Bodo Möller [Mon, 17 May 1999 10:54:18 +0000 (10:54 +0000)]
gcc (in some versions) doesn't like the const_des_cblock typedef.
So omit it for now :-(
Bodo Möller [Mon, 17 May 1999 08:28:37 +0000 (08:28 +0000)]
Rename "openssl x509" option "-config" to "-extfile", because it
doesn't have a default value like the "-config" options of other
openssl subprograms.
Bodo Möller [Mon, 17 May 1999 08:17:30 +0000 (08:17 +0000)]
Clarification.
Dr. Stephen Henson [Sun, 16 May 1999 21:50:26 +0000 (21:50 +0000)]
Oops! Get the pmatch test the right way round.
Bodo Möller [Sun, 16 May 1999 18:27:46 +0000 (18:27 +0000)]
Keep text lines less than 80 characters wide.
Dr. Stephen Henson [Sun, 16 May 1999 17:32:32 +0000 (17:32 +0000)]
Fix various less obvious bugs in PKCS#7 handling: such as not zeroing
the secret key before we've encrypted it and using the right NID for RC2-64.
Add various arguments to the experimental programs 'dec' and 'enc' to make
testing less painful.
This stuff has now been tested against Netscape Messenger and it can encrypt
and decrypt S/MIME messages with RC2 (128, 64 and 40 bit) DES and triple DES.
Its still experimental though...
Bodo Möller [Sun, 16 May 1999 14:20:17 +0000 (14:20 +0000)]
Typo.
Bodo Möller [Sun, 16 May 1999 12:29:28 +0000 (12:29 +0000)]
DES changes.
Bodo Möller [Sun, 16 May 1999 12:26:16 +0000 (12:26 +0000)]
Change type of various DES function arguments from des_cblock
(meaning pointer to char) to des_cblock * (meaning pointer to
array with 8 char elements), which allows the compiler to
do more typechecking. (The changed argument types were of type
des_cblock * back in SSLeay, and a lot of ugly casts were
used then to turn them into pointers to elements; but it can be
done without those casts.)
Introduce new type const_des_cblock -- before, the pointers rather
than the elements pointed to were declared const, and for
some reason gcc did not complain about this (but some other
compilers did).
Bodo Möller [Sun, 16 May 1999 12:17:20 +0000 (12:17 +0000)]
Added a comment pointing out the behaviour of "openssl x509 -conf ...",
which cost me some time to find out about.
Bodo Möller [Sun, 16 May 1999 12:01:49 +0000 (12:01 +0000)]
Marked probable bug, pointed out by Anonymous.
Ben Laurie [Sun, 16 May 1999 11:26:46 +0000 (11:26 +0000)]
Convert void *.
Bodo Möller [Sun, 16 May 1999 10:55:40 +0000 (10:55 +0000)]
Don't run "make depend" automatically.
Dr. Stephen Henson [Sun, 16 May 1999 00:25:36 +0000 (00:25 +0000)]
Fix some obvious bugs in the PKCS#7 library handling. It didn't try to
find the right RecipientInfo based on the recipient certificate (so would
fail a lot of the time) and fixup cipher structures to correctly (maybe)
modify the AlgorithmIdentifiers. Largely untested at present... this will be
fixed in due course. Well the stuff was broken to begin with so if its broken
now then you haven't lost anything :-)
Dr. Stephen Henson [Sat, 15 May 1999 20:33:15 +0000 (20:33 +0000)]
Various Win32 fixes. Change args in do_ms.bat to put platform last. Fix
unsigned/signed cmp error in asn1parse. Change various pem_all.c args to
use pem_password_cb.
Ben Laurie [Sat, 15 May 1999 16:03:26 +0000 (16:03 +0000)]
Get rid of casts.
Ben Laurie [Sat, 15 May 1999 15:59:28 +0000 (15:59 +0000)]
Add actual testing to bntest...
Bodo Möller [Sat, 15 May 1999 14:38:10 +0000 (14:38 +0000)]
Use OPENSSL_GLOBAL, OPENSSL_EXTERN instead of GLOBAL and EXTERN.
Bodo Möller [Sat, 15 May 1999 14:30:31 +0000 (14:30 +0000)]
OPENSSL_EXTERN
Bodo Möller [Sat, 15 May 1999 14:23:29 +0000 (14:23 +0000)]
OPENSSL_EXTERN, OPENSSL_GLOBAL
Bodo Möller [Sat, 15 May 1999 13:38:48 +0000 (13:38 +0000)]
Update dependencies.
Bodo Möller [Sat, 15 May 1999 13:31:53 +0000 (13:31 +0000)]
Get rid of another cast.
Bodo Möller [Sat, 15 May 1999 13:27:13 +0000 (13:27 +0000)]
Use e_os2.h, not e_os.h in exported header file des.h.
Bodo Möller [Sat, 15 May 1999 13:26:11 +0000 (13:26 +0000)]
e_os2.h is used for things that must be visible when external applications
use (certain parts of) OpenSSL.
Bodo Möller [Sat, 15 May 1999 13:24:16 +0000 (13:24 +0000)]
e_os* corrections.
Bodo Möller [Sat, 15 May 1999 12:22:46 +0000 (12:22 +0000)]
Comment.
Bodo Möller [Sat, 15 May 1999 12:22:19 +0000 (12:22 +0000)]
Bugfix (set shutdown only when we should).
Submitted by: Oleg Girko
Bodo Möller [Sat, 15 May 1999 12:20:56 +0000 (12:20 +0000)]
Update.
Ben Laurie [Sat, 15 May 1999 11:54:21 +0000 (11:54 +0000)]
Get rid of the cast.
Bodo Möller [Sat, 15 May 1999 11:46:00 +0000 (11:46 +0000)]
Return 0 for an error, 1 for no error from read_options;
that's what the calling code seems to expect.
Bodo Möller [Sat, 15 May 1999 10:40:02 +0000 (10:40 +0000)]
Comment.
Bodo Möller [Sat, 15 May 1999 00:00:28 +0000 (00:00 +0000)]
A comment.
Bodo Möller [Fri, 14 May 1999 21:07:48 +0000 (21:07 +0000)]
Avoid compiler warnings for x86.
Dr. Stephen Henson [Fri, 14 May 1999 18:21:21 +0000 (18:21 +0000)]
The encoding of negative ASN1 INTEGERs and the conversion of BNs to negative
integers was completely broken. Also added a NEG_PUBKEY_BUG compilation option
to compensate for public keys improperly encoded as negative integers.
Bodo Möller [Fri, 14 May 1999 12:40:39 +0000 (12:40 +0000)]
Various bugfixes: Uses locking for some more of the stuff that is not
thread-safe (where thread-safe counterparts are not available on all
platforms), and don't memcpy to NULL-pointers
Submitted by: Anonymous
Reviewed by: Bodo Moeller
Also, clean up htons vs. ntohs confusions.
Bodo Möller [Fri, 14 May 1999 11:57:17 +0000 (11:57 +0000)]
Fix cryptlib.c.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Fri, 14 May 1999 11:52:49 +0000 (11:52 +0000)]
Introduce and use function typedef pem_password_cb so that we don't call
those functions without having a parameter list declaration.
(There are various similar cases left ...)
Bodo Möller [Fri, 14 May 1999 11:50:46 +0000 (11:50 +0000)]
*** empty log message ***
Bodo Möller [Fri, 14 May 1999 11:48:31 +0000 (11:48 +0000)]
Delete a wish.
Bodo Möller [Fri, 14 May 1999 11:47:29 +0000 (11:47 +0000)]
Change cast in function calls to that which is, I think, the right
one for those functions (is it?).
Bodo Möller [Thu, 13 May 1999 21:17:03 +0000 (21:17 +0000)]
Add release dates to the "CHANGES" file, because that's an obvious
place to look for them.
Ulf Möller [Thu, 13 May 1999 17:55:08 +0000 (17:55 +0000)]
Missed one line.
Bodo Möller [Thu, 13 May 1999 17:51:35 +0000 (17:51 +0000)]
Don't use reserved name "_encrypt" for parameters;
instead I've picked "enc", because that's what's in the prototypes.
("_encrypt" is reserved only as an external name, but still
using it in an application doesn't look like good style to me --
and it certainly isn't if the point is just avoiding shadowing,
which is apparently why the previous name "encrypt" was changed.)
Ben Laurie [Thu, 13 May 1999 17:33:27 +0000 (17:33 +0000)]
Update dependencies.
Ulf Möller [Thu, 13 May 1999 17:25:05 +0000 (17:25 +0000)]
Cut&paste error.
Ulf Möller [Thu, 13 May 1999 17:24:35 +0000 (17:24 +0000)]
Oops. Close the file.
Ben Laurie [Thu, 13 May 1999 17:10:42 +0000 (17:10 +0000)]
Avoid shadowing, and a bit of constification while I'm at it.
Bodo Möller [Thu, 13 May 1999 15:27:45 +0000 (15:27 +0000)]
Some tiny clean-ups related to the cert_st / sess_cert_st change.
Bodo Möller [Thu, 13 May 1999 15:09:38 +0000 (15:09 +0000)]
New structure type SESS_CERT used instead of CERT inside SSL_SESSION.
While modifying the sources, I found some inconsistencies on the use of
s->cert vs. s->session->sess_cert; I don't know if those could
really have caused problems, but possibly this is a proper bug-fix
and not just a clean-up.
Bodo Möller [Thu, 13 May 1999 15:02:49 +0000 (15:02 +0000)]
For solaris-usparc configurations, avoid problems with GNU as, which
cannot handle all opcodes we need.
Ulf Möller [Thu, 13 May 1999 13:29:41 +0000 (13:29 +0000)]
Remove redundant ifdef.
Ulf Möller [Thu, 13 May 1999 13:21:17 +0000 (13:21 +0000)]
VMS support bug fixes.
Ulf Möller [Thu, 13 May 1999 13:20:21 +0000 (13:20 +0000)]
VMS support.
Submitted by: Richard Levitte <richard@levitte.org>
Ulf Möller [Thu, 13 May 1999 13:16:42 +0000 (13:16 +0000)]
Reorganize and speed up MD5.
Submitted by: Andy Polyakov <appro@fy.chalmers.se>
Ulf Möller [Thu, 13 May 1999 11:37:32 +0000 (11:37 +0000)]
VMS support.
Submitted by: Richard Levitte <richard@levitte.org>
Bodo Möller [Thu, 13 May 1999 10:36:29 +0000 (10:36 +0000)]
Spacing in comment corrected.
Bodo Möller [Thu, 13 May 1999 10:32:04 +0000 (10:32 +0000)]
First tiny changes in preparation of changing of "sess_cert" handling.
Also I've subsituted real tabs for 8-spaces sequences in some lines so that
things don't look that weird with a tab-width of 4.
Ulf Möller [Thu, 13 May 1999 10:28:14 +0000 (10:28 +0000)]
mk1mf.pl and mkdef.pl read OPTIONS from toplevel Makefile.
Configure no longer changes files in place.
Dr. Stephen Henson [Wed, 12 May 1999 23:11:08 +0000 (23:11 +0000)]
Several of the EVP_CIPHER structures had the get and set asn1 parameter
functions transposed.
Dr. Stephen Henson [Wed, 12 May 1999 01:56:27 +0000 (01:56 +0000)]
Add new -out option to asn1parse to allow the parsed data to be output.
Fixed -strparse option: it didn't work if used more than once (this was due
to the d2i_ASN1_TYPE call parsing a freed buffer). On Win32 the file wincrypt.h
#define's X509_NAME and PKCS7_SIGNER_INFO causing clashes so these are #undef'ed
Ulf Möller [Wed, 12 May 1999 01:52:58 +0000 (01:52 +0000)]
Caldera OpenLinux passes test now.
Ulf Möller [Wed, 12 May 1999 00:45:42 +0000 (00:45 +0000)]
Missing argument in prototype.
Submitted by: Andreas Ley <ley@rz.uni-karlsruhe.de>
Ulf Möller [Tue, 11 May 1999 22:14:29 +0000 (22:14 +0000)]
Use ifndef PEDANTIC for all inline assembler.
Bodo Möller [Tue, 11 May 1999 22:05:39 +0000 (22:05 +0000)]
Comment.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Tue, 11 May 1999 15:44:58 +0000 (15:44 +0000)]
argc counting bug fixed.
Submitted by: Tomas Hulek
Reviewed by:
PR:
Bodo Möller [Tue, 11 May 1999 14:26:14 +0000 (14:26 +0000)]
Clarify comment.
Submitted by:
Reviewed by:
PR:
Ulf Möller [Tue, 11 May 1999 10:42:28 +0000 (10:42 +0000)]
Move openssl.cnf out of lib/.
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Bodo Möller [Tue, 11 May 1999 07:54:38 +0000 (07:54 +0000)]
And I thought I could spell ... but in caps really everything looks the same.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Tue, 11 May 1999 07:43:16 +0000 (07:43 +0000)]
Make SSL library a little more fool-proof by not requiring any longer
that SSL_set_{accept,connect}_state be called before
SSL_{accept,connect} may be used.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Tue, 11 May 1999 00:52:46 +0000 (00:52 +0000)]
Various PKCS#7 related fixes,tidies and comments.
Ulf Möller [Mon, 10 May 1999 23:59:28 +0000 (23:59 +0000)]
Move openssl.cnf out of lib/.
Ulf Möller [Mon, 10 May 1999 23:56:11 +0000 (23:56 +0000)]
Update.
Ulf Möller [Mon, 10 May 1999 20:38:47 +0000 (20:38 +0000)]
Fix for +xxx options.
Submitted by: Anonymous
Ralf S. Engelschall [Mon, 10 May 1999 19:28:00 +0000 (19:28 +0000)]
Ok, give us more time....
Bodo Möller [Mon, 10 May 1999 15:10:11 +0000 (15:10 +0000)]
Changed a comment.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Mon, 10 May 1999 11:18:26 +0000 (11:18 +0000)]
The various character predicates (isspace and the like) may not be
used with negative char values, so I've added casts to unsigned char.
Maybe what really should be done is change all those arrays and
pointers to type unsigned char [] or unsigned char *, respectively;
but using plain char with those predicates is just wrong, so something
had to be done.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Mon, 10 May 1999 11:10:38 +0000 (11:10 +0000)]
Moved some variable declarations inside blocks where they are needed
so that warnings about unused variables (for certain
-D... constellations) are avoided; this corresponds to the earlier
change for SHA1.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Mon, 10 May 1999 11:07:50 +0000 (11:07 +0000)]
New entry debug-solaris-usparc-gcc, as debug-solaris-sparc-gcc no longer
applies to usparc systems.
Submitted by:
Reviewed by:
PR:
Ralf S. Engelschall [Mon, 10 May 1999 08:33:56 +0000 (08:33 +0000)]
Fix various things to let OpenSSL even pass ``egcc -pipe -O2 -Wall -Wshadow
-Wpointer-arith -Wcast-align -Wmissing-prototypes -Wmissing-declarations
-Wnested-externs -Winline'' with EGCS 1.1.2+
Dr. Stephen Henson [Mon, 10 May 1999 00:47:42 +0000 (00:47 +0000)]
Various PKCS#7 fixes to properly (maybe!) handle PKCS#7 enveloped data.
Containts elements of code by Sebastian Akerman <sak@parallelconsulting.com>
and made a bit less "naughty" by Steve.
Bodo Möller [Sun, 9 May 1999 21:22:45 +0000 (21:22 +0000)]
No actual change, but the cert_st member of struct ssl_session_st is now
called sess_cert instead of just cert. This is in preparation of further
changes: Probably often when s->session->sess_cert is used, we should
use s->cert instead; s->session->sess_cert should be a new structure
containing only the stuff that is for just one connection (e.g.
the peer's certificate, which the SSL client implementations currently
store in s->session->[sess_]cert, which is a very confusing thing to do).
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 9 May 1999 20:12:44 +0000 (20:12 +0000)]
Create a duplicate of the SSL_CTX's CERT in SSL_new instead of copying
pointers. The cert_st handling is changed by this in various ways.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 9 May 1999 16:41:00 +0000 (16:41 +0000)]
One comment was in the wrong line ... some others are new.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Sun, 9 May 1999 16:39:11 +0000 (16:39 +0000)]
Kill evil casts, fix PKCS#7 and add new X509V3 Function.
Bodo Möller [Sun, 9 May 1999 15:47:35 +0000 (15:47 +0000)]
Makefile.save was missing here.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 9 May 1999 15:45:38 +0000 (15:45 +0000)]
Some tiny changes to the source code to make future diffs smaller
when restructuring the cert_st handling (removed unnused parts,
and the like).
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 9 May 1999 10:16:46 +0000 (10:16 +0000)]
Move variable definitions into the blocks where they are really needed,
so that warnings about unused variables don't appear if those blocks
are removed by the C preprocessor.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Sun, 9 May 1999 10:12:10 +0000 (10:12 +0000)]
Use "const char *" instead of "char *" for filenames passed to functions.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Sat, 8 May 1999 22:46:51 +0000 (22:46 +0000)]
Various Win32 fixes. Win95 doesn't support MoveFileEx() (which was used for a
Win32 version of rename() ). There isn't a precise rename() equivalent under
Win95: the standard rename() complains if the destination already exists so
replaced with a combination of unlink() and MoveFile().
Dr. Stephen Henson [Sat, 8 May 1999 12:59:50 +0000 (12:59 +0000)]
Allows PKCS#12 password to be placed on command line and add allow config
file name for 'ca' to come from the environment.
Dr. Stephen Henson [Sat, 8 May 1999 11:08:25 +0000 (11:08 +0000)]
GeneralizedTime setting fixes.
Ulf Möller [Sat, 8 May 1999 10:42:06 +0000 (10:42 +0000)]
no-xxx option to exclude ciphers.
Ulf Möller [Sat, 8 May 1999 10:40:38 +0000 (10:40 +0000)]
The libssl32.dll definition file is called ssleay32.def. (why?)
Ulf Möller [Sat, 8 May 1999 10:40:13 +0000 (10:40 +0000)]
Mingw32.
Ulf Möller [Sat, 8 May 1999 10:40:01 +0000 (10:40 +0000)]
pass $PERL on make files.
Ulf Möller [Sat, 8 May 1999 10:39:15 +0000 (10:39 +0000)]
Superseded by sparcv8.S and sparcv8plus.s.
Bodo Möller [Sat, 8 May 1999 10:12:48 +0000 (10:12 +0000)]
This was an unused derivate of an old version of s_client.c that had
been changed so that it almost could be used under Windows.
No one asked to keep it (and no one volunteered to bring it into useable
state), so away with it.
Submitted by:
Reviewed by:
PR:
Ulf Möller [Fri, 7 May 1999 22:55:27 +0000 (22:55 +0000)]
Generate DLLs with Mingw32.
Ulf Möller [Fri, 7 May 1999 17:51:29 +0000 (17:51 +0000)]
Get the Mingw32 makefiles right.
Ben Laurie [Fri, 7 May 1999 15:42:23 +0000 (15:42 +0000)]
Make -pedantic work again.