oweals/openssl.git
25 years agoDelete obsolete old X509V3 files.
Dr. Stephen Henson [Sun, 7 Mar 1999 16:25:59 +0000 (16:25 +0000)]
Delete obsolete old X509V3 files.

25 years agoDon't make links in INSTALL doc - also, work first time!
Ben Laurie [Sun, 7 Mar 1999 15:22:59 +0000 (15:22 +0000)]
Don't make links in INSTALL doc - also, work first time!

25 years agoDon't make links on Windoze.
Ben Laurie [Sun, 7 Mar 1999 15:21:08 +0000 (15:21 +0000)]
Don't make links on Windoze.

25 years agoFix perl assembler.
Ben Laurie [Sun, 7 Mar 1999 15:08:38 +0000 (15:08 +0000)]
Fix perl assembler.

25 years agoFix DWP when only given three parameters.
Ben Laurie [Sun, 7 Mar 1999 15:08:04 +0000 (15:08 +0000)]
Fix DWP when only given three parameters.

25 years agoLinux MIPS support.
Ben Laurie [Sun, 7 Mar 1999 14:17:32 +0000 (14:17 +0000)]
Linux MIPS support.

25 years agoAlways make links.
Ben Laurie [Sun, 7 Mar 1999 14:05:36 +0000 (14:05 +0000)]
Always make links.

25 years agoFix a typo.
Ben Laurie [Sun, 7 Mar 1999 14:01:55 +0000 (14:01 +0000)]
Fix a typo.

25 years agoAdded support for adding extensions to CRLs, also fix a memory leak and
Dr. Stephen Henson [Sat, 6 Mar 1999 19:33:29 +0000 (19:33 +0000)]
Added support for adding extensions to CRLs, also fix a memory leak and
make 'req' check the config file syntax before it adds extensions. Added
info in the documentation as well.

25 years agoAdd a useful kludge to allow package maintainers to specify compiler and other
Ralf S. Engelschall [Sat, 6 Mar 1999 16:07:47 +0000 (16:07 +0000)]
Add a useful kludge to allow package maintainers to specify compiler and other
platforms details on the command line without having to patch the Configure
script everytime: One now can use ``perl Configure <id>:<details>'', i.e.
platform ids are allowed to have details appended to them (seperated by
colons). This is treated as there would be a static pre-configured entry in
Configure's %table under key <id> with value <details> and ``perl Configure
<id>'' is called.  So, when you want to perform a quick test-compile under
FreeBSD 3.1 with pgcc and without assembler stuff you can use ``perl Configure
"FreeBSD-elf:pgcc:-O6:::"'' now, which overrides the FreeBSD-elf entry
on-the-fly.

(PS: Notice that the same effect _cannot_ be achieved by using
     ``make CC=pgcc ..'' etc, because you cannot override all
     things from there.)

25 years agoDisable new TLS1 ciphersuites.
Ben Laurie [Sat, 6 Mar 1999 15:21:02 +0000 (15:21 +0000)]
Disable new TLS1 ciphersuites.

25 years agoFix names of cert stack functions.
Ben Laurie [Sat, 6 Mar 1999 14:49:11 +0000 (14:49 +0000)]
Fix names of cert stack functions.

25 years agoTypo :-)
Ralf S. Engelschall [Sat, 6 Mar 1999 14:41:24 +0000 (14:41 +0000)]
Typo :-)

25 years agoAllow DSO flags like -fpic, -fPIC, -KPIC etc. to be specified on the `perl
Ralf S. Engelschall [Sat, 6 Mar 1999 14:35:03 +0000 (14:35 +0000)]
Allow DSO flags like -fpic, -fPIC, -KPIC etc. to be specified on the `perl
Configure ...' command line. This way one can compile OpenSSL libraries with
Position Independent Code (PIC) which is needed for linking it into DSOs.

25 years agoPut the dependencies back.
Ben Laurie [Sat, 6 Mar 1999 14:32:48 +0000 (14:32 +0000)]
Put the dependencies back.

25 years agoMove the SSL_CTX_xxx defines at the top of ssl.h to the location of other
Ralf S. Engelschall [Sat, 6 Mar 1999 14:24:54 +0000 (14:24 +0000)]
Move the SSL_CTX_xxx defines at the top of ssl.h to the location of other
SSL_CTX_xxx defines. What was the reason to move them to the top, even before
the copyright and #ifdef HEADER_SSL_H? Hmmm...  when there was and still is a
good reason feel free to reverse this patch, but please document why it is
needed this way.

25 years agoFix export ciphersuites, again.
Ben Laurie [Sat, 6 Mar 1999 14:09:36 +0000 (14:09 +0000)]
Fix export ciphersuites, again.

25 years agoReshape the README file out of the existing README stuff
Ralf S. Engelschall [Sat, 6 Mar 1999 14:04:40 +0000 (14:04 +0000)]
Reshape the README file out of the existing README stuff
into a single file. Need more cleanup for final release IMHO.

25 years agojust a little typo
Ralf S. Engelschall [Sat, 6 Mar 1999 14:01:29 +0000 (14:01 +0000)]
just a little typo

25 years agoAdd a first cut for a NEWS document similar to what other packages (mostly GNU
Ralf S. Engelschall [Sat, 6 Mar 1999 13:53:17 +0000 (13:53 +0000)]
Add a first cut for a NEWS document similar to what other packages (mostly GNU
packages) provide.  The idea is that because of the large number of CHANGES
entries, this file summarizes the major changes for a brief overview.

25 years agoBring the README file in sync and shape a little bit more...
Ralf S. Engelschall [Sat, 6 Mar 1999 13:35:14 +0000 (13:35 +0000)]
Bring the README file in sync and shape a little bit more...

25 years agoCleaned up the LICENSE document: The official contact for any license
Ralf S. Engelschall [Sat, 6 Mar 1999 13:29:09 +0000 (13:29 +0000)]
Cleaned up the LICENSE document: The official contact for any license
questions now is the OpenSSL core team under openssl-core@openssl.org.  And
add a paragraph about the dual-license situation to make sure people recognize
that _BOTH_ the OpenSSL license _AND_ the SSLeay license apply to the OpenSSL
toolkit.

25 years agoRalf is now using FreeBSD 3.1 which runs ELF instead of a.out...
Ralf S. Engelschall [Sat, 6 Mar 1999 13:15:15 +0000 (13:15 +0000)]
Ralf is now using FreeBSD 3.1 which runs ELF instead of a.out...

25 years agoGeneral source tree makefile cleanups: Made `making xxx in yyy...' display
Ralf S. Engelschall [Sat, 6 Mar 1999 12:32:06 +0000 (12:32 +0000)]
General source tree makefile cleanups: Made `making xxx in yyy...' display
consistent in the source tree and replaced `/bin/rm' by `rm'.  Additonally
cleaned up the `make links' target: Remove unnecessary semicolons, subsequent
redundant removes, inline point.sh into mklink.sh to speed processing and no
longer clutter the display with confusing stuff. Instead only the actually
done links are displayed.

25 years agoPermit null ciphers.
Ben Laurie [Sat, 6 Mar 1999 12:09:36 +0000 (12:09 +0000)]
Permit null ciphers.

25 years agoFix GCC warning...
Ralf S. Engelschall [Sat, 6 Mar 1999 11:58:03 +0000 (11:58 +0000)]
Fix GCC warning...
t_req.c: In function `X509_REQ_print':
t_req.c:181: warning: suggest explicit braces to avoid ambiguous `else'

25 years agoAdd an extra 'raw' function r2i to the extension code. Nothing uses this yet and
Dr. Stephen Henson [Sat, 6 Mar 1999 02:34:07 +0000 (02:34 +0000)]
Add an extra 'raw' function r2i to the extension code. Nothing uses this yet and
it is just a place holder for functionality to be added later. Its been added
now so the X509V3_EXT_METHOD structure shouldn't (hopefully) have to change
after the release.

25 years agoFix the PKCS#7 stuff: signature verify could fail if attributes reordered, the
Dr. Stephen Henson [Fri, 5 Mar 1999 02:05:15 +0000 (02:05 +0000)]
Fix the PKCS#7 stuff: signature verify could fail if attributes reordered, the
detached data encoding was wrong and free up public keys.

25 years agoWorkaround for a Win95 console bug triggered by the password read stuff.
Dr. Stephen Henson [Fri, 5 Mar 1999 01:07:04 +0000 (01:07 +0000)]
Workaround for a Win95 console bug triggered by the password read stuff.

25 years agoDeleted my str_dup() function from X509V3: the same functionality is provided
Dr. Stephen Henson [Thu, 4 Mar 1999 23:29:51 +0000 (23:29 +0000)]
Deleted my str_dup() function from X509V3: the same functionality is provided
by BUF_MEM_strdup(). Added text documentation to the BUF_MEM stuff.

25 years agoAdded the new `Includes OpenSSL Cryptography Software' button as
Ralf S. Engelschall [Thu, 4 Mar 1999 12:55:42 +0000 (12:55 +0000)]
Added the new `Includes OpenSSL Cryptography Software' button as
doc/openssl_button.{gif,html} which is similar in style to the old SSLeay
button and can be used by applications based on OpenSSL to show the
relationship to the OpenSSL project.

PS: This beast caused me three hours to create, because
    of the size I had to hand-paint the 7pt fonts in Photoshop.

25 years agoRemove confusing variables in function signatures in files
Ralf S. Engelschall [Thu, 4 Mar 1999 07:54:01 +0000 (07:54 +0000)]
Remove confusing variables in function signatures in files
ssl/ssl_lib.c and ssl/ssl.h. At least the double ctx-variable
confused some compilers.

Submitted by: Lennart Bong <lob@kulthea.stacken.kth.se>
Reviewed by: Ralf S. Engelschall

25 years agoDon't install bss_file.c under PREFIX/include/. It was introduced by Eric
Ralf S. Engelschall [Thu, 4 Mar 1999 07:47:27 +0000 (07:47 +0000)]
Don't install bss_file.c under PREFIX/include/.  It was introduced by Eric
between SSLeay 0.8 and 0.9 and just looks useless and confusing.

Pointed out by: Lennart Bong <lob@kulthea.stacken.kth.se>
Submitted by: Ralf S. Engelschall

25 years agoFix the Win32 compile environment and add various changes so it will now compile
Dr. Stephen Henson [Wed, 3 Mar 1999 02:01:26 +0000 (02:01 +0000)]
Fix the Win32 compile environment and add various changes so it will now compile
under Win32 (9X and NT) again. Note: some signed/unsigned changes recently
checked in were killing the Win32 compile.

25 years agoSupper's cooking.
Ben Laurie [Sun, 28 Feb 1999 20:51:38 +0000 (20:51 +0000)]
Supper's cooking.

25 years agoAdd functions to add certs to stacks, used for CA file/path stuff in servers.
Ben Laurie [Sun, 28 Feb 1999 17:41:55 +0000 (17:41 +0000)]
Add functions to add certs to stacks, used for CA file/path stuff in servers.

25 years agoMore truth in declarations.
Ben Laurie [Sun, 28 Feb 1999 14:39:18 +0000 (14:39 +0000)]
More truth in declarations.

25 years agodoxygen configuration file.
Ben Laurie [Sun, 28 Feb 1999 12:42:50 +0000 (12:42 +0000)]
doxygen configuration file.

25 years agoExperiment with doxygen documentation.
Ben Laurie [Sun, 28 Feb 1999 12:41:50 +0000 (12:41 +0000)]
Experiment with doxygen documentation.

25 years agoUpdate dependencies.
Ben Laurie [Sat, 27 Feb 1999 18:41:04 +0000 (18:41 +0000)]
Update dependencies.

25 years agoGet rid of remaining C++-style comments which strict C compilers hate.
Ralf S. Engelschall [Sat, 27 Feb 1999 12:17:40 +0000 (12:17 +0000)]
Get rid of remaining C++-style comments which strict C compilers hate.
(Pointed out by Carlos Amengual).

25 years agoOps, the logic of the second argument has to be coupled with the != test to
Ralf S. Engelschall [Fri, 26 Feb 1999 22:31:54 +0000 (22:31 +0000)]
Ops, the logic of the second argument has to be coupled with the != test to
work correctly for the SSL_CTX_xxx situations, too. Now "make test" passes
again fine.

25 years agoUse consistent and existing addresses
Ralf S. Engelschall [Fri, 26 Feb 1999 21:44:17 +0000 (21:44 +0000)]
Use consistent and existing addresses

25 years agoBN_RECURSION causes the stuff in bn_mont.c to fall over for large keys. For
Dr. Stephen Henson [Fri, 26 Feb 1999 01:37:34 +0000 (01:37 +0000)]
BN_RECURSION causes the stuff in bn_mont.c to fall over for large keys. For
now change it to BN_RECURSION_MONT so it isn't compiled in.

25 years agoPerhaps if I do a tiny bit of docco, others may follow?
Ben Laurie [Thu, 25 Feb 1999 17:39:04 +0000 (17:39 +0000)]
Perhaps if I do a tiny bit of docco, others may follow?

25 years agoRemember one more wish from the users
Ralf S. Engelschall [Thu, 25 Feb 1999 14:44:55 +0000 (14:44 +0000)]
Remember one more wish from the users

25 years agoAdd a bunch of SSL_xxx() functions for configuring the temporary RSA and DH
Ralf S. Engelschall [Thu, 25 Feb 1999 14:40:29 +0000 (14:40 +0000)]
Add a bunch of SSL_xxx() functions for configuring the temporary RSA and DH
private keys and/or callback functions which directly correspond to their
SSL_CTX_xxx() counterparts but work on a per-connection basis. This is needed
for applications which have to configure certificates on a per-connection
basis (e.g. Apache+mod_ssl) instead of a per-context basis (e.g.
s_server).

For the RSA certificate situation is makes no difference, but for the DSA
certificate situation this fixes the "no shared cipher" problem where the
OpenSSL cipher selection procedure failed because the temporary keys were not
overtaken from the context and the API provided no way to reconfigure them.

The new functions now let applications reconfigure the stuff and they are in
detail: SSL_need_tmp_RSA, SSL_set_tmp_rsa, SSL_set_tmp_dh,
SSL_set_tmp_rsa_callback and SSL_set_tmp_dh_callback.  Additionally a new
non-public-API function ssl_cert_instantiate() is used as a helper function
and also to reduce code redundancy inside ssl_rsa.c.

Submitted by: Ralf S. Engelschall
Reviewed by: Ben Laurie

25 years agoMove s_server -dcert and -dkey options out of the undocumented feature area
Ralf S. Engelschall [Thu, 25 Feb 1999 11:26:26 +0000 (11:26 +0000)]
Move s_server -dcert and -dkey options out of the undocumented feature area
because they are useful for the DSA situation and should be recognized by the
users. Thanks to Steve for the original hint.

25 years agoTypo
Ralf S. Engelschall [Thu, 25 Feb 1999 11:06:52 +0000 (11:06 +0000)]
Typo

25 years agoFix the cipher decision scheme for export ciphers: the export bits are *not*
Ralf S. Engelschall [Thu, 25 Feb 1999 11:03:18 +0000 (11:03 +0000)]
Fix the cipher decision scheme for export ciphers: the export bits are *not*
within SSL_MKEY_MASK or SSL_AUTH_MASK, they are within SSL_EXP_MASK.  So, the
original variable has to be used instead of the already masked variable.

Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall

25 years agoFix 'port' variable from `int' to `unsigned int' in crypto/bio/b_sock.c
Ralf S. Engelschall [Thu, 25 Feb 1999 10:54:27 +0000 (10:54 +0000)]
Fix 'port' variable from `int' to `unsigned int' in crypto/bio/b_sock.c

Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall

25 years agoChange type of another md_len variable in pk7_doit.c:PKCS7_dataFinal()
Ralf S. Engelschall [Thu, 25 Feb 1999 10:47:24 +0000 (10:47 +0000)]
Change type of another md_len variable in pk7_doit.c:PKCS7_dataFinal()
from `int' to `unsigned int' because it's a length and initialized by
EVP_DigestFinal() which expects an `unsigned int *'.

Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall

25 years agoFix clearly untested "clever" hack.
Ben Laurie [Thu, 25 Feb 1999 09:43:26 +0000 (09:43 +0000)]
Fix clearly untested "clever" hack.

25 years agoMore CVS ignore stuff...
Ralf S. Engelschall [Thu, 25 Feb 1999 09:06:30 +0000 (09:06 +0000)]
More CVS ignore stuff...

25 years agoDon't hard-code path to Perl interpreter on shebang line of Configure
Ralf S. Engelschall [Thu, 25 Feb 1999 08:48:52 +0000 (08:48 +0000)]
Don't hard-code path to Perl interpreter on shebang line of Configure
script. Instead use the usual Shell->Perl transition trick.

25 years agoRemember good pointers to Montgomery multiplication algorithm
Ralf S. Engelschall [Thu, 25 Feb 1999 08:00:57 +0000 (08:00 +0000)]
Remember good pointers to Montgomery multiplication algorithm
descriptions as pointed out by Dave Carman <carman@erols.com>

25 years agoMake `openssl x509 -noout -modulus' functional also for DSA certificates (in
Ralf S. Engelschall [Wed, 24 Feb 1999 17:17:31 +0000 (17:17 +0000)]
Make `openssl x509 -noout -modulus' functional also for DSA certificates (in
addition to RSA certificates) to match the behaviour of `openssl dsa -noout
-modulus' as it's already the case for `openssl rsa -noout -modulus'.  For RSA
the -modulus is the real "modulus" while for DSA currently the public key is
printed (a decision which was already done by `openssl dsa -modulus' in the
past) which serves a similar purpose.  Additionally the NO_RSA no longer
completely removes the whole -modulus option; it now only avoids using the RSA
stuff. Same applies to NO_DSA now, too.

25 years agoRemove debugging fprintf from req.c and fix the code so it properly skips over
Dr. Stephen Henson [Wed, 24 Feb 1999 00:14:21 +0000 (00:14 +0000)]
Remove debugging fprintf from req.c and fix the code so it properly skips over
the first leading XXX. in the DN.

25 years agoCode for reliable BIO.
Ben Laurie [Tue, 23 Feb 1999 21:45:23 +0000 (21:45 +0000)]
Code for reliable BIO.

25 years agoAdd reliable BIO.
Ben Laurie [Tue, 23 Feb 1999 21:44:34 +0000 (21:44 +0000)]
Add reliable BIO.

25 years agoFix more warnings.
Ben Laurie [Tue, 23 Feb 1999 12:53:49 +0000 (12:53 +0000)]
Fix more warnings.

25 years agoGet rid of a nasty debugging message which was forgotten here...
Ralf S. Engelschall [Tue, 23 Feb 1999 08:53:04 +0000 (08:53 +0000)]
Get rid of a nasty debugging message which was forgotten here...

25 years agoFix usage message on gendsa:
Ralf S. Engelschall [Tue, 23 Feb 1999 08:52:20 +0000 (08:52 +0000)]
Fix usage message on gendsa:
1. The dsaparam argument is mandatory and not optional
2. Add a little text what this actually is: a filename

25 years agoMake gcc -Wall happy ("might be used uninitialized...")
Ralf S. Engelschall [Tue, 23 Feb 1999 07:47:30 +0000 (07:47 +0000)]
Make gcc -Wall happy ("might be used uninitialized...")

25 years agoRedo the way 'req' and 'ca' add objects: add support for oid_section.
Dr. Stephen Henson [Tue, 23 Feb 1999 00:07:46 +0000 (00:07 +0000)]
Redo the way 'req' and 'ca' add objects: add support for oid_section.

25 years agoAdd syslogging BIO.
Ben Laurie [Mon, 22 Feb 1999 21:21:08 +0000 (21:21 +0000)]
Add syslogging BIO.

25 years agoVarious changes to make this stuff compile under Win32 and VC++ with and
Dr. Stephen Henson [Mon, 22 Feb 1999 01:26:40 +0000 (01:26 +0000)]
Various changes to make this stuff compile under Win32 and VC++ with and
without -debug option to mk1mf.pl. Change _export to is_export (_export is
a reserved word under VC++). Add yucky function prototype function pointer
casts. Sanitise the included files in crypto/x509v3.

Also changed ssleay.exe target to openssl.exe

25 years agoMore stuff for new TLS ciphersuites.
Ben Laurie [Sun, 21 Feb 1999 21:58:59 +0000 (21:58 +0000)]
More stuff for new TLS ciphersuites.

25 years agoUndo a couple of kludges.
Ben Laurie [Sun, 21 Feb 1999 20:07:41 +0000 (20:07 +0000)]
Undo a couple of kludges.

25 years agoAdd support for new TLS export ciphersuites.
Ben Laurie [Sun, 21 Feb 1999 20:03:24 +0000 (20:03 +0000)]
Add support for new TLS export ciphersuites.

25 years agoFix warning.
Ben Laurie [Sun, 21 Feb 1999 20:01:39 +0000 (20:01 +0000)]
Fix warning.

25 years agoAdd preliminary user level config documentation for extension stuff. Programming
Dr. Stephen Henson [Sun, 21 Feb 1999 17:41:08 +0000 (17:41 +0000)]
Add preliminary user level config documentation for extension stuff. Programming
info will come later...

Feel free to reformat and tidy this up...

25 years agoMake RSA_NO_PADDING really use no padding.
Dr. Stephen Henson [Sun, 21 Feb 1999 17:39:07 +0000 (17:39 +0000)]
Make RSA_NO_PADDING really use no padding.

Submitted by: Ulf Moeller <ulf@fitug.de>

25 years agoRemember some open issues and available patches
Ralf S. Engelschall [Sun, 21 Feb 1999 12:33:58 +0000 (12:33 +0000)]
Remember some open issues and available patches

25 years agoAdd more functionality to issuer alt name and subject alt name. New options
Dr. Stephen Henson [Sun, 21 Feb 1999 01:46:45 +0000 (01:46 +0000)]
Add more functionality to issuer alt name and subject alt name. New options
to include email addresses from DN and copy details from issuer certificate.
Include examples in openssl.cnf, update Win32 ordinals.

25 years agoOk, propose a release date of March 15th with a code freeze a few days before
Ralf S. Engelschall [Sat, 20 Feb 1999 16:50:53 +0000 (16:50 +0000)]
Ok, propose a release date of March 15th with a code freeze a few days before
so we have enough time for final testing and tarball rolling.

25 years agoFix a warning.
Ben Laurie [Sat, 20 Feb 1999 16:36:28 +0000 (16:36 +0000)]
Fix a warning.

25 years agoGenerate errors when public/private key check is done.
Ben Laurie [Sat, 20 Feb 1999 11:50:07 +0000 (11:50 +0000)]
Generate errors when public/private key check is done.

25 years agoPreliminary support for reason code CRL extension.
Dr. Stephen Henson [Sat, 20 Feb 1999 01:15:41 +0000 (01:15 +0000)]
Preliminary support for reason code CRL extension.

25 years agoPatch so the new crl stuff actually compiles this time :-) Also update the
Dr. Stephen Henson [Fri, 19 Feb 1999 02:26:21 +0000 (02:26 +0000)]
Patch so the new crl stuff actually compiles this time :-) Also update the
Win32 ordinals.

25 years agoOverhaul 'crl' application, add a proper X509_CRL_print function and start
Dr. Stephen Henson [Fri, 19 Feb 1999 01:29:29 +0000 (01:29 +0000)]
Overhaul 'crl' application, add a proper X509_CRL_print function and start
to support CRL extensions.

25 years agoFix case of new functions in error files.
Ben Laurie [Thu, 18 Feb 1999 18:26:42 +0000 (18:26 +0000)]
Fix case of new functions in error files.

25 years agoOops! Remeber to include the other patches this time...
Dr. Stephen Henson [Wed, 17 Feb 1999 23:22:57 +0000 (23:22 +0000)]
Oops! Remeber to include the other patches this time...

25 years agoFuller authority key id support, partial support for private key usage extension
Dr. Stephen Henson [Wed, 17 Feb 1999 23:21:01 +0000 (23:21 +0000)]
Fuller authority key id support, partial support for private key usage extension
and really fix the ASN.1 IMPLICIT bug this time :-)

25 years agoAdd OAEP.
Ben Laurie [Wed, 17 Feb 1999 21:11:08 +0000 (21:11 +0000)]
Add OAEP.

25 years agoAdded code to GENERAL_NAME with support for more options and preliminary
Dr. Stephen Henson [Wed, 17 Feb 1999 03:09:58 +0000 (03:09 +0000)]
Added code to GENERAL_NAME with support for more options and preliminary
support for assignment in config files.

25 years agoUpdates to the new SSL compression code
Mark J. Cox [Tue, 16 Feb 1999 09:22:21 +0000 (09:22 +0000)]
Updates to the new SSL compression code
     [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)]

Fix so that the version number in the master secret, when passed
     via RSA, checks that if TLS was proposed, but we roll back to SSLv3
     (because the server will not accept higher), that the version number
     is 0x03,0x01, not 0x03,0x00
     [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)]

Submitted by:
Reviewed by:
PR:

25 years agoFix various memory leaks in SSL, apps and DSA
Dr. Stephen Henson [Mon, 15 Feb 1999 21:05:21 +0000 (21:05 +0000)]
Fix various memory leaks in SSL, apps and DSA

25 years agoPatch to Configure script. For some reason the BN_ASM part was truncated to
Dr. Stephen Henson [Sun, 14 Feb 1999 22:47:21 +0000 (22:47 +0000)]
Patch to Configure script. For some reason the BN_ASM part was truncated to
the first word which broke (at least) the Linux compile. Hopefully this wont
break other platforms.

25 years agoUpdate error codes.
Dr. Stephen Henson [Sun, 14 Feb 1999 17:21:14 +0000 (17:21 +0000)]
Update error codes.

25 years agoAdd support for raw extensions. This means that you can include the DER encoding
Dr. Stephen Henson [Sun, 14 Feb 1999 16:48:22 +0000 (16:48 +0000)]
Add support for raw extensions. This means that you can include the DER encoding
of an arbitrary extension: e.g. 1.3.4.5=critical,RAW:12:34:56 Using this
technique currently unsupported extensions can be generated if you know their
DER encoding. Even if the extension is supported in future the raw extension
will still work: that is the raw version can always be used even if it is a
supported extension.

25 years agoMake sure latest Perl versions don't interpret some generated C array as Perl
Ralf S. Engelschall [Sun, 14 Feb 1999 13:21:52 +0000 (13:21 +0000)]
Make sure latest Perl versions don't interpret some generated C array as Perl
array code in the crypto/err/err_genc.pl script.

Submitted by: Lars Weber <3weber@informatik.uni-hamburg.de>
Reviewed by: Ralf s. Engelschall

25 years agoConvert ms/do_ms.bat to DOS EOL format of DOS chokes on it.
Dr. Stephen Henson [Sun, 14 Feb 1999 02:37:45 +0000 (02:37 +0000)]
Convert ms/do_ms.bat to DOS EOL format of DOS chokes on it.

25 years agoMore Win32 fixes and upsdate INSTALL.W32 documentation.
Dr. Stephen Henson [Sun, 14 Feb 1999 00:40:13 +0000 (00:40 +0000)]
More Win32 fixes and upsdate INSTALL.W32 documentation.

25 years agoOops... add other changes this time too.
Dr. Stephen Henson [Sat, 13 Feb 1999 23:13:32 +0000 (23:13 +0000)]
Oops... add other changes this time too.

25 years agoModify configure script to generate some files that Win32 needs and new
Dr. Stephen Henson [Sat, 13 Feb 1999 23:12:30 +0000 (23:12 +0000)]
Modify configure script to generate some files that Win32 needs and new
script that does the same as 'make files'.

25 years agoFinally(?) fix DES stuff.
Ben Laurie [Sat, 13 Feb 1999 21:49:34 +0000 (21:49 +0000)]
Finally(?) fix DES stuff.

25 years agoUpdate dependencies.
Ben Laurie [Sat, 13 Feb 1999 19:03:16 +0000 (19:03 +0000)]
Update dependencies.

25 years agoFix ghastly DES declarations, and all consequential warnings.
Ben Laurie [Sat, 13 Feb 1999 18:52:38 +0000 (18:52 +0000)]
Fix ghastly DES declarations, and all consequential warnings.

25 years agoFix typo in asn1.h (PRINTABLESTRING_STRING) and fix a bug in object creation
Dr. Stephen Henson [Sat, 13 Feb 1999 17:15:32 +0000 (17:15 +0000)]
Fix typo in asn1.h (PRINTABLESTRING_STRING) and fix a bug in object creation
perl script. It failed if the OID had any zeros in it.