Dr. Stephen Henson [Sat, 18 Sep 1999 01:42:02 +0000 (01:42 +0000)]
Various CRL enhancements tidies and workaround for broken CRLs.
Bodo Möller [Fri, 17 Sep 1999 16:35:29 +0000 (16:35 +0000)]
Document -startdate and -enddate in usage summary.
Dr. Stephen Henson [Wed, 15 Sep 1999 21:12:23 +0000 (21:12 +0000)]
Fix typo.
Bodo Möller [Tue, 14 Sep 1999 15:07:22 +0000 (15:07 +0000)]
Update dependencies.
Bodo Möller [Tue, 14 Sep 1999 15:06:25 +0000 (15:06 +0000)]
typo in a comment
Bodo Möller [Tue, 14 Sep 1999 15:05:45 +0000 (15:05 +0000)]
Add some debug-solaris-...-cc configurations.
Bodo Möller [Mon, 13 Sep 1999 13:02:07 +0000 (13:02 +0000)]
Set s->version correctly for "natural" SSL 3.0 client hello
Andy Polyakov [Sat, 11 Sep 1999 17:54:18 +0000 (17:54 +0000)]
Initial support for MacOS.
This will soon be complemented with MacOS specific source code files and
INSTALL.MacOS.
I (Andy) have decided to get rid of a number of #include <sys/types.h>.
I've verified it's ok (both by examining /usr/include/*.h and compiling)
on a number of Unix platforms. Unfortunately I don't have Windows box
to verify this on. I really appreciate if somebody could try to compile
it and contact me a.s.a.p. in case a problem occurs.
Submitted by: Roy Wood <roy@centricsystems.ca>
Reviewed by: Andy Polyakov <appro@fy.chalmers.se>
Bodo Möller [Sat, 11 Sep 1999 10:36:41 +0000 (10:36 +0000)]
Fix yet another bug for client hello handling.
Bodo Möller [Fri, 10 Sep 1999 16:41:01 +0000 (16:41 +0000)]
Repair another bug in s23_get_client_hello:
tls1 did not survive to restarts, so get rid of it.
Ulf Möller [Fri, 10 Sep 1999 16:13:24 +0000 (16:13 +0000)]
Parantheses not needed.
Bodo Möller [Fri, 10 Sep 1999 15:34:55 +0000 (15:34 +0000)]
"make update"
Bodo Möller [Fri, 10 Sep 1999 14:03:21 +0000 (14:03 +0000)]
Use non-copying BIO interface in ssltest.c.
Bodo Möller [Fri, 10 Sep 1999 13:25:25 +0000 (13:25 +0000)]
typo
Ulf Möller [Fri, 10 Sep 1999 11:44:52 +0000 (11:44 +0000)]
Correction for the testapps lines.
Bodo Möller [Fri, 10 Sep 1999 00:29:33 +0000 (00:29 +0000)]
Truncate message about "new" include filenames
Bodo Möller [Thu, 9 Sep 1999 20:21:10 +0000 (20:21 +0000)]
Re-enable message about transition <foo.h> => <openssl/foo.h>
because various programs are not updated that often
and hence still expect header files names without the openssl/ prefix.
Ben Laurie [Thu, 9 Sep 1999 20:15:17 +0000 (20:15 +0000)]
Correct warnings.
Bodo Möller [Wed, 8 Sep 1999 21:58:13 +0000 (21:58 +0000)]
some more patches for avoiding problems with non-automatic variables
Dr. Stephen Henson [Wed, 8 Sep 1999 20:01:28 +0000 (20:01 +0000)]
Fix typo.
Dr. Stephen Henson [Wed, 8 Sep 1999 18:19:45 +0000 (18:19 +0000)]
Oops... forgot the other RSA_NULL patches...
Dr. Stephen Henson [Wed, 8 Sep 1999 18:02:25 +0000 (18:02 +0000)]
This is preliminary support for an "RSA null" cipher. Unfortunately when
OpenSSL is compiled with NO_RSA, no RSA operations can be used: including
key generation storage and display of RSA keys. Since these operations are
not covered by the RSA patent (my understanding is it only covers encrypt,
decrypt, sign and verify) they can be included: this is an often requested
feature, attempts to use the patented operations return an error code.
This is enabled by setting RSA_NULL. This means that if a particular application
has its own legal US RSA implementation then it can use that instead by setting
it as the default RSA method.
Still experimental and needs some fiddling of the other libraries so they have
some options that don't attempt to use RSA if it isn't allowed.
Ulf Möller [Wed, 8 Sep 1999 16:14:52 +0000 (16:14 +0000)]
Use proper flags to build the testapps (default CC value causes confusion
on Solaris)
Bodo Möller [Tue, 7 Sep 1999 21:37:09 +0000 (21:37 +0000)]
Non-copying interface to BIO pairs.
It's still totally untested ...
Ulf Möller [Tue, 7 Sep 1999 17:07:45 +0000 (17:07 +0000)]
Correct address in a comment.
Ulf Möller [Tue, 7 Sep 1999 17:07:13 +0000 (17:07 +0000)]
*** empty log message ***
Ulf Möller [Tue, 7 Sep 1999 16:45:04 +0000 (16:45 +0000)]
Check the as version on Solaris x86. People don't read INSTALL anyway. :)
Dr. Stephen Henson [Tue, 7 Sep 1999 12:16:29 +0000 (12:16 +0000)]
New function to convert ASN1 tag values to strings. Also fix typo in asn1.h
Ben Laurie [Mon, 6 Sep 1999 11:06:54 +0000 (11:06 +0000)]
Fix warnings.
Ben Laurie [Mon, 6 Sep 1999 09:29:29 +0000 (09:29 +0000)]
Fix warnings.
Bodo Möller [Sun, 5 Sep 1999 20:53:08 +0000 (20:53 +0000)]
Reinitialize conf to NULL whenver ca application is started.
Submitted by: Lennart Bang
Andy Polyakov [Sun, 5 Sep 1999 14:17:42 +0000 (14:17 +0000)]
SHA clean-up Intel assembler companion.
I've chosen to nest two functions in order to save about 4K. As a result
s1-win32.asm doesn't look right (nested PROC/ENDP SEGMENT/ENDS) and it's
probably impossible to compile. I assume I have to reconsider... But not
today...
Andy Polyakov [Sun, 5 Sep 1999 12:42:04 +0000 (12:42 +0000)]
SHA clean-up and (LP64) tune-up.
"Clean-up" stands for the fact that it's using common message digest
template ../md32_common.h and sha[1_]dgst.c are reduced down to
'#define SHA_[01]' and then '#include "sha_locl.h"'. It stands "(LP64)"
there because it's 64 bit platforms which benefit most from the tune-up.
The updated code exhibits 40% performance improvement on IRIX64
(sounds too good, huh? I probably should double check if it's not
some cache trashing that was holding it back before), 28% - on
Alpha Linux and 12% - Solaris 7/64.
Dr. Stephen Henson [Sat, 4 Sep 1999 17:19:55 +0000 (17:19 +0000)]
New UTF8 utility functions to parse/generate UTF8 strings.
Bodo Möller [Fri, 3 Sep 1999 23:08:45 +0000 (23:08 +0000)]
Reinitialize global variables when necessary (for monolith application).
Bodo Möller [Fri, 3 Sep 1999 22:37:38 +0000 (22:37 +0000)]
use explicit constant 11 just once
Bodo Möller [Fri, 3 Sep 1999 16:49:11 +0000 (16:49 +0000)]
Make previous bugfix actually work
Bodo Möller [Fri, 3 Sep 1999 16:33:11 +0000 (16:33 +0000)]
Fix server behaviour when facing backwards-compatible client hellos.
Bodo Möller [Fri, 3 Sep 1999 16:31:36 +0000 (16:31 +0000)]
-no_dhe option for ssltest.c
Bodo Möller [Fri, 3 Sep 1999 14:06:09 +0000 (14:06 +0000)]
Use closesocket macro consistently, not close directly, for easier
portability.
Submitted by: Lennart Bång
Bodo Möller [Fri, 3 Sep 1999 13:30:47 +0000 (13:30 +0000)]
Handle "#if 0" correctly (I hope)
Dr. Stephen Henson [Fri, 3 Sep 1999 01:08:34 +0000 (01:08 +0000)]
Add new 'spkac' utility and several SPKAC utility functions.
Dr. Stephen Henson [Wed, 1 Sep 1999 23:50:43 +0000 (23:50 +0000)]
Make DH_free() free up any ex_data and also call the finish method.
Andy Polyakov [Sat, 28 Aug 1999 13:18:25 +0000 (13:18 +0000)]
RIPEMD160 shape-up. Final touch.
Andy Polyakov [Sat, 28 Aug 1999 13:07:51 +0000 (13:07 +0000)]
RIPEMD160 shape-up Intel assembler companion. Cycle counter benchmarks
went down from 1050 to 921 cycles on Pentium II. I haven't checked the
figures on Pentium yet.
Andy Polyakov [Sat, 28 Aug 1999 12:55:45 +0000 (12:55 +0000)]
RIPEMD160 shape-up. Major news are that it's operational on all platforms
now and I'm putting it back to 'make test' later today.
Ulf Möller [Sat, 28 Aug 1999 12:50:48 +0000 (12:50 +0000)]
make testapps after the library.
Andy Polyakov [Sat, 28 Aug 1999 12:41:03 +0000 (12:41 +0000)]
md32_common.h update and accompanying MD5 update.
Dr. Stephen Henson [Fri, 27 Aug 1999 00:08:17 +0000 (00:08 +0000)]
Allow the extension section specified in config files to be overridden
on the command line for various utilities.
Dr. Stephen Henson [Wed, 25 Aug 1999 23:18:23 +0000 (23:18 +0000)]
Allow the 1.OU="my OU" syntax in 'ca' for SPKACs.
Dr. Stephen Henson [Wed, 25 Aug 1999 16:59:26 +0000 (16:59 +0000)]
Allow extensions to be added to certificate requests, update the sample
config file (change RAW to DER).
Ulf Möller [Tue, 24 Aug 1999 17:45:16 +0000 (17:45 +0000)]
make update.
Andy Polyakov [Tue, 24 Aug 1999 16:02:16 +0000 (16:02 +0000)]
Minor MIPS III/IV tune-up.
Dr. Stephen Henson [Tue, 24 Aug 1999 13:21:35 +0000 (13:21 +0000)]
Fix for a bug which meant encrypting BIOs sometimes wouldn't read the final
block.
Dr. Stephen Henson [Mon, 23 Aug 1999 23:11:32 +0000 (23:11 +0000)]
Initial support for DH_METHOD. Also added a DH lock. A few changes made to
DSA_METHOD to make it more consistent with RSA_METHOD.
Dr. Stephen Henson [Sun, 22 Aug 1999 17:57:38 +0000 (17:57 +0000)]
Initial support for DSA_METHOD...
Dr. Stephen Henson [Thu, 19 Aug 1999 13:07:43 +0000 (13:07 +0000)]
Allow memory bios to be read only and change PKCS#7 routines to use them.
Bodo Möller [Wed, 18 Aug 1999 17:14:42 +0000 (17:14 +0000)]
Fix horrible (and hard to track down) bug in ssl23_get_client_hello:
In case of a restart, v[0] and v[1] were incorrectly initialised.
This was interpreted by ssl3_get_client_key_exchange as an RSA decryption
failure (don't ask me why) and caused it to create a _random_ master key
instead (even weirder), which obviously led to incorrect input to
ssl3_generate_master_secret and thus caused "block cipher pad is
wrong" error messages from ssl3_enc for the client's Finished message.
Arrgh.
Bodo Möller [Wed, 18 Aug 1999 16:42:27 +0000 (16:42 +0000)]
Really undo the base64 change so that make test survives
Dr. Stephen Henson [Tue, 17 Aug 1999 12:58:01 +0000 (12:58 +0000)]
Fix PKCS7_ENC_CONTENT_new() to include a sensible default content type and add
support for encrypted content type in PKCS7_set_content().
Bodo Möller [Tue, 17 Aug 1999 08:33:59 +0000 (08:33 +0000)]
Return 0 for succesful exit when -noout is used.
Ulf Möller [Sat, 14 Aug 1999 20:49:37 +0000 (20:49 +0000)]
Undo base64 decoding change (was not a bug fix).
Ulf Möller [Fri, 13 Aug 1999 21:02:25 +0000 (21:02 +0000)]
editing error.
Ulf Möller [Fri, 13 Aug 1999 20:48:32 +0000 (20:48 +0000)]
Honor $PERL environment variable in Configure.
Submitted by: Even Holen <Even.Holen@itea.ntnu.no>
Ulf Möller [Fri, 13 Aug 1999 19:42:33 +0000 (19:42 +0000)]
Fix faulty base64 decoding of data that was 46 or 47 bytes long.
Submitted by: Ivan Nejgebauer <ian@uns.ns.ac.yu>
Ulf Möller [Fri, 13 Aug 1999 19:21:53 +0000 (19:21 +0000)]
Add pkcs7 and des apps to "make all".
Ulf Möller [Fri, 13 Aug 1999 18:04:04 +0000 (18:04 +0000)]
Compile pkcs7 and des apps.
Bodo Möller [Thu, 12 Aug 1999 11:31:01 +0000 (11:31 +0000)]
Disable the text about foo.h => openssl/foo.h.
Everyone should have got it by now.
Bodo Möller [Thu, 12 Aug 1999 10:03:05 +0000 (10:03 +0000)]
Remove -DWINDOWS in debug configuration.
Submitted by: Erik Johannisson <erik@johannisson.se>
Bodo Möller [Wed, 11 Aug 1999 13:31:03 +0000 (13:31 +0000)]
Submitted by: Lidong Zhou <ldzhou@cs.cornell.edu>
Dr. Stephen Henson [Wed, 11 Aug 1999 13:08:58 +0000 (13:08 +0000)]
Add functions to allow extensions to be added to certificate requests.
Modify obj_dat.pl to take its files from the command line. Usage is now
perl obj_dat.pl objects.h obj_dat.h
this should avoid redirection shell escape problems under Win32.
Bodo Möller [Wed, 11 Aug 1999 08:28:40 +0000 (08:28 +0000)]
Fix typo.
Bodo Möller [Tue, 10 Aug 1999 11:36:22 +0000 (11:36 +0000)]
Updates.
Prototypes and constant declarations for non-copying reads and writes for
BIO pairs (which is totally untested as of now, so I don't yet commit
the actual source code, but reserve the numbers to avoid conflicts).
Dr. Stephen Henson [Mon, 9 Aug 1999 22:38:05 +0000 (22:38 +0000)]
Support for parsing of certificate extensions in PKCS#10 requests: these are
used by things like Xenroll. Also include documentation for extendedKeyUsage
extension.
Bodo Möller [Mon, 9 Aug 1999 16:33:34 +0000 (16:33 +0000)]
BIO_write and BIO_read could, in theory, return -2.
Bodo Möller [Mon, 9 Aug 1999 13:01:48 +0000 (13:01 +0000)]
-crlf option.
Bodo Möller [Mon, 9 Aug 1999 12:59:10 +0000 (12:59 +0000)]
Provide fixed seed for parameter generation to speed up -dhe1024.
Ralf S. Engelschall [Mon, 9 Aug 1999 11:14:08 +0000 (11:14 +0000)]
Bump after tarball rolling.
Friends, feel free to start again hacking for 0.9.5... ;)
Ralf S. Engelschall [Mon, 9 Aug 1999 10:40:38 +0000 (10:40 +0000)]
Bump version to 0.9.4
Ralf S. Engelschall [Mon, 9 Aug 1999 10:25:36 +0000 (10:25 +0000)]
Ok, I'll do a few more final platform tests and then I'll roll the 0.9.4
tarball baby for us. PLEASE DO NOT COMMIT ANYTHING UNTIL YOU SEE MY FINAL
COMMITS TO `STATUS' INDICATING THAT WE'VE REACHED 0.9.5-dev.
Ralf S. Engelschall [Mon, 9 Aug 1999 10:16:51 +0000 (10:16 +0000)]
Ok, final fix for `config' script to detect all flavors of FreeBSD
in a more general way.
Bodo Möller [Sun, 8 Aug 1999 22:41:24 +0000 (22:41 +0000)]
spelling
Ralf S. Engelschall [Sun, 8 Aug 1999 19:12:26 +0000 (19:12 +0000)]
Install libRSAglue.a when OpenSSL is build with RSAref.
This should now finally make the RSAref users happy...
Bodo Möller [Sun, 8 Aug 1999 14:21:04 +0000 (14:21 +0000)]
Comments.
Bodo Möller [Sun, 8 Aug 1999 14:07:30 +0000 (14:07 +0000)]
add comments
Bodo Möller [Sun, 8 Aug 1999 14:06:29 +0000 (14:06 +0000)]
more consistent formatting
Dr. Stephen Henson [Sun, 8 Aug 1999 12:51:19 +0000 (12:51 +0000)]
*** empty log message ***
Ralf S. Engelschall [Sun, 8 Aug 1999 11:56:29 +0000 (11:56 +0000)]
Backout the following change:
| revision 1.109
| date: 1999/06/24 19:39:23; author: ulf; state: Exp; lines: +0 -1
| Use the same CPU recogition method for FreeBSD 3 as for the other FreeBSD
| versions. (The FreeBSD and FreeBSD-elf Configure entries were identical.)
Because Ulf overlooked the ELF vs. a.out difference, i.e. the two entries were
_NOT_ identical! This way OpenSSL 0.9.4 at least compiles again under FreeBSD
2 and 3. For 0.9.5-dev I'll try to fix the stuff in a more general way to also
allow FreeBSD 4 and other variants.
Bodo Möller [Sun, 8 Aug 1999 11:45:56 +0000 (11:45 +0000)]
0.9.4
Ralf S. Engelschall [Sun, 8 Aug 1999 11:25:32 +0000 (11:25 +0000)]
Fix two remaining prototype-related warnings
Ralf S. Engelschall [Sun, 8 Aug 1999 10:29:52 +0000 (10:29 +0000)]
Remove the perl stuff also optically from the build procedure,
because it could confuse people (which then send us bug reports)...
Ralf S. Engelschall [Sun, 8 Aug 1999 10:25:50 +0000 (10:25 +0000)]
Let us prepare for tomorrow...
Ralf S. Engelschall [Sun, 8 Aug 1999 10:19:48 +0000 (10:19 +0000)]
I don't think this is a real showstopper. Our internal verify procedure lacks
even more and I consider this more a useful feature request than a release
showstopper.
Ralf S. Engelschall [Sun, 8 Aug 1999 10:15:43 +0000 (10:15 +0000)]
A few more ``#ifndef NO_FP_API / #endif'' pairs for consistency.
Hint from: Andrija Antonijevic <TheAntony2@bigfoot.com>
Ralf S. Engelschall [Sun, 8 Aug 1999 09:39:43 +0000 (09:39 +0000)]
consistent style
Bodo Möller [Sat, 7 Aug 1999 02:51:10 +0000 (02:51 +0000)]
New option "-crlf" to s_client and s_server which tells them to convert
LFs into CRLFs when forwarding data from stdin to the TLS connection.
This is necessary for properly talking HTTP.
Because of the code freeze this change is by default disabled for now;
without -DAPPS_CRLF, the code is exactly as before.
Bodo Möller [Sat, 7 Aug 1999 02:46:49 +0000 (02:46 +0000)]
add some more entries for 0.9.4
Bodo Möller [Sat, 7 Aug 1999 02:45:31 +0000 (02:45 +0000)]
change formatting a bit
Dr. Stephen Henson [Fri, 6 Aug 1999 21:47:09 +0000 (21:47 +0000)]
Fix -startdate and -enddate arguments to 'ca' program. Also update NEWS file
with some 0.9.4 changes.
Bodo Möller [Fri, 6 Aug 1999 12:27:39 +0000 (12:27 +0000)]
fix the bug