oweals/openssl.git
24 years agoI just got a not very pleasant report.
Richard Levitte [Mon, 20 Mar 2000 11:29:11 +0000 (11:29 +0000)]
I just got a not very pleasant report.

24 years agoThere are a few new features in 0.9.5a... And I've probably
Richard Levitte [Mon, 20 Mar 2000 09:23:05 +0000 (09:23 +0000)]
There are a few new features in 0.9.5a...  And I've probably
forgotten a few.

24 years agoNew status
Richard Levitte [Mon, 20 Mar 2000 09:22:04 +0000 (09:22 +0000)]
New status

24 years agoTagging done, we move to the next possible.
Richard Levitte [Mon, 20 Mar 2000 07:47:37 +0000 (07:47 +0000)]
Tagging done, we move to the next possible.

24 years agoBeta 1 of 0.9.5a building. OpenSSL_0_9_5a-beta1
Richard Levitte [Mon, 20 Mar 2000 07:36:22 +0000 (07:36 +0000)]
Beta 1 of 0.9.5a building.

24 years agomake update
Richard Levitte [Mon, 20 Mar 2000 07:35:38 +0000 (07:35 +0000)]
make update

24 years agoChange the version text, it's time to release the first beta of 0.9.5a.
Richard Levitte [Mon, 20 Mar 2000 07:22:47 +0000 (07:22 +0000)]
Change the version text, it's time to release the first beta of 0.9.5a.

24 years agoSample application using RAND_event() to collect entropy from mouse
Ulf Möller [Sun, 19 Mar 2000 22:58:12 +0000 (22:58 +0000)]
Sample application using RAND_event() to collect entropy from mouse
movements, keyboard etc. and write it to a seed file.

24 years agoBug fix: RAND_write_file() failed to write to files created by open()
Ulf Möller [Sun, 19 Mar 2000 22:57:07 +0000 (22:57 +0000)]
Bug fix: RAND_write_file() failed to write to files created by open()
on Win32.

24 years agoMake sure an error condition is returned if, for some reason, the file
Richard Levitte [Sun, 19 Mar 2000 19:10:03 +0000 (19:10 +0000)]
Make sure an error condition is returned if, for some reason, the file
couldn't be opened.

24 years agooops. don't use "entropy" directly.
Ulf Möller [Sun, 19 Mar 2000 17:20:26 +0000 (17:20 +0000)]
oops. don't use "entropy" directly.

24 years agoNew function RAND_event() collects entropy from Windows events.
Ulf Möller [Sun, 19 Mar 2000 17:14:25 +0000 (17:14 +0000)]
New function RAND_event() collects entropy from Windows events.

24 years agoFLAT_INC is not needed; we use -I.. all the time
Ulf Möller [Sun, 19 Mar 2000 12:15:24 +0000 (12:15 +0000)]
FLAT_INC is not needed; we use -I.. all the time

24 years agoIntegrate podd.h sk.h into set_key.c
Ulf Möller [Sun, 19 Mar 2000 12:13:44 +0000 (12:13 +0000)]
Integrate podd.h sk.h into set_key.c

24 years agoChange the notation and coding of the version to be able to contain
Richard Levitte [Sun, 19 Mar 2000 09:35:19 +0000 (09:35 +0000)]
Change the notation and coding of the version to be able to contain
both a patch level and a beta status.  IMHO, it also makes more sense
to have beta status be part of the development status than to have it
be an alternate name for patch levels under special conditions.

24 years agoKeep in sync with Unix code, and prepare for a misfeature fix.
Richard Levitte [Sun, 19 Mar 2000 09:23:25 +0000 (09:23 +0000)]
Keep in sync with Unix code, and prepare for a misfeature fix.

24 years agomake update
Ulf Möller [Sun, 19 Mar 2000 02:18:45 +0000 (02:18 +0000)]
make update

24 years agocleanup.
Ulf Möller [Sun, 19 Mar 2000 02:10:17 +0000 (02:10 +0000)]
cleanup.

24 years agolibdes manpage.
Ulf Möller [Sun, 19 Mar 2000 02:09:37 +0000 (02:09 +0000)]
libdes manpage.

This may still contain a few errors from the old documentation,
but most of it should make sense.

24 years agodes_quad_cksum() byte order bug fix.
Ulf Möller [Sun, 19 Mar 2000 02:06:37 +0000 (02:06 +0000)]
des_quad_cksum() byte order bug fix.
See http://www.pdc.kth.se/kth-krb/

Their solution for CRAY is somewhat awkward.
I'll assume that a "short" is 32 bits on CRAY to avoid the
#ifdef _CRAY
    typedef struct {
        unsigned int a:32;
        unsigned int b:32;
    } XXX;
#else
    typedef DES_LONG XXX;
#endif

24 years agoadd =cut
Ulf Möller [Sat, 18 Mar 2000 22:00:26 +0000 (22:00 +0000)]
add =cut

24 years agoDES in Perl was incomplete and not very useful
Ulf Möller [Sat, 18 Mar 2000 18:39:58 +0000 (18:39 +0000)]
DES in Perl was incomplete and not very useful

24 years agosuperseded by des_modes.pod
Ulf Möller [Sat, 18 Mar 2000 18:37:43 +0000 (18:37 +0000)]
superseded by des_modes.pod

24 years agochange manpages to pod. Contents are not up to date!
Ulf Möller [Sat, 18 Mar 2000 17:55:09 +0000 (17:55 +0000)]
change manpages to pod. Contents are not up to date!

24 years agoEliminate memory leaks in mem_dbg.c.
Bodo Möller [Sat, 18 Mar 2000 15:18:27 +0000 (15:18 +0000)]
Eliminate memory leaks in mem_dbg.c.

24 years agoSmall bugs in the test scripts removed.
Richard Levitte [Sat, 18 Mar 2000 09:11:00 +0000 (09:11 +0000)]
Small bugs in the test scripts removed.

24 years agoe_os.h: don't do double work with status codes.
Richard Levitte [Sat, 18 Mar 2000 09:09:31 +0000 (09:09 +0000)]
e_os.h: don't do double work with status codes.
openssl.c: make damn sure e_os.h knows about OPENSSL_C

24 years agoMake sure to complete the cleanup of names.
Richard Levitte [Fri, 17 Mar 2000 23:49:15 +0000 (23:49 +0000)]
Make sure to complete the cleanup of names.

24 years agoBugs corrected
Richard Levitte [Fri, 17 Mar 2000 10:02:16 +0000 (10:02 +0000)]
Bugs corrected

24 years agoThe previous exit code handling was completely bogus for VMS.
Richard Levitte [Fri, 17 Mar 2000 09:25:36 +0000 (09:25 +0000)]
The previous exit code handling was completely bogus for VMS.

24 years agoTypo corrected.
Richard Levitte [Thu, 16 Mar 2000 21:20:35 +0000 (21:20 +0000)]
Typo corrected.

24 years agoPoint out the PRNG usage bug affecting openssl rsa.
Bodo Möller [Thu, 16 Mar 2000 16:17:00 +0000 (16:17 +0000)]
Point out the PRNG usage bug affecting openssl rsa.
(Should we point to snapshots, or directly give the one-line patch?)

24 years agoRemove CRYPTO_push/pop_info invocations to improve code readability --
Bodo Möller [Tue, 14 Mar 2000 21:25:39 +0000 (21:25 +0000)]
Remove CRYPTO_push/pop_info invocations to improve code readability --
I hope all memory leaks that may occur here have already been tracked down.

24 years agoAvoid a warning.
Bodo Möller [Tue, 14 Mar 2000 16:35:36 +0000 (16:35 +0000)]
Avoid a warning.

24 years agoSSL_ALLOW_ADH no longer has a meaning.
Bodo Möller [Tue, 14 Mar 2000 16:05:19 +0000 (16:05 +0000)]
SSL_ALLOW_ADH no longer has a meaning.

24 years agoInsert a comment: This is one of the few files in this directory
Bodo Möller [Tue, 14 Mar 2000 14:33:11 +0000 (14:33 +0000)]
Insert a comment: This is one of the few files in this directory
that is actually used (even though it may not appear so at first
sight).

24 years agoUse correct function names in SSLerr macros.
Bodo Möller [Tue, 14 Mar 2000 14:10:56 +0000 (14:10 +0000)]
Use correct function names in SSLerr macros.

24 years agoRemove "Makefile.uni" files and some related stuff.
Bodo Möller [Tue, 14 Mar 2000 13:56:00 +0000 (13:56 +0000)]
Remove "Makefile.uni" files and some related stuff.
This was meant for building individual ciphers separately;
but nothing of this is maintained, it does not work
because we rely on central configuration by the Configure
utility with <openssl/opensslconf.h> etc., so the files
are only wasting space and time.

24 years agoTypos corrected.
Richard Levitte [Tue, 14 Mar 2000 06:51:18 +0000 (06:51 +0000)]
Typos corrected.

24 years agoMake it possible top build just a part of the crypto library.
Richard Levitte [Tue, 14 Mar 2000 06:30:02 +0000 (06:30 +0000)]
Make it possible top build just a part of the crypto library.

24 years agoTarget added.
Richard Levitte [Tue, 14 Mar 2000 06:17:52 +0000 (06:17 +0000)]
Target added.

24 years agoBugs corrected, and a couple of include files to get declarations for
Richard Levitte [Tue, 14 Mar 2000 06:12:30 +0000 (06:12 +0000)]
Bugs corrected, and a couple of include files to get declarations for
lib$-functions and sys$-functions.

24 years agoTypo corrected
Richard Levitte [Tue, 14 Mar 2000 04:32:24 +0000 (04:32 +0000)]
Typo corrected

24 years agobss_log has dollars, so compile it with that warning flag disabled.
Richard Levitte [Tue, 14 Mar 2000 04:23:03 +0000 (04:23 +0000)]
bss_log has dollars, so compile it with that warning flag disabled.

24 years agoTypo corrected
Richard Levitte [Tue, 14 Mar 2000 04:16:10 +0000 (04:16 +0000)]
Typo corrected

24 years agoMake sure strcmp() gets declared.
Richard Levitte [Tue, 14 Mar 2000 04:09:48 +0000 (04:09 +0000)]
Make sure strcmp() gets declared.

24 years agoMake V_ASN1_APP_CHOOSE work again.
Dr. Stephen Henson [Tue, 14 Mar 2000 03:29:57 +0000 (03:29 +0000)]
Make V_ASN1_APP_CHOOSE work again.

24 years agoanother typo
Bodo Möller [Mon, 13 Mar 2000 23:06:03 +0000 (23:06 +0000)]
another typo

24 years agotypo
Bodo Möller [Mon, 13 Mar 2000 23:01:32 +0000 (23:01 +0000)]
typo

24 years agoSynchronise with Unixly tests
Richard Levitte [Mon, 13 Mar 2000 22:27:52 +0000 (22:27 +0000)]
Synchronise with Unixly tests

24 years agoCorrection.
Bodo Möller [Mon, 13 Mar 2000 21:01:05 +0000 (21:01 +0000)]
Correction.

24 years agoClarifications for 'no-XXX'.
Bodo Möller [Mon, 13 Mar 2000 20:48:23 +0000 (20:48 +0000)]
Clarifications for 'no-XXX'.

24 years agoRun test_ssl last -- it's the only test that really uses the SSL library
Bodo Möller [Mon, 13 Mar 2000 20:47:45 +0000 (20:47 +0000)]
Run test_ssl last -- it's the only test that really uses the SSL library
in addition to the crypto library.

24 years ago"openssl no-..." commands for avoiding the need to grep
Bodo Möller [Mon, 13 Mar 2000 20:31:46 +0000 (20:31 +0000)]
"openssl no-..." commands for avoiding the need to grep
"openssl list-standard-commands".

24 years agoInclude a timing test that works without RSA.
Bodo Möller [Mon, 13 Mar 2000 19:44:45 +0000 (19:44 +0000)]
Include a timing test that works without RSA.

24 years agoCorrections.
Bodo Möller [Mon, 13 Mar 2000 19:35:37 +0000 (19:35 +0000)]
Corrections.

In testss, use MD5 as digest algorithm so that the resulting
certificates can be used for testssl with RSA.

24 years agoUpdate usage info
Bodo Möller [Mon, 13 Mar 2000 19:30:59 +0000 (19:30 +0000)]
Update usage info

24 years agoUpdate test suite so that 'make test' succeeds in 'no-rsa' configuration.
Bodo Möller [Mon, 13 Mar 2000 19:24:39 +0000 (19:24 +0000)]
Update test suite so that 'make test' succeeds in 'no-rsa' configuration.

24 years agoSynchronise with Unix.
Richard Levitte [Mon, 13 Mar 2000 19:05:18 +0000 (19:05 +0000)]
Synchronise with Unix.

24 years agoCorrect a potential bug.
Richard Levitte [Mon, 13 Mar 2000 18:59:11 +0000 (18:59 +0000)]
Correct a potential bug.

24 years agoDon't try to test the RSA command if it is not available.
Bodo Möller [Mon, 13 Mar 2000 18:05:59 +0000 (18:05 +0000)]
Don't try to test the RSA command if it is not available.

24 years agoCopy DH key (if available) in addition to the bare parameters
Bodo Möller [Mon, 13 Mar 2000 17:07:04 +0000 (17:07 +0000)]
Copy DH key (if available) in addition to the bare parameters
in SSL_new.
If SSL_OP_SINGLE_DH_USE is set, don't waste time in SSL_[CTX_]set_tmp_dh
on computing a DH key that will be ignored anyway.

ssltest -dhe1024dsa (w/ 160-bit sub-prime) had an unfair performance
advantage over -dhe1024 (safe prime): SSL_OP_SINGLE_DH_USE was
effectively always enabled because SSL_new ignored the DH key set in
the SSL_CTX.  Now -dhe1024 takes the server only about twice as long
as -dhe1024dsa instead of three times as long (for 1024 bit RSA
with 1024 bit DH).

24 years agoConnection timings (using ISO C function clock()).
Bodo Möller [Mon, 13 Mar 2000 15:06:54 +0000 (15:06 +0000)]
Connection timings (using ISO C function clock()).

24 years agoRemove Win32 assembler files. They are always rebuilt (with some
Bodo Möller [Mon, 13 Mar 2000 08:04:20 +0000 (08:04 +0000)]
Remove Win32 assembler files.  They are always rebuilt (with some
choice of parameters) when they are needed.

24 years agocleaning up a little
Bodo Möller [Sun, 12 Mar 2000 23:27:14 +0000 (23:27 +0000)]
cleaning up a little

24 years agoasm workaround for SuSE Linux
Ulf Möller [Sun, 12 Mar 2000 12:52:36 +0000 (12:52 +0000)]
asm workaround for SuSE Linux
proposed by Holger Reif

24 years agomake update
Ulf Möller [Sun, 12 Mar 2000 12:49:45 +0000 (12:49 +0000)]
make update

24 years agoWorkaround for Windoze weirdness.
Bodo Möller [Sat, 11 Mar 2000 01:29:26 +0000 (01:29 +0000)]
Workaround for Windoze weirdness.

24 years agoOn NeXT, ssize_t is int, not long (see <sys/types.h> -- the definition
Bodo Möller [Sat, 11 Mar 2000 01:29:14 +0000 (01:29 +0000)]
On NeXT, ssize_t is int, not long (see <sys/types.h> -- the definition
is activated only when _POSIX_SOURCE is defined).

24 years agoNO_SYSLOG is defined for MSDOS anyway. just don't include the Unix
Ulf Möller [Fri, 10 Mar 2000 23:45:51 +0000 (23:45 +0000)]
NO_SYSLOG is defined for MSDOS anyway. just don't include the Unix
header...

24 years agossize_t
Ulf Möller [Fri, 10 Mar 2000 23:45:28 +0000 (23:45 +0000)]
ssize_t

24 years agoUse signed types where necessary, and add missing functionality
Bodo Möller [Fri, 10 Mar 2000 21:44:38 +0000 (21:44 +0000)]
Use signed types where necessary, and add missing functionality
to make SSL_nread0 work.

24 years agoUse L for all constants.
Ulf Möller [Fri, 10 Mar 2000 17:43:05 +0000 (17:43 +0000)]
Use L for all constants.

24 years agoDon't generate asm files for no-asm.
Ulf Möller [Fri, 10 Mar 2000 17:02:12 +0000 (17:02 +0000)]
Don't generate asm files for no-asm.

24 years agoRepair bss_log.
Ulf Möller [Fri, 10 Mar 2000 17:01:23 +0000 (17:01 +0000)]
Repair bss_log.

Curiously enough, void functions don't return a value.

24 years agoMention -ign_eof.
Bodo Möller [Fri, 10 Mar 2000 13:49:02 +0000 (13:49 +0000)]
Mention -ign_eof.

24 years agoAlways use fixed DH parameters created with 'dhparam -C',
Bodo Möller [Fri, 10 Mar 2000 13:23:20 +0000 (13:23 +0000)]
Always use fixed DH parameters created with 'dhparam -C',
don't dynamically create them.  This allows using ssltest
for approximate performance comparisons:
   $ time ./ssltest -num 50 -tls1 -cert ../apps/server2.pem \
     [-no_dhe|-dhe1024dsa|-dhe1024]
(server2.pem contains a 1024 bit RSA key, the default has only
512 bits.) Note that these timings contain both the server's and
the client's computations, they are not a good indicator for
server workload in different configurations.

24 years agoAdd the possibility (with -ign_eof) to ignore end of file on input but
Richard Levitte [Fri, 10 Mar 2000 12:18:28 +0000 (12:18 +0000)]
Add the possibility (with -ign_eof) to ignore end of file on input but
still not be quiet.  Also make it clear that -quiet implicitely means
-ign_eof as well.

24 years agoChange to code generated by 'dhparam -C':
Bodo Möller [Fri, 10 Mar 2000 12:17:37 +0000 (12:17 +0000)]
Change to code generated by 'dhparam -C':

- Move DH parameter components inside the function.
- Automatically #include the required header file if it
  has not already been #included.

24 years agoanother typo
Bodo Möller [Fri, 10 Mar 2000 11:47:58 +0000 (11:47 +0000)]
another typo

24 years agotypo
Bodo Möller [Fri, 10 Mar 2000 11:43:45 +0000 (11:43 +0000)]
typo

24 years agoclarify.
Ulf Möller [Thu, 9 Mar 2000 17:07:55 +0000 (17:07 +0000)]
clarify.

24 years agobug fix.
Ulf Möller [Thu, 9 Mar 2000 17:07:19 +0000 (17:07 +0000)]
bug fix.
Submitted by: "Yoram Meroz" <yoram@mail.idrive.com>

24 years agoManual page installation did not work if INSTALL_PREFIX was a relative path.
Bodo Möller [Thu, 9 Mar 2000 15:04:27 +0000 (15:04 +0000)]
Manual page installation did not work if INSTALL_PREFIX was a relative path.

24 years agoDon't Free() password if it was read from config file.
Dr. Stephen Henson [Thu, 9 Mar 2000 01:03:44 +0000 (01:03 +0000)]
Don't Free() password if it was read from config file.

24 years agoClarification.
Bodo Möller [Wed, 8 Mar 2000 20:20:15 +0000 (20:20 +0000)]
Clarification.

24 years agoFix typo and make ca get the CA and request fields correct.
Dr. Stephen Henson [Wed, 8 Mar 2000 12:44:10 +0000 (12:44 +0000)]
Fix typo and make ca get the CA and request fields correct.

24 years agoManual pages for EVP_Open* and EVP_Seal*
Dr. Stephen Henson [Wed, 8 Mar 2000 01:48:12 +0000 (01:48 +0000)]
Manual pages for EVP_Open* and EVP_Seal*

24 years agoProtect variables from potential misinterpretations, for example a
Richard Levitte [Tue, 7 Mar 2000 23:17:48 +0000 (23:17 +0000)]
Protect variables from potential misinterpretations, for example a
colon which may bite the lesser knowleged...

24 years agoCheck that a password was actually passed, or the user will just get
Richard Levitte [Tue, 7 Mar 2000 22:35:27 +0000 (22:35 +0000)]
Check that a password was actually passed, or the user will just get
mysterious crashes.

24 years agoManual pages for EVP signing and verifying.
Dr. Stephen Henson [Tue, 7 Mar 2000 17:35:25 +0000 (17:35 +0000)]
Manual pages for EVP signing and verifying.

24 years agospelling
Bodo Möller [Tue, 7 Mar 2000 15:10:08 +0000 (15:10 +0000)]
spelling

24 years agoNew compatability trust and purpose settings.
Dr. Stephen Henson [Tue, 7 Mar 2000 14:04:29 +0000 (14:04 +0000)]
New compatability trust and purpose settings.

24 years ago{NEXT,OPEN}STEP don't have pid_t.
Bodo Möller [Tue, 7 Mar 2000 09:37:19 +0000 (09:37 +0000)]
{NEXT,OPEN}STEP don't have pid_t.

24 years agoFix the PKCS#8 DSA code so it works again. All the
Dr. Stephen Henson [Tue, 7 Mar 2000 01:03:33 +0000 (01:03 +0000)]
Fix the PKCS#8 DSA code so it works again. All the
broken formats worked but the valid didn't :-(

24 years agobug fix release planned
Ulf Möller [Mon, 6 Mar 2000 14:24:25 +0000 (14:24 +0000)]
bug fix release planned

24 years agoFix the indentation, and avoid a compiler warning.
Bodo Möller [Mon, 6 Mar 2000 10:21:57 +0000 (10:21 +0000)]
Fix the indentation, and avoid a compiler warning.

24 years agoLet's not lie to the people.
Richard Levitte [Mon, 6 Mar 2000 07:31:17 +0000 (07:31 +0000)]
Let's not lie to the people.

24 years agoAdd missing include (only MONOLITH builds were possible without it).
Bodo Möller [Sun, 5 Mar 2000 01:11:44 +0000 (01:11 +0000)]
Add missing include (only MONOLITH builds were possible without it).
Submitted by: Andrew W. Gray

24 years agoPreserve reason strings in automatically build tables.
Bodo Möller [Sun, 5 Mar 2000 00:19:36 +0000 (00:19 +0000)]
Preserve reason strings in automatically build tables.