oweals/openssl.git
22 years agoMake sure ec and ecdsa is properly handled in Windows.
Richard Levitte [Sat, 20 Apr 2002 10:23:56 +0000 (10:23 +0000)]
Make sure ec and ecdsa is properly handled in Windows.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoSignedness mismatch.
Richard Levitte [Sat, 20 Apr 2002 10:23:19 +0000 (10:23 +0000)]
Signedness mismatch.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoThe callback must have (void) as argument list.
Richard Levitte [Sat, 20 Apr 2002 10:22:42 +0000 (10:22 +0000)]
The callback must have (void) as argument list.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoNo point constifying an int.
Richard Levitte [Sat, 20 Apr 2002 10:22:01 +0000 (10:22 +0000)]
No point constifying an int.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoDo not free p if it hasn't been used yet.
Richard Levitte [Sat, 20 Apr 2002 10:19:20 +0000 (10:19 +0000)]
Do not free p if it hasn't been used yet.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoMake sure the opened directory is closed on exit.
Richard Levitte [Thu, 18 Apr 2002 16:20:13 +0000 (16:20 +0000)]
Make sure the opened directory is closed on exit.
Notified by Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>

22 years agoMissing "Configure" entry (Jean-Marc Desperrier <jean-marc.desperrier@certplus.com>).
Lutz Jänicke [Thu, 18 Apr 2002 12:47:50 +0000 (12:47 +0000)]
Missing "Configure" entry (Jean-Marc Desperrier <jean-marc.desperrier@certplus.com>).

22 years agoOptimize: better shortcut evaluation ("Howard Chu" <hyc@highlandsun.com>).
Lutz Jänicke [Thu, 18 Apr 2002 11:54:06 +0000 (11:54 +0000)]
Optimize: better shortcut evaluation ("Howard Chu" <hyc@highlandsun.com>).

22 years agoHandle headings uniformly to allow automatic processing.
Lutz Jänicke [Thu, 18 Apr 2002 08:11:31 +0000 (08:11 +0000)]
Handle headings uniformly to allow automatic processing.

22 years ago'version' is not optional in the encoding
Bodo Möller [Wed, 17 Apr 2002 11:35:52 +0000 (11:35 +0000)]
'version' is not optional in the encoding

Submitted by: Nils Larsch

22 years ago'version' is not optional in the encoding
Bodo Möller [Wed, 17 Apr 2002 11:31:20 +0000 (11:31 +0000)]
'version' is not optional in the encoding

Submitted by: Nils Larsch

22 years agocheck return values
Bodo Möller [Wed, 17 Apr 2002 09:31:34 +0000 (09:31 +0000)]
check return values

Submitted by: Nils Larsch

22 years agoget rid of some assignments that have become obsolete
Bodo Möller [Mon, 15 Apr 2002 15:29:43 +0000 (15:29 +0000)]
get rid of some assignments that have become obsolete

22 years agoDocument OID changes.
Lutz Jänicke [Mon, 15 Apr 2002 14:18:30 +0000 (14:18 +0000)]
Document OID changes.

22 years agoUse the "mail" short name according to RFC2798 (Michael Bell
Lutz Jänicke [Mon, 15 Apr 2002 13:30:41 +0000 (13:30 +0000)]
Use the "mail" short name according to RFC2798 (Michael Bell
<michael.bell@rz.hu-berlin.de>).

22 years agoSome more OID enhancements.
Lutz Jänicke [Mon, 15 Apr 2002 10:41:38 +0000 (10:41 +0000)]
Some more OID enhancements.

22 years agoFix CRLF problem in BASE64 decode.
Lutz Jänicke [Mon, 15 Apr 2002 09:55:40 +0000 (09:55 +0000)]
Fix CRLF problem in BASE64 decode.

22 years agoremove disabled code
Bodo Möller [Sun, 14 Apr 2002 13:28:17 +0000 (13:28 +0000)]
remove disabled code

22 years agofix length field we create when converting SSL 2.0 format into SSL 3.0/TLS 1.0 format
Bodo Möller [Sun, 14 Apr 2002 13:05:15 +0000 (13:05 +0000)]
fix length field we create when converting SSL 2.0 format into SSL 3.0/TLS 1.0 format
(the bug was introduced with message callback support)

22 years agoImplement known-IV countermeasure.
Bodo Möller [Sat, 13 Apr 2002 22:47:20 +0000 (22:47 +0000)]
Implement known-IV countermeasure.

Fix length checks in ssl3_get_client_hello().

Use s->s3->in_read_app_data differently to fix ssl3_read_internal().

22 years agoAvoid emacs backup files when making a snapshot
Richard Levitte [Sat, 13 Apr 2002 12:28:44 +0000 (12:28 +0000)]
Avoid emacs backup files when making a snapshot

22 years agoanother error discovered by Karsten Braaten. The number was not even
Ulf Möller [Sat, 13 Apr 2002 09:58:50 +0000 (09:58 +0000)]
another error discovered by Karsten Braaten. The number was not even
prime!

22 years agolooks like a typo
Bodo Möller [Fri, 12 Apr 2002 13:52:40 +0000 (13:52 +0000)]
looks like a typo

22 years agoclean up and synchronize with 0.9.6-stable
Bodo Möller [Fri, 12 Apr 2002 13:45:29 +0000 (13:45 +0000)]
clean up and synchronize with 0.9.6-stable

22 years agoECDSA representation bugfixes
Bodo Möller [Fri, 12 Apr 2002 08:57:01 +0000 (08:57 +0000)]
ECDSA representation bugfixes

Submitted by: Nils Larsch

22 years agoCheck error code from a2d_ASN1_OBJECT().
Richard Levitte [Thu, 11 Apr 2002 22:13:58 +0000 (22:13 +0000)]
Check error code from a2d_ASN1_OBJECT().

22 years agoChange the date to XX xxx XXXX in development versions.
Richard Levitte [Thu, 11 Apr 2002 21:51:40 +0000 (21:51 +0000)]
Change the date to XX xxx XXXX in development versions.

22 years agoSynchronize with 0.9.7-stable.
Lutz Jänicke [Thu, 11 Apr 2002 18:43:52 +0000 (18:43 +0000)]
Synchronize with 0.9.7-stable.

22 years agoSynchronize with 0.9.7-stable branch
Lutz Jänicke [Wed, 10 Apr 2002 19:52:40 +0000 (19:52 +0000)]
Synchronize with 0.9.7-stable branch

22 years agoKeep my own specially optimized HP-UX shared library building up to date.
Lutz Jänicke [Wed, 10 Apr 2002 12:35:45 +0000 (12:35 +0000)]
Keep my own specially optimized HP-UX shared library building up to date.

22 years agoharmonize capitalization
Bodo Möller [Tue, 9 Apr 2002 12:42:47 +0000 (12:42 +0000)]
harmonize capitalization

22 years agofix ECDSA handling
Bodo Möller [Tue, 9 Apr 2002 12:01:21 +0000 (12:01 +0000)]
fix ECDSA handling

Submitted by: Nils Larsch

22 years agoadd usage examples
Bodo Möller [Tue, 9 Apr 2002 11:54:24 +0000 (11:54 +0000)]
add usage examples

22 years agoApply OID fixes for elliptic curves as supplied by
Lutz Jänicke [Mon, 8 Apr 2002 15:49:53 +0000 (15:49 +0000)]
Apply OID fixes for elliptic curves as supplied by
Nils Larsch <nlarsch@compuserve.de>.

22 years agoerror reported by Karsten Braaten
Ulf Möller [Sun, 7 Apr 2002 13:33:16 +0000 (13:33 +0000)]
error reported by Karsten Braaten

22 years agoAllow longer program names (VMS allows up to 39 characters).
Richard Levitte [Sat, 6 Apr 2002 20:22:48 +0000 (20:22 +0000)]
Allow longer program names (VMS allows up to 39 characters).
Submitted by Compaq.

22 years agomake update (libeay.num has been edited to match 0.9.7-stable)
Richard Levitte [Sat, 6 Apr 2002 19:16:12 +0000 (19:16 +0000)]
make update (libeay.num has been edited to match 0.9.7-stable)

22 years agoAllow longer program names (VMS allows up to 39 characters).
Richard Levitte [Sat, 6 Apr 2002 19:00:50 +0000 (19:00 +0000)]
Allow longer program names (VMS allows up to 39 characters).
Submitted by Compaq.

22 years agoOops, the system macro for VMS is OPENSSL_SYS_VMS, not VMS
Richard Levitte [Sat, 6 Apr 2002 11:58:04 +0000 (11:58 +0000)]
Oops, the system macro for VMS is OPENSSL_SYS_VMS, not VMS

22 years agoRecognise DEC C++ as equivalent to DEC C for the definitions of OPENSSL_EXTERN and...
Richard Levitte [Sat, 6 Apr 2002 11:37:18 +0000 (11:37 +0000)]
Recognise DEC C++ as equivalent to DEC C for the definitions of OPENSSL_EXTERN and OPENSSL_GLOBAL.
Submitted by Compaq.

22 years agoUse recv() and send() for socket communication on VMS instead of read()
Richard Levitte [Sat, 6 Apr 2002 11:35:49 +0000 (11:35 +0000)]
Use recv() and send() for socket communication on VMS instead of read()
and write().  The reason is that read() and write() make additional record
level locking which causes hangs of Compaq Secure Web Server (Apache) with
SSL.
Submitted by Compaq.

22 years agoMake shared libraries resolve global symbols within themselves first.
Richard Levitte [Sat, 6 Apr 2002 09:42:19 +0000 (09:42 +0000)]
Make shared libraries resolve global symbols within themselves first.
Currently only on GNUish linkers...
Submitted by Steven Bade <sbade@austin.ibm.com>

22 years agoFix buggy object definitions (Svenning Sorensen <sss@sss.dnsalias.net>).
Lutz Jänicke [Thu, 4 Apr 2002 17:48:37 +0000 (17:48 +0000)]
Fix buggy object definitions (Svenning Sorensen <sss@sss.dnsalias.net>).

22 years agoForgot one of the casts
Richard Levitte [Wed, 3 Apr 2002 15:01:28 +0000 (15:01 +0000)]
Forgot one of the casts

22 years agoCast the pointers to the BIGNUM data to unsigned long *. This would be
Richard Levitte [Wed, 3 Apr 2002 14:47:38 +0000 (14:47 +0000)]
Cast the pointers to the BIGNUM data to unsigned long *.  This would be
harmful if we didn't also pass the exact number of bytes of that data

22 years agoFix of mixup bwtween SOMAXCONN and SO_MAXCONN.
Richard Levitte [Fri, 29 Mar 2002 23:48:55 +0000 (23:48 +0000)]
Fix of mixup bwtween SOMAXCONN and SO_MAXCONN.
Furthermore, make SO_MAXCONN the first choice, since that's the standard
(as far as I know).

22 years agoMake short names of objects RFC2256-compliant.
Lutz Jänicke [Tue, 26 Mar 2002 17:18:48 +0000 (17:18 +0000)]
Make short names of objects RFC2256-compliant.

22 years agoA forgotten file
Richard Levitte [Tue, 26 Mar 2002 16:42:38 +0000 (16:42 +0000)]
A forgotten file

22 years agoAdd the possibility to enable olde des support, not just disable it, for future suppo...
Richard Levitte [Tue, 26 Mar 2002 14:28:04 +0000 (14:28 +0000)]
Add the possibility to enable olde des support, not just disable it, for future support.  Redocument

22 years agoAdd the mapping of des_random_seed() for 0.9.6 compatibility.
Richard Levitte [Tue, 26 Mar 2002 13:59:22 +0000 (13:59 +0000)]
Add the mapping of des_random_seed() for 0.9.6 compatibility.
Make sure DES_cblock is defined at all times (meaning one shouldn't include
openssl/des_old.h directly any more).

22 years agoCorrect the mapping for des_read_pw()
Richard Levitte [Tue, 26 Mar 2002 13:54:15 +0000 (13:54 +0000)]
Correct the mapping for des_read_pw()

22 years agoMake the change to strong keys in the string to key(s) functions experimental in...
Richard Levitte [Tue, 26 Mar 2002 12:44:35 +0000 (12:44 +0000)]
Make the change to strong keys in the string to key(s) functions experimental in the main trunk as well

22 years agofix warnings
Bodo Möller [Mon, 25 Mar 2002 23:41:32 +0000 (23:41 +0000)]
fix warnings

Submitted by: Nils Larsch

22 years agofix memory leak
Bodo Möller [Mon, 25 Mar 2002 23:18:11 +0000 (23:18 +0000)]
fix memory leak

Submitted by: Nils Larsch

22 years agoadd missing declaration
Bodo Möller [Mon, 25 Mar 2002 23:15:21 +0000 (23:15 +0000)]
add missing declaration

Submitted by: Nils Larsch

22 years agoFix typo (Craig Davison <cd@securityfocus.com>).
Lutz Jänicke [Mon, 25 Mar 2002 17:12:24 +0000 (17:12 +0000)]
Fix typo (Craig Davison <cd@securityfocus.com>).

22 years agofix conditational compilation for OPENSSL_NO_...
Bodo Möller [Fri, 22 Mar 2002 11:02:13 +0000 (11:02 +0000)]
fix conditational compilation for OPENSSL_NO_...

22 years agoMerge changes from 0.9.7-stable
Richard Levitte [Fri, 22 Mar 2002 10:51:41 +0000 (10:51 +0000)]
Merge changes from 0.9.7-stable

22 years agoMerge changes from 0.9.7-stable
Richard Levitte [Fri, 22 Mar 2002 10:32:23 +0000 (10:32 +0000)]
Merge changes from 0.9.7-stable

22 years agoMerge in DES changed from 0.9.7-stable.
Richard Levitte [Fri, 22 Mar 2002 02:49:46 +0000 (02:49 +0000)]
Merge in DES changed from 0.9.7-stable.

22 years agoMerge in DES changed from 0.9.7-stable.
Richard Levitte [Fri, 22 Mar 2002 02:42:57 +0000 (02:42 +0000)]
Merge in DES changed from 0.9.7-stable.

22 years agoFix buggy if-condition (thomas poindessous <poinde_t@epita.fr>).
Lutz Jänicke [Thu, 21 Mar 2002 19:16:02 +0000 (19:16 +0000)]
Fix buggy if-condition (thomas poindessous <poinde_t@epita.fr>).

22 years agoRemove superflous (and buggy) statement <justin.fletcher@ntlworld.com>.
Lutz Jänicke [Thu, 21 Mar 2002 19:08:35 +0000 (19:08 +0000)]
Remove superflous (and buggy) statement <justin.fletcher@ntlworld.com>.

22 years agofix DH_generate_parameters for general 'generator'
Bodo Möller [Wed, 20 Mar 2002 16:04:04 +0000 (16:04 +0000)]
fix DH_generate_parameters for general 'generator'

22 years agoNew function EC_GROUP_check_discriminant().
Bodo Möller [Wed, 20 Mar 2002 10:18:07 +0000 (10:18 +0000)]
New function EC_GROUP_check_discriminant().
Restructure implementation of EC_GROUP_check().

Submitted by: Nils Larsch

22 years agoMap new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).
Lutz Jänicke [Tue, 19 Mar 2002 16:42:09 +0000 (16:42 +0000)]
Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).

22 years agoFix typo.
Bodo Möller [Tue, 19 Mar 2002 09:51:31 +0000 (09:51 +0000)]
Fix typo.

Submitted by: Nils Larsch

22 years agoInitialize ciph_ctx in kssl.c
Dr. Stephen Henson [Tue, 19 Mar 2002 01:28:00 +0000 (01:28 +0000)]
Initialize ciph_ctx in kssl.c

22 years agoFix bugs and typos.
Bodo Möller [Mon, 18 Mar 2002 13:10:45 +0000 (13:10 +0000)]
Fix bugs and typos.
Add some WTLS curves.
New function EC_GROUP_check() (this will probably
be implemented differently soon).

Submitted by: Nils Larsch
Reviewed by: Bodo Moeller

22 years agofix #include position
Bodo Möller [Mon, 18 Mar 2002 13:05:20 +0000 (13:05 +0000)]
fix #include position

Submitted by: Nils Larsch

22 years agoEnsure EVP_CipherInit() uses the correct encode/decode parameter if
Dr. Stephen Henson [Sat, 16 Mar 2002 23:20:05 +0000 (23:20 +0000)]
Ensure EVP_CipherInit() uses the correct encode/decode parameter if
enc == -1

[Reported by Markus Friedl <markus@openbsd.org>]

Fix typo in dh_lib.c (use of DSAerr instead of DHerr).

22 years agoRename 'cray-t90-cc' into 'cray-j90'.
Bodo Möller [Fri, 15 Mar 2002 16:46:41 +0000 (16:46 +0000)]
Rename 'cray-t90-cc' into 'cray-j90'.
Add to 'config'.

22 years agofix ssl3_pending
Bodo Möller [Fri, 15 Mar 2002 10:52:32 +0000 (10:52 +0000)]
fix ssl3_pending

22 years agoAdd missing strength entries.
Lutz Jänicke [Thu, 14 Mar 2002 18:53:15 +0000 (18:53 +0000)]
Add missing strength entries.

22 years agoInitialize cipher context in KRB5
Dr. Stephen Henson [Thu, 14 Mar 2002 18:22:23 +0000 (18:22 +0000)]
Initialize cipher context in KRB5
("D. Russell" <russelld@aol.net>)

Allow HMAC functions to use an alternative ENGINE.

22 years agoadd OIDs for WAP/TLS curves
Bodo Möller [Thu, 14 Mar 2002 13:18:57 +0000 (13:18 +0000)]
add OIDs for WAP/TLS curves

22 years agoFixes for 'no-hw' combined with 'no-SOME_CIPHER'.
Bodo Möller [Thu, 14 Mar 2002 09:52:03 +0000 (09:52 +0000)]
Fixes for 'no-hw' combined with 'no-SOME_CIPHER'.
Fix dsaparam usage output.

Submitted by: Nils Larsch

22 years agouse BIO_nwrite() more properly to demonstrate the general idea of
Bodo Möller [Thu, 14 Mar 2002 09:48:54 +0000 (09:48 +0000)]
use BIO_nwrite() more properly to demonstrate the general idea of
BIO_nwrite0/BIO_nwrite (the previous code was OK for BIO pairs but not
in general)

22 years agoUndo previous patch: avoid warnings by #undef'ing
Dr. Stephen Henson [Wed, 13 Mar 2002 13:59:38 +0000 (13:59 +0000)]
Undo previous patch: avoid warnings by #undef'ing
duplicate definitions.

Suggested by "Kenneth R. Robinette" <support@securenetterm.com>

22 years agoFix Kerberos warnings with VC++.
Dr. Stephen Henson [Tue, 12 Mar 2002 19:37:18 +0000 (19:37 +0000)]
Fix Kerberos warnings with VC++.

22 years agoFix ASN1 additions for KRB5
Dr. Stephen Henson [Tue, 12 Mar 2002 13:32:35 +0000 (13:32 +0000)]
Fix ASN1 additions for KRB5

22 years agoFix various warnings when compiling with KRB5 code.
Dr. Stephen Henson [Tue, 12 Mar 2002 02:59:37 +0000 (02:59 +0000)]
Fix various warnings when compiling with KRB5 code.

22 years agoasm/mips3.o problems
Bodo Möller [Mon, 11 Mar 2002 09:36:04 +0000 (09:36 +0000)]
asm/mips3.o problems

22 years agoMake ciphers and digests obtain an ENGINE functional reference
Dr. Stephen Henson [Sat, 9 Mar 2002 18:58:05 +0000 (18:58 +0000)]
Make ciphers and digests obtain an ENGINE functional reference
if impl is explicitly supplied.

22 years agoMake {RSA,DSA,DH}_new_method obtain and release an ENGINE
Dr. Stephen Henson [Sat, 9 Mar 2002 18:25:03 +0000 (18:25 +0000)]
Make {RSA,DSA,DH}_new_method obtain and release an ENGINE
functional reference in all cases.

22 years agoFix the Win32_rename() function so it correctly
Dr. Stephen Henson [Fri, 8 Mar 2002 19:11:15 +0000 (19:11 +0000)]
Fix the Win32_rename() function so it correctly
returns an error code. Use the same code in Win9X
and NT.

Fix some ca.c options so they work under Win32:
unlink/rename wont work under Win32 unless the file
is closed.

22 years agoEC curve stuff
Bodo Möller [Fri, 8 Mar 2002 11:10:40 +0000 (11:10 +0000)]
EC curve stuff

Submitted by: Nils Larsch

22 years agoSynchronise the AEP engine in all branches. For 0.9.6-stable [engine], implement...
Richard Levitte [Thu, 7 Mar 2002 19:38:59 +0000 (19:38 +0000)]
Synchronise the AEP engine in all branches.  For 0.9.6-stable [engine], implement software fallback

22 years agoWhen closing, do not use close(). Also, if the closing call fails, do
Richard Levitte [Thu, 7 Mar 2002 17:13:30 +0000 (17:13 +0000)]
When closing, do not use close().  Also, if the closing call fails, do
not return immediately since that leaves a locked lock.

22 years agoChange des_old.c to use types prefixed with _ossl_old_des_.
Richard Levitte [Thu, 7 Mar 2002 15:41:36 +0000 (15:41 +0000)]
Change des_old.c to use types prefixed with _ossl_old_des_.

22 years agofix spacing
Bodo Möller [Thu, 7 Mar 2002 12:21:31 +0000 (12:21 +0000)]
fix spacing

22 years agoAdd more curves.
Bodo Möller [Thu, 7 Mar 2002 12:14:03 +0000 (12:14 +0000)]
Add more curves.
Submitted by: Nils Larsch

Remove unnecessary 'const'.

22 years agoENGINE module additions.
Dr. Stephen Henson [Wed, 6 Mar 2002 14:15:13 +0000 (14:15 +0000)]
ENGINE module additions.

Add "init" command to control ENGINE
initialization.

Call ENGINE_finish on initialized ENGINEs on exit.

Reorder shutdown in apps.c: modules should be shut
down first.

Add test private key loader to openssl ENGINE: this
just loads a private key in PEM format.

Fix print format for dh length parameter.

22 years agoadd SECG OIDs
Bodo Möller [Wed, 6 Mar 2002 13:47:32 +0000 (13:47 +0000)]
add SECG OIDs

Submitted by: Nils Larsch

22 years agoreference counting for EC_GROUP structures is not needed (at the
Bodo Möller [Wed, 6 Mar 2002 09:46:17 +0000 (09:46 +0000)]
reference counting for EC_GROUP structures is not needed (at the
moment at least), so remove it

22 years agoOpenSSL currently fails on certain pure 64-bit architectures. This is a showstopper
Richard Levitte [Wed, 6 Mar 2002 06:25:31 +0000 (06:25 +0000)]
OpenSSL currently fails on certain pure 64-bit architectures.  This is a showstopper

22 years agoRephrase statement on the security of two-key 3DES.
Bodo Möller [Tue, 5 Mar 2002 15:29:30 +0000 (15:29 +0000)]
Rephrase statement on the security of two-key 3DES.

  [Chosen plaintext attack: R. Merkle, M. Hellman: "On the Security of
  Multiple Encryption", CACM 24 (1981) pp. 465-467, p. 776.

  Known plaintext angriff: P.C. van Oorschot, M. Wiener: "A
  known-plaintext attack on two-key triple encryption", EUROCRYPT '90.]

22 years agofix 'ecdsaparam -C'
Bodo Möller [Tue, 5 Mar 2002 15:17:17 +0000 (15:17 +0000)]
fix 'ecdsaparam -C'

22 years agofix printf call
Bodo Möller [Tue, 5 Mar 2002 15:05:00 +0000 (15:05 +0000)]
fix printf call

22 years agotypo
Bodo Möller [Tue, 5 Mar 2002 14:58:53 +0000 (14:58 +0000)]
typo