oweals/openssl.git
25 years agoFix for bug in pkcs12 program and typo in ASN1_tag2str().
Dr. Stephen Henson [Tue, 5 Oct 1999 12:57:50 +0000 (12:57 +0000)]
Fix for bug in pkcs12 program and typo in ASN1_tag2str().

25 years agoNew option -dhparam to s_server to allow the DH parameter file to be set
Dr. Stephen Henson [Mon, 4 Oct 1999 23:56:06 +0000 (23:56 +0000)]
New option -dhparam to s_server to allow the DH parameter file to be set
explicitly. Previously it couldn't be changed because it was hard coded as
"server.pem".

25 years agoAdd support for public key input and output in rsa and dsa utilities with some
Dr. Stephen Henson [Mon, 4 Oct 1999 21:17:47 +0000 (21:17 +0000)]
Add support for public key input and output in rsa and dsa utilities with some
new DSA public key functions that were missing.

Also beginning of a cache for X509_EXTENSION structures: this will allow them
to be accessed more quickly for things like certificate chain verification...

25 years agoFix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message
Dr. Stephen Henson [Mon, 4 Oct 1999 12:08:59 +0000 (12:08 +0000)]
Fix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message
contains no certificates.

Also fix typo in RANLIB changes.

25 years agoAdd prototypes for new DSA functions Steve added recently.
Ralf S. Engelschall [Mon, 4 Oct 1999 10:55:04 +0000 (10:55 +0000)]
Add prototypes for new DSA functions Steve added recently.

25 years agoPass $(RANLIB) when doing "make install" in subdirectories;
Bodo Möller [Sun, 3 Oct 1999 22:50:01 +0000 (22:50 +0000)]
Pass $(RANLIB) when doing "make install" in subdirectories;
rsaref needs ist.

Submitted by: Will Day

25 years agoFix warnings.
Ben Laurie [Sun, 3 Oct 1999 18:09:45 +0000 (18:09 +0000)]
Fix warnings.

25 years agoFix for base64 BIO decoding bug
Dr. Stephen Henson [Sat, 2 Oct 1999 13:33:06 +0000 (13:33 +0000)]
Fix for base64 BIO decoding bug

25 years agoModify the 'speed' application so it now uses RSA_sign and RSA_verify
Dr. Stephen Henson [Sat, 2 Oct 1999 01:18:19 +0000 (01:18 +0000)]
Modify the 'speed' application so it now uses RSA_sign and RSA_verify
instead of RSA_private_encrypt and RSA_public_decrypt

25 years agoHPUX 11 flags.
Ulf Möller [Thu, 30 Sep 1999 08:32:54 +0000 (08:32 +0000)]
HPUX 11 flags.
Contributed by: Peter Huang <PETER_HUANG@HP-Cupertino-om8.om.hp.com>

25 years agoCosmetic changes.
Ulf Möller [Wed, 29 Sep 1999 22:14:47 +0000 (22:14 +0000)]
Cosmetic changes.

25 years agoVC++ warning.
Ulf Möller [Wed, 29 Sep 1999 22:11:06 +0000 (22:11 +0000)]
VC++ warning.

25 years agoGenerate obj_dat.h in "make update".
Ulf Möller [Wed, 29 Sep 1999 21:03:02 +0000 (21:03 +0000)]
Generate obj_dat.h in "make update".

25 years ago"make update"
Bodo Möller [Mon, 27 Sep 1999 15:12:30 +0000 (15:12 +0000)]
"make update"

25 years agonew control code BIO_C_RESET_READ_REQUEST
Bodo Möller [Mon, 27 Sep 1999 13:43:59 +0000 (13:43 +0000)]
new control code BIO_C_RESET_READ_REQUEST

25 years agoRC4 tune-up.
Andy Polyakov [Sun, 26 Sep 1999 12:47:17 +0000 (12:47 +0000)]
RC4 tune-up.

See comments in the code (after #if defined(RC4_CHUNK)) for more details.

25 years agoFix typo in error message.
Bodo Möller [Sat, 25 Sep 1999 11:26:31 +0000 (11:26 +0000)]
Fix typo in error message.

Submitted by: Alan Batie

25 years agoHonor BUFSIZZ definition in s_server, don't use tiny 32 byte
Bodo Möller [Sat, 25 Sep 1999 11:24:53 +0000 (11:24 +0000)]
Honor BUFSIZZ definition in s_server, don't use tiny 32 byte
buffer (which leads to truncation of client cipher list).

25 years agoBugfix: avoid opening CAfile when it's NULL.
Bodo Möller [Fri, 24 Sep 1999 20:27:20 +0000 (20:27 +0000)]
Bugfix: avoid opening CAfile when it's NULL.

25 years agoUse a temporary file, not a pipe, for BN test because there are some
Bodo Möller [Fri, 24 Sep 1999 20:25:34 +0000 (20:25 +0000)]
Use a temporary file, not a pipe, for BN test because there are some
broken bc's around.

25 years agoFix typo that I introduced when reformatting lines.
Bodo Möller [Fri, 24 Sep 1999 20:24:24 +0000 (20:24 +0000)]
Fix typo that I introduced when reformatting lines.

25 years agoFix warnings.
Ben Laurie [Fri, 24 Sep 1999 19:10:57 +0000 (19:10 +0000)]
Fix warnings.

25 years agoMore patches.
Ulf Möller [Tue, 21 Sep 1999 17:19:05 +0000 (17:19 +0000)]
More patches.

(Are there any others that have been submitted but not yet reviewed/integrated?)

25 years agotypo
Bodo Möller [Tue, 21 Sep 1999 14:03:20 +0000 (14:03 +0000)]
typo

25 years agoKeep line lengths < 80 characters.
Bodo Möller [Tue, 21 Sep 1999 13:33:15 +0000 (13:33 +0000)]
Keep line lengths < 80 characters.

25 years agonote a few things that need to be done
Ulf Möller [Mon, 20 Sep 1999 23:34:01 +0000 (23:34 +0000)]
note a few things that need to be done

25 years agoFix to make s_client and s_server work under Windows. A bit of a hack but
Dr. Stephen Henson [Mon, 20 Sep 1999 22:09:17 +0000 (22:09 +0000)]
Fix to make s_client and s_server work under Windows. A bit of a hack but
an improvement on not working at all.

25 years agoLots of evil casts to stop VC++ choking with "possible loss of data"
Dr. Stephen Henson [Sun, 19 Sep 1999 00:40:56 +0000 (00:40 +0000)]
Lots of evil casts to stop VC++ choking with "possible loss of data"
warnings :-(

25 years agoAdd new sign and verify members to RSA_METHOD and change SSL code to use sign
Dr. Stephen Henson [Sat, 18 Sep 1999 22:37:44 +0000 (22:37 +0000)]
Add new sign and verify members to RSA_METHOD and change SSL code to use sign
and verify rather than direct encrypt/decrypt.

25 years agoVarious CRL enhancements tidies and workaround for broken CRLs.
Dr. Stephen Henson [Sat, 18 Sep 1999 01:42:02 +0000 (01:42 +0000)]
Various CRL enhancements tidies and workaround for broken CRLs.

25 years agoDocument -startdate and -enddate in usage summary.
Bodo Möller [Fri, 17 Sep 1999 16:35:29 +0000 (16:35 +0000)]
Document -startdate and -enddate in usage summary.

25 years agoFix typo.
Dr. Stephen Henson [Wed, 15 Sep 1999 21:12:23 +0000 (21:12 +0000)]
Fix typo.

25 years agoUpdate dependencies.
Bodo Möller [Tue, 14 Sep 1999 15:07:22 +0000 (15:07 +0000)]
Update dependencies.

25 years agotypo in a comment
Bodo Möller [Tue, 14 Sep 1999 15:06:25 +0000 (15:06 +0000)]
typo in a comment

25 years agoAdd some debug-solaris-...-cc configurations.
Bodo Möller [Tue, 14 Sep 1999 15:05:45 +0000 (15:05 +0000)]
Add some debug-solaris-...-cc configurations.

25 years agoSet s->version correctly for "natural" SSL 3.0 client hello
Bodo Möller [Mon, 13 Sep 1999 13:02:07 +0000 (13:02 +0000)]
Set s->version correctly for "natural" SSL 3.0 client hello

25 years agoInitial support for MacOS.
Andy Polyakov [Sat, 11 Sep 1999 17:54:18 +0000 (17:54 +0000)]
Initial support for MacOS.

This will soon be complemented with MacOS specific source code files and
INSTALL.MacOS.

I (Andy) have decided to get rid of a number of #include <sys/types.h>.
I've verified it's ok (both by examining /usr/include/*.h and compiling)
on a number of Unix platforms. Unfortunately I don't have Windows box
to verify this on. I really appreciate if somebody could try to compile
it and contact me a.s.a.p. in case a problem occurs.

Submitted by: Roy Wood <roy@centricsystems.ca>
Reviewed by: Andy Polyakov <appro@fy.chalmers.se>

25 years agoFix yet another bug for client hello handling.
Bodo Möller [Sat, 11 Sep 1999 10:36:41 +0000 (10:36 +0000)]
Fix yet another bug for client hello handling.

25 years agoRepair another bug in s23_get_client_hello:
Bodo Möller [Fri, 10 Sep 1999 16:41:01 +0000 (16:41 +0000)]
Repair another bug in s23_get_client_hello:
tls1 did not survive to restarts, so get rid of it.

25 years agoParantheses not needed.
Ulf Möller [Fri, 10 Sep 1999 16:13:24 +0000 (16:13 +0000)]
Parantheses not needed.

25 years ago"make update"
Bodo Möller [Fri, 10 Sep 1999 15:34:55 +0000 (15:34 +0000)]
"make update"

25 years agoUse non-copying BIO interface in ssltest.c.
Bodo Möller [Fri, 10 Sep 1999 14:03:21 +0000 (14:03 +0000)]
Use non-copying BIO interface in ssltest.c.

25 years agotypo
Bodo Möller [Fri, 10 Sep 1999 13:25:25 +0000 (13:25 +0000)]
typo

25 years agoCorrection for the testapps lines.
Ulf Möller [Fri, 10 Sep 1999 11:44:52 +0000 (11:44 +0000)]
Correction for the testapps lines.

25 years agoTruncate message about "new" include filenames
Bodo Möller [Fri, 10 Sep 1999 00:29:33 +0000 (00:29 +0000)]
Truncate message about "new" include filenames

25 years agoRe-enable message about transition <foo.h> => <openssl/foo.h>
Bodo Möller [Thu, 9 Sep 1999 20:21:10 +0000 (20:21 +0000)]
Re-enable message about transition <foo.h> => <openssl/foo.h>
because various programs are not updated that often
and hence still expect header files names without the openssl/ prefix.

25 years agoCorrect warnings.
Ben Laurie [Thu, 9 Sep 1999 20:15:17 +0000 (20:15 +0000)]
Correct warnings.

25 years agosome more patches for avoiding problems with non-automatic variables
Bodo Möller [Wed, 8 Sep 1999 21:58:13 +0000 (21:58 +0000)]
some more patches for avoiding problems with non-automatic variables

25 years agoFix typo.
Dr. Stephen Henson [Wed, 8 Sep 1999 20:01:28 +0000 (20:01 +0000)]
Fix typo.

25 years agoOops... forgot the other RSA_NULL patches...
Dr. Stephen Henson [Wed, 8 Sep 1999 18:19:45 +0000 (18:19 +0000)]
Oops... forgot the other RSA_NULL patches...

25 years agoThis is preliminary support for an "RSA null" cipher. Unfortunately when
Dr. Stephen Henson [Wed, 8 Sep 1999 18:02:25 +0000 (18:02 +0000)]
This is preliminary support for an "RSA null" cipher. Unfortunately when
OpenSSL is compiled with NO_RSA, no RSA operations can be used: including
key generation storage and display of RSA keys. Since these operations are
not covered by the RSA patent (my understanding is it only covers encrypt,
decrypt, sign and verify) they can be included: this is an often requested
feature, attempts to use the patented operations return an error code.

This is enabled by setting RSA_NULL. This means that if a particular application
has its own legal US RSA implementation then it can use that instead by setting
it as the default RSA method.

Still experimental and needs some fiddling of the other libraries so they have
some options that don't attempt to use RSA if it isn't allowed.

25 years agoUse proper flags to build the testapps (default CC value causes confusion
Ulf Möller [Wed, 8 Sep 1999 16:14:52 +0000 (16:14 +0000)]
Use proper flags to build the testapps (default CC value causes confusion
on Solaris)

25 years agoNon-copying interface to BIO pairs.
Bodo Möller [Tue, 7 Sep 1999 21:37:09 +0000 (21:37 +0000)]
Non-copying interface to BIO pairs.
It's still totally untested ...

25 years agoCorrect address in a comment.
Ulf Möller [Tue, 7 Sep 1999 17:07:45 +0000 (17:07 +0000)]
Correct address in a comment.

25 years ago*** empty log message ***
Ulf Möller [Tue, 7 Sep 1999 17:07:13 +0000 (17:07 +0000)]
*** empty log message ***

25 years agoCheck the as version on Solaris x86. People don't read INSTALL anyway. :)
Ulf Möller [Tue, 7 Sep 1999 16:45:04 +0000 (16:45 +0000)]
Check the as version on Solaris x86. People don't read INSTALL anyway. :)

25 years agoNew function to convert ASN1 tag values to strings. Also fix typo in asn1.h
Dr. Stephen Henson [Tue, 7 Sep 1999 12:16:29 +0000 (12:16 +0000)]
New function to convert ASN1 tag values to strings. Also fix typo in asn1.h

25 years agoFix warnings.
Ben Laurie [Mon, 6 Sep 1999 11:06:54 +0000 (11:06 +0000)]
Fix warnings.

25 years agoFix warnings.
Ben Laurie [Mon, 6 Sep 1999 09:29:29 +0000 (09:29 +0000)]
Fix warnings.

25 years agoReinitialize conf to NULL whenver ca application is started.
Bodo Möller [Sun, 5 Sep 1999 20:53:08 +0000 (20:53 +0000)]
Reinitialize conf to NULL whenver ca application is started.
Submitted by: Lennart Bang

25 years agoSHA clean-up Intel assembler companion.
Andy Polyakov [Sun, 5 Sep 1999 14:17:42 +0000 (14:17 +0000)]
SHA clean-up Intel assembler companion.

I've chosen to nest two functions in order to save about 4K. As a result
s1-win32.asm doesn't look right (nested PROC/ENDP SEGMENT/ENDS) and it's
probably impossible to compile. I assume I have to reconsider... But not
today...

25 years agoSHA clean-up and (LP64) tune-up.
Andy Polyakov [Sun, 5 Sep 1999 12:42:04 +0000 (12:42 +0000)]
SHA clean-up and (LP64) tune-up.

"Clean-up" stands for the fact that it's using common message digest
template ../md32_common.h and sha[1_]dgst.c are reduced down to
'#define SHA_[01]' and then '#include "sha_locl.h"'. It stands "(LP64)"
there because it's 64 bit platforms which benefit most from the tune-up.
The updated code exhibits 40% performance improvement on IRIX64
(sounds too good, huh? I probably should double check if it's not
some cache trashing that was holding it back before), 28% - on
Alpha Linux and 12% - Solaris 7/64.

25 years agoNew UTF8 utility functions to parse/generate UTF8 strings.
Dr. Stephen Henson [Sat, 4 Sep 1999 17:19:55 +0000 (17:19 +0000)]
New UTF8 utility functions to parse/generate UTF8 strings.

25 years agoReinitialize global variables when necessary (for monolith application).
Bodo Möller [Fri, 3 Sep 1999 23:08:45 +0000 (23:08 +0000)]
Reinitialize global variables when necessary (for monolith application).

25 years agouse explicit constant 11 just once
Bodo Möller [Fri, 3 Sep 1999 22:37:38 +0000 (22:37 +0000)]
use explicit constant 11 just once

25 years agoMake previous bugfix actually work
Bodo Möller [Fri, 3 Sep 1999 16:49:11 +0000 (16:49 +0000)]
Make previous bugfix actually work

25 years agoFix server behaviour when facing backwards-compatible client hellos.
Bodo Möller [Fri, 3 Sep 1999 16:33:11 +0000 (16:33 +0000)]
Fix server behaviour when facing backwards-compatible client hellos.

25 years ago-no_dhe option for ssltest.c
Bodo Möller [Fri, 3 Sep 1999 16:31:36 +0000 (16:31 +0000)]
-no_dhe option for ssltest.c

25 years agoUse closesocket macro consistently, not close directly, for easier
Bodo Möller [Fri, 3 Sep 1999 14:06:09 +0000 (14:06 +0000)]
Use closesocket macro consistently, not close directly, for easier
portability.
Submitted by: Lennart Bång

25 years agoHandle "#if 0" correctly (I hope)
Bodo Möller [Fri, 3 Sep 1999 13:30:47 +0000 (13:30 +0000)]
Handle "#if 0" correctly (I hope)

25 years agoAdd new 'spkac' utility and several SPKAC utility functions.
Dr. Stephen Henson [Fri, 3 Sep 1999 01:08:34 +0000 (01:08 +0000)]
Add new 'spkac' utility and several SPKAC utility functions.

25 years agoMake DH_free() free up any ex_data and also call the finish method.
Dr. Stephen Henson [Wed, 1 Sep 1999 23:50:43 +0000 (23:50 +0000)]
Make DH_free() free up any ex_data and also call the finish method.

25 years agoRIPEMD160 shape-up. Final touch.
Andy Polyakov [Sat, 28 Aug 1999 13:18:25 +0000 (13:18 +0000)]
RIPEMD160 shape-up. Final touch.

25 years agoRIPEMD160 shape-up Intel assembler companion. Cycle counter benchmarks
Andy Polyakov [Sat, 28 Aug 1999 13:07:51 +0000 (13:07 +0000)]
RIPEMD160 shape-up Intel assembler companion. Cycle counter benchmarks
went down from 1050 to 921 cycles on Pentium II. I haven't checked the
figures on Pentium yet.

25 years agoRIPEMD160 shape-up. Major news are that it's operational on all platforms
Andy Polyakov [Sat, 28 Aug 1999 12:55:45 +0000 (12:55 +0000)]
RIPEMD160 shape-up. Major news are that it's operational on all platforms
now and I'm putting it back to 'make test' later today.

25 years agomake testapps after the library.
Ulf Möller [Sat, 28 Aug 1999 12:50:48 +0000 (12:50 +0000)]
make testapps after the library.

25 years agomd32_common.h update and accompanying MD5 update.
Andy Polyakov [Sat, 28 Aug 1999 12:41:03 +0000 (12:41 +0000)]
md32_common.h update and accompanying MD5 update.

25 years agoAllow the extension section specified in config files to be overridden
Dr. Stephen Henson [Fri, 27 Aug 1999 00:08:17 +0000 (00:08 +0000)]
Allow the extension section specified in config files to be overridden
on the command line for various utilities.

25 years agoAllow the 1.OU="my OU" syntax in 'ca' for SPKACs.
Dr. Stephen Henson [Wed, 25 Aug 1999 23:18:23 +0000 (23:18 +0000)]
Allow the 1.OU="my OU" syntax in 'ca' for SPKACs.

25 years agoAllow extensions to be added to certificate requests, update the sample
Dr. Stephen Henson [Wed, 25 Aug 1999 16:59:26 +0000 (16:59 +0000)]
Allow extensions to be added to certificate requests, update the sample
config file (change RAW to DER).

25 years agomake update.
Ulf Möller [Tue, 24 Aug 1999 17:45:16 +0000 (17:45 +0000)]
make update.

25 years agoMinor MIPS III/IV tune-up.
Andy Polyakov [Tue, 24 Aug 1999 16:02:16 +0000 (16:02 +0000)]
Minor MIPS III/IV tune-up.

25 years agoFix for a bug which meant encrypting BIOs sometimes wouldn't read the final
Dr. Stephen Henson [Tue, 24 Aug 1999 13:21:35 +0000 (13:21 +0000)]
Fix for a bug which meant encrypting BIOs sometimes wouldn't read the final
block.

25 years agoInitial support for DH_METHOD. Also added a DH lock. A few changes made to
Dr. Stephen Henson [Mon, 23 Aug 1999 23:11:32 +0000 (23:11 +0000)]
Initial support for DH_METHOD. Also added a DH lock. A few changes made to
DSA_METHOD to make it more consistent with RSA_METHOD.

25 years agoInitial support for DSA_METHOD...
Dr. Stephen Henson [Sun, 22 Aug 1999 17:57:38 +0000 (17:57 +0000)]
Initial support for DSA_METHOD...

25 years agoAllow memory bios to be read only and change PKCS#7 routines to use them.
Dr. Stephen Henson [Thu, 19 Aug 1999 13:07:43 +0000 (13:07 +0000)]
Allow memory bios to be read only and change PKCS#7 routines to use them.

25 years agoFix horrible (and hard to track down) bug in ssl23_get_client_hello:
Bodo Möller [Wed, 18 Aug 1999 17:14:42 +0000 (17:14 +0000)]
Fix horrible (and hard to track down) bug in ssl23_get_client_hello:
In case of a restart, v[0] and v[1] were incorrectly initialised.
This was interpreted by ssl3_get_client_key_exchange as an RSA decryption
failure (don't ask me why) and caused it to create a _random_ master key
instead (even weirder), which obviously led to incorrect input to
ssl3_generate_master_secret and thus caused "block cipher pad is
wrong" error messages from ssl3_enc for the client's Finished message.
Arrgh.

25 years agoReally undo the base64 change so that make test survives
Bodo Möller [Wed, 18 Aug 1999 16:42:27 +0000 (16:42 +0000)]
Really undo the base64 change so that make test survives

25 years agoFix PKCS7_ENC_CONTENT_new() to include a sensible default content type and add
Dr. Stephen Henson [Tue, 17 Aug 1999 12:58:01 +0000 (12:58 +0000)]
Fix PKCS7_ENC_CONTENT_new() to include a sensible default content type and add
support for encrypted content type in PKCS7_set_content().

25 years agoReturn 0 for succesful exit when -noout is used.
Bodo Möller [Tue, 17 Aug 1999 08:33:59 +0000 (08:33 +0000)]
Return 0 for succesful exit when -noout is used.

25 years agoUndo base64 decoding change (was not a bug fix).
Ulf Möller [Sat, 14 Aug 1999 20:49:37 +0000 (20:49 +0000)]
Undo base64 decoding change (was not a bug fix).

25 years agoediting error.
Ulf Möller [Fri, 13 Aug 1999 21:02:25 +0000 (21:02 +0000)]
editing error.

25 years agoHonor $PERL environment variable in Configure.
Ulf Möller [Fri, 13 Aug 1999 20:48:32 +0000 (20:48 +0000)]
Honor $PERL environment variable in Configure.

Submitted by: Even Holen <Even.Holen@itea.ntnu.no>

25 years agoFix faulty base64 decoding of data that was 46 or 47 bytes long.
Ulf Möller [Fri, 13 Aug 1999 19:42:33 +0000 (19:42 +0000)]
Fix faulty base64 decoding of data that was 46 or 47 bytes long.

Submitted by: Ivan Nejgebauer <ian@uns.ns.ac.yu>

25 years agoAdd pkcs7 and des apps to "make all".
Ulf Möller [Fri, 13 Aug 1999 19:21:53 +0000 (19:21 +0000)]
Add pkcs7 and des apps to "make all".

25 years agoCompile pkcs7 and des apps.
Ulf Möller [Fri, 13 Aug 1999 18:04:04 +0000 (18:04 +0000)]
Compile pkcs7 and des apps.

25 years agoDisable the text about foo.h => openssl/foo.h.
Bodo Möller [Thu, 12 Aug 1999 11:31:01 +0000 (11:31 +0000)]
Disable the text about foo.h => openssl/foo.h.
Everyone should have got it by now.

25 years agoRemove -DWINDOWS in debug configuration.
Bodo Möller [Thu, 12 Aug 1999 10:03:05 +0000 (10:03 +0000)]
Remove -DWINDOWS in debug configuration.

Submitted by: Erik Johannisson <erik@johannisson.se>

25 years agoSubmitted by: Lidong Zhou <ldzhou@cs.cornell.edu>
Bodo Möller [Wed, 11 Aug 1999 13:31:03 +0000 (13:31 +0000)]
Submitted by: Lidong Zhou <ldzhou@cs.cornell.edu>

25 years agoAdd functions to allow extensions to be added to certificate requests.
Dr. Stephen Henson [Wed, 11 Aug 1999 13:08:58 +0000 (13:08 +0000)]
Add functions to allow extensions to be added to certificate requests.

Modify obj_dat.pl to take its files from the command line. Usage is now
perl obj_dat.pl objects.h obj_dat.h
this should avoid redirection shell escape problems under Win32.