Fix for CVE-2014-0076
[openssl.git] / CHANGES
2014-03-12 Dr. Stephen HensonFix for CVE-2014-0076
2014-01-03 Dr. Stephen HensonUse algorithm specific chains for certificates.
2013-12-20 Dr. Stephen HensonFix DTLS retransmission from previous session.
2013-12-13 Dr. Stephen HensonUpdate to pad extension.
2013-11-06 Dr. Stephen HensonExperimental workaround TLS filler (WTF) extension.
2013-10-22 Dr. Stephen HensonUpdate test server details.
2013-09-20 Ben LaurieMerge remote-tracking branch 'trevp/pemfix' into trev...
2013-09-18 Dr. Stephen HensonAdd functions to set ECDSA_METHOD structure.
2013-09-17 Bodo MoellerMove change note for SSL_OP_SAFARI_ECDHE_ECDSA_BUG.
2013-09-17 Bodo MoellerMove the change note for partial chain verification...
2013-09-16 Bodo MoellerSync CHANGES and NEWS files.
2013-09-13 Rob StradlingUpdate CHANGES.
2013-09-08 Dr. Stephen HensonDocument extension clash.
2013-09-08 Dr. Stephen HensonExperimental encrypt-then-mac support.
2013-09-06 Scott DeboyAdd callbacks supporting generation and retrieval of...
2013-09-05 Veres Lajosmisspellings fixes by https://github.com/vlajos/misspel...
2013-07-17 Dr. Stephen HensonEVP support for wrapping algorithms.
2013-07-04 Jeff WaltonFix multiple cosmetic typos.
2013-06-21 Dr. Stephen HensonUpdate CHANGES
2013-06-12 Dr. Stephen HensonExetended OAEP support.
2013-06-12 TrevorAdd support for arbitrary TLS extensions.
2013-04-09 Dr. Stephen HensonDual DTLS version methods.
2012-12-19 Dr. Stephen Hensoncorrect CHANGES
2012-12-11 Ben LaurieMake openssl verify return errors.
2012-12-07 Ben LaurieFix OCSP checking.
2012-12-06 Dr. Stephen HensonAdd code to download CRLs based on CRLDP extension.
2012-12-05 Dr. Stephen HensonIntegrate host, email and IP address checks into X509_v...
2012-12-04 Dr. Stephen Hensoninitial support for delta CRL generations by diffing...
2012-12-02 Dr. Stephen HensonNew option to add CRLs for s_client and s_server.
2012-11-28 Dr. Stephen HensonGeneralise OCSP I/O functions to support dowloading...
2012-11-27 Dr. Stephen HensonNew functions to set lookup_crls callback and to retrie...
2012-11-22 Dr. Stephen HensonAdd support for printing out and retrieving EC point...
2012-11-19 Dr. Stephen Hensonnew function ASN1_TIME_diff to calculate difference...
2012-11-18 Dr. Stephen HensonPR: 2909
2012-11-16 Dr. Stephen Hensonadd SSL_CONF functions and documentation
2012-10-08 Dr. Stephen HensonNew functions to check a hostname email or IP address...
2012-09-19 Andy Polyakovconfig: detect linux-mips* targets.
2012-09-14 Dr. Stephen HensonAdd -rev test option to s_server to just reverse order...
2012-09-12 Dr. Stephen HensonAdd -brief option to s_client and s_server to summarise...
2012-09-12 Dr. Stephen HensonAdd ctrl and utility functions to retrieve raw cipher...
2012-09-11 Dr. Stephen HensonMinor enhancement to PR#2836 fix. Instead of modifying...
2012-09-11 Ben LaurieCall OCSP Stapling callback after ciphersuite has been...
2012-08-29 Andy PolyakovHarmonize CHANGES in HEAD.
2012-08-15 Dr. Stephen HensonAdd three Suite B modes to TLS code, supporting RFC6460.
2012-08-03 Dr. Stephen Hensonadd suite B chain validation flags and associated verif...
2012-07-27 Dr. Stephen HensonMake tls1_check_chain return a set of flags indicating...
2012-07-24 Dr. Stephen HensonAbort handshake if signature algorithm used not support...
2012-07-24 Dr. Stephen Hensoncheck EC tmp key matches preferences
2012-07-23 Dr. Stephen HensonAdd support for certificate stores in CERT structure...
2012-07-18 Dr. Stephen HensonNew function ssl_set_client_disabled to set masks for...
2012-07-08 Dr. Stephen HensonAdd new ctrl to retrieve client certificate types,...
2012-07-03 Dr. Stephen HensonSeparate client and server permitted signature algorith...
2012-06-29 Dr. Stephen HensonAdd certificate callback. If set this is called wheneve...
2012-06-28 Dr. Stephen HensonAdd new "valid_flags" field to CERT_PKEY structure...
2012-06-25 Dr. Stephen HensonReorganise supported signature algorithm extension...
2012-06-22 Dr. Stephen HensonAdd support for application defined signature algorithm...
2012-06-18 Dr. Stephen HensonMake it possible to delete all certificates from an...
2012-06-15 Dr. Stephen HensonInitial record tracing code. Print out all fields in...
2012-06-13 Dr. Stephen HensonNew functions to retrieve certificate signatures and...
2012-06-12 Dr. Stephen Hensonprint out issuer and subject unique identifier fields...
2012-05-30 Ben LaurieRFC 5878 support.
2012-05-11 Dr. Stephen HensonPR: 2813
2012-05-11 Dr. Stephen HensonPR: 2811
2012-05-10 Dr. Stephen HensonSanity check record length before skipping explicit...
2012-05-10 Dr. Stephen HensonReported by: Solar Designer of Openwall
2012-04-26 Dr. Stephen HensonDon't try to use unvalidated composite ciphers in FIPS...
2012-04-26 Andy PolyakovCHANGES: clarify.
2012-04-26 Andy PolyakovCHANGES: fix typos and clarify.
2012-04-25 Dr. Stephen HensonChange value of SSL_OP_NO_TLSv1_1 to avoid clash with...
2012-04-25 Andy Polyakovs23_clnt.c: ensure interoperability by maitaining clien...
2012-04-19 Dr. Stephen HensonCheck for potentially exploitable overflows in asn1_d2i...
2012-04-17 Bodo MöllerDisable SHA-2 ciphersuites in < TLS 1.2 connections.
2012-04-17 Dr. Stephen HensonAdditional workaround for PR#2771
2012-04-05 Dr. Stephen HensonAdd support for automatic ECDH temporary key parameter...
2012-03-31 Andy PolyakovCHANGES: harmonize with 1.0.0 and 1.0.1.
2012-03-28 Dr. Stephen HensonInitial revision of ECC extension handling.
2012-03-06 Dr. Stephen HensonNew ctrls to retrieve supported signature algorithms...
2012-02-21 Dr. Stephen HensonAdd new APIs EC_curve_nist2nid and EC_curve_nid2nist...
2012-02-16 Dr. Stephen HensonFix bug in CVE-2011-4619: check we have really received...
2012-02-15 Dr. Stephen HensonAdditional compatibility fix for MDC2 signature format.
2012-02-15 Dr. Stephen HensonAn incompatibility has always existed between the forma...
2012-02-09 Dr. Stephen HensonModify client hello version when renegotiating to enhan...
2012-01-31 Dr. Stephen HensonAdd support for distinct certificate chains per key...
2012-01-25 Dr. Stephen Hensonadd support for use of fixed DH client certificates
2012-01-18 Dr. Stephen HensonFix for DTLS DoS issue introduced by fix for CVE-2011...
2012-01-17 Dr. Stephen Hensonfix CHANGES entry
2012-01-16 Dr. Stephen HensonSupport for fixed DH ciphersuites.
2012-01-05 Bodo MöllerUpdate for 0.9.8s and 1.0.0f, and for 1.0.1 branch.
2012-01-04 Dr. Stephen Hensonupdate CHANGES
2012-01-04 Dr. Stephen HensonSubmitted by: Robin Seggelmann <seggelmann@fh-muenster...
2012-01-04 Dr. Stephen HensonClear bytes used for block padding of SSL 3.0 records...
2012-01-04 Dr. Stephen Hensonfix CHANGES
2012-01-04 Dr. Stephen HensonCheck GOST parameters are not NULL (CVE-2012-0027)
2012-01-04 Dr. Stephen HensonPrevent malformed RFC3779 data triggering an assertion...
2011-12-31 Dr. Stephen Hensonupdate CHANGES
2011-12-31 Dr. Stephen HensonPR: 2658
2011-12-19 Dr. Stephen HensonPR: 2563
2011-12-19 Andy Polyakovupdate CHANGES.
2011-12-19 Dr. Stephen Hensonupdate CHANGES
2011-12-13 Ben LaurieBack out redundant verification time change.
next