提交于
Use correct array size for SHA1 hash.
-
- 15 1月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
and avoid MD5 dependency.
-
- 22 12月, 2008 1 次提交
-
-
由 Andy Polyakov 提交于
.DLL, in particular static build. The issue has been discussed in RT#1230 and later on openssl-dev, and mutually exclusive approaches were suggested. This completes compromise solution suggested in RT#1230. PR: 1230
-
- 12 11月, 2008 1 次提交
-
-
由 Geoff Thorpe 提交于
knock-on work than expected - they've been extracted into a patch series that can be completed elsewhere, or in a different branch, before merging back to HEAD.
-
- 06 11月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 02 11月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 22 10月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
with the appropriate parameters which calls OBJ_bsearch(). A compiler will typically inline this. This avoids the need for cmp_xxx variables and fixes unchecked const issues with CHECKED_PTR_OF()
-
- 20 10月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Duplicate const. Use of ; outside function.
-
- 12 10月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 08 10月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
and should avoid any OS date limitations such as the year 2038 bug.
-
- 15 9月, 2008 1 次提交
-
-
由 Geoff Thorpe 提交于
-
- 07 9月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 01 9月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
a delta CRL in addition to a full CRL. Check and search delta in addition to the base.
-
- 29 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Tidy CRL scoring system. Add new CRL path validation error.
-
- 21 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 14 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
and CRL signing keys.
-
- 13 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
CRL issuer is not part of the main path. Not complete yet and not compiled in because the CRL issuer certificate is not validated.
-
- 12 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Delete X509_POLICY_REF code. Fix handling of invalid policy extensions to return the correct error. Add command line option to inhibit policy mappings.
-
- 08 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
TODO: robustness checking on name forms.
-
- 04 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
fields.
-
- 30 7月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Allow inibit any policy flag to be set in apps.
-
- 13 7月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Ignore self issued certificates when checking path length constraints. Duplicate OIDs in policy tree in case they are allocated. Use anyPolicy from certificate cache and not current tree level.
-
- 27 6月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 30 5月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 17 4月, 2008 1 次提交
-
-
由 Lutz Jänicke 提交于
PR: 1552 Submitted by: Roumen Petrov <openssl@roumenpetrov.info>, "Alon Bar-Lev" <alon.barlev@gmail.com>
-
- 13 3月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Initial support for CMS. Add zlib compression BIO. Add AES key wrap implementation. Generalize S/MIME MIME code to support CMS and/or PKCS7.
-
- 28 2月, 2008 2 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
-
- 12 2月, 2008 2 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
type. Useful for many attributes which are single valued and can only have one type.
-
- 11 2月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 26 10月, 2007 1 次提交
-
-
由 Dr. Stephen Henson 提交于
of handshake failure 2. Changes to x509_certificate_type function (crypto/x509/x509type.c) to make it recognize GOST certificates as EVP_PKT_SIGN|EVP_PKT_EXCH (required for s3_srvr to accept GOST client certificates). 3. Changes to EVP - adding of function EVP_PKEY_CTX_get0_peerkey - Make function EVP_PKEY_derive_set_peerkey work for context with ENCRYPT operation, because we use peerkey field in the context to pass non-ephemeral secret key to GOST encrypt operation. - added EVP_PKEY_CTRL_SET_IV control command. It is really GOST-specific, but it is used in SSL code, so it has to go in some header file, available during libssl compilation 4. Fix to HMAC to avoid call of OPENSSL_cleanse on undefined data 5. Include des.h if KSSL_DEBUG is defined into some libssl files, to make debugging output which depends on constants defined there, work and other KSSL_DEBUG output fixes 6. Declaration of real GOST ciphersuites, two authentication methods SSL_aGOST94 and SSL_aGOST2001 and one key exchange method SSL_kGOST 7. Implementation of these methods. 8. Support for sending unsolicited serverhello extension if GOST ciphersuite is selected. It is require for interoperability with CryptoPro CSP 3.0 and 3.6 and controlled by SSL_OP_CRYPTOPRO_TLSEXT_BUG constant. This constant is added to SSL_OP_ALL, because it does nothing, if non-GOST ciphersuite is selected, and all implementation of GOST include compatibility with CryptoPro. 9. Support for CertificateVerify message without length field. It is another CryptoPro bug, but support is made unconditional, because it does no harm for draft-conforming implementation. 10. In tls1_mac extra copy of stream mac context is no more done. When I've written currently commited code I haven't read EVP_DigestSignFinal manual carefully enough and haven't noticed that it does an internal digest ctx copying. This implementation was tested against 1. CryptoPro CSP 3.6 client and server 2. Cryptopro CSP 3.0 server
-
- 13 10月, 2007 1 次提交
-
-
由 Andy Polyakov 提交于
-
- 27 9月, 2007 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 19 9月, 2007 1 次提交
-
-
由 Ben Laurie 提交于
-