Richard Levitte [Wed, 3 Apr 2002 14:47:50 +0000 (14:47 +0000)]
Cast the pointers to the BIGNUM data to unsigned long *. This would be
harmful if we didn't also pass the exact number of bytes of that data
Richard Levitte [Wed, 3 Apr 2002 14:47:38 +0000 (14:47 +0000)]
Cast the pointers to the BIGNUM data to unsigned long *. This would be
harmful if we didn't also pass the exact number of bytes of that data
Richard Levitte [Fri, 29 Mar 2002 23:48:55 +0000 (23:48 +0000)]
Fix of mixup bwtween SOMAXCONN and SO_MAXCONN.
Furthermore, make SO_MAXCONN the first choice, since that's the standard
(as far as I know).
Richard Levitte [Fri, 29 Mar 2002 23:48:43 +0000 (23:48 +0000)]
Fix of mixup bwtween SOMAXCONN and SO_MAXCONN.
Furthermore, make SO_MAXCONN the first choice, since that's the standard
(as far as I know).
Lutz Jänicke [Tue, 26 Mar 2002 17:18:48 +0000 (17:18 +0000)]
Make short names of objects RFC2256-compliant.
Lutz Jänicke [Tue, 26 Mar 2002 17:15:32 +0000 (17:15 +0000)]
Make short names of objects RFC2256-compliant.
Submitted by:
Reviewed by:
PR:
Richard Levitte [Tue, 26 Mar 2002 16:42:38 +0000 (16:42 +0000)]
A forgotten file
Richard Levitte [Tue, 26 Mar 2002 14:28:04 +0000 (14:28 +0000)]
Add the possibility to enable olde des support, not just disable it, for future support. Redocument
Richard Levitte [Tue, 26 Mar 2002 14:26:08 +0000 (14:26 +0000)]
Add the possibility to enable olde des support, not just disable it, for future support. Redocument
Richard Levitte [Tue, 26 Mar 2002 13:59:22 +0000 (13:59 +0000)]
Add the mapping of des_random_seed() for 0.9.6 compatibility.
Make sure DES_cblock is defined at all times (meaning one shouldn't include
openssl/des_old.h directly any more).
Richard Levitte [Tue, 26 Mar 2002 13:58:30 +0000 (13:58 +0000)]
Add the mapping of des_random_seed() for 0.9.6 compatibility.
Make sure DES_cblock is defined at all times (meaning one shouldn't include
openssl/des_old.h directly any more).
Richard Levitte [Tue, 26 Mar 2002 13:54:15 +0000 (13:54 +0000)]
Correct the mapping for des_read_pw()
Richard Levitte [Tue, 26 Mar 2002 13:54:04 +0000 (13:54 +0000)]
Correct the mapping for des_read_pw()
Richard Levitte [Tue, 26 Mar 2002 12:44:35 +0000 (12:44 +0000)]
Make the change to strong keys in the string to key(s) functions experimental in the main trunk as well
Bodo Möller [Mon, 25 Mar 2002 23:41:32 +0000 (23:41 +0000)]
fix warnings
Submitted by: Nils Larsch
Bodo Möller [Mon, 25 Mar 2002 23:18:11 +0000 (23:18 +0000)]
fix memory leak
Submitted by: Nils Larsch
Bodo Möller [Mon, 25 Mar 2002 23:17:35 +0000 (23:17 +0000)]
fix memory leak
Submitted by: Nils Larsch
Bodo Möller [Mon, 25 Mar 2002 23:15:21 +0000 (23:15 +0000)]
add missing declaration
Submitted by: Nils Larsch
Bodo Möller [Mon, 25 Mar 2002 23:14:50 +0000 (23:14 +0000)]
add missing declaration
Submitted by: Nils Larsch
Lutz Jänicke [Mon, 25 Mar 2002 17:12:24 +0000 (17:12 +0000)]
Fix typo (Craig Davison <cd@securityfocus.com>).
Lutz Jänicke [Mon, 25 Mar 2002 17:11:25 +0000 (17:11 +0000)]
Fix typo (Craig Davison <cd@securityfocus.com>).
Submitted by:
Reviewed by:
PR:
Bodo Möller [Fri, 22 Mar 2002 11:02:45 +0000 (11:02 +0000)]
fix conditational compilation for OPENSSL_NO_...
Bodo Möller [Fri, 22 Mar 2002 11:02:13 +0000 (11:02 +0000)]
fix conditational compilation for OPENSSL_NO_...
Richard Levitte [Fri, 22 Mar 2002 10:51:41 +0000 (10:51 +0000)]
Merge changes from 0.9.7-stable
Richard Levitte [Fri, 22 Mar 2002 10:46:13 +0000 (10:46 +0000)]
Key schedules are given as arguments a bit differently in 0.9.6 and
earlier. Also, it was an error to define crypt() at all times.
Richard Levitte [Fri, 22 Mar 2002 10:32:23 +0000 (10:32 +0000)]
Merge changes from 0.9.7-stable
Richard Levitte [Fri, 22 Mar 2002 10:29:56 +0000 (10:29 +0000)]
Key schedules are given as arguments a bit differently in 0.9.6 and
earlier. Also, a few 0.9.6 functions were missing their mappings.
Richard Levitte [Fri, 22 Mar 2002 02:49:46 +0000 (02:49 +0000)]
Merge in DES changed from 0.9.7-stable.
Richard Levitte [Fri, 22 Mar 2002 02:42:57 +0000 (02:42 +0000)]
Merge in DES changed from 0.9.7-stable.
Richard Levitte [Fri, 22 Mar 2002 02:36:58 +0000 (02:36 +0000)]
Use the more modern DES API in the openssl subcommands.
Richard Levitte [Fri, 22 Mar 2002 02:33:24 +0000 (02:33 +0000)]
Change des_old.h so OpenSSL 0.9.6 compatibility is default. One must
define OPENSSL_DES_LIBDES_COMPATIBILITY to get libdes compatibility.
At the same time, correct a couple of argument errors for the cfb
encryption routines.
Make destest use as much of the old API as possible, to make sure it
works properly. Other tests will use the new API...
Lutz Jänicke [Thu, 21 Mar 2002 19:17:06 +0000 (19:17 +0000)]
Fix buggy if-condition (thomas poindessous <poinde_t@epita.fr>).
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 21 Mar 2002 19:16:02 +0000 (19:16 +0000)]
Fix buggy if-condition (thomas poindessous <poinde_t@epita.fr>).
Lutz Jänicke [Thu, 21 Mar 2002 19:10:07 +0000 (19:10 +0000)]
Remove superflous statement <justin.fletcher@ntlworld.com>.
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 21 Mar 2002 19:08:35 +0000 (19:08 +0000)]
Remove superflous (and buggy) statement <justin.fletcher@ntlworld.com>.
Bodo Möller [Wed, 20 Mar 2002 16:04:04 +0000 (16:04 +0000)]
fix DH_generate_parameters for general 'generator'
Bodo Möller [Wed, 20 Mar 2002 16:02:46 +0000 (16:02 +0000)]
fix DH_generate_parameters for general 'generator'
Bodo Möller [Wed, 20 Mar 2002 10:18:07 +0000 (10:18 +0000)]
New function EC_GROUP_check_discriminant().
Restructure implementation of EC_GROUP_check().
Submitted by: Nils Larsch
Lutz Jänicke [Tue, 19 Mar 2002 16:44:26 +0000 (16:44 +0000)]
Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Tue, 19 Mar 2002 16:42:09 +0000 (16:42 +0000)]
Map new X509 verification errors to alert codes (Tom Wu <tom@arcot.com>).
Bodo Möller [Tue, 19 Mar 2002 09:51:31 +0000 (09:51 +0000)]
Fix typo.
Submitted by: Nils Larsch
Dr. Stephen Henson [Tue, 19 Mar 2002 01:28:00 +0000 (01:28 +0000)]
Initialize ciph_ctx in kssl.c
Dr. Stephen Henson [Tue, 19 Mar 2002 01:27:10 +0000 (01:27 +0000)]
Initialize ciph_ctx in kssl.c
Bodo Möller [Mon, 18 Mar 2002 13:10:45 +0000 (13:10 +0000)]
Fix bugs and typos.
Add some WTLS curves.
New function EC_GROUP_check() (this will probably
be implemented differently soon).
Submitted by: Nils Larsch
Reviewed by: Bodo Moeller
Bodo Möller [Mon, 18 Mar 2002 13:05:20 +0000 (13:05 +0000)]
fix #include position
Submitted by: Nils Larsch
Dr. Stephen Henson [Sat, 16 Mar 2002 23:20:05 +0000 (23:20 +0000)]
Ensure EVP_CipherInit() uses the correct encode/decode parameter if
enc == -1
[Reported by Markus Friedl <markus@openbsd.org>]
Fix typo in dh_lib.c (use of DSAerr instead of DHerr).
Dr. Stephen Henson [Sat, 16 Mar 2002 23:19:25 +0000 (23:19 +0000)]
Ensure EVP_CipherInit() uses the correct encode/decode parameter if
enc == -1
[Reported by Markus Friedl <markus@openbsd.org>]
Fix typo in dh_lib.c (use of DSAerr instead of DHerr).
Bodo Möller [Fri, 15 Mar 2002 16:47:51 +0000 (16:47 +0000)]
Rename 'cray-t90-cc' into 'cray-j90'.
Add to 'config'.
Bodo Möller [Fri, 15 Mar 2002 16:46:41 +0000 (16:46 +0000)]
Rename 'cray-t90-cc' into 'cray-j90'.
Add to 'config'.
Bodo Möller [Fri, 15 Mar 2002 10:52:32 +0000 (10:52 +0000)]
fix ssl3_pending
Bodo Möller [Fri, 15 Mar 2002 10:52:03 +0000 (10:52 +0000)]
fix ssl3_pending
Lutz Jänicke [Thu, 14 Mar 2002 18:53:15 +0000 (18:53 +0000)]
Add missing strength entries.
Lutz Jänicke [Thu, 14 Mar 2002 18:47:51 +0000 (18:47 +0000)]
Add missing strength classification.
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Thu, 14 Mar 2002 18:22:23 +0000 (18:22 +0000)]
Initialize cipher context in KRB5
("D. Russell" <russelld@aol.net>)
Allow HMAC functions to use an alternative ENGINE.
Dr. Stephen Henson [Thu, 14 Mar 2002 18:16:49 +0000 (18:16 +0000)]
Initialize cipher context in KRB5
("D. Russell" <russelld@aol.net>)
Allow HMAC functions to use an alternative ENGINE.
Bodo Möller [Thu, 14 Mar 2002 13:18:57 +0000 (13:18 +0000)]
add OIDs for WAP/TLS curves
Bodo Möller [Thu, 14 Mar 2002 09:53:30 +0000 (09:53 +0000)]
Fixes for 'no-hw' combined with 'no-SOME_CIPHER'.
Fix dsaparam usage output.
Submitted by: Nils Larsch (for 0.9.8-dev; backported to 0.9.7-dev)
Bodo Möller [Thu, 14 Mar 2002 09:52:03 +0000 (09:52 +0000)]
Fixes for 'no-hw' combined with 'no-SOME_CIPHER'.
Fix dsaparam usage output.
Submitted by: Nils Larsch
Bodo Möller [Thu, 14 Mar 2002 09:48:54 +0000 (09:48 +0000)]
use BIO_nwrite() more properly to demonstrate the general idea of
BIO_nwrite0/BIO_nwrite (the previous code was OK for BIO pairs but not
in general)
Bodo Möller [Thu, 14 Mar 2002 09:48:32 +0000 (09:48 +0000)]
use BIO_nwrite() more properly
Bodo Möller [Thu, 14 Mar 2002 09:35:15 +0000 (09:35 +0000)]
disable '#ifdef DEBUG' code
Dr. Stephen Henson [Wed, 13 Mar 2002 13:59:38 +0000 (13:59 +0000)]
Undo previous patch: avoid warnings by #undef'ing
duplicate definitions.
Suggested by "Kenneth R. Robinette" <support@securenetterm.com>
Dr. Stephen Henson [Wed, 13 Mar 2002 13:58:33 +0000 (13:58 +0000)]
Undo previous patch: avoid warnings by #undef'ing
duplicate definitions.
Suggested by "Kenneth R. Robinette" <support@securenetterm.com>
Dr. Stephen Henson [Tue, 12 Mar 2002 19:38:16 +0000 (19:38 +0000)]
Fix Kerberos warnings with VC++.
Dr. Stephen Henson [Tue, 12 Mar 2002 19:37:18 +0000 (19:37 +0000)]
Fix Kerberos warnings with VC++.
Dr. Stephen Henson [Tue, 12 Mar 2002 13:33:20 +0000 (13:33 +0000)]
Fix ASN1 additions for KRB5
Dr. Stephen Henson [Tue, 12 Mar 2002 13:32:35 +0000 (13:32 +0000)]
Fix ASN1 additions for KRB5
Dr. Stephen Henson [Tue, 12 Mar 2002 03:00:59 +0000 (03:00 +0000)]
Fix various warnings when compiling with KRB5 code.
Dr. Stephen Henson [Tue, 12 Mar 2002 02:59:37 +0000 (02:59 +0000)]
Fix various warnings when compiling with KRB5 code.
Bodo Möller [Mon, 11 Mar 2002 09:36:04 +0000 (09:36 +0000)]
asm/mips3.o problems
Bodo Möller [Mon, 11 Mar 2002 09:35:33 +0000 (09:35 +0000)]
asm/mips3.o problems
Dr. Stephen Henson [Sat, 9 Mar 2002 18:58:05 +0000 (18:58 +0000)]
Make ciphers and digests obtain an ENGINE functional reference
if impl is explicitly supplied.
Dr. Stephen Henson [Sat, 9 Mar 2002 18:56:38 +0000 (18:56 +0000)]
Make ciphers and digests obtain an ENGINE functional reference
if impl is explicitly supplied.
Dr. Stephen Henson [Sat, 9 Mar 2002 18:25:03 +0000 (18:25 +0000)]
Make {RSA,DSA,DH}_new_method obtain and release an ENGINE
functional reference in all cases.
Dr. Stephen Henson [Sat, 9 Mar 2002 18:24:14 +0000 (18:24 +0000)]
Make {RSA,DSA,DH}_new_method obtain and release an ENGINE
functional reference.
Dr. Stephen Henson [Fri, 8 Mar 2002 19:12:38 +0000 (19:12 +0000)]
typo
Dr. Stephen Henson [Fri, 8 Mar 2002 19:11:15 +0000 (19:11 +0000)]
Fix the Win32_rename() function so it correctly
returns an error code. Use the same code in Win9X
and NT.
Fix some ca.c options so they work under Win32:
unlink/rename wont work under Win32 unless the file
is closed.
Dr. Stephen Henson [Fri, 8 Mar 2002 19:06:36 +0000 (19:06 +0000)]
Fix the Win32_rename() function so it correctly
returns an error code. Use the same code in Win9X
and NT.
Fix some ca.c options so they work under Win32:
unlink/rename wont work under Win32 unless the file
is closed.
Bodo Möller [Fri, 8 Mar 2002 11:10:40 +0000 (11:10 +0000)]
EC curve stuff
Submitted by: Nils Larsch
Richard Levitte [Thu, 7 Mar 2002 19:39:19 +0000 (19:39 +0000)]
Synchronise the AEP engine in all branches. For 0.9.6-stable [engine], implement software fallback
Richard Levitte [Thu, 7 Mar 2002 19:38:59 +0000 (19:38 +0000)]
Synchronise the AEP engine in all branches. For 0.9.6-stable [engine], implement software fallback
Richard Levitte [Thu, 7 Mar 2002 17:13:49 +0000 (17:13 +0000)]
When closing, do not use close(). Also, if the closing call fails, do
not return immediately since that leaves a locked lock.
Richard Levitte [Thu, 7 Mar 2002 17:13:30 +0000 (17:13 +0000)]
When closing, do not use close(). Also, if the closing call fails, do
not return immediately since that leaves a locked lock.
Richard Levitte [Thu, 7 Mar 2002 15:41:36 +0000 (15:41 +0000)]
Change des_old.c to use types prefixed with _ossl_old_des_.
Richard Levitte [Thu, 7 Mar 2002 15:38:40 +0000 (15:38 +0000)]
Change des_old.c to use types prefixed with _ossl_old_des_.
Bodo Möller [Thu, 7 Mar 2002 12:21:31 +0000 (12:21 +0000)]
fix spacing
Bodo Möller [Thu, 7 Mar 2002 12:14:03 +0000 (12:14 +0000)]
Add more curves.
Submitted by: Nils Larsch
Remove unnecessary 'const'.
Ben Laurie [Wed, 6 Mar 2002 16:59:12 +0000 (16:59 +0000)]
ADH-DES-CBC-SHA should be LOW.
Dr. Stephen Henson [Wed, 6 Mar 2002 14:15:13 +0000 (14:15 +0000)]
ENGINE module additions.
Add "init" command to control ENGINE
initialization.
Call ENGINE_finish on initialized ENGINEs on exit.
Reorder shutdown in apps.c: modules should be shut
down first.
Add test private key loader to openssl ENGINE: this
just loads a private key in PEM format.
Fix print format for dh length parameter.
Dr. Stephen Henson [Wed, 6 Mar 2002 14:09:46 +0000 (14:09 +0000)]
ENGINE module additions.
Add "init" command to control ENGINE
initialization.
Call ENGINE_finish on initialized ENGINEs on exit.
Reorder shutdown in apps.c: modules should be shut
down first.
Add test private key loader to openssl ENGINE: this
just loads a private key in PEM format.
Fix print format for dh length parameter.
Bodo Möller [Wed, 6 Mar 2002 13:47:32 +0000 (13:47 +0000)]
add SECG OIDs
Submitted by: Nils Larsch
Bodo Möller [Wed, 6 Mar 2002 09:46:17 +0000 (09:46 +0000)]
reference counting for EC_GROUP structures is not needed (at the
moment at least), so remove it
Richard Levitte [Wed, 6 Mar 2002 06:25:31 +0000 (06:25 +0000)]
OpenSSL currently fails on certain pure 64-bit architectures. This is a showstopper
Richard Levitte [Wed, 6 Mar 2002 06:25:21 +0000 (06:25 +0000)]
OpenSSL currently fails on certain pure 64-bit architectures. This is a showstopper
Bodo Möller [Tue, 5 Mar 2002 15:30:13 +0000 (15:30 +0000)]
Rephrase statement on the security of two-key 3DES.
[Chosen plaintext attack: R. Merkle, M. Hellman: "On the Security of
Multiple Encryption", CACM 24 (1981) pp. 465-467, p. 776.
Known plaintext angriff: P.C. van Oorschot, M. Wiener: "A
known-plaintext attack on two-key triple encryption", EUROCRYPT '90.]
Bodo Möller [Tue, 5 Mar 2002 15:29:30 +0000 (15:29 +0000)]
Rephrase statement on the security of two-key 3DES.
[Chosen plaintext attack: R. Merkle, M. Hellman: "On the Security of
Multiple Encryption", CACM 24 (1981) pp. 465-467, p. 776.
Known plaintext angriff: P.C. van Oorschot, M. Wiener: "A
known-plaintext attack on two-key triple encryption", EUROCRYPT '90.]
Bodo Möller [Tue, 5 Mar 2002 15:17:17 +0000 (15:17 +0000)]
fix 'ecdsaparam -C'
Bodo Möller [Tue, 5 Mar 2002 15:05:17 +0000 (15:05 +0000)]
fix printf call
Bodo Möller [Tue, 5 Mar 2002 15:05:00 +0000 (15:05 +0000)]
fix printf call
Bodo Möller [Tue, 5 Mar 2002 15:03:16 +0000 (15:03 +0000)]
typo