Richard Levitte [Wed, 13 Feb 2002 10:32:07 +0000 (10:32 +0000)]
Merge in the slightly more efficient variant of link-shared from the
main trunk.
Ulf Möller [Mon, 11 Feb 2002 17:44:30 +0000 (17:44 +0000)]
add casts as in head (required for VC++)
Lutz Jänicke [Sun, 10 Feb 2002 12:52:57 +0000 (12:52 +0000)]
Backport from 0.9.7:
Make removal from internal session cache more robust and do not store
into internal session cache when it won't be looked up anyway.
Richard Levitte [Sun, 3 Feb 2002 21:27:04 +0000 (21:27 +0000)]
ASN1_BIT_STRING_set_bit() didn't clear previously set bits
Richard Levitte [Sun, 27 Jan 2002 17:05:39 +0000 (17:05 +0000)]
Merge in the sanity checker from 0.9.7-dev.
Richard Levitte [Sat, 26 Jan 2002 16:50:40 +0000 (16:50 +0000)]
Make sure libssl.sl will depend on the local libcrypto.sl, not on
another (that possibly doesn't even exist!).
Richard Levitte [Sat, 26 Jan 2002 05:21:08 +0000 (05:21 +0000)]
Update SCO5 targets.
Richard Levitte [Sat, 26 Jan 2002 05:07:56 +0000 (05:07 +0000)]
Apply a small patch from Dan Lanz <lanz@zolera.com> to get shared
libraries with debug-linux-elf.
Richard Levitte [Sat, 26 Jan 2002 05:02:45 +0000 (05:02 +0000)]
According to the main trunk, Darwin should get USE_TOD defined.
Richard Levitte [Sat, 26 Jan 2002 04:44:39 +0000 (04:44 +0000)]
From reports I've seen, it looks like TIMES is wrong for Darwin.
Richard Levitte [Fri, 25 Jan 2002 22:13:26 +0000 (22:13 +0000)]
Apply Neale Ferguson's patch to add a configuration target for linux-s390x
Lutz Jänicke [Mon, 21 Jan 2002 18:02:27 +0000 (18:02 +0000)]
Typos (jsyn <jsyn@openbsd.org>).
Lutz Jänicke [Mon, 21 Jan 2002 17:58:53 +0000 (17:58 +0000)]
Fix incorrect BIO_*_ctrl() macros (Shay Harding <sharding@ccbill.com>).
Ulf Möller [Wed, 16 Jan 2002 19:22:36 +0000 (19:22 +0000)]
*** empty log message ***
Bodo Möller [Mon, 14 Jan 2002 23:42:47 +0000 (23:42 +0000)]
Bugfix: In ssl3_accept, don't use a local variable 'got_new_session'
to indicate that a real handshake is taking place (the value will be
lost during multiple invocations). Set s->new_session to 2 instead.
Bodo Möller [Mon, 14 Jan 2002 12:42:38 +0000 (12:42 +0000)]
Return -1 from ssl3_get_server_done (ssl3/s3_clnt.c) if
the SSL_R_LENGTH_MISMATCH error is detected.
Richard Levitte [Tue, 8 Jan 2002 09:19:55 +0000 (09:19 +0000)]
Patches to make OpenSSL compilable on MacOS/X.
Submitted by Pier Fumagalli <pier@betaversion.org>
Bodo Möller [Fri, 4 Jan 2002 15:21:26 +0000 (15:21 +0000)]
use some descriptions from Lutz' redundant manual page
instead of the previous ones
Lutz Jänicke [Fri, 4 Jan 2002 15:08:34 +0000 (15:08 +0000)]
Tsss, SSLeay_version() was already documented, it just was not linked in.
Bodo Möller [Fri, 4 Jan 2002 15:02:40 +0000 (15:02 +0000)]
add symbols reserved in 'engine' tree (tagged as NOEXIST)
Lutz Jänicke [Fri, 4 Jan 2002 14:57:31 +0000 (14:57 +0000)]
Add information as provided by Richard Levitte on openssl-users :-)
cvs2svn [Fri, 4 Jan 2002 14:55:39 +0000 (14:55 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_6-stable'.
Lutz Jänicke [Fri, 4 Jan 2002 14:55:38 +0000 (14:55 +0000)]
Add information as provided by Richard Levitte on openssl-users :-)
Dr. Stephen Henson [Fri, 4 Jan 2002 13:35:37 +0000 (13:35 +0000)]
Update PEM docs
Bodo Möller [Fri, 4 Jan 2002 13:30:05 +0000 (13:30 +0000)]
fix 'Configure TABLE' output
Bodo Möller [Fri, 4 Jan 2002 13:29:20 +0000 (13:29 +0000)]
fix 'Configure TABLE' output
Bodo Möller [Fri, 4 Jan 2002 13:28:04 +0000 (13:28 +0000)]
Changes that break something should be included in CHANGES
to make it easier to fix things.
Bodo Möller [Fri, 4 Jan 2002 13:27:52 +0000 (13:27 +0000)]
Changes that break something should be included in CHANGES
to make it easier to fix things.
Bodo Möller [Fri, 4 Jan 2002 13:12:08 +0000 (13:12 +0000)]
add automatically generated ERR_load_... prototype
Bodo Möller [Fri, 4 Jan 2002 13:04:45 +0000 (13:04 +0000)]
fix EVP_CIPHER_mode macro
Submitted by: "Dan S. Camper" <dan@bti.net>
Bodo Möller [Fri, 4 Jan 2002 13:04:15 +0000 (13:04 +0000)]
fix EVP_CIPHER_mode macro
Submitted by: "Dan S. Camper" <dan@bti.net>
Geoff Thorpe [Fri, 4 Jan 2002 07:01:35 +0000 (07:01 +0000)]
Constify.
Richard Levitte [Thu, 3 Jan 2002 18:53:55 +0000 (18:53 +0000)]
Better clarification on perl
Richard Levitte [Thu, 3 Jan 2002 18:53:47 +0000 (18:53 +0000)]
Better clarification on perl
Richard Levitte [Thu, 3 Jan 2002 14:08:02 +0000 (14:08 +0000)]
Use the variable $(PERL) to invoke perl.
Noted by Joe Orton <jorton@redhat.com>
Richard Levitte [Wed, 2 Jan 2002 17:31:23 +0000 (17:31 +0000)]
make update
Richard Levitte [Wed, 2 Jan 2002 16:57:57 +0000 (16:57 +0000)]
Implement speed measurement for AES.
Submitted by Stephen Sprunk <stephen@sprunk.org> as part of his AES
integration patch.
Richard Levitte [Wed, 2 Jan 2002 16:55:35 +0000 (16:55 +0000)]
Because Rijndael is more known as AES, use crypto/aes instead of
crypto/rijndael. Additionally, I applied the AES integration patch
from Stephen Sprunk <stephen@sprunk.org> and fiddled it to work
properly with the normal EVP constructs (and incidently work the same
way as all other symmetric cipher implementations).
This results in an API that looks a lot like the rest of the OpenSSL
cipher suite.
Richard Levitte [Wed, 2 Jan 2002 16:51:17 +0000 (16:51 +0000)]
The block size may be something other than 8!
Richard Levitte [Wed, 2 Jan 2002 12:45:51 +0000 (12:45 +0000)]
When RSA or DSA are disabled, do not include the stuff that's specific
to them.
Richard Levitte [Wed, 2 Jan 2002 12:44:54 +0000 (12:44 +0000)]
make update
Richard Levitte [Wed, 2 Jan 2002 12:40:38 +0000 (12:40 +0000)]
RSA counter should only be defined of RSA is available.
Richard Levitte [Wed, 2 Jan 2002 11:54:38 +0000 (11:54 +0000)]
Allow verification of other types than DATA.
Submitted by Leonard Janke <leonard@votehere.net>
Richard Levitte [Wed, 2 Jan 2002 11:54:32 +0000 (11:54 +0000)]
Allow verification of other types than DATA.
Submitted by Leonard Janke <leonard@votehere.net>
Richard Levitte [Wed, 2 Jan 2002 11:25:17 +0000 (11:25 +0000)]
Say that recent CygWin perl versions work as well.
Submitted by Eric Hanchrow <erich@votehere.net>
Richard Levitte [Wed, 2 Jan 2002 11:25:11 +0000 (11:25 +0000)]
Say that recent CygWin perl versions work as well.
Submitted by Eric Hanchrow <erich@votehere.net>
Richard Levitte [Wed, 2 Jan 2002 11:06:17 +0000 (11:06 +0000)]
Allow 8-bit characters. This is not really complete, it only marks
characters with the highest bit set as HIGHBIT. We need to expand
this to support the UTF-8 character set properly. However, this
solves the problem that the character 0x80 (which is common in UTF-8)
gets masked to 0x00.
Patch submitted by "Huang Yuzhen" <huangyuzhen@bj.tom.com>
Richard Levitte [Wed, 2 Jan 2002 11:06:02 +0000 (11:06 +0000)]
Allow 8-bit characters. This is not really complete, it only marks
characters with the highest bit set as HIGHBIT. We need to expand
this to support the UTF-8 character set properly. However, this
solves the problem that the character 0x80 (which is common in UTF-8)
gets masked to 0x00.
Patch submitted by "Huang Yuzhen" <huangyuzhen@bj.tom.com>
Richard Levitte [Wed, 2 Jan 2002 10:30:40 +0000 (10:30 +0000)]
On Solaris64, cc needs the flag -xarch=v9 when linking shared
libraries. Make a general change to support shared library
linking flags in general.
Noted by Nick Briggs <briggs@parc.xerox.com>
Richard Levitte [Wed, 2 Jan 2002 10:30:07 +0000 (10:30 +0000)]
On Solaris64, cc needs the flag -xarch=v9 when linking shared
libraries. Make a general change to support shared library
linking flags in general.
Noted by Nick Briggs <briggs@parc.xerox.com>
Richard Levitte [Wed, 2 Jan 2002 10:00:52 +0000 (10:00 +0000)]
Add support for Linux on HP/PA.
Submitted by "Bryan W. Headley" <bheadley@interaccess.com>
Richard Levitte [Wed, 2 Jan 2002 10:00:22 +0000 (10:00 +0000)]
Add support for Linux on HP/PA.
Submitted by "Bryan W. Headley" <bheadley@interaccess.com>
Ulf Möller [Fri, 28 Dec 2001 17:14:35 +0000 (17:14 +0000)]
ssl3_read_bytes bug fix
Submitted by: D P Chang <dpc@qualys.com>
Reviewed by: Bodo
Ulf Möller [Fri, 28 Dec 2001 17:13:10 +0000 (17:13 +0000)]
ssl3_read_bytes bug fix
Submitted by: D P Chang <dpc@qualys.com>
Reviewed by: Bodo
Bodo Möller [Fri, 21 Dec 2001 12:29:52 +0000 (12:29 +0000)]
update FAQ and CHANGES file (0.9.6c has been released)
Bodo Möller [Fri, 21 Dec 2001 12:23:05 +0000 (12:23 +0000)]
This should be in 0.9.6c, but somehow escaped from the commit ...
But note that 0.9.6c has correct versions of the files autogenerated
from objects.txt (obj_mac.h, obj_dat.h), so libraries built from
the source distribution will not be buggy.
Bodo Möller [Fri, 21 Dec 2001 12:15:36 +0000 (12:15 +0000)]
Fix FAQ, although in case there is another release from this tree,
it won't be correct anymore anyway: current version is 0.9.6c.
not 0.9.6b.
(The engine version does not have this typo.)
Richard Levitte [Fri, 21 Dec 2001 03:23:20 +0000 (03:23 +0000)]
Status update
Richard Levitte [Fri, 21 Dec 2001 03:23:15 +0000 (03:23 +0000)]
Status update
Richard Levitte [Fri, 21 Dec 2001 02:26:39 +0000 (02:26 +0000)]
The release has been tagged, so let's move on to 0.9.6d, which we hope will never be released.
Richard Levitte [Fri, 21 Dec 2001 01:21:23 +0000 (01:21 +0000)]
Time to release 0.9.6c. The tag will be OpenSSL_0_9_6c
Richard Levitte [Fri, 21 Dec 2001 01:12:43 +0000 (01:12 +0000)]
And just for the sake of completeness, let's add some standard macros...
Richard Levitte [Fri, 21 Dec 2001 01:12:29 +0000 (01:12 +0000)]
And just for the sake of completeness, let's add some standard macros...
Richard Levitte [Fri, 21 Dec 2001 01:09:07 +0000 (01:09 +0000)]
Better use the same number in all branches, to avoid confusion
Richard Levitte [Fri, 21 Dec 2001 01:08:40 +0000 (01:08 +0000)]
Better use the same number in all branches, to avoid confusion
Dr. Stephen Henson [Fri, 21 Dec 2001 00:48:45 +0000 (00:48 +0000)]
Add missing ERR_LIB_COMP #define
Richard Levitte [Thu, 20 Dec 2001 22:25:41 +0000 (22:25 +0000)]
make update
Richard Levitte [Thu, 20 Dec 2001 22:15:42 +0000 (22:15 +0000)]
Do not forget to compile comp_err.c
Richard Levitte [Thu, 20 Dec 2001 22:12:10 +0000 (22:12 +0000)]
Do not forget to compile comp_err.c
Richard Levitte [Thu, 20 Dec 2001 16:58:26 +0000 (16:58 +0000)]
Synchronise with the 0.9.6 branch.
Ulf Möller [Thu, 20 Dec 2001 12:36:39 +0000 (12:36 +0000)]
remove some useless information (change log is in CHANGES)
Ben Laurie [Thu, 20 Dec 2001 12:18:08 +0000 (12:18 +0000)]
Security fix.
Richard Levitte [Thu, 20 Dec 2001 11:04:46 +0000 (11:04 +0000)]
Summarize the news.
Bodo Möller [Wed, 19 Dec 2001 19:48:51 +0000 (19:48 +0000)]
make sure mklink.pl looks at ERR_load_...
Ulf Möller [Wed, 19 Dec 2001 19:37:41 +0000 (19:37 +0000)]
Cygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>
Ulf Möller [Wed, 19 Dec 2001 19:37:31 +0000 (19:37 +0000)]
Cygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>
Bodo Möller [Mon, 17 Dec 2001 19:28:05 +0000 (19:28 +0000)]
formatting consistency
Bodo Möller [Mon, 17 Dec 2001 19:26:43 +0000 (19:26 +0000)]
oops
Bodo Möller [Mon, 17 Dec 2001 19:24:39 +0000 (19:24 +0000)]
remove redundant ERR_load_... declarations
Bodo Möller [Mon, 17 Dec 2001 19:22:23 +0000 (19:22 +0000)]
remove redundant ERR_load_... declarations
Bodo Möller [Mon, 17 Dec 2001 19:11:03 +0000 (19:11 +0000)]
consistency with 0.9.6 stable "CHANGES"
Bodo Möller [Mon, 17 Dec 2001 19:08:39 +0000 (19:08 +0000)]
correction: certain changes have been done *after* 0.9.6b was released
Bodo Möller [Fri, 14 Dec 2001 10:09:29 +0000 (10:09 +0000)]
fix BN_rand_range
Bodo Möller [Fri, 14 Dec 2001 10:09:01 +0000 (10:09 +0000)]
fix BN_rand_range
Richard Levitte [Wed, 12 Dec 2001 16:49:02 +0000 (16:49 +0000)]
Change pkcs12 so the certificates coming from -in do not get tossed if
-certfile is given as well.
Richard Levitte [Wed, 12 Dec 2001 12:53:13 +0000 (12:53 +0000)]
Implement failover for ubsec. Submitted by Subramanian Ramamoorthy
<sram@broadcom.com> with the following comment:
[...] We have implemented failover (ie, if for some reason that the
hardware fails, the implementation detects this failure and performs
this operation as if no hardware is present, ie, in software) for
sometime now and have tested it here with our hardware. [...]
This change was cc:ed to exports@crypto.com
Richard Levitte [Tue, 11 Dec 2001 10:57:13 +0000 (10:57 +0000)]
make update
Ulf Möller [Mon, 10 Dec 2001 18:52:42 +0000 (18:52 +0000)]
name confusion with HP library function prototype (?)
Ulf Möller [Mon, 10 Dec 2001 18:52:06 +0000 (18:52 +0000)]
name confusion with HP library function prototype (?)
Ben Laurie [Sun, 9 Dec 2001 21:53:31 +0000 (21:53 +0000)]
Improve back compatibility.
Bodo Möller [Fri, 7 Dec 2001 17:02:01 +0000 (17:02 +0000)]
fix warnings (one of them was clearly justified)
Dr. Stephen Henson [Fri, 7 Dec 2001 00:40:53 +0000 (00:40 +0000)]
Don't overwrite signing time.
Dr. Stephen Henson [Fri, 7 Dec 2001 00:36:32 +0000 (00:36 +0000)]
Don't overwrite signing time.
Lutz Jänicke [Thu, 6 Dec 2001 13:15:51 +0000 (13:15 +0000)]
HPUX 9.X on m68k with gcc
("Anton J. Gamel" <gamel@anna.anatomie.uni-freiburg.de>)
Lutz Jänicke [Thu, 6 Dec 2001 13:11:42 +0000 (13:11 +0000)]
HPUX 9.X on m68k with gcc
("Anton J. Gamel" <gamel@anna.anatomie.uni-freiburg.de>)
Richard Levitte [Tue, 4 Dec 2001 11:10:54 +0000 (11:10 +0000)]
"UID" is an incorrect lable for the attribute type uniqueIdentifier.
Furthermore, it create conflicts with LDAP and some RFCs that define
"UID" as a lable for the attribute type userId (which we haven't even
defined here).
The next question is if we should update objects.txt with the added
stuff from the main trunk.
Richard Levitte [Tue, 4 Dec 2001 11:01:17 +0000 (11:01 +0000)]
UID was never a lable for uniqueIdentifier. However, LDAP and certain
RFCs concerning X.500 directories use UID as a shorter name for the
attribute type userId, which is defined by CCITT and available through
RFCs 1274 and 2247.
Unfortunately, if some applications have used the name "UID" for the
uniqueIdentifier attribute type, they will produce incorrect results.
However, I found it better to follow the standards that are out there
rather than having our own incompatible one.
Richard Levitte [Tue, 4 Dec 2001 07:50:52 +0000 (07:50 +0000)]
I was recently informed that some people wrongly use ssleay.txt as
main documentation, so let's warn them a little more, so the word
"OBSOLETE" really gets understood.
Richard Levitte [Tue, 4 Dec 2001 07:38:17 +0000 (07:38 +0000)]
I was recently informed that some people wrongly use ssleay.txt as
main documentation, so let's warn them a little more, so the word
"OBSOLETE" really gets understood.
Bodo Möller [Mon, 3 Dec 2001 14:03:23 +0000 (14:03 +0000)]
crypto/objects stuff