oweals/openssl.git
25 years agoAdd info about the header and footer lines used in PEM formats
Dr. Stephen Henson [Sat, 13 Nov 1999 21:58:39 +0000 (21:58 +0000)]
Add info about the header and footer lines used in PEM formats
and add an nseq manpage.

25 years agoCorrect x509 manpaghe and add a crl manpage
Dr. Stephen Henson [Sat, 13 Nov 1999 21:28:01 +0000 (21:28 +0000)]
Correct x509 manpaghe and add a crl manpage

25 years agoThe info removal code was overcomplicated, and error-prone (references being wrongly...
Richard Levitte [Fri, 12 Nov 1999 21:51:24 +0000 (21:51 +0000)]
The info removal code was overcomplicated, and error-prone (references being wrongly decreased).  Fixed.

25 years agoAvoid deadlock.
Bodo Möller [Fri, 12 Nov 1999 16:20:30 +0000 (16:20 +0000)]
Avoid deadlock.

25 years agoAdd an spkac manual page and fix the pkcs7 manpage.
Dr. Stephen Henson [Fri, 12 Nov 1999 14:04:41 +0000 (14:04 +0000)]
Add an spkac manual page and fix the pkcs7 manpage.

25 years agoAvoid some silly compiler warnings, and add the change log I forgot :-)
Richard Levitte [Fri, 12 Nov 1999 03:12:46 +0000 (03:12 +0000)]
Avoid some silly compiler warnings, and add the change log I forgot :-)

25 years agoTwo changes have been made:
Richard Levitte [Fri, 12 Nov 1999 02:51:24 +0000 (02:51 +0000)]
Two changes have been made:

  1. Added code to the memory leak detecting code to give the user the
     possibility to add information, thereby forming a traceback.

  2. Make the memory leak detecting code multithread-safe.

The idea is that we're actually dealing with two separate critical
sections, one containing the hash tables with the information, the
other containing the current memory checking mode.  Those should not
be handled with the same lock, especially since their handling overlap.
Hence, the added second lock.

25 years agoSome crypto applications are now being built on Unix, so they should on VMS as well...
Richard Levitte [Fri, 12 Nov 1999 02:21:49 +0000 (02:21 +0000)]
Some crypto applications are now being built on Unix, so they should on VMS as well.  Not by default, however.

25 years agoIt's possible that considering the configuration file as a binary file
Richard Levitte [Fri, 12 Nov 1999 02:19:05 +0000 (02:19 +0000)]
It's possible that considering the configuration file as a binary file
works on Unix and MS-DOS/Windows.  It does not under VMS, so open it
as text.

25 years agoAvoid silly compiler warnings about functions not being declared and an int missing.
Richard Levitte [Fri, 12 Nov 1999 02:10:23 +0000 (02:10 +0000)]
Avoid silly compiler warnings about functions not being declared and an int missing.

25 years agoSome new names in asn1.h are longer than 31 chars, which disturbs the VMS C compilers...
Richard Levitte [Fri, 12 Nov 1999 02:04:30 +0000 (02:04 +0000)]
Some new names in asn1.h are longer than 31 chars, which disturbs the VMS C compilers...

25 years agoAdjust to changes in apps/openssl.cnf
Richard Levitte [Fri, 12 Nov 1999 01:59:47 +0000 (01:59 +0000)]
Adjust to changes in apps/openssl.cnf

25 years agoAdjust to changes in apps/Makefile.ssl
Richard Levitte [Fri, 12 Nov 1999 01:52:59 +0000 (01:52 +0000)]
Adjust to changes in apps/Makefile.ssl

25 years agoDIFFERENCE doesn't handle long (>255 chars) lines well. Use BACKUP instead. No...
Richard Levitte [Fri, 12 Nov 1999 01:46:50 +0000 (01:46 +0000)]
DIFFERENCE doesn't handle long (>255 chars) lines well.  Use BACKUP instead.  No, I'm not joking.

25 years agoadjust to changes in test/Makefile.ssl
Richard Levitte [Fri, 12 Nov 1999 01:45:04 +0000 (01:45 +0000)]
adjust to changes in test/Makefile.ssl

25 years agoadjust to changes in test/testssl
Richard Levitte [Fri, 12 Nov 1999 01:43:55 +0000 (01:43 +0000)]
adjust to changes in test/testssl

25 years agoMake sure installed files are world readable
Richard Levitte [Fri, 12 Nov 1999 01:42:59 +0000 (01:42 +0000)]
Make sure installed files are world readable

25 years agoMerge some common functionality in the apps, delete
Dr. Stephen Henson [Fri, 12 Nov 1999 01:42:25 +0000 (01:42 +0000)]
Merge some common functionality in the apps, delete
the encryption option in the pkcs7 utility (they never
did anything) and add a couple more options to pkcs7.

25 years agoOops forgot the S/MIME v3 RFC.
Dr. Stephen Henson [Fri, 12 Nov 1999 01:07:33 +0000 (01:07 +0000)]
Oops forgot the S/MIME v3 RFC.

25 years agoMore docs and corrections/updates
Dr. Stephen Henson [Fri, 12 Nov 1999 01:04:39 +0000 (01:04 +0000)]
More docs and corrections/updates

25 years agoAdd password command line options to some utils. Fix and update man
Dr. Stephen Henson [Thu, 11 Nov 1999 18:41:31 +0000 (18:41 +0000)]
Add password command line options to some utils. Fix and update man
pages.

25 years agoFix a couple of outstanding issues: update STATUS file, fix NO_FP_API problems.
Dr. Stephen Henson [Thu, 11 Nov 1999 13:58:41 +0000 (13:58 +0000)]
Fix a couple of outstanding issues: update STATUS file, fix NO_FP_API problems.

Update docs, change 'ca' to use the new callback parameter. Now moved key_callback
into app.c because some other utilities will use it soon.

25 years agoOops. The pkcs8 man page wasn't finished: this is an updated version
Dr. Stephen Henson [Thu, 11 Nov 1999 00:48:39 +0000 (00:48 +0000)]
Oops. The pkcs8 man page wasn't finished: this is an updated version

25 years agoVery preliminary POD format documentation for some
Dr. Stephen Henson [Wed, 10 Nov 1999 02:52:17 +0000 (02:52 +0000)]
Very preliminary POD format documentation for some
of the openssl utility commands...

25 years agoUndo silly change.
Bodo Möller [Tue, 9 Nov 1999 16:41:52 +0000 (16:41 +0000)]
Undo silly change.

25 years agoFix (spurious) warnings.
Ben Laurie [Tue, 9 Nov 1999 12:09:24 +0000 (12:09 +0000)]
Fix (spurious) warnings.

25 years agoAvoid some warnings.
Bodo Möller [Tue, 9 Nov 1999 10:00:15 +0000 (10:00 +0000)]
Avoid some warnings.

25 years agoFix to the -revoke option in ca. It was leaking memory, crashing and just
Dr. Stephen Henson [Mon, 8 Nov 1999 13:58:08 +0000 (13:58 +0000)]
Fix to the -revoke option in ca. It was leaking memory, crashing and just
plain not working :-(

Also fix some memory leaks in the new X509_NAME code.

Fix so new app_rand code doesn't crash 'x509' and move #include so it compiles
under Win32.

25 years agoAllow additional information to be attached to a
Dr. Stephen Henson [Thu, 4 Nov 1999 00:45:35 +0000 (00:45 +0000)]
Allow additional information to be attached to a
certificate: currently this includes trust settings
and a "friendly name".

25 years agoFix assembler for Alpha (tested only on DEC OSF not Linux or *BSD). The
Mark J. Cox [Wed, 3 Nov 1999 14:10:10 +0000 (14:10 +0000)]
Fix assembler for Alpha (tested only on DEC OSF not Linux or *BSD).  The
problem was that one of the replacement routines had not been working since
SSLeay releases.  For now the offending routine has been replaced with
non-optimised assembler.  Even so, this now gives around 95% performance
improvement for 1024 bit RSA signs.

25 years ago*** empty log message ***
Ulf Möller [Sat, 30 Oct 1999 19:09:05 +0000 (19:09 +0000)]
*** empty log message ***

25 years agoFix to PKCS#7 routines so it can decrypt some oddball RC2 handling.
Dr. Stephen Henson [Fri, 29 Oct 1999 13:06:25 +0000 (13:06 +0000)]
Fix to PKCS#7 routines so it can decrypt some oddball RC2 handling.

25 years agoContinued multibyte character support.
Dr. Stephen Henson [Wed, 27 Oct 1999 00:15:11 +0000 (00:15 +0000)]
Continued multibyte character support.

Add a bunch of functions to simplify the creation of X509_NAME structures.

Change the X509_NAME_entry_add stuff in req/ca so it no longer uses
X509_NAME_entry_count(): passing -1 has the same effect.

25 years agoAlways hash the pid in the first iteration in ssleay_rand_bytes,
Bodo Möller [Tue, 26 Oct 1999 16:26:48 +0000 (16:26 +0000)]
Always hash the pid in the first iteration in ssleay_rand_bytes,
don't try to detect fork()s by looking at getpid().
The reason is that threads sharing the same memory can have different
PIDs; it's inefficient to run RAND_seed each time a different thread
calls RAND_bytes.

25 years agoMake md_rand.c more robust.
Bodo Möller [Tue, 26 Oct 1999 14:49:12 +0000 (14:49 +0000)]
Make md_rand.c more robust.

25 years agoWarn about RANDFILE being overwritten.
Bodo Möller [Tue, 26 Oct 1999 11:27:42 +0000 (11:27 +0000)]
Warn about RANDFILE being overwritten.

25 years agoDon't be overly paranoid.
Bodo Möller [Tue, 26 Oct 1999 11:19:42 +0000 (11:19 +0000)]
Don't be overly paranoid.

25 years agoNew file app_rand.c with some functionality used in various openssl
Bodo Möller [Tue, 26 Oct 1999 01:59:11 +0000 (01:59 +0000)]
New file app_rand.c with some functionality used in various openssl
applications.

25 years agoVarious randomness handling bugfixes and improvements --
Bodo Möller [Tue, 26 Oct 1999 01:56:29 +0000 (01:56 +0000)]
Various randomness handling bugfixes and improvements --
some utilities that should have used RANDFILE did not,
and -rand handling was broken except in genrsa.

25 years agoReport an error from X509_STORE_load_locations
Bodo Möller [Tue, 26 Oct 1999 01:52:16 +0000 (01:52 +0000)]
Report an error from X509_STORE_load_locations
when X509_LOOKUP_load_file or X509_LOOKUP_add_dir failed.

25 years agoUpdate Borland C++ builder support.
Bodo Möller [Mon, 25 Oct 1999 21:38:43 +0000 (21:38 +0000)]
Update Borland C++ builder support.

Submitted by: Janez Jere <jj@void.si>

25 years agoImprove support for running everything as a monolithic application.
Bodo Möller [Mon, 25 Oct 1999 19:36:01 +0000 (19:36 +0000)]
Improve support for running everything as a monolithic application.

Submitted by: Lennart Bång, Bodo Möller

25 years agoRespect PEX_LIBS and EX_LIBS when building binaries
Bodo Möller [Mon, 25 Oct 1999 19:28:38 +0000 (19:28 +0000)]
Respect PEX_LIBS and EX_LIBS when building binaries
(needed for RSAREF builds)

25 years agoMore multibyte character support.
Dr. Stephen Henson [Mon, 25 Oct 1999 02:00:09 +0000 (02:00 +0000)]
More multibyte character support.

Functions to get keys from EVP_PKEY structures.

25 years agoConstification.
Ben Laurie [Sat, 23 Oct 1999 09:30:09 +0000 (09:30 +0000)]
Constification.

25 years agoDon't return stuff from void functions.
Ben Laurie [Sat, 23 Oct 1999 09:19:42 +0000 (09:19 +0000)]
Don't return stuff from void functions.

25 years agoNew function ASN1_mbstring_copy() to handle ASN1 string copying. Ultimately
Dr. Stephen Henson [Thu, 21 Oct 1999 13:20:49 +0000 (13:20 +0000)]
New function ASN1_mbstring_copy() to handle ASN1 string copying. Ultimately
this will be used to clear up the horrible DN mess.

25 years agoReplace the macros in asn1.h with function equivalents. Also make UTF8Strings
Dr. Stephen Henson [Wed, 20 Oct 1999 01:50:23 +0000 (01:50 +0000)]
Replace the macros in asn1.h with function equivalents. Also make UTF8Strings
tolerated in certificates.

25 years agoUse of DEVRANDOM must be #ifdef'ed (the #ifdef was commented out
Bodo Möller [Thu, 14 Oct 1999 17:31:53 +0000 (17:31 +0000)]
Use of DEVRANDOM must be #ifdef'ed (the #ifdef was commented out
between SSLeay 0.8.1b and 0.9.0b with no apparent reason).
If we *want* an error when DEVRANDOM is not defined (it always is with
the current e_os.h) we should use #error.

25 years agoInitial support for certificate purpose checking: this will
Dr. Stephen Henson [Wed, 13 Oct 1999 01:11:56 +0000 (01:11 +0000)]
Initial support for certificate purpose checking: this will
ultimately lead to certificate chain verification. It is
VERY EXPERIMENTAL at present though.

25 years agoAdd EX_DATA support to X509.
Dr. Stephen Henson [Mon, 11 Oct 1999 01:30:04 +0000 (01:30 +0000)]
Add EX_DATA support to X509.
Fix a bug in the X509_get_d2i() functions which didn't check if crit was NULL.

25 years agoNew functions to parse and get extensions.
Dr. Stephen Henson [Sat, 9 Oct 1999 02:54:10 +0000 (02:54 +0000)]
New functions to parse and get extensions.

25 years agoMore patches.
Ulf Möller [Thu, 7 Oct 1999 16:58:08 +0000 (16:58 +0000)]
More patches.

25 years agoRC4 tune-up featuring 30-40% performance improvement on most RISC
Andy Polyakov [Thu, 7 Oct 1999 12:10:26 +0000 (12:10 +0000)]
RC4 tune-up featuring 30-40% performance improvement on most RISC
platforms. See crypto/rc4/rc4_enc.c for further details.

25 years agoRC4 tune-up featuring 30-40% performance improvement on most RISC
Andy Polyakov [Thu, 7 Oct 1999 12:03:59 +0000 (12:03 +0000)]
RC4 tune-up featuring 30-40% performance improvement on most RISC
platforms. See crypto/rc4/rc4_enc.c for further details.

25 years agoFix incorrect usage messages in some commands.
Dr. Stephen Henson [Wed, 6 Oct 1999 22:59:21 +0000 (22:59 +0000)]
Fix incorrect usage messages in some commands.

25 years agoFix for bug in pkcs12 program and typo in ASN1_tag2str().
Dr. Stephen Henson [Tue, 5 Oct 1999 13:10:21 +0000 (13:10 +0000)]
Fix for bug in pkcs12 program and typo in ASN1_tag2str().

25 years agoFix for bug in pkcs12 program and typo in ASN1_tag2str().
Dr. Stephen Henson [Tue, 5 Oct 1999 12:57:50 +0000 (12:57 +0000)]
Fix for bug in pkcs12 program and typo in ASN1_tag2str().

25 years agoNew option -dhparam to s_server to allow the DH parameter file to be set
Dr. Stephen Henson [Mon, 4 Oct 1999 23:56:06 +0000 (23:56 +0000)]
New option -dhparam to s_server to allow the DH parameter file to be set
explicitly. Previously it couldn't be changed because it was hard coded as
"server.pem".

25 years agoAdd support for public key input and output in rsa and dsa utilities with some
Dr. Stephen Henson [Mon, 4 Oct 1999 21:17:47 +0000 (21:17 +0000)]
Add support for public key input and output in rsa and dsa utilities with some
new DSA public key functions that were missing.

Also beginning of a cache for X509_EXTENSION structures: this will allow them
to be accessed more quickly for things like certificate chain verification...

25 years agoFix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message
Dr. Stephen Henson [Mon, 4 Oct 1999 12:08:59 +0000 (12:08 +0000)]
Fix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message
contains no certificates.

Also fix typo in RANLIB changes.

25 years agoAdd prototypes for new DSA functions Steve added recently.
Ralf S. Engelschall [Mon, 4 Oct 1999 10:55:04 +0000 (10:55 +0000)]
Add prototypes for new DSA functions Steve added recently.

25 years agoPass $(RANLIB) when doing "make install" in subdirectories;
Bodo Möller [Sun, 3 Oct 1999 22:50:01 +0000 (22:50 +0000)]
Pass $(RANLIB) when doing "make install" in subdirectories;
rsaref needs ist.

Submitted by: Will Day

25 years agoFix warnings.
Ben Laurie [Sun, 3 Oct 1999 18:09:45 +0000 (18:09 +0000)]
Fix warnings.

25 years agoFix for base64 BIO decoding bug
Dr. Stephen Henson [Sat, 2 Oct 1999 13:33:06 +0000 (13:33 +0000)]
Fix for base64 BIO decoding bug

25 years agoModify the 'speed' application so it now uses RSA_sign and RSA_verify
Dr. Stephen Henson [Sat, 2 Oct 1999 01:18:19 +0000 (01:18 +0000)]
Modify the 'speed' application so it now uses RSA_sign and RSA_verify
instead of RSA_private_encrypt and RSA_public_decrypt

25 years agoHPUX 11 flags.
Ulf Möller [Thu, 30 Sep 1999 08:32:54 +0000 (08:32 +0000)]
HPUX 11 flags.
Contributed by: Peter Huang <PETER_HUANG@HP-Cupertino-om8.om.hp.com>

25 years agoCosmetic changes.
Ulf Möller [Wed, 29 Sep 1999 22:14:47 +0000 (22:14 +0000)]
Cosmetic changes.

25 years agoVC++ warning.
Ulf Möller [Wed, 29 Sep 1999 22:11:06 +0000 (22:11 +0000)]
VC++ warning.

25 years agoGenerate obj_dat.h in "make update".
Ulf Möller [Wed, 29 Sep 1999 21:03:02 +0000 (21:03 +0000)]
Generate obj_dat.h in "make update".

25 years ago"make update"
Bodo Möller [Mon, 27 Sep 1999 15:12:30 +0000 (15:12 +0000)]
"make update"

25 years agonew control code BIO_C_RESET_READ_REQUEST
Bodo Möller [Mon, 27 Sep 1999 13:43:59 +0000 (13:43 +0000)]
new control code BIO_C_RESET_READ_REQUEST

25 years agoRC4 tune-up.
Andy Polyakov [Sun, 26 Sep 1999 12:47:17 +0000 (12:47 +0000)]
RC4 tune-up.

See comments in the code (after #if defined(RC4_CHUNK)) for more details.

25 years agoFix typo in error message.
Bodo Möller [Sat, 25 Sep 1999 11:26:31 +0000 (11:26 +0000)]
Fix typo in error message.

Submitted by: Alan Batie

25 years agoHonor BUFSIZZ definition in s_server, don't use tiny 32 byte
Bodo Möller [Sat, 25 Sep 1999 11:24:53 +0000 (11:24 +0000)]
Honor BUFSIZZ definition in s_server, don't use tiny 32 byte
buffer (which leads to truncation of client cipher list).

25 years agoBugfix: avoid opening CAfile when it's NULL.
Bodo Möller [Fri, 24 Sep 1999 20:27:20 +0000 (20:27 +0000)]
Bugfix: avoid opening CAfile when it's NULL.

25 years agoUse a temporary file, not a pipe, for BN test because there are some
Bodo Möller [Fri, 24 Sep 1999 20:25:34 +0000 (20:25 +0000)]
Use a temporary file, not a pipe, for BN test because there are some
broken bc's around.

25 years agoFix typo that I introduced when reformatting lines.
Bodo Möller [Fri, 24 Sep 1999 20:24:24 +0000 (20:24 +0000)]
Fix typo that I introduced when reformatting lines.

25 years agoFix warnings.
Ben Laurie [Fri, 24 Sep 1999 19:10:57 +0000 (19:10 +0000)]
Fix warnings.

25 years agoMore patches.
Ulf Möller [Tue, 21 Sep 1999 17:19:05 +0000 (17:19 +0000)]
More patches.

(Are there any others that have been submitted but not yet reviewed/integrated?)

25 years agotypo
Bodo Möller [Tue, 21 Sep 1999 14:03:20 +0000 (14:03 +0000)]
typo

25 years agoKeep line lengths < 80 characters.
Bodo Möller [Tue, 21 Sep 1999 13:33:15 +0000 (13:33 +0000)]
Keep line lengths < 80 characters.

25 years agonote a few things that need to be done
Ulf Möller [Mon, 20 Sep 1999 23:34:01 +0000 (23:34 +0000)]
note a few things that need to be done

25 years agoFix to make s_client and s_server work under Windows. A bit of a hack but
Dr. Stephen Henson [Mon, 20 Sep 1999 22:09:17 +0000 (22:09 +0000)]
Fix to make s_client and s_server work under Windows. A bit of a hack but
an improvement on not working at all.

25 years agoLots of evil casts to stop VC++ choking with "possible loss of data"
Dr. Stephen Henson [Sun, 19 Sep 1999 00:40:56 +0000 (00:40 +0000)]
Lots of evil casts to stop VC++ choking with "possible loss of data"
warnings :-(

25 years agoAdd new sign and verify members to RSA_METHOD and change SSL code to use sign
Dr. Stephen Henson [Sat, 18 Sep 1999 22:37:44 +0000 (22:37 +0000)]
Add new sign and verify members to RSA_METHOD and change SSL code to use sign
and verify rather than direct encrypt/decrypt.

25 years agoVarious CRL enhancements tidies and workaround for broken CRLs.
Dr. Stephen Henson [Sat, 18 Sep 1999 01:42:02 +0000 (01:42 +0000)]
Various CRL enhancements tidies and workaround for broken CRLs.

25 years agoDocument -startdate and -enddate in usage summary.
Bodo Möller [Fri, 17 Sep 1999 16:35:29 +0000 (16:35 +0000)]
Document -startdate and -enddate in usage summary.

25 years agoFix typo.
Dr. Stephen Henson [Wed, 15 Sep 1999 21:12:23 +0000 (21:12 +0000)]
Fix typo.

25 years agoUpdate dependencies.
Bodo Möller [Tue, 14 Sep 1999 15:07:22 +0000 (15:07 +0000)]
Update dependencies.

25 years agotypo in a comment
Bodo Möller [Tue, 14 Sep 1999 15:06:25 +0000 (15:06 +0000)]
typo in a comment

25 years agoAdd some debug-solaris-...-cc configurations.
Bodo Möller [Tue, 14 Sep 1999 15:05:45 +0000 (15:05 +0000)]
Add some debug-solaris-...-cc configurations.

25 years agoSet s->version correctly for "natural" SSL 3.0 client hello
Bodo Möller [Mon, 13 Sep 1999 13:02:07 +0000 (13:02 +0000)]
Set s->version correctly for "natural" SSL 3.0 client hello

25 years agoInitial support for MacOS.
Andy Polyakov [Sat, 11 Sep 1999 17:54:18 +0000 (17:54 +0000)]
Initial support for MacOS.

This will soon be complemented with MacOS specific source code files and
INSTALL.MacOS.

I (Andy) have decided to get rid of a number of #include <sys/types.h>.
I've verified it's ok (both by examining /usr/include/*.h and compiling)
on a number of Unix platforms. Unfortunately I don't have Windows box
to verify this on. I really appreciate if somebody could try to compile
it and contact me a.s.a.p. in case a problem occurs.

Submitted by: Roy Wood <roy@centricsystems.ca>
Reviewed by: Andy Polyakov <appro@fy.chalmers.se>

25 years agoFix yet another bug for client hello handling.
Bodo Möller [Sat, 11 Sep 1999 10:36:41 +0000 (10:36 +0000)]
Fix yet another bug for client hello handling.

25 years agoRepair another bug in s23_get_client_hello:
Bodo Möller [Fri, 10 Sep 1999 16:41:01 +0000 (16:41 +0000)]
Repair another bug in s23_get_client_hello:
tls1 did not survive to restarts, so get rid of it.

25 years agoParantheses not needed.
Ulf Möller [Fri, 10 Sep 1999 16:13:24 +0000 (16:13 +0000)]
Parantheses not needed.

25 years ago"make update"
Bodo Möller [Fri, 10 Sep 1999 15:34:55 +0000 (15:34 +0000)]
"make update"

25 years agoUse non-copying BIO interface in ssltest.c.
Bodo Möller [Fri, 10 Sep 1999 14:03:21 +0000 (14:03 +0000)]
Use non-copying BIO interface in ssltest.c.

25 years agotypo
Bodo Möller [Fri, 10 Sep 1999 13:25:25 +0000 (13:25 +0000)]
typo