Bodo Möller [Fri, 14 Jun 2002 12:20:27 +0000 (12:20 +0000)]
New option SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS for disabling CBC
vulnerability workaround (included in SSL_OP_ALL).
PR: #90
Richard Levitte [Thu, 13 Jun 2002 23:38:11 +0000 (23:38 +0000)]
make update
Richard Levitte [Thu, 13 Jun 2002 23:37:26 +0000 (23:37 +0000)]
Merge from HEAD.
Richard Levitte [Thu, 13 Jun 2002 21:44:01 +0000 (21:44 +0000)]
Tentatively add support for UWIN, a Unix-like environment on top of Windows.
PR: 62
Richard Levitte [Thu, 13 Jun 2002 21:11:57 +0000 (21:11 +0000)]
Make sure that any dash in the prefix before the version number is removed.
PR: 96
Richard Levitte [Thu, 13 Jun 2002 20:44:38 +0000 (20:44 +0000)]
Add support for DJGPP.
Richard Levitte [Thu, 13 Jun 2002 20:40:49 +0000 (20:40 +0000)]
Add support for DJGPP.
PR: 75
Richard Levitte [Thu, 13 Jun 2002 19:59:26 +0000 (19:59 +0000)]
Check for the executable $openssl, not just the file.
Part of PR: 75
Richard Levitte [Thu, 13 Jun 2002 19:50:26 +0000 (19:50 +0000)]
Parse directory using both slashes and backslashes as separators.
Do file copying in term of perl statements instead of using cp.
Part of PR: 75
Richard Levitte [Thu, 13 Jun 2002 19:42:06 +0000 (19:42 +0000)]
Making a softlink from crypto/des/asm/perlasm to crypto/perlasm isn't
strictly necessary, so let's not do that.
Lutz Jänicke [Thu, 13 Jun 2002 17:38:58 +0000 (17:38 +0000)]
Add missing prototypes.
Submitted by: Goetz Babin-Ebell <babinebell@trustcenter.de>
Reviewed by:
PR: 89
Dr. Stephen Henson [Thu, 13 Jun 2002 12:54:52 +0000 (12:54 +0000)]
Fix ext_dat.h extension ordering.
Reinstate -reqout code.
Avoid coredump in ocsp if setup_verify
fails.
Fix typo in ocsp usage message.
Lutz Jänicke [Thu, 13 Jun 2002 11:51:31 +0000 (11:51 +0000)]
Add OIDs for Secure Electronic Transactions (SET)
Submitted by: Vadim Fedukovich <vf@unity.net>
Reviewed by: Lutz Jaenicke
PR: 80
Lutz Jänicke [Thu, 13 Jun 2002 08:52:25 +0000 (08:52 +0000)]
Clarify formulation (proposed by Bodo Moeller).
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Thu, 13 Jun 2002 00:43:59 +0000 (00:43 +0000)]
The new ASN1 code automatically allocates
structures for fields that are not OPTIONAL.
However in the AUTHORITY_INFO_ACCESS case
the 'location' field was set to NULL in
the old code.
So in 0.9.7+ we should free up the field before
overwriting it in v2i_AUTHORITY_INFO_ACCESS.
Lutz Jänicke [Wed, 12 Jun 2002 20:42:04 +0000 (20:42 +0000)]
Make change uniqueIdentifier -> x500UniqueIdentifier clearly visible.
Submitted by:
Reviewed by:
PR: 82
Lutz Jänicke [Wed, 12 Jun 2002 20:14:04 +0000 (20:14 +0000)]
Correct wrong usage information.
Submitted by:
Reviewed by:
PR: 95
Lutz Jänicke [Wed, 12 Jun 2002 12:25:42 +0000 (12:25 +0000)]
Support building the distribution .tar file on platforms with limited
argument list length. This requires Gnu-tar. As we use the non-standard
"tardy" software anyway, it doesn't hurt too much to require Gnu-tar.
"make dist" will probably only be used by team-members anyway.
Submitted by:
Reviewed by:
PR:
Ben Laurie [Tue, 11 Jun 2002 11:41:26 +0000 (11:41 +0000)]
Handle read failures better.
Bodo Möller [Mon, 10 Jun 2002 11:45:21 +0000 (11:45 +0000)]
fix for 'make update'
Lutz Jänicke [Mon, 10 Jun 2002 08:11:20 +0000 (08:11 +0000)]
Make sure that flags are passed to "make" subprocesses.
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 6 Jun 2002 10:19:33 +0000 (10:19 +0000)]
For the main directory, Makefile.org is significant :-)
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 6 Jun 2002 10:14:16 +0000 (10:14 +0000)]
Make sure that settings are passed back and forth when walking around
in the tree during build.
Reinstall default PERL settings in Makefiles, as the real reason for the
failure was that the settings were not passed.
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 6 Jun 2002 07:30:45 +0000 (07:30 +0000)]
New OID for X509 usage: pseudonym
Submitted by: Michael Bell <michael.bell@rz.hu-berlin.de>
Reviewed by: Lutz Jaenicke
PR: 83
Richard Levitte [Wed, 5 Jun 2002 14:10:31 +0000 (14:10 +0000)]
Make perl replacement for dirname, for system that lack the latter.
PR: 81
Richard Levitte [Wed, 5 Jun 2002 13:47:15 +0000 (13:47 +0000)]
It's not good to have a pointer point at something in an inner block.
PR: 66
Richard Levitte [Wed, 5 Jun 2002 11:58:23 +0000 (11:58 +0000)]
Check errors when parsing a PKCS8INF PEM FILE, or there will be a core dump on error.
PR: 77
Richard Levitte [Wed, 5 Jun 2002 09:30:20 +0000 (09:30 +0000)]
Documentation bug corrected.
PR: 70
Richard Levitte [Wed, 5 Jun 2002 09:08:49 +0000 (09:08 +0000)]
Since there's no continuation, the ; can go as well :-)
Lutz Jänicke [Wed, 5 Jun 2002 07:56:14 +0000 (07:56 +0000)]
There is no continuation at this point.
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Wed, 5 Jun 2002 07:27:21 +0000 (07:27 +0000)]
On some systems the default "perl" may still be perl4, use the correct
version determined by "config" instead.
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Wed, 5 Jun 2002 07:01:39 +0000 (07:01 +0000)]
The correct PERL interpreter is passed via commandline.
Submitted by:
Reviewed by:
PR:
Richard Levitte [Wed, 5 Jun 2002 06:45:27 +0000 (06:45 +0000)]
Correct syntax in ssl-lib.com
maketests.com was missing the TCP/IP options TCPIP and NONE
Richard Levitte [Wed, 5 Jun 2002 05:00:41 +0000 (05:00 +0000)]
Update the recognision of GCC version numbers to handle the prefix text
that GCC 3.1 adds to the --version output
Richard Levitte [Tue, 4 Jun 2002 22:32:17 +0000 (22:32 +0000)]
make update (including adjusting libeay.num in HEAD to the changes in the
0.9.7-stable libeay.num
Lutz Jänicke [Tue, 4 Jun 2002 20:44:10 +0000 (20:44 +0000)]
Typo.
Submitted by:
Reviewed by:
PR: 72
Richard Levitte [Mon, 3 Jun 2002 15:27:52 +0000 (15:27 +0000)]
use sstrsep() to get the proper type to aoti().
Remove unneeded cast in ustrsep().
PR: 69
Lutz Jänicke [Sat, 1 Jun 2002 15:21:55 +0000 (15:21 +0000)]
Ok, we are rolling 0.9.7-beta1 now.
Submitted by:
Reviewed by:
PR:
Ben Laurie [Fri, 31 May 2002 14:34:15 +0000 (14:34 +0000)]
Fix a warning.
Ben Laurie [Fri, 31 May 2002 14:28:30 +0000 (14:28 +0000)]
Fix warnings.
Richard Levitte [Fri, 31 May 2002 13:16:37 +0000 (13:16 +0000)]
Document the AES changes.
Richard Levitte [Fri, 31 May 2002 13:13:51 +0000 (13:13 +0000)]
Add the AES test vectors from NIST document SP800-38A.
Richard Levitte [Fri, 31 May 2002 13:12:54 +0000 (13:12 +0000)]
Make it possible to give vectors only for decryption or encryption.
Richard Levitte [Fri, 31 May 2002 13:11:48 +0000 (13:11 +0000)]
For CFB and OFB modes, always create the encryption key.
Richard Levitte [Fri, 31 May 2002 13:10:24 +0000 (13:10 +0000)]
Declare the CFB and OFB modes for AES, and prepare for a declaration
of CTR mode.
Richard Levitte [Fri, 31 May 2002 13:07:45 +0000 (13:07 +0000)]
In CFB mode, the iv is always encrypted.
Richard Levitte [Thu, 30 May 2002 18:06:52 +0000 (18:06 +0000)]
Reformat the CFLAG string so it can be made part of a C string.
Incidently, this works pretty well on the command line as well.
PR: 52
Richard Levitte [Thu, 30 May 2002 17:28:23 +0000 (17:28 +0000)]
Support the newly release gcc 3.1 on 64-bit Solaris. Not automatic.
PR: 57
Richard Levitte [Thu, 30 May 2002 17:07:55 +0000 (17:07 +0000)]
Support shared libraries properly on linux-sparcv[89].
PR: 60
Richard Levitte [Thu, 30 May 2002 16:55:31 +0000 (16:55 +0000)]
a B< that wasn't properly ended.
Richard Levitte [Thu, 30 May 2002 16:50:38 +0000 (16:50 +0000)]
Check the return values where memory allocation failures may happen.
PR: 49
Richard Levitte [Thu, 30 May 2002 16:24:26 +0000 (16:24 +0000)]
CAformat should not be used for CA key format.
Richard Levitte [Thu, 30 May 2002 15:45:02 +0000 (15:45 +0000)]
Make sure that MS_STATIC isn't defined to 'static' under Win32.
PR: 51
Richard Levitte [Thu, 30 May 2002 15:30:21 +0000 (15:30 +0000)]
pod2man.pl would only remove the first LF from the name.
Richard Levitte [Thu, 30 May 2002 15:18:07 +0000 (15:18 +0000)]
Apparently, there are still chances we have to deal with buggy pod2man versions.
Deal with that by testing any available pod2man and using it if appropriate,
and falling back to util/pod2man.pl if none was found.
Richard Levitte [Thu, 30 May 2002 14:06:17 +0000 (14:06 +0000)]
Correct AES counter mode, which incorrectly incremented the counter before
using it.
PR: 56
Richard Levitte [Thu, 30 May 2002 12:16:51 +0000 (12:16 +0000)]
Correct darwin shared library support.
PR: 39
Richard Levitte [Thu, 30 May 2002 10:47:52 +0000 (10:47 +0000)]
Some shlib extensions were in the wrong field
Richard Levitte [Thu, 30 May 2002 10:18:23 +0000 (10:18 +0000)]
Our copy of pod2man.pl is old and comparatively broken, so lets remove it.
PR: 30
Richard Levitte [Thu, 30 May 2002 09:39:19 +0000 (09:39 +0000)]
Add more warnings for my debug targets.
Richard Levitte [Thu, 30 May 2002 06:24:46 +0000 (06:24 +0000)]
Remove the duplicate description of -out.
PR: 28
Dr. Stephen Henson [Wed, 29 May 2002 23:11:55 +0000 (23:11 +0000)]
Make i2c_ASN1_BIT_STRING return the correct length.
Richard Levitte [Wed, 29 May 2002 21:00:33 +0000 (21:00 +0000)]
Set DLOPEN_FLAG the same way on NetBSD as on OpenBSD.
PR: 58, submitted by andrew@cis.uoguelph.ca
Richard Levitte [Wed, 29 May 2002 08:31:45 +0000 (08:31 +0000)]
There is a chance that the input string is larger than size, and on VMS,
this wasn't checked and could possibly be exploitable (slim chance, but still)
Lutz Jänicke [Tue, 28 May 2002 17:48:12 +0000 (17:48 +0000)]
Remove item listed twice <kromJx@crosswinds.net>.
Submitted by:
Reviewed by:
PR:
Ulf Möller [Mon, 27 May 2002 19:54:41 +0000 (19:54 +0000)]
as in main branch
Bodo Möller [Fri, 24 May 2002 20:41:07 +0000 (20:41 +0000)]
Change as in main branch:
Use assembler implementations with Cygwin.
This also fixes the bn_sub_part_word problem.
Richard Levitte [Thu, 23 May 2002 23:32:30 +0000 (23:32 +0000)]
Recover from errors
Richard Levitte [Thu, 23 May 2002 15:27:21 +0000 (15:27 +0000)]
Avoid loops when linking doesn't work
Richard Levitte [Thu, 23 May 2002 15:25:27 +0000 (15:25 +0000)]
Forgot this file.
Richard Levitte [Wed, 22 May 2002 11:37:02 +0000 (11:37 +0000)]
Allow the use of the TCP/IP stack keyword TCPIP and NONE
Richard Levitte [Wed, 22 May 2002 11:35:41 +0000 (11:35 +0000)]
Use OPENSSL_SYS_VMS instead of just VMS
Richard Levitte [Wed, 22 May 2002 07:58:02 +0000 (07:58 +0000)]
Update copyright years.
This has already been applied in the main branch.
Richard Levitte [Wed, 22 May 2002 07:56:38 +0000 (07:56 +0000)]
Use 0 instead of NULL when casting to function pointers, to avoid
warnings from compilers when NULL is defined as '((void *)0)'.
This has already been applied in the main branch.
Richard Levitte [Wed, 22 May 2002 07:55:03 +0000 (07:55 +0000)]
Remove warnings about uninitialised variables.
This has already been applied in the main branch.
Richard Levitte [Wed, 22 May 2002 07:53:53 +0000 (07:53 +0000)]
Remove warnings about unused symbols when configured with no-rsa.
Richard Levitte [Wed, 22 May 2002 07:49:37 +0000 (07:49 +0000)]
This file was removed long ago. Why it's still in this branch is a
mystery to me.
Bodo Möller [Tue, 21 May 2002 09:00:54 +0000 (09:00 +0000)]
accept NULL in 'free' functions
Dr. Stephen Henson [Sun, 19 May 2002 16:32:21 +0000 (16:32 +0000)]
Reorganise -subj option code, fix buffer overrun.
Dr. Stephen Henson [Sun, 19 May 2002 12:00:46 +0000 (12:00 +0000)]
Fix Mingw32 asm build: use the Unix
bignum assembly method of bn-586.pl
and co-586.pl which (for some reason)
VC++ doesn't use.
Dr. Stephen Henson [Sat, 18 May 2002 23:42:20 +0000 (23:42 +0000)]
Add missing EVP_CIPHER_CTX_init call.
Lutz Jänicke [Thu, 16 May 2002 17:44:50 +0000 (17:44 +0000)]
Fix incorrect =over 4 location.
Submitted by: David Waitzman <djw@bbn.com>
Reviewed by: Lutz Jaenicke
PR: [openssl.org #38]
Bodo Möller [Thu, 16 May 2002 12:53:34 +0000 (12:53 +0000)]
fix EVP_dsa_sha macro
Submitted by: Nils Larsch
Lutz Jänicke [Thu, 16 May 2002 10:00:16 +0000 (10:00 +0000)]
Use the indirect way to the actual request tracker, so that people
also are informed about the credentials required for guest access
and the operation instructions.
Submitted by:
Reviewed by:
PR:
Bodo Möller [Thu, 16 May 2002 09:31:27 +0000 (09:31 +0000)]
update
Dr. Stephen Henson [Wed, 15 May 2002 18:23:07 +0000 (18:23 +0000)]
Oops, forgot CHANGES entry and description:
Allow reuse of cipher contexts by removing
automatic cleanup in EVP_*Final().
Dr. Stephen Henson [Wed, 15 May 2002 17:52:19 +0000 (17:52 +0000)]
Zero cipher_data in EVP_CIPHER_CTX_cleanup
Add cleanup calls to evp_test.c
Bodo Möller [Tue, 14 May 2002 19:03:12 +0000 (19:03 +0000)]
make b_print.c consistent with the rest of OpenSSL:
disable assert() except for debug builds
Bodo Möller [Tue, 14 May 2002 17:19:26 +0000 (17:19 +0000)]
apply mingw32 patches from main branch
Lutz Jänicke [Sun, 12 May 2002 20:36:49 +0000 (20:36 +0000)]
Add missing '"'
Submitted by: Boyd Gerber <gerberb@zenez.com>
Reviewed by:
PR:
Lutz Jänicke [Sun, 12 May 2002 19:44:19 +0000 (19:44 +0000)]
Recognize PPC64 target.
Submitted by:
Reviewed by:
PR: 26
Dr. Stephen Henson [Sat, 11 May 2002 17:33:01 +0000 (17:33 +0000)]
EVP_SealFinal should return a value.
Dr. Stephen Henson [Sat, 11 May 2002 12:42:23 +0000 (12:42 +0000)]
closedir is not used on Win32.
Dr. Stephen Henson [Fri, 10 May 2002 22:57:29 +0000 (22:57 +0000)]
Add config entry debug-steve-linux-pseudo64. This sets the
SIXTY_FOUR bignum library option to use 64 bit operations
on the 32 bit linux platform.
This is very inefficient but it can be used to test some
of the 64 bit logic on a 32 bit platform.
Dr. Stephen Henson [Fri, 10 May 2002 22:22:55 +0000 (22:22 +0000)]
Fallback to normal multiply if n2 == 8 and dna or dnb is not zero
in bn_mul_recursive.
This is (hopefully) what was triggering bignum errors on 64 bit
platforms and causing the BN_mod_mul test to fail.
Dr. Stephen Henson [Fri, 10 May 2002 22:08:22 +0000 (22:08 +0000)]
Avoid gcc warning: BN_DEC_CONV when SIXTY_FOUR_BIT is defined is unsigned.
Richard Levitte [Thu, 9 May 2002 23:53:35 +0000 (23:53 +0000)]
Updating status for 0.9.6d
Richard Levitte [Thu, 9 May 2002 23:41:51 +0000 (23:41 +0000)]
Synchronise the FAQ
Richard Levitte [Thu, 9 May 2002 20:14:50 +0000 (20:14 +0000)]
Make the huge buffer smaller, so the size becomes reasonable for small-stack environments.
Notified by Verdon Walker <VWalker@novell.com>
Richard Levitte [Thu, 9 May 2002 18:27:56 +0000 (18:27 +0000)]
One place where VMS wasn't changed to OPENSSL_SYS_VMS...