oweals/openssl.git
25 years agoFinish off support for Certificate Policies extension.
Dr. Stephen Henson [Mon, 19 Apr 1999 17:55:11 +0000 (17:55 +0000)]
Finish off support for Certificate Policies extension.

25 years agoClean up prototypes (prepare for removing NOPROTO).
Ulf Möller [Mon, 19 Apr 1999 16:30:06 +0000 (16:30 +0000)]
Clean up prototypes (prepare for removing NOPROTO).

25 years agoDocument additional Configure flags.
Ulf Möller [Mon, 19 Apr 1999 15:19:58 +0000 (15:19 +0000)]
Document additional Configure flags.

25 years agoError in comment.
Ulf Möller [Mon, 19 Apr 1999 14:55:56 +0000 (14:55 +0000)]
Error in comment.

25 years agoFix typos in error codes.
Ulf Möller [Mon, 19 Apr 1999 14:45:02 +0000 (14:45 +0000)]
Fix typos in error codes.

25 years agoDefinition did not match prototype.
Ulf Möller [Mon, 19 Apr 1999 14:33:29 +0000 (14:33 +0000)]
Definition did not match prototype.

Pointed out by: Bernhard Simon <simon@zid.tuwien.ac.at>

25 years agoDefunct assembler files removed; various cleanups.
Ulf Möller [Mon, 19 Apr 1999 13:54:11 +0000 (13:54 +0000)]
Defunct assembler files removed; various cleanups.

New Ultrix and Alpha entries submitted by Bernhard Simon
<simon@zid.tuwien.ac.at>.

25 years agoSPARC v8 assembler BIGNUM code.
Ulf Möller [Mon, 19 Apr 1999 13:41:45 +0000 (13:41 +0000)]
SPARC v8 assembler BIGNUM code.

Submitted by: Andy Polyakov <appro@fy.chalmers.se>

25 years agoNew "Configure" entry (Solaris with debug info)
Bodo Möller [Mon, 19 Apr 1999 13:40:07 +0000 (13:40 +0000)]
New "Configure" entry (Solaris with debug info)

Submitted by:
Reviewed by:
PR:

25 years agoRemoved extra semicolons.
Bodo Möller [Mon, 19 Apr 1999 13:37:35 +0000 (13:37 +0000)]
Removed extra semicolons.

Submitted by:
Reviewed by:
PR:

25 years agoPass $PERL on make errors.
Ulf Möller [Mon, 19 Apr 1999 13:11:32 +0000 (13:11 +0000)]
Pass $PERL on make errors.

25 years agoInitial support for Certificate Policies extension: print out works but setting
Dr. Stephen Henson [Sun, 18 Apr 1999 23:21:03 +0000 (23:21 +0000)]
Initial support for Certificate Policies extension: print out works but setting
isn't fully implemented (yet).

25 years agoFix const declarations.
Ben Laurie [Sun, 18 Apr 1999 11:27:54 +0000 (11:27 +0000)]
Fix const declarations.

25 years agoUpdate dependencies.
Ben Laurie [Sun, 18 Apr 1999 11:10:22 +0000 (11:10 +0000)]
Update dependencies.

25 years agoAllow asn1parse to print out VISIBLESTRING and some code needed for certificate
Dr. Stephen Henson [Sat, 17 Apr 1999 23:55:39 +0000 (23:55 +0000)]
Allow asn1parse to print out VISIBLESTRING and some code needed for certificate
policies extension.

25 years agoMassive constification.
Ben Laurie [Sat, 17 Apr 1999 21:25:43 +0000 (21:25 +0000)]
Massive constification.

25 years agoAdd support for VISIBLESTRING and UTF8String
Dr. Stephen Henson [Sat, 17 Apr 1999 15:53:32 +0000 (15:53 +0000)]
Add support for VISIBLESTRING and UTF8String

25 years agoAnother STACK bites the dust.
Ben Laurie [Sat, 17 Apr 1999 10:28:46 +0000 (10:28 +0000)]
Another STACK bites the dust.

25 years agoAdd initial support for r2i RAW extensions which can access the config database
Dr. Stephen Henson [Fri, 16 Apr 1999 23:57:04 +0000 (23:57 +0000)]
Add initial support for r2i RAW extensions which can access the config database
add various X509V3_CTX helper functions and support for LHASH as the config
database.

25 years agoFix some warnings. Contributed by Anonymous.
Ben Laurie [Fri, 16 Apr 1999 18:13:27 +0000 (18:13 +0000)]
Fix some warnings. Contributed by Anonymous.

25 years agoAnother bug.
Ulf Möller [Fri, 16 Apr 1999 11:32:33 +0000 (11:32 +0000)]
Another bug.

25 years agoWrite random seed file in binary mode.
Ulf Möller [Fri, 16 Apr 1999 11:16:00 +0000 (11:16 +0000)]
Write random seed file in binary mode.

Submitted by: Richard Levitte <levitte@stacken.kth.se>

25 years agoFix a horrible BN bug in bn_expand2 which caused BN_add_word() et al to fail
Dr. Stephen Henson [Thu, 15 Apr 1999 23:07:00 +0000 (23:07 +0000)]
Fix a horrible BN bug in bn_expand2 which caused BN_add_word() et al to fail
when they cause the destination to expand.

To see how evil this is try this:

#include <pem.h>
main()
{
BIGNUM *bn = NULL;
        int i;
bn = BN_new();
BN_hex2bn(&bn, "FFFFFFFF");
BN_add_word(bn, 1);
printf("Value %s\n", BN_bn2hex(bn));
}

This would typically fail before the patch.

It also screws up if you comment out the BN_hex2bn line above or in any
situation where BN_add_word() causes the number of BN_ULONGs in the result
to change (try doubling the number of FFs).

25 years agoAdd new experimental ciphersuites. Bring naming into line with RFC.
Ben Laurie [Thu, 15 Apr 1999 18:52:13 +0000 (18:52 +0000)]
Add new experimental ciphersuites. Bring naming into line with RFC.

25 years agoJust use an ANSI declaration, instead.
Ben Laurie [Thu, 15 Apr 1999 10:10:21 +0000 (10:10 +0000)]
Just use an ANSI declaration, instead.

25 years ago/* Just some comments. */
Bodo Möller [Wed, 14 Apr 1999 23:47:41 +0000 (23:47 +0000)]
/* Just some comments. */

Submitted by:
Reviewed by:
PR:

25 years agoAdd some utilities to support SXNet extension also add support in DEF files
Dr. Stephen Henson [Wed, 14 Apr 1999 23:44:41 +0000 (23:44 +0000)]
Add some utilities to support SXNet extension also add support in DEF files
generator to typesafe stacks.

25 years agoCleaning up Ben's clean-ups :-)
Bodo Möller [Wed, 14 Apr 1999 23:10:11 +0000 (23:10 +0000)]
Cleaning up Ben's clean-ups :-)

Submitted by:
Reviewed by:
PR:

25 years agoMake Windows compilers happy.
Bodo Möller [Wed, 14 Apr 1999 21:43:02 +0000 (21:43 +0000)]
Make Windows compilers happy.

Submitted by:Tom Titchener
Reviewed by:
PR:

25 years agoSome tiny fixes.
Bodo Möller [Wed, 14 Apr 1999 20:17:23 +0000 (20:17 +0000)]
Some tiny fixes.

Submitted by:
Reviewed by:
PR:

Submitted by:
Reviewed by:
PR:

25 years agoTypo.
Ben Laurie [Wed, 14 Apr 1999 11:13:47 +0000 (11:13 +0000)]
Typo.

25 years agoStart with some plans...
Ralf S. Engelschall [Wed, 14 Apr 1999 09:32:51 +0000 (09:32 +0000)]
Start with some plans...

25 years agoDelete all the old X509V3 pack and unpack stuff and various structures and
Dr. Stephen Henson [Tue, 13 Apr 1999 23:56:39 +0000 (23:56 +0000)]
Delete all the old X509V3 pack and unpack stuff and various structures and
files associated with them. This stuff is all obsoleted by the new X509V3 code.

25 years agoSSL_ALLOW_ENULL was renamed to SSL_FORBID_ENULL some time ago by Ben.
Ralf S. Engelschall [Tue, 13 Apr 1999 11:01:44 +0000 (11:01 +0000)]
SSL_ALLOW_ENULL was renamed to SSL_FORBID_ENULL some time ago by Ben.

25 years agoSubmitted by:
Bodo Möller [Tue, 13 Apr 1999 02:32:38 +0000 (02:32 +0000)]
Submitted by:
Reviewed by:
PR:

25 years agoNew Configure option "rsaref".
Ulf Möller [Tue, 13 Apr 1999 00:58:49 +0000 (00:58 +0000)]
New Configure option "rsaref".

25 years agoDon#t auto-generate crypto/pem/pem.h -- a fixed file is fine for it.
Bodo Möller [Mon, 12 Apr 1999 19:58:17 +0000 (19:58 +0000)]
Don#t auto-generate crypto/pem/pem.h -- a fixed file is fine for it.

Submitted by:
Reviewed by:
PR:

25 years agoAdd type-safe STACKs and SETs.
Ben Laurie [Mon, 12 Apr 1999 17:23:57 +0000 (17:23 +0000)]
Add type-safe STACKs and SETs.

25 years agogcc claims this is a shadow, though I can't find what it is shadowing...
Ben Laurie [Mon, 12 Apr 1999 17:17:39 +0000 (17:17 +0000)]
gcc claims this is a shadow, though I can't find what it is shadowing...

25 years agoAdd `openssl ca -revoke <certfile>' facility which revokes a certificate
Ralf S. Engelschall [Mon, 12 Apr 1999 11:45:14 +0000 (11:45 +0000)]
Add `openssl ca -revoke <certfile>' facility which revokes a certificate
specified in <certfile> by updating the entry in the index.txt file.
This way one no longer has to edit the index.txt file manually for
revoking a certificate. The -revoke option does the gory details now.

Submitted by: Massimiliano Pala <madwolf@openca.org>
Cleaned up and integrated by: Ralf S. Engelschall

25 years agoFix `openssl crl -noout -text' combination where `-noout' killed the `-text'
Ralf S. Engelschall [Mon, 12 Apr 1999 10:36:16 +0000 (10:36 +0000)]
Fix `openssl crl -noout -text' combination where `-noout' killed the `-text'
option at all and this way the `-noout -text' combination was inconsistent in
`openssl crl' with the friends in `openssl x509|rsa|dsa'.

25 years agoMake sure a corresponding plain text error message exists for the
Ralf S. Engelschall [Mon, 12 Apr 1999 09:59:05 +0000 (09:59 +0000)]
Make sure a corresponding plain text error message exists for the
X509_V_ERR_CERT_REVOKED/23 error number which can occur when a
verify callback function determined that a certificate was revoked.

25 years agoObsoleted by new openssl command "list-cipher-commands".
Bodo Möller [Sun, 11 Apr 1999 02:52:44 +0000 (02:52 +0000)]
Obsoleted by new openssl command "list-cipher-commands".
Submitted by:
Reviewed by:
PR:

25 years agoSubmitted by:
Bodo Möller [Sun, 11 Apr 1999 02:49:35 +0000 (02:49 +0000)]
Submitted by:
Reviewed by:
PR:

25 years agoFix a few typos and tabs while I'm poking around in ca.c...
Ralf S. Engelschall [Sat, 10 Apr 1999 13:15:38 +0000 (13:15 +0000)]
Fix a few typos and tabs while I'm poking around in ca.c...

25 years agoRid the world of yet more evil casts.
Ben Laurie [Sat, 10 Apr 1999 12:09:17 +0000 (12:09 +0000)]
Rid the world of yet more evil casts.

25 years agoAdjust renegotiation slightly.
Ben Laurie [Sat, 10 Apr 1999 12:08:46 +0000 (12:08 +0000)]
Adjust renegotiation slightly.

25 years agoFix a typo in the X.509v3 docs: cRLSign instead of cRLCertSign is correct
Ralf S. Engelschall [Sat, 10 Apr 1999 11:33:28 +0000 (11:33 +0000)]
Fix a typo in the X.509v3 docs: cRLSign instead of cRLCertSign is correct
according to the sources.... found by Steffen Dettmer <steffen@tfh-berlin.de>.

25 years agoRid the world of more evil casts.
Ben Laurie [Sat, 10 Apr 1999 10:36:19 +0000 (10:36 +0000)]
Rid the world of more evil casts.

25 years agoInstall signal handler if we are using sigaction.
Ben Laurie [Sat, 10 Apr 1999 10:21:44 +0000 (10:21 +0000)]
Install signal handler if we are using sigaction.

25 years agoBugfix: s_client occasionally would sleep in select() when it should
Bodo Möller [Fri, 9 Apr 1999 20:54:25 +0000 (20:54 +0000)]
Bugfix: s_client occasionally would sleep in select() when it should
have checked SSL_pending() first.
Submitted by:
Reviewed by:
PR:

25 years agorecent changes.
Ulf Möller [Fri, 9 Apr 1999 17:04:32 +0000 (17:04 +0000)]
recent changes.

25 years agoTest PKCS#1 v1.5 padding as well.
Ulf Möller [Fri, 9 Apr 1999 16:26:37 +0000 (16:26 +0000)]
Test PKCS#1 v1.5 padding as well.

25 years agoUse Perl 5 even if Perl 4 comes first in the search path.
Ulf Möller [Fri, 9 Apr 1999 16:25:25 +0000 (16:25 +0000)]
Use Perl 5 even if Perl 4 comes first in the search path.

25 years agoSeparate DSA functionality from ASN.1 encoding.
Ulf Möller [Fri, 9 Apr 1999 16:24:32 +0000 (16:24 +0000)]
Separate DSA functionality from ASN.1 encoding.
New functions DSA_do_sign and DSA_do_verify to provide access to
the raw DSA values.

25 years agoPreprocessor file to allow testenc to test only those ciphers
Bodo Möller [Fri, 9 Apr 1999 10:44:50 +0000 (10:44 +0000)]
Preprocessor file to allow testenc to test only those ciphers
that are available.
Submitted by:
Reviewed by:
PR:

25 years agoTiny comment to improve code comprehensibility.
Bodo Möller [Fri, 9 Apr 1999 07:12:17 +0000 (07:12 +0000)]
Tiny comment to improve code comprehensibility.
Submitted by:
Reviewed by:
PR:

25 years agoAdd PKCS#5 v2.0 ASN1 structures.
Dr. Stephen Henson [Thu, 8 Apr 1999 23:55:42 +0000 (23:55 +0000)]
Add PKCS#5 v2.0 ASN1 structures.

25 years agoBugs.
Ulf Möller [Thu, 8 Apr 1999 20:45:53 +0000 (20:45 +0000)]
Bugs.

25 years agoNew "open issue" (ERR_...).
Bodo Möller [Thu, 8 Apr 1999 20:29:19 +0000 (20:29 +0000)]
New "open issue" (ERR_...).

Submitted by:
Reviewed by:
PR:

25 years agoAvoid error message about missing gcc.
Ulf Möller [Thu, 8 Apr 1999 19:51:16 +0000 (19:51 +0000)]
Avoid error message about missing gcc.

Submitted by: Niels Poppe <niels@netbox.org>

25 years agoBe more optimistic about the availability of termios for ~ECHO,
Bodo Möller [Thu, 8 Apr 1999 17:10:27 +0000 (17:10 +0000)]
Be more optimistic about the availability of termios for ~ECHO,
because sgtty emulation tends to fail on various systems.
Submitted by:
Reviewed by:
PR:

25 years agoBad dependencies.
Ulf Möller [Thu, 8 Apr 1999 15:19:36 +0000 (15:19 +0000)]
Bad dependencies.

25 years agoTest RSA after the BN library it is based on.
Ulf Möller [Thu, 8 Apr 1999 15:09:24 +0000 (15:09 +0000)]
Test RSA after the BN library it is based on.

Submitted by: Anonymous <nobody@replay.com>

25 years agoFix linux-mips entry.
Ulf Möller [Thu, 8 Apr 1999 00:10:19 +0000 (00:10 +0000)]
Fix linux-mips entry.

Submitted by: Niels Poppe <niels@netbox.org>

25 years agobn_div_words has been added to alpha.s (Hannes Reinecke's patch).
Ulf Möller [Wed, 7 Apr 1999 23:37:33 +0000 (23:37 +0000)]
bn_div_words has been added to alpha.s (Hannes Reinecke's patch).

25 years agoMore assembler problems; new OCSP patch; obsolete patches removed from
Ulf Möller [Wed, 7 Apr 1999 17:31:11 +0000 (17:31 +0000)]
More assembler problems; new OCSP patch; obsolete patches removed from
list.

25 years agoBug fix for X.509 two-digit year.
Ulf Möller [Tue, 6 Apr 1999 15:29:54 +0000 (15:29 +0000)]
Bug fix for X.509 two-digit year.

Pointed out by Alexander Tyshlek <tyshlek@fuib.com> and Peter Gutmann
<pgut001@cs.auckland.ac.nz>

25 years agoRemove obsolete files from SSLeay 0.8.
Ulf Möller [Tue, 6 Apr 1999 15:22:55 +0000 (15:22 +0000)]
Remove obsolete files from SSLeay 0.8.

25 years agoDon't shadow.
Ben Laurie [Sat, 3 Apr 1999 14:52:01 +0000 (14:52 +0000)]
Don't shadow.

25 years agoAvoid EADDRINUSE for s_server.
Bodo Möller [Fri, 2 Apr 1999 23:35:43 +0000 (23:35 +0000)]
Avoid EADDRINUSE for s_server.

Submitted by:
Reviewed by:
PR:

25 years agoDid a 'make errors' to update asn1 error codes now typo is fixed
Dr. Stephen Henson [Thu, 1 Apr 1999 23:42:53 +0000 (23:42 +0000)]
Did a 'make errors' to update asn1 error codes now typo is fixed

25 years agoDelete some auto generated files and correct a typo in crypto/asn1/p5_pbe.c
Dr. Stephen Henson [Thu, 1 Apr 1999 23:18:05 +0000 (23:18 +0000)]
Delete some auto generated files and correct a typo in crypto/asn1/p5_pbe.c

25 years agoInclude bn.h instead of defining BIGNUM as char.
Ulf Möller [Thu, 1 Apr 1999 20:05:04 +0000 (20:05 +0000)]
Include bn.h instead of defining BIGNUM as char.

25 years agoUpdate dependencies.
Ben Laurie [Thu, 1 Apr 1999 15:51:21 +0000 (15:51 +0000)]
Update dependencies.

25 years agoRemove obsolete files.
Ulf Möller [Thu, 1 Apr 1999 13:34:22 +0000 (13:34 +0000)]
Remove obsolete files.

25 years agoPointer to Ariel Glenn's SSLeay documentation.
Ulf Möller [Thu, 1 Apr 1999 13:09:56 +0000 (13:09 +0000)]
Pointer to Ariel Glenn's SSLeay documentation.

25 years agoNew Makefile variables $(RANLIB) and $(PERL).
Ulf Möller [Thu, 1 Apr 1999 12:34:33 +0000 (12:34 +0000)]
New Makefile variables $(RANLIB) and $(PERL).

25 years agopre-0.9.3 development version.
Ulf Möller [Thu, 1 Apr 1999 11:58:28 +0000 (11:58 +0000)]
pre-0.9.3 development version.

25 years agoAdd .cvsignore in new pkcs12 directory
Ralf S. Engelschall [Thu, 1 Apr 1999 10:24:51 +0000 (10:24 +0000)]
Add .cvsignore in new pkcs12 directory

25 years agoDon't shadow.
Ben Laurie [Thu, 1 Apr 1999 10:17:35 +0000 (10:17 +0000)]
Don't shadow.

25 years agoNew option to generate 80386 code.
Ulf Möller [Wed, 31 Mar 1999 12:38:27 +0000 (12:38 +0000)]
New option to generate 80386 code.

25 years agoNew option "-showcerts" for s_client
Bodo Möller [Wed, 31 Mar 1999 12:06:30 +0000 (12:06 +0000)]
New option "-showcerts" for s_client

Slight cleanup in ssl/

25 years agoRemove file that is to be auto-generated by sha1-586.pl.
Ulf Möller [Tue, 30 Mar 1999 18:41:16 +0000 (18:41 +0000)]
Remove file that is to be auto-generated by sha1-586.pl.

PR:

25 years agoTypo.
Ulf Möller [Tue, 30 Mar 1999 16:17:03 +0000 (16:17 +0000)]
Typo.

PR:

25 years agoNew switch "386" to generate 80386 code (emulate bswap).
Ulf Möller [Tue, 30 Mar 1999 12:49:36 +0000 (12:49 +0000)]
New switch "386" to generate 80386 code (emulate bswap).

25 years agoRemove deleted PKCS#12 functions from pkcs12.h, get rid of object creation
Dr. Stephen Henson [Mon, 29 Mar 1999 22:18:54 +0000 (22:18 +0000)]
Remove deleted PKCS#12 functions from pkcs12.h, get rid of object creation
kludge, remove CRs from ssl_ciph.c and update Win32 functions for PKCS#12
code. It might compile under Win32 now ...

25 years agoInclude pkcs12 program as part of openssl. This completes most of the PKCS#12
Dr. Stephen Henson [Mon, 29 Mar 1999 17:50:26 +0000 (17:50 +0000)]
Include pkcs12 program as part of openssl. This completes most of the PKCS#12
integration.

25 years agoAdded comments to des_enc_{read,write} functions warning about their
Bodo Möller [Mon, 29 Mar 1999 16:07:36 +0000 (16:07 +0000)]
Added comments to des_enc_{read,write} functions warning about their
cryptographic weakness (IV reuse).

25 years agoVarious PKCS#12 related tidies and fixes: it might even compile now :-)
Dr. Stephen Henson [Mon, 29 Mar 1999 00:19:55 +0000 (00:19 +0000)]
Various PKCS#12 related tidies and fixes: it might even compile now :-)

25 years agoYet more PKCS#12 integration: add lots of files under crypto/pkcs12 and add
Dr. Stephen Henson [Sun, 28 Mar 1999 23:17:34 +0000 (23:17 +0000)]
Yet more PKCS#12 integration: add lots of files under crypto/pkcs12 and add
them to the build environment.

25 years agoFurther PKCS#12 integration, PBE, PKCS#8 additions.
Dr. Stephen Henson [Sun, 28 Mar 1999 17:46:10 +0000 (17:46 +0000)]
Further PKCS#12 integration, PBE, PKCS#8 additions.

25 years agoThis is the beginning of PKCS#12 integration. This just adds the PKCS#12
Dr. Stephen Henson [Sun, 28 Mar 1999 01:00:56 +0000 (01:00 +0000)]
This is the beginning of PKCS#12 integration. This just adds the PKCS#12
objects to objects.h

NOTE: during this integration it will not be possible to compile my PKCS#12
program against OpenSSL because there will be conflicts between the external
functionality and that being added to the core code.

25 years agoextranet file added...
Dr. Stephen Henson [Sat, 27 Mar 1999 14:07:44 +0000 (14:07 +0000)]
extranet file added...

25 years agoAdd initial support for Thawte strong extranet certificate extensions and
Dr. Stephen Henson [Sat, 27 Mar 1999 14:06:25 +0000 (14:06 +0000)]
Add initial support for Thawte strong extranet certificate extensions and
include an 'indent' option to V3 stuff.

25 years agoLinux PPC support.
Ben Laurie [Sat, 27 Mar 1999 13:03:37 +0000 (13:03 +0000)]
Linux PPC support.

25 years agoFix Alpha assembler, remove redundant file.
Ben Laurie [Sat, 27 Mar 1999 12:53:21 +0000 (12:53 +0000)]
Fix Alpha assembler, remove redundant file.

25 years agoMake sure the RSA OAEP test is skipped under -DRSAref because
Ralf S. Engelschall [Thu, 25 Mar 1999 07:49:33 +0000 (07:49 +0000)]
Make sure the RSA OAEP test is skipped under -DRSAref because
OAEP isn't supported when OpenSSL is built with RSAref.

Submitted by: Ulf Moeller <ulf@fitug.de>
Reviewed by: Ralf S. Engelschall

25 years agoMove definitions of IS_SET/IS_SEQUENCE inside crypto/asn1/asn1.h
Ralf S. Engelschall [Wed, 24 Mar 1999 10:24:35 +0000 (10:24 +0000)]
Move definitions of IS_SET/IS_SEQUENCE inside crypto/asn1/asn1.h
so they no longer are missing under -DNOPROTO.

Submitted by: Soren S. Jorvang <soren@t.dk>
Reviewed by: Ralf S. Engelschall

25 years agoUpdate after release...
Ralf S. Engelschall [Tue, 23 Mar 1999 14:48:59 +0000 (14:48 +0000)]
Update after release...