Dr. Stephen Henson [Tue, 13 Apr 1999 23:56:39 +0000 (23:56 +0000)]
Delete all the old X509V3 pack and unpack stuff and various structures and
files associated with them. This stuff is all obsoleted by the new X509V3 code.
Ralf S. Engelschall [Tue, 13 Apr 1999 11:01:44 +0000 (11:01 +0000)]
SSL_ALLOW_ENULL was renamed to SSL_FORBID_ENULL some time ago by Ben.
Bodo Möller [Tue, 13 Apr 1999 02:32:38 +0000 (02:32 +0000)]
Submitted by:
Reviewed by:
PR:
Ulf Möller [Tue, 13 Apr 1999 00:58:49 +0000 (00:58 +0000)]
New Configure option "rsaref".
Bodo Möller [Mon, 12 Apr 1999 19:58:17 +0000 (19:58 +0000)]
Don#t auto-generate crypto/pem/pem.h -- a fixed file is fine for it.
Submitted by:
Reviewed by:
PR:
Ben Laurie [Mon, 12 Apr 1999 17:23:57 +0000 (17:23 +0000)]
Add type-safe STACKs and SETs.
Ben Laurie [Mon, 12 Apr 1999 17:17:39 +0000 (17:17 +0000)]
gcc claims this is a shadow, though I can't find what it is shadowing...
Ralf S. Engelschall [Mon, 12 Apr 1999 11:45:14 +0000 (11:45 +0000)]
Add `openssl ca -revoke <certfile>' facility which revokes a certificate
specified in <certfile> by updating the entry in the index.txt file.
This way one no longer has to edit the index.txt file manually for
revoking a certificate. The -revoke option does the gory details now.
Submitted by: Massimiliano Pala <madwolf@openca.org>
Cleaned up and integrated by: Ralf S. Engelschall
Ralf S. Engelschall [Mon, 12 Apr 1999 10:36:16 +0000 (10:36 +0000)]
Fix `openssl crl -noout -text' combination where `-noout' killed the `-text'
option at all and this way the `-noout -text' combination was inconsistent in
`openssl crl' with the friends in `openssl x509|rsa|dsa'.
Ralf S. Engelschall [Mon, 12 Apr 1999 09:59:05 +0000 (09:59 +0000)]
Make sure a corresponding plain text error message exists for the
X509_V_ERR_CERT_REVOKED/23 error number which can occur when a
verify callback function determined that a certificate was revoked.
Bodo Möller [Sun, 11 Apr 1999 02:52:44 +0000 (02:52 +0000)]
Obsoleted by new openssl command "list-cipher-commands".
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 11 Apr 1999 02:49:35 +0000 (02:49 +0000)]
Submitted by:
Reviewed by:
PR:
Ralf S. Engelschall [Sat, 10 Apr 1999 13:15:38 +0000 (13:15 +0000)]
Fix a few typos and tabs while I'm poking around in ca.c...
Ben Laurie [Sat, 10 Apr 1999 12:09:17 +0000 (12:09 +0000)]
Rid the world of yet more evil casts.
Ben Laurie [Sat, 10 Apr 1999 12:08:46 +0000 (12:08 +0000)]
Adjust renegotiation slightly.
Ralf S. Engelschall [Sat, 10 Apr 1999 11:33:28 +0000 (11:33 +0000)]
Fix a typo in the X.509v3 docs: cRLSign instead of cRLCertSign is correct
according to the sources.... found by Steffen Dettmer <steffen@tfh-berlin.de>.
Ben Laurie [Sat, 10 Apr 1999 10:36:19 +0000 (10:36 +0000)]
Rid the world of more evil casts.
Ben Laurie [Sat, 10 Apr 1999 10:21:44 +0000 (10:21 +0000)]
Install signal handler if we are using sigaction.
Bodo Möller [Fri, 9 Apr 1999 20:54:25 +0000 (20:54 +0000)]
Bugfix: s_client occasionally would sleep in select() when it should
have checked SSL_pending() first.
Submitted by:
Reviewed by:
PR:
Ulf Möller [Fri, 9 Apr 1999 17:04:32 +0000 (17:04 +0000)]
recent changes.
Ulf Möller [Fri, 9 Apr 1999 16:26:37 +0000 (16:26 +0000)]
Test PKCS#1 v1.5 padding as well.
Ulf Möller [Fri, 9 Apr 1999 16:25:25 +0000 (16:25 +0000)]
Use Perl 5 even if Perl 4 comes first in the search path.
Ulf Möller [Fri, 9 Apr 1999 16:24:32 +0000 (16:24 +0000)]
Separate DSA functionality from ASN.1 encoding.
New functions DSA_do_sign and DSA_do_verify to provide access to
the raw DSA values.
Bodo Möller [Fri, 9 Apr 1999 10:44:50 +0000 (10:44 +0000)]
Preprocessor file to allow testenc to test only those ciphers
that are available.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Fri, 9 Apr 1999 07:12:17 +0000 (07:12 +0000)]
Tiny comment to improve code comprehensibility.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Thu, 8 Apr 1999 23:55:42 +0000 (23:55 +0000)]
Add PKCS#5 v2.0 ASN1 structures.
Ulf Möller [Thu, 8 Apr 1999 20:45:53 +0000 (20:45 +0000)]
Bugs.
Bodo Möller [Thu, 8 Apr 1999 20:29:19 +0000 (20:29 +0000)]
New "open issue" (ERR_...).
Submitted by:
Reviewed by:
PR:
Ulf Möller [Thu, 8 Apr 1999 19:51:16 +0000 (19:51 +0000)]
Avoid error message about missing gcc.
Submitted by: Niels Poppe <niels@netbox.org>
Bodo Möller [Thu, 8 Apr 1999 17:10:27 +0000 (17:10 +0000)]
Be more optimistic about the availability of termios for ~ECHO,
because sgtty emulation tends to fail on various systems.
Submitted by:
Reviewed by:
PR:
Ulf Möller [Thu, 8 Apr 1999 15:19:36 +0000 (15:19 +0000)]
Bad dependencies.
Ulf Möller [Thu, 8 Apr 1999 15:09:24 +0000 (15:09 +0000)]
Test RSA after the BN library it is based on.
Submitted by: Anonymous <nobody@replay.com>
Ulf Möller [Thu, 8 Apr 1999 00:10:19 +0000 (00:10 +0000)]
Fix linux-mips entry.
Submitted by: Niels Poppe <niels@netbox.org>
Ulf Möller [Wed, 7 Apr 1999 23:37:33 +0000 (23:37 +0000)]
bn_div_words has been added to alpha.s (Hannes Reinecke's patch).
Ulf Möller [Wed, 7 Apr 1999 17:31:11 +0000 (17:31 +0000)]
More assembler problems; new OCSP patch; obsolete patches removed from
list.
Ulf Möller [Tue, 6 Apr 1999 15:29:54 +0000 (15:29 +0000)]
Bug fix for X.509 two-digit year.
Pointed out by Alexander Tyshlek <tyshlek@fuib.com> and Peter Gutmann
<pgut001@cs.auckland.ac.nz>
Ulf Möller [Tue, 6 Apr 1999 15:22:55 +0000 (15:22 +0000)]
Remove obsolete files from SSLeay 0.8.
Ben Laurie [Sat, 3 Apr 1999 14:52:01 +0000 (14:52 +0000)]
Don't shadow.
Bodo Möller [Fri, 2 Apr 1999 23:35:43 +0000 (23:35 +0000)]
Avoid EADDRINUSE for s_server.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Thu, 1 Apr 1999 23:42:53 +0000 (23:42 +0000)]
Did a 'make errors' to update asn1 error codes now typo is fixed
Dr. Stephen Henson [Thu, 1 Apr 1999 23:18:05 +0000 (23:18 +0000)]
Delete some auto generated files and correct a typo in crypto/asn1/p5_pbe.c
Ulf Möller [Thu, 1 Apr 1999 20:05:04 +0000 (20:05 +0000)]
Include bn.h instead of defining BIGNUM as char.
Ben Laurie [Thu, 1 Apr 1999 15:51:21 +0000 (15:51 +0000)]
Update dependencies.
Ulf Möller [Thu, 1 Apr 1999 13:34:22 +0000 (13:34 +0000)]
Remove obsolete files.
Ulf Möller [Thu, 1 Apr 1999 13:09:56 +0000 (13:09 +0000)]
Pointer to Ariel Glenn's SSLeay documentation.
Ulf Möller [Thu, 1 Apr 1999 12:34:33 +0000 (12:34 +0000)]
New Makefile variables $(RANLIB) and $(PERL).
Ulf Möller [Thu, 1 Apr 1999 11:58:28 +0000 (11:58 +0000)]
pre-0.9.3 development version.
Ralf S. Engelschall [Thu, 1 Apr 1999 10:24:51 +0000 (10:24 +0000)]
Add .cvsignore in new pkcs12 directory
Ben Laurie [Thu, 1 Apr 1999 10:17:35 +0000 (10:17 +0000)]
Don't shadow.
Ulf Möller [Wed, 31 Mar 1999 12:38:27 +0000 (12:38 +0000)]
New option to generate 80386 code.
Bodo Möller [Wed, 31 Mar 1999 12:06:30 +0000 (12:06 +0000)]
New option "-showcerts" for s_client
Slight cleanup in ssl/
Ulf Möller [Tue, 30 Mar 1999 18:41:16 +0000 (18:41 +0000)]
Remove file that is to be auto-generated by sha1-586.pl.
PR:
Ulf Möller [Tue, 30 Mar 1999 16:17:03 +0000 (16:17 +0000)]
Typo.
PR:
Ulf Möller [Tue, 30 Mar 1999 12:49:36 +0000 (12:49 +0000)]
New switch "386" to generate 80386 code (emulate bswap).
Dr. Stephen Henson [Mon, 29 Mar 1999 22:18:54 +0000 (22:18 +0000)]
Remove deleted PKCS#12 functions from pkcs12.h, get rid of object creation
kludge, remove CRs from ssl_ciph.c and update Win32 functions for PKCS#12
code. It might compile under Win32 now ...
Dr. Stephen Henson [Mon, 29 Mar 1999 17:50:26 +0000 (17:50 +0000)]
Include pkcs12 program as part of openssl. This completes most of the PKCS#12
integration.
Bodo Möller [Mon, 29 Mar 1999 16:07:36 +0000 (16:07 +0000)]
Added comments to des_enc_{read,write} functions warning about their
cryptographic weakness (IV reuse).
Dr. Stephen Henson [Mon, 29 Mar 1999 00:19:55 +0000 (00:19 +0000)]
Various PKCS#12 related tidies and fixes: it might even compile now :-)
Dr. Stephen Henson [Sun, 28 Mar 1999 23:17:34 +0000 (23:17 +0000)]
Yet more PKCS#12 integration: add lots of files under crypto/pkcs12 and add
them to the build environment.
Dr. Stephen Henson [Sun, 28 Mar 1999 17:46:10 +0000 (17:46 +0000)]
Further PKCS#12 integration, PBE, PKCS#8 additions.
Dr. Stephen Henson [Sun, 28 Mar 1999 01:00:56 +0000 (01:00 +0000)]
This is the beginning of PKCS#12 integration. This just adds the PKCS#12
objects to objects.h
NOTE: during this integration it will not be possible to compile my PKCS#12
program against OpenSSL because there will be conflicts between the external
functionality and that being added to the core code.
Dr. Stephen Henson [Sat, 27 Mar 1999 14:07:44 +0000 (14:07 +0000)]
extranet file added...
Dr. Stephen Henson [Sat, 27 Mar 1999 14:06:25 +0000 (14:06 +0000)]
Add initial support for Thawte strong extranet certificate extensions and
include an 'indent' option to V3 stuff.
Ben Laurie [Sat, 27 Mar 1999 13:03:37 +0000 (13:03 +0000)]
Linux PPC support.
Ben Laurie [Sat, 27 Mar 1999 12:53:21 +0000 (12:53 +0000)]
Fix Alpha assembler, remove redundant file.
Ralf S. Engelschall [Thu, 25 Mar 1999 07:49:33 +0000 (07:49 +0000)]
Make sure the RSA OAEP test is skipped under -DRSAref because
OAEP isn't supported when OpenSSL is built with RSAref.
Submitted by: Ulf Moeller <ulf@fitug.de>
Reviewed by: Ralf S. Engelschall
Ralf S. Engelschall [Wed, 24 Mar 1999 10:24:35 +0000 (10:24 +0000)]
Move definitions of IS_SET/IS_SEQUENCE inside crypto/asn1/asn1.h
so they no longer are missing under -DNOPROTO.
Submitted by: Soren S. Jorvang <soren@t.dk>
Reviewed by: Ralf S. Engelschall
Ralf S. Engelschall [Tue, 23 Mar 1999 14:48:59 +0000 (14:48 +0000)]
Update after release...
Ralf S. Engelschall [Tue, 23 Mar 1999 07:33:13 +0000 (07:33 +0000)]
Typo
Ralf S. Engelschall [Mon, 22 Mar 1999 16:27:02 +0000 (16:27 +0000)]
Ops, interrupted commit. Fixed
Ralf S. Engelschall [Mon, 22 Mar 1999 15:56:31 +0000 (15:56 +0000)]
update list
Ralf S. Engelschall [Mon, 22 Mar 1999 15:55:01 +0000 (15:55 +0000)]
Merge ext-conf.txt and buffer.txt into a global openssl.txt because we
shouldn't again start with thousend little text files or we quickly come back
to the old SSLeay days ;-)
Ralf S. Engelschall [Mon, 22 Mar 1999 15:53:08 +0000 (15:53 +0000)]
Add two recently added functions
Ralf S. Engelschall [Mon, 22 Mar 1999 15:50:34 +0000 (15:50 +0000)]
function names recently changed - consistency.
Ralf S. Engelschall [Mon, 22 Mar 1999 15:44:10 +0000 (15:44 +0000)]
One more 0.9.2b
Ralf S. Engelschall [Mon, 22 Mar 1999 15:38:59 +0000 (15:38 +0000)]
Final polishing for README file
Ralf S. Engelschall [Mon, 22 Mar 1999 15:38:12 +0000 (15:38 +0000)]
Add latest changes to NEWS file
Ralf S. Engelschall [Mon, 22 Mar 1999 15:36:37 +0000 (15:36 +0000)]
Bring style of INSTALL* documents in sync with README file
and fix some inconsistencies.
Ralf S. Engelschall [Mon, 22 Mar 1999 15:02:34 +0000 (15:02 +0000)]
Remove up_ver.pl call
Ralf S. Engelschall [Mon, 22 Mar 1999 15:01:30 +0000 (15:01 +0000)]
up_ver.pl is now obsolete
Ralf S. Engelschall [Mon, 22 Mar 1999 14:57:24 +0000 (14:57 +0000)]
More 0.9.2 -> 0.9.2b
Ralf S. Engelschall [Mon, 22 Mar 1999 14:54:52 +0000 (14:54 +0000)]
Be consistent: 0.9.2b
Ralf S. Engelschall [Mon, 22 Mar 1999 14:45:08 +0000 (14:45 +0000)]
Remove obsolete references to SSLeay and change default PLATFORM from
"FreeBSD" to the generic "dist" as it's done implicitly by "make dist".
Ralf S. Engelschall [Mon, 22 Mar 1999 14:38:33 +0000 (14:38 +0000)]
Print a little bit more information
Ben Laurie [Mon, 22 Mar 1999 12:22:14 +0000 (12:22 +0000)]
Fix security hole.
Ralf S. Engelschall [Sat, 20 Mar 1999 13:49:32 +0000 (13:49 +0000)]
Add missing pipe char to "make dist" target.
Found by Richard Levitte <levitte@stacken.kth.se>
Ralf S. Engelschall [Sat, 20 Mar 1999 13:17:22 +0000 (13:17 +0000)]
Remove confusing hint to non-existing file. Instead make it clear that one
shouldn't change it manually just here. The util/ssldir.pl script does more
and has to be used for this. Pointed out by Jacques Supcik
<supcik@inf.ethz.ch>.
Ralf S. Engelschall [Sat, 20 Mar 1999 13:04:12 +0000 (13:04 +0000)]
Some more source tree cleanups (removed obsolete files crypto/bf/asm/bf586.pl,
test/test.txt and crypto/sha/asm/f.s; changed permission on "config" script to
be executable) and a fix for the INSTALL document.
Submitted by: Ulf Moeller <ulf@fitug.de>
Reviewed by: Ralf S. Engelschall
Dr. Stephen Henson [Wed, 17 Mar 1999 23:30:39 +0000 (23:30 +0000)]
Comment out the lines that generated by mk1mf.pl include three separate rules
that are equivalent to $(OUT_D). This was what was causing the 'too many rules'
warning under VC++.
Dr. Stephen Henson [Sun, 14 Mar 1999 13:31:42 +0000 (13:31 +0000)]
Using int for the digest length in EVP_DigestFinal() broke some compilers.
Changed to unsigned int: also need an evil cast in pk7_doit.c because a
signed, unsigned comparison chokes VC++.
Dr. Stephen Henson [Sun, 14 Mar 1999 01:16:45 +0000 (01:16 +0000)]
Remove some references which called malloc and free instead of Malloc and Free.
Dr. Stephen Henson [Fri, 12 Mar 1999 22:59:13 +0000 (22:59 +0000)]
Delete Win32 test with testreq.pem and req: there is already a test with
testreq2.pem.
Ben Laurie [Fri, 12 Mar 1999 20:41:09 +0000 (20:41 +0000)]
Fail if test fails.
Ben Laurie [Fri, 12 Mar 1999 20:33:26 +0000 (20:33 +0000)]
Update dependencies.
Ben Laurie [Fri, 12 Mar 1999 20:31:13 +0000 (20:31 +0000)]
Allow bsdi-gcc - see if it gets anyone anywhere.
Ben Laurie [Fri, 12 Mar 1999 20:26:27 +0000 (20:26 +0000)]
Solaris shared library support.
Ben Laurie [Fri, 12 Mar 1999 20:19:45 +0000 (20:19 +0000)]
This is now generated, it seems.
Ben Laurie [Fri, 12 Mar 1999 19:58:43 +0000 (19:58 +0000)]
Use the right compiler for ctx_size.
Dr. Stephen Henson [Fri, 12 Mar 1999 01:43:28 +0000 (01:43 +0000)]
Delete NULL ciphers from 'ALL' in the cipher list aliases. This means that
NULL ciphers specifically have to be enabled with e.g. "DEFAULT:eNULL". This
prevents cipher lists from inadvertantly having NULL ciphers at the top
of their list (e.g. the default ones) because they didn't have to be taken
into account before.
Dr. Stephen Henson [Thu, 11 Mar 1999 02:42:13 +0000 (02:42 +0000)]
Fix for RSA private key encryption if p < q. This took ***ages*** to track down.