oweals/openssl.git
22 years agoadd symbols reserved in 'engine' tree (tagged as NOEXIST)
Bodo Möller [Fri, 4 Jan 2002 15:02:40 +0000 (15:02 +0000)]
add symbols reserved in 'engine' tree (tagged as NOEXIST)

22 years agoAdd information as provided by Richard Levitte on openssl-users :-)
Lutz Jänicke [Fri, 4 Jan 2002 14:57:31 +0000 (14:57 +0000)]
Add information as provided by Richard Levitte on openssl-users :-)

22 years agoThis commit was manufactured by cvs2svn to create branch
cvs2svn [Fri, 4 Jan 2002 14:55:39 +0000 (14:55 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_6-stable'.

22 years agoAdd information as provided by Richard Levitte on openssl-users :-)
Lutz Jänicke [Fri, 4 Jan 2002 14:55:38 +0000 (14:55 +0000)]
Add information as provided by Richard Levitte on openssl-users :-)

22 years agoUpdate PEM docs
Dr. Stephen Henson [Fri, 4 Jan 2002 13:35:37 +0000 (13:35 +0000)]
Update PEM docs

22 years agofix 'Configure TABLE' output
Bodo Möller [Fri, 4 Jan 2002 13:30:05 +0000 (13:30 +0000)]
fix 'Configure TABLE' output

22 years agofix 'Configure TABLE' output
Bodo Möller [Fri, 4 Jan 2002 13:29:20 +0000 (13:29 +0000)]
fix 'Configure TABLE' output

22 years agoChanges that break something should be included in CHANGES
Bodo Möller [Fri, 4 Jan 2002 13:28:04 +0000 (13:28 +0000)]
Changes that break something should be included in CHANGES
to make it easier to fix things.

22 years agoChanges that break something should be included in CHANGES
Bodo Möller [Fri, 4 Jan 2002 13:27:52 +0000 (13:27 +0000)]
Changes that break something should be included in CHANGES
to make it easier to fix things.

22 years agoadd automatically generated ERR_load_... prototype
Bodo Möller [Fri, 4 Jan 2002 13:12:08 +0000 (13:12 +0000)]
add automatically generated ERR_load_... prototype

22 years agofix EVP_CIPHER_mode macro
Bodo Möller [Fri, 4 Jan 2002 13:04:45 +0000 (13:04 +0000)]
fix EVP_CIPHER_mode macro

Submitted by: "Dan S. Camper" <dan@bti.net>

22 years agofix EVP_CIPHER_mode macro
Bodo Möller [Fri, 4 Jan 2002 13:04:15 +0000 (13:04 +0000)]
fix EVP_CIPHER_mode macro

Submitted by: "Dan S. Camper" <dan@bti.net>

22 years agoConstify.
Geoff Thorpe [Fri, 4 Jan 2002 07:01:35 +0000 (07:01 +0000)]
Constify.

22 years agoBetter clarification on perl
Richard Levitte [Thu, 3 Jan 2002 18:53:55 +0000 (18:53 +0000)]
Better clarification on perl

22 years agoBetter clarification on perl
Richard Levitte [Thu, 3 Jan 2002 18:53:47 +0000 (18:53 +0000)]
Better clarification on perl

22 years agoUse the variable $(PERL) to invoke perl.
Richard Levitte [Thu, 3 Jan 2002 14:08:02 +0000 (14:08 +0000)]
Use the variable $(PERL) to invoke perl.
Noted by Joe Orton <jorton@redhat.com>

22 years agomake update
Richard Levitte [Wed, 2 Jan 2002 17:31:23 +0000 (17:31 +0000)]
make update

22 years agoImplement speed measurement for AES.
Richard Levitte [Wed, 2 Jan 2002 16:57:57 +0000 (16:57 +0000)]
Implement speed measurement for AES.
Submitted by Stephen Sprunk <stephen@sprunk.org> as part of his AES
integration patch.

22 years agoBecause Rijndael is more known as AES, use crypto/aes instead of
Richard Levitte [Wed, 2 Jan 2002 16:55:35 +0000 (16:55 +0000)]
Because Rijndael is more known as AES, use crypto/aes instead of
crypto/rijndael.  Additionally, I applied the AES integration patch
from Stephen Sprunk <stephen@sprunk.org> and fiddled it to work
properly with the normal EVP constructs (and incidently work the same
way as all other symmetric cipher implementations).

This results in an API that looks a lot like the rest of the OpenSSL
cipher suite.

22 years agoThe block size may be something other than 8!
Richard Levitte [Wed, 2 Jan 2002 16:51:17 +0000 (16:51 +0000)]
The block size may be something other than 8!

22 years agoWhen RSA or DSA are disabled, do not include the stuff that's specific
Richard Levitte [Wed, 2 Jan 2002 12:45:51 +0000 (12:45 +0000)]
When RSA or DSA are disabled, do not include the stuff that's specific
to them.

22 years agomake update
Richard Levitte [Wed, 2 Jan 2002 12:44:54 +0000 (12:44 +0000)]
make update

22 years agoRSA counter should only be defined of RSA is available.
Richard Levitte [Wed, 2 Jan 2002 12:40:38 +0000 (12:40 +0000)]
RSA counter should only be defined of RSA is available.

22 years agoAllow verification of other types than DATA.
Richard Levitte [Wed, 2 Jan 2002 11:54:38 +0000 (11:54 +0000)]
Allow verification of other types than DATA.
Submitted by Leonard Janke <leonard@votehere.net>

22 years agoAllow verification of other types than DATA.
Richard Levitte [Wed, 2 Jan 2002 11:54:32 +0000 (11:54 +0000)]
Allow verification of other types than DATA.
Submitted by Leonard Janke <leonard@votehere.net>

22 years agoSay that recent CygWin perl versions work as well.
Richard Levitte [Wed, 2 Jan 2002 11:25:17 +0000 (11:25 +0000)]
Say that recent CygWin perl versions work as well.
Submitted by Eric Hanchrow <erich@votehere.net>

22 years agoSay that recent CygWin perl versions work as well.
Richard Levitte [Wed, 2 Jan 2002 11:25:11 +0000 (11:25 +0000)]
Say that recent CygWin perl versions work as well.
Submitted by Eric Hanchrow <erich@votehere.net>

22 years agoAllow 8-bit characters. This is not really complete, it only marks
Richard Levitte [Wed, 2 Jan 2002 11:06:17 +0000 (11:06 +0000)]
Allow 8-bit characters.  This is not really complete, it only marks
characters with the highest bit set as HIGHBIT.  We need to expand
this to support the UTF-8 character set properly.  However, this
solves the problem that the character 0x80 (which is common in UTF-8)
gets masked to 0x00.
Patch submitted by "Huang Yuzhen" <huangyuzhen@bj.tom.com>

22 years agoAllow 8-bit characters. This is not really complete, it only marks
Richard Levitte [Wed, 2 Jan 2002 11:06:02 +0000 (11:06 +0000)]
Allow 8-bit characters.  This is not really complete, it only marks
characters with the highest bit set as HIGHBIT.  We need to expand
this to support the UTF-8 character set properly.  However, this
solves the problem that the character 0x80 (which is common in UTF-8)
gets masked to 0x00.
Patch submitted by "Huang Yuzhen" <huangyuzhen@bj.tom.com>

22 years agoOn Solaris64, cc needs the flag -xarch=v9 when linking shared
Richard Levitte [Wed, 2 Jan 2002 10:30:40 +0000 (10:30 +0000)]
On Solaris64, cc needs the flag -xarch=v9 when linking shared
libraries.  Make a general change to support shared library
linking flags in general.
Noted by Nick Briggs <briggs@parc.xerox.com>

22 years agoOn Solaris64, cc needs the flag -xarch=v9 when linking shared
Richard Levitte [Wed, 2 Jan 2002 10:30:07 +0000 (10:30 +0000)]
On Solaris64, cc needs the flag -xarch=v9 when linking shared
libraries.  Make a general change to support shared library
linking flags in general.
Noted by Nick Briggs <briggs@parc.xerox.com>

22 years agoAdd support for Linux on HP/PA.
Richard Levitte [Wed, 2 Jan 2002 10:00:52 +0000 (10:00 +0000)]
Add support for Linux on HP/PA.
Submitted by "Bryan W. Headley" <bheadley@interaccess.com>

22 years agoAdd support for Linux on HP/PA.
Richard Levitte [Wed, 2 Jan 2002 10:00:22 +0000 (10:00 +0000)]
Add support for Linux on HP/PA.
Submitted by "Bryan W. Headley" <bheadley@interaccess.com>

22 years agossl3_read_bytes bug fix
Ulf Möller [Fri, 28 Dec 2001 17:14:35 +0000 (17:14 +0000)]
ssl3_read_bytes bug fix

Submitted by: D P Chang <dpc@qualys.com>
Reviewed by: Bodo

22 years agossl3_read_bytes bug fix
Ulf Möller [Fri, 28 Dec 2001 17:13:10 +0000 (17:13 +0000)]
ssl3_read_bytes bug fix

Submitted by: D P Chang <dpc@qualys.com>
Reviewed by: Bodo

22 years agoupdate FAQ and CHANGES file (0.9.6c has been released)
Bodo Möller [Fri, 21 Dec 2001 12:29:52 +0000 (12:29 +0000)]
update FAQ and CHANGES file (0.9.6c has been released)

22 years agoThis should be in 0.9.6c, but somehow escaped from the commit ...
Bodo Möller [Fri, 21 Dec 2001 12:23:05 +0000 (12:23 +0000)]
This should be in 0.9.6c, but somehow escaped from the commit ...

But note that 0.9.6c has correct versions of the files autogenerated
from objects.txt (obj_mac.h, obj_dat.h), so libraries built from
the source distribution will not be buggy.

22 years agoFix FAQ, although in case there is another release from this tree,
Bodo Möller [Fri, 21 Dec 2001 12:15:36 +0000 (12:15 +0000)]
Fix FAQ, although in case there is another release from this tree,
it won't be correct anymore anyway: current version is 0.9.6c.
not 0.9.6b.
(The engine version does not have this typo.)

22 years agoStatus update
Richard Levitte [Fri, 21 Dec 2001 03:23:20 +0000 (03:23 +0000)]
Status update

22 years agoStatus update
Richard Levitte [Fri, 21 Dec 2001 03:23:15 +0000 (03:23 +0000)]
Status update

22 years agoThe release has been tagged, so let's move on to 0.9.6d, which we hope will never...
Richard Levitte [Fri, 21 Dec 2001 02:26:39 +0000 (02:26 +0000)]
The release has been tagged, so let's move on to 0.9.6d, which we hope will never be released.

22 years agoTime to release 0.9.6c. The tag will be OpenSSL_0_9_6c OpenSSL_0_9_6c
Richard Levitte [Fri, 21 Dec 2001 01:21:23 +0000 (01:21 +0000)]
Time to release 0.9.6c.  The tag will be OpenSSL_0_9_6c

22 years agoAnd just for the sake of completeness, let's add some standard macros...
Richard Levitte [Fri, 21 Dec 2001 01:12:43 +0000 (01:12 +0000)]
And just for the sake of completeness, let's add some standard macros...

22 years agoAnd just for the sake of completeness, let's add some standard macros...
Richard Levitte [Fri, 21 Dec 2001 01:12:29 +0000 (01:12 +0000)]
And just for the sake of completeness, let's add some standard macros...

22 years agoBetter use the same number in all branches, to avoid confusion
Richard Levitte [Fri, 21 Dec 2001 01:09:07 +0000 (01:09 +0000)]
Better use the same number in all branches, to avoid confusion

22 years agoBetter use the same number in all branches, to avoid confusion
Richard Levitte [Fri, 21 Dec 2001 01:08:40 +0000 (01:08 +0000)]
Better use the same number in all branches, to avoid confusion

22 years agoAdd missing ERR_LIB_COMP #define
Dr. Stephen Henson [Fri, 21 Dec 2001 00:48:45 +0000 (00:48 +0000)]
Add missing ERR_LIB_COMP #define

22 years agomake update
Richard Levitte [Thu, 20 Dec 2001 22:25:41 +0000 (22:25 +0000)]
make update

22 years agoDo not forget to compile comp_err.c
Richard Levitte [Thu, 20 Dec 2001 22:15:42 +0000 (22:15 +0000)]
Do not forget to compile comp_err.c

22 years agoDo not forget to compile comp_err.c
Richard Levitte [Thu, 20 Dec 2001 22:12:10 +0000 (22:12 +0000)]
Do not forget to compile comp_err.c

22 years agoSynchronise with the 0.9.6 branch.
Richard Levitte [Thu, 20 Dec 2001 16:58:26 +0000 (16:58 +0000)]
Synchronise with the 0.9.6 branch.

22 years agoremove some useless information (change log is in CHANGES)
Ulf Möller [Thu, 20 Dec 2001 12:36:39 +0000 (12:36 +0000)]
remove some useless information (change log is in CHANGES)

22 years agoSecurity fix.
Ben Laurie [Thu, 20 Dec 2001 12:18:08 +0000 (12:18 +0000)]
Security fix.

22 years agoSummarize the news.
Richard Levitte [Thu, 20 Dec 2001 11:04:46 +0000 (11:04 +0000)]
Summarize the news.

22 years agomake sure mklink.pl looks at ERR_load_...
Bodo Möller [Wed, 19 Dec 2001 19:48:51 +0000 (19:48 +0000)]
make sure mklink.pl looks at ERR_load_...

22 years agoCygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>
Ulf Möller [Wed, 19 Dec 2001 19:37:41 +0000 (19:37 +0000)]
Cygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>

22 years agoCygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>
Ulf Möller [Wed, 19 Dec 2001 19:37:31 +0000 (19:37 +0000)]
Cygwin patch. Submitted by Michael Kobar <mkobar@lymeware.com>

22 years agoformatting consistency
Bodo Möller [Mon, 17 Dec 2001 19:28:05 +0000 (19:28 +0000)]
formatting consistency

22 years agooops
Bodo Möller [Mon, 17 Dec 2001 19:26:43 +0000 (19:26 +0000)]
oops

22 years agoremove redundant ERR_load_... declarations
Bodo Möller [Mon, 17 Dec 2001 19:24:39 +0000 (19:24 +0000)]
remove redundant ERR_load_... declarations

22 years agoremove redundant ERR_load_... declarations
Bodo Möller [Mon, 17 Dec 2001 19:22:23 +0000 (19:22 +0000)]
remove redundant ERR_load_... declarations

22 years agoconsistency with 0.9.6 stable "CHANGES"
Bodo Möller [Mon, 17 Dec 2001 19:11:03 +0000 (19:11 +0000)]
consistency with 0.9.6 stable "CHANGES"

22 years agocorrection: certain changes have been done *after* 0.9.6b was released
Bodo Möller [Mon, 17 Dec 2001 19:08:39 +0000 (19:08 +0000)]
correction: certain changes have been done *after* 0.9.6b was released

22 years agofix BN_rand_range
Bodo Möller [Fri, 14 Dec 2001 10:09:29 +0000 (10:09 +0000)]
fix BN_rand_range

22 years agofix BN_rand_range
Bodo Möller [Fri, 14 Dec 2001 10:09:01 +0000 (10:09 +0000)]
fix BN_rand_range

22 years agoChange pkcs12 so the certificates coming from -in do not get tossed if
Richard Levitte [Wed, 12 Dec 2001 16:49:02 +0000 (16:49 +0000)]
Change pkcs12 so the certificates coming from -in do not get tossed if
-certfile is given as well.

22 years agoImplement failover for ubsec. Submitted by Subramanian Ramamoorthy
Richard Levitte [Wed, 12 Dec 2001 12:53:13 +0000 (12:53 +0000)]
Implement failover for ubsec.  Submitted by Subramanian Ramamoorthy
<sram@broadcom.com> with the following comment:

[...] We have implemented failover (ie, if for some reason that the
hardware fails, the implementation detects this failure and performs
this operation as if no hardware is present, ie, in software) for
sometime now and have tested it here with our hardware. [...]

This change was cc:ed to exports@crypto.com

22 years agomake update
Richard Levitte [Tue, 11 Dec 2001 10:57:13 +0000 (10:57 +0000)]
make update

22 years agoname confusion with HP library function prototype (?)
Ulf Möller [Mon, 10 Dec 2001 18:52:42 +0000 (18:52 +0000)]
name confusion with HP library function prototype (?)

22 years agoname confusion with HP library function prototype (?)
Ulf Möller [Mon, 10 Dec 2001 18:52:06 +0000 (18:52 +0000)]
name confusion with HP library function prototype (?)

22 years agoImprove back compatibility.
Ben Laurie [Sun, 9 Dec 2001 21:53:31 +0000 (21:53 +0000)]
Improve back compatibility.

22 years agofix warnings (one of them was clearly justified)
Bodo Möller [Fri, 7 Dec 2001 17:02:01 +0000 (17:02 +0000)]
fix warnings (one of them was clearly justified)

22 years agoDon't overwrite signing time.
Dr. Stephen Henson [Fri, 7 Dec 2001 00:40:53 +0000 (00:40 +0000)]
Don't overwrite signing time.

22 years agoDon't overwrite signing time.
Dr. Stephen Henson [Fri, 7 Dec 2001 00:36:32 +0000 (00:36 +0000)]
Don't overwrite signing time.

22 years agoHPUX 9.X on m68k with gcc
Lutz Jänicke [Thu, 6 Dec 2001 13:15:51 +0000 (13:15 +0000)]
HPUX 9.X on m68k with gcc
("Anton J. Gamel" <gamel@anna.anatomie.uni-freiburg.de>)

22 years agoHPUX 9.X on m68k with gcc
Lutz Jänicke [Thu, 6 Dec 2001 13:11:42 +0000 (13:11 +0000)]
HPUX 9.X on m68k with gcc
("Anton J. Gamel" <gamel@anna.anatomie.uni-freiburg.de>)

22 years ago"UID" is an incorrect lable for the attribute type uniqueIdentifier.
Richard Levitte [Tue, 4 Dec 2001 11:10:54 +0000 (11:10 +0000)]
"UID" is an incorrect lable for the attribute type uniqueIdentifier.
Furthermore, it create conflicts with LDAP and some RFCs that define
"UID" as a lable for the attribute type userId (which we haven't even
defined here).

The next question is if we should update objects.txt with the added
stuff from the main trunk.

22 years agoUID was never a lable for uniqueIdentifier. However, LDAP and certain
Richard Levitte [Tue, 4 Dec 2001 11:01:17 +0000 (11:01 +0000)]
UID was never a lable for uniqueIdentifier.  However, LDAP and certain
RFCs concerning X.500 directories use UID as a shorter name for the
attribute type userId, which is defined by CCITT and available through
RFCs 1274 and 2247.

Unfortunately, if some applications have used the name "UID" for the
uniqueIdentifier attribute type, they will produce incorrect results.
However, I found it better to follow the standards that are out there
rather than having our own incompatible one.

22 years agoI was recently informed that some people wrongly use ssleay.txt as
Richard Levitte [Tue, 4 Dec 2001 07:50:52 +0000 (07:50 +0000)]
I was recently informed that some people wrongly use ssleay.txt as
main documentation, so let's warn them a little more, so the word
"OBSOLETE" really gets understood.

22 years agoI was recently informed that some people wrongly use ssleay.txt as
Richard Levitte [Tue, 4 Dec 2001 07:38:17 +0000 (07:38 +0000)]
I was recently informed that some people wrongly use ssleay.txt as
main documentation, so let's warn them a little more, so the word
"OBSOLETE" really gets understood.

22 years agocrypto/objects stuff
Bodo Möller [Mon, 3 Dec 2001 14:03:23 +0000 (14:03 +0000)]
crypto/objects stuff

22 years agocrypto/objects stuff
Bodo Möller [Mon, 3 Dec 2001 13:54:58 +0000 (13:54 +0000)]
crypto/objects stuff

22 years agoFix: 2.5.29 is "id-ce", not "ld-ce" (sort of a typo in objects.h).
Bodo Möller [Mon, 3 Dec 2001 13:47:22 +0000 (13:47 +0000)]
Fix: 2.5.29 is "id-ce", not "ld-ce" (sort of a typo in objects.h).

Fix (?): Delete 'ip-pda 6' (id-pda-pseudonym) because it does not exist
in RFC 3039.

Also change Perl scripts to put auto-generation warning in the
first lines of the file.

22 years agoFix: 2.5.29 is "id-ce", not "ld-ce" (sort of a typo in objects.h).
Bodo Möller [Mon, 3 Dec 2001 13:44:24 +0000 (13:44 +0000)]
Fix: 2.5.29 is "id-ce", not "ld-ce" (sort of a typo in objects.h).

Fix: Some ip-pda OIDs were incorrect (cf. RFC 3039).

Also change Perl scripts to put auto-generation warning in the
first lines of the file.

22 years agoEVP_BytesToKey documentation.
Dr. Stephen Henson [Mon, 3 Dec 2001 03:07:37 +0000 (03:07 +0000)]
EVP_BytesToKey documentation.

22 years agoMake EVP_SealInit() return the correct value.
Dr. Stephen Henson [Sat, 1 Dec 2001 23:09:38 +0000 (23:09 +0000)]
Make EVP_SealInit() return the correct value.

22 years agoAdd -pubkey option to req command.
Dr. Stephen Henson [Sat, 1 Dec 2001 23:03:30 +0000 (23:03 +0000)]
Add -pubkey option to req command.

22 years agoNO_DSA, NO_RSA patches.
Dr. Stephen Henson [Sat, 1 Dec 2001 22:41:39 +0000 (22:41 +0000)]
NO_DSA, NO_RSA patches.

22 years agoSupport for QNX (wrat@jump.net (the wharf rat)).
Lutz Jänicke [Fri, 30 Nov 2001 09:38:57 +0000 (09:38 +0000)]
Support for QNX (wrat@jump.net (the wharf rat)).

22 years agoSupport for QNX 6 (wrat@jump.net (the wharf rat)).
Lutz Jänicke [Fri, 30 Nov 2001 09:36:15 +0000 (09:36 +0000)]
Support for QNX 6 (wrat@jump.net (the wharf rat)).

23 years agoCertain missing algorithms make some SSL versions or TLS impossible to
Richard Levitte [Tue, 27 Nov 2001 11:48:30 +0000 (11:48 +0000)]
Certain missing algorithms make some SSL versions or TLS impossible to
build.

23 years agodiscuss -name and default_ca more correctly (I hope)
Bodo Möller [Mon, 26 Nov 2001 12:14:22 +0000 (12:14 +0000)]
discuss -name and default_ca more correctly (I hope)

23 years agodiscuss -name and default_ca more correctly (I hope)
Bodo Möller [Mon, 26 Nov 2001 12:13:50 +0000 (12:13 +0000)]
discuss -name and default_ca more correctly (I hope)

23 years agoThis looks to have been a typo.
Geoff Thorpe [Sat, 24 Nov 2001 04:02:42 +0000 (04:02 +0000)]
This looks to have been a typo.

23 years agoFor future portability reasons MIT is moving all macros to function
Bodo Möller [Fri, 23 Nov 2001 21:50:50 +0000 (21:50 +0000)]
For future portability reasons MIT is moving all macros to function
calls.  This patch allows compilation either way.

Submitted by: Jeffrey Altman <jaltman@columbia.edu>

23 years agoinfo on 0.9.6 engine branch
Bodo Möller [Fri, 23 Nov 2001 21:12:44 +0000 (21:12 +0000)]
info on 0.9.6 engine branch

23 years agoupdate with info on engine branch
Bodo Möller [Fri, 23 Nov 2001 21:11:46 +0000 (21:11 +0000)]
update with info on engine branch

23 years agofix submitted by Andy Schneider <andy.schneider@bjss.co.uk>
Bodo Möller [Fri, 23 Nov 2001 20:58:40 +0000 (20:58 +0000)]
fix submitted by Andy Schneider <andy.schneider@bjss.co.uk>
(in main branch, hn_ncipher.c is already correct)

23 years agofix submitted by Andy Schneider <andy.schneider@bjss.co.uk>
Bodo Möller [Fri, 23 Nov 2001 20:57:59 +0000 (20:57 +0000)]
fix submitted by Andy Schneider <andy.schneider@bjss.co.uk>

23 years agoOS/390 support
Bodo Möller [Thu, 22 Nov 2001 11:26:54 +0000 (11:26 +0000)]
OS/390 support

Submitted by: Richard Shapiro <rshapiro@abinitio.com>