Nils Larsch [Mon, 13 Mar 2006 23:14:57 +0000 (23:14 +0000)]
fix error found by coverity: check if ctx is != NULL before calling BN_CTX_end()
Nils Larsch [Mon, 13 Mar 2006 22:07:05 +0000 (22:07 +0000)]
signed vs. unsigned
Richard Levitte [Mon, 13 Mar 2006 12:37:19 +0000 (12:37 +0000)]
Oh, now I noticed Bodo's change that made tlsext_ecpointformatlist
unsigned...
Richard Levitte [Mon, 13 Mar 2006 12:32:51 +0000 (12:32 +0000)]
Resolve signed vs. unsigned issues
Bodo Möller [Mon, 13 Mar 2006 09:55:06 +0000 (09:55 +0000)]
fix sign problems
Nils Larsch [Mon, 13 Mar 2006 07:21:39 +0000 (07:21 +0000)]
remove unused variables
Bodo Möller [Mon, 13 Mar 2006 01:24:38 +0000 (01:24 +0000)]
udpate Supported Point Formats Extension code
Submitted by: Douglas Stebila
Nils Larsch [Sun, 12 Mar 2006 23:00:32 +0000 (23:00 +0000)]
fix comment
Submitted by: Peter Sylvester
Nils Larsch [Sun, 12 Mar 2006 22:16:57 +0000 (22:16 +0000)]
use BIO_snprintf() instead of snprintf + use BIO_FP_TEXT for text output
Submitted by: Gisle Vanem
Nils Larsch [Sun, 12 Mar 2006 00:37:55 +0000 (00:37 +0000)]
note that SSL_library_init() is not reentrant
Bodo Möller [Sat, 11 Mar 2006 23:46:37 +0000 (23:46 +0000)]
Implement the Supported Point Formats Extension for ECC ciphersuites
Submitted by: Douglas Stebila
Bodo Möller [Sat, 11 Mar 2006 22:10:34 +0000 (22:10 +0000)]
clarification
Nils Larsch [Sat, 11 Mar 2006 12:18:11 +0000 (12:18 +0000)]
fix signed vs. unsigned warning
Nils Larsch [Sat, 11 Mar 2006 11:58:47 +0000 (11:58 +0000)]
fix "missing initializer" warning
Nils Larsch [Sat, 11 Mar 2006 11:54:27 +0000 (11:54 +0000)]
fix signed vs. unsigned warning
Nils Larsch [Fri, 10 Mar 2006 23:08:31 +0000 (23:08 +0000)]
make update
Nils Larsch [Fri, 10 Mar 2006 23:06:27 +0000 (23:06 +0000)]
add initial support for RFC 4279 PSK SSL ciphersuites
PR: 1191
Submitted by: Mika Kousa and Pasi Eronen of Nokia Corporation
Reviewed by: Nils Larsch
Richard Levitte [Wed, 8 Mar 2006 10:45:23 +0000 (10:45 +0000)]
Remember to *build* WP_TEST on VMS, as well :-)
Nils Larsch [Tue, 7 Mar 2006 10:22:45 +0000 (10:22 +0000)]
fix function name in error message
Ulf Möller [Mon, 6 Mar 2006 17:58:25 +0000 (17:58 +0000)]
unused function
Richard Levitte [Mon, 6 Mar 2006 12:09:34 +0000 (12:09 +0000)]
The actual whirlpool test was missing on VMS...
Nils Larsch [Sun, 5 Mar 2006 20:19:05 +0000 (20:19 +0000)]
constify some print and ts functions
Dr. Stephen Henson [Sun, 5 Mar 2006 01:19:48 +0000 (01:19 +0000)]
Typo.
Nils Larsch [Sat, 4 Mar 2006 13:55:55 +0000 (13:55 +0000)]
no need to cast away the const
Nils Larsch [Sat, 4 Mar 2006 13:55:02 +0000 (13:55 +0000)]
make some parameters const
Richard Levitte [Thu, 2 Mar 2006 13:55:40 +0000 (13:55 +0000)]
Make shorter TS symbols for OpenVMS.
Don't convert a function pointer to a void*, ISO C doesn't like that.
Richard Levitte [Thu, 2 Mar 2006 13:28:52 +0000 (13:28 +0000)]
Forgot the TSA application...
Dr. Stephen Henson [Wed, 1 Mar 2006 21:17:13 +0000 (21:17 +0000)]
Check EVP_DigestInit_ex() return value in EVP_BytesToKey().
Nils Larsch [Wed, 1 Mar 2006 19:51:37 +0000 (19:51 +0000)]
force C locale when using [a-z] in sed expressions
PR: 1283
Submitted by: Mike Frysinger
Nils Larsch [Tue, 28 Feb 2006 19:52:15 +0000 (19:52 +0000)]
fix "#ifndef HZ" statement
PR: 1287
Ulf Möller [Sun, 26 Feb 2006 23:34:53 +0000 (23:34 +0000)]
TS bugfixes: Do not hardcode message digest algorithms; fix ASN1 decoding.
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
Richard Levitte [Sun, 26 Feb 2006 10:48:40 +0000 (10:48 +0000)]
Synchronise with openss.cnf
Richard Levitte [Sun, 26 Feb 2006 10:47:57 +0000 (10:47 +0000)]
Add a TSA test. testtsa.com is a manual sh to dcl translation of
testtsa.
Richard Levitte [Sun, 26 Feb 2006 10:46:39 +0000 (10:46 +0000)]
Add TS to the VMS build.
Richard Levitte [Sun, 26 Feb 2006 10:44:57 +0000 (10:44 +0000)]
Break out deltree in its' own command procedure.
Nils Larsch [Fri, 24 Feb 2006 17:58:43 +0000 (17:58 +0000)]
fix no-dh configure option; patch supplied by Peter Meerwald
Dr. Stephen Henson [Tue, 21 Feb 2006 01:00:08 +0000 (01:00 +0000)]
Print out <INVALID> if an OID value is invalid.
Dr. Stephen Henson [Sun, 19 Feb 2006 13:44:47 +0000 (13:44 +0000)]
Tolerate a SEQUENCE in DN components.
Ulf Möller [Thu, 16 Feb 2006 20:43:04 +0000 (20:43 +0000)]
ignore
Ulf Möller [Thu, 16 Feb 2006 20:33:47 +0000 (20:33 +0000)]
message style
Ulf Möller [Thu, 16 Feb 2006 20:30:58 +0000 (20:30 +0000)]
oops
Ulf Möller [Thu, 16 Feb 2006 20:20:24 +0000 (20:20 +0000)]
wrap shlib for testtsa
Submitted by: David Somers <dsomers@omz13.com>
Nils Larsch [Wed, 15 Feb 2006 20:20:20 +0000 (20:20 +0000)]
make some internal functions static; patch supplied by Kurt Roeckx
Nils Larsch [Wed, 15 Feb 2006 19:42:22 +0000 (19:42 +0000)]
fix typos
PR: 1280
Dr. Stephen Henson [Wed, 15 Feb 2006 15:04:42 +0000 (15:04 +0000)]
Fix from stable branch.
Dr. Stephen Henson [Wed, 15 Feb 2006 14:45:31 +0000 (14:45 +0000)]
Fix warnings.
Ulf Möller [Wed, 15 Feb 2006 00:35:46 +0000 (00:35 +0000)]
shorter filenames
Nils Larsch [Tue, 14 Feb 2006 07:55:03 +0000 (07:55 +0000)]
use asn1 callbacks for new, free and d2i
Nils Larsch [Mon, 13 Feb 2006 09:50:04 +0000 (09:50 +0000)]
don't use the l length modifier for int
Nils Larsch [Mon, 13 Feb 2006 09:46:02 +0000 (09:46 +0000)]
use stricter prototypes, fix warnings
Nils Larsch [Mon, 13 Feb 2006 09:43:31 +0000 (09:43 +0000)]
fix warning: add missing prototype
Nils Larsch [Mon, 13 Feb 2006 08:45:53 +0000 (08:45 +0000)]
fix warning
Nils Larsch [Mon, 13 Feb 2006 08:16:00 +0000 (08:16 +0000)]
fix typo: pass pre-computed parameters to the underlying signature function; thanks to Lucas Newman
Ulf Möller [Sun, 12 Feb 2006 23:36:58 +0000 (23:36 +0000)]
*** empty log message ***
Ulf Möller [Sun, 12 Feb 2006 23:21:56 +0000 (23:21 +0000)]
make update
Ulf Möller [Sun, 12 Feb 2006 23:19:25 +0000 (23:19 +0000)]
time stamp Makefile, test files
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
Ulf Möller [Sun, 12 Feb 2006 23:11:56 +0000 (23:11 +0000)]
RFC 3161 compliant time stamp request creation, response generation
and response verification.
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
Reviewed by: Ulf Moeller
Dr. Stephen Henson [Sat, 11 Feb 2006 01:54:19 +0000 (01:54 +0000)]
Minor clarification.
Dr. Stephen Henson [Sat, 11 Feb 2006 00:46:34 +0000 (00:46 +0000)]
Add FAQ about AKID.
Richard Levitte [Fri, 10 Feb 2006 08:48:43 +0000 (08:48 +0000)]
Document the building macros.
Richard Levitte [Fri, 10 Feb 2006 08:04:59 +0000 (08:04 +0000)]
As an effect of revisions 1.261, BUILD_CMD was changed so $(DIRS)
wasn't respected when using it to build different parts of OpenSSL.
1.269 was an attempt to correct that, but unfortunately meant that we
built every part that was given i $(DIRS) 7 times. This change puts
back the original intent with BUILD_CMD via the new macro
BUILD_ONE_CMD while keeping the intent with RECURSIVE_BUILD_CMD.
Dr. Stephen Henson [Thu, 9 Feb 2006 17:17:41 +0000 (17:17 +0000)]
Fix warnings about "sin" conflicting with sin(3) definition.
Dr. Stephen Henson [Thu, 9 Feb 2006 17:11:12 +0000 (17:11 +0000)]
Avoid warnings about shadowed definitions.
Dr. Stephen Henson [Thu, 9 Feb 2006 12:29:21 +0000 (12:29 +0000)]
Update from 0.9.7-stable.
Nils Larsch [Wed, 8 Feb 2006 18:52:43 +0000 (18:52 +0000)]
remove unnecessary check
Nils Larsch [Wed, 8 Feb 2006 18:51:17 +0000 (18:51 +0000)]
p could be uninitialized
Bodo Möller [Tue, 7 Feb 2006 14:26:43 +0000 (14:26 +0000)]
move new member of SSL_SESSION to the end
(minimize changes to binary format)
Submitted by: Peter Sylvester
Dr. Stephen Henson [Sat, 4 Feb 2006 01:45:59 +0000 (01:45 +0000)]
Update filenames in makefiles.
Dr. Stephen Henson [Sat, 4 Feb 2006 01:25:19 +0000 (01:25 +0000)]
Recognize mingw in perlasm.
Nils Larsch [Thu, 2 Feb 2006 22:11:02 +0000 (22:11 +0000)]
fix if statement: call conn_state() if the BIO is not in the BIO_CONN_S_OK state
Dr. Stephen Henson [Tue, 31 Jan 2006 18:36:29 +0000 (18:36 +0000)]
Ignore zero length constructed segments.
Lutz Jänicke [Mon, 30 Jan 2006 17:06:00 +0000 (17:06 +0000)]
Typo
Submitted by: Girish Venkatachalam <girish1729@gmail.com>
Nils Larsch [Sun, 29 Jan 2006 23:12:22 +0000 (23:12 +0000)]
add additional checks + cleanup
Submitted by: David Hartman <david_hartman@symantec.com>
Dr. Stephen Henson [Thu, 19 Jan 2006 17:16:56 +0000 (17:16 +0000)]
Fixes for BOOL handling: produce errors for invalid string for mini-compiler,
correctly encode FALSE for BOOL in ASN1_TYPE.
Nils Larsch [Sun, 15 Jan 2006 17:35:28 +0000 (17:35 +0000)]
recent changes from 0.9.8: fix cipher list order in s3_lib.c,
make "no-ssl2" work again
PR: 1217
Dr. Stephen Henson [Sun, 15 Jan 2006 17:31:08 +0000 (17:31 +0000)]
Fix from stable branch.
Dr. Stephen Henson [Sun, 15 Jan 2006 13:55:31 +0000 (13:55 +0000)]
Typo.
Dr. Stephen Henson [Sun, 15 Jan 2006 13:50:10 +0000 (13:50 +0000)]
Update from stable branch.
Richard Levitte [Sat, 14 Jan 2006 11:49:24 +0000 (11:49 +0000)]
signed vs. unsigned clash.
Nils Larsch [Sat, 14 Jan 2006 09:21:33 +0000 (09:21 +0000)]
support numeric strings in ASN1_generate_nconf
Nils Larsch [Fri, 13 Jan 2006 23:50:26 +0000 (23:50 +0000)]
fix comment
PR: 1270
Nils Larsch [Fri, 13 Jan 2006 23:27:59 +0000 (23:27 +0000)]
2 is a prime
PR: 1266
Bodo Möller [Fri, 13 Jan 2006 09:21:10 +0000 (09:21 +0000)]
Further TLS extension improvements
Submitted by: Peter Sylvester
Richard Levitte [Wed, 11 Jan 2006 18:55:42 +0000 (18:55 +0000)]
Forgot to initialize CC6DISABLEWARNINGS properly...
Richard Levitte [Wed, 11 Jan 2006 13:31:04 +0000 (13:31 +0000)]
Typo...
Bodo Möller [Wed, 11 Jan 2006 07:18:35 +0000 (07:18 +0000)]
improvements for alert handling
Bodo Möller [Wed, 11 Jan 2006 06:10:40 +0000 (06:10 +0000)]
More TLS extension related changes.
Submitted by: Peter Sylvester
Bodo Möller [Mon, 9 Jan 2006 19:49:05 +0000 (19:49 +0000)]
Further TLS extension updates
Submitted by: Peter Sylvester
Richard Levitte [Mon, 9 Jan 2006 19:23:01 +0000 (19:23 +0000)]
Disable the Mixed Linkage warning for some selected modules. This is
because the Compaq C compiler will not accept that a variable be
declared extern then defined static without a warning.
Bodo Möller [Sun, 8 Jan 2006 21:54:24 +0000 (21:54 +0000)]
Avoid contradictive error code assignments.
"make errors".
Bodo Möller [Sun, 8 Jan 2006 21:43:36 +0000 (21:43 +0000)]
Detect more errors.
Change assignment strategy: rathern than using max+r for new codes,
find first hole in list of existing codes.
Bodo Möller [Sun, 8 Jan 2006 20:03:08 +0000 (20:03 +0000)]
Detect SSL error code mishandling.
Bodo Möller [Sun, 8 Jan 2006 19:54:32 +0000 (19:54 +0000)]
include max. codes in debug output
Bodo Möller [Sun, 8 Jan 2006 19:42:30 +0000 (19:42 +0000)]
Some error code cleanups (SSL lib. used SSL_R_... codes reserved for alerts)
Bodo Möller [Sat, 7 Jan 2006 20:44:29 +0000 (20:44 +0000)]
There's no such things as DTLS1_AD_MISSING_HANDSHAKE_MESSAGE.
For now, anyway.
Bodo Möller [Sat, 7 Jan 2006 20:33:16 +0000 (20:33 +0000)]
prepare for additional RFC3546 alerts
Bodo Möller [Sat, 7 Jan 2006 20:29:50 +0000 (20:29 +0000)]
make sure that the unrecognized_name alert actually gets sent
Submitted by: Peter Sylvester
Bodo Möller [Sat, 7 Jan 2006 20:28:11 +0000 (20:28 +0000)]
complete and correct RFC3546 error codes
Bodo Möller [Fri, 6 Jan 2006 09:08:59 +0000 (09:08 +0000)]
Fixes for TLS server_name extension
Submitted by: Peter Sylvester
Bodo Möller [Wed, 4 Jan 2006 17:35:51 +0000 (17:35 +0000)]
Add names for people who provided the TLS extension patch.