oweals/openssl.git
15 years agoIf an SSLv2 method is explicitly asked for use the SSLv2 cipher string:
Dr. Stephen Henson [Wed, 29 Apr 2009 14:12:54 +0000 (14:12 +0000)]
If an SSLv2 method is explicitly asked for use the SSLv2 cipher string:
assume an application *really* wants SSLv2 if they do that.

Otherwise stick with the default which excludes all SSLv2 cipher suites.

15 years agoTypo.
Dr. Stephen Henson [Tue, 28 Apr 2009 22:35:42 +0000 (22:35 +0000)]
Typo.

15 years agoPR: 1629
Dr. Stephen Henson [Tue, 28 Apr 2009 22:01:53 +0000 (22:01 +0000)]
PR: 1629
Submitted by: Kaspar Brand <ossl-rt@velox.ch>
Approved by: steve@openssl.org

Don't use extensions if using SSLv3: this chokes some broken servers.

15 years agoPR: 1914
Dr. Stephen Henson [Tue, 28 Apr 2009 21:56:04 +0000 (21:56 +0000)]
PR: 1914

Make safestack work with C++.

15 years agoUpdate from HEAD.
Richard Levitte [Tue, 28 Apr 2009 13:00:50 +0000 (13:00 +0000)]
Update from HEAD.

15 years agov3_alt.c: otherName parsing fix from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:37:23 +0000 (19:37 +0000)]
v3_alt.c: otherName parsing fix from HEAD.

Submitted by: Love Hoernquist Aastrand

15 years agoVC-32.pl: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:32:13 +0000 (19:32 +0000)]
VC-32.pl: update from HEAD.

15 years agotest_padlock: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:52 +0000 (19:31 +0000)]
test_padlock: update from HEAD.

15 years agosha*-s390x.pl: minor update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:30 +0000 (19:31 +0000)]
sha*-s390x.pl: minor update from HEAD.

15 years agorc4-x86_64.pl: Win64 SEH update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:04 +0000 (19:31 +0000)]
rc4-x86_64.pl: Win64 SEH update from HEAD.

15 years agob_sock.c: readability update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:30:36 +0000 (19:30 +0000)]
b_sock.c: readability update from HEAD.

15 years agoUpdates from HEAD
Richard Levitte [Mon, 27 Apr 2009 00:08:50 +0000 (00:08 +0000)]
Updates from HEAD

15 years agoUpdate docs: can use backslashes now.
Dr. Stephen Henson [Sun, 26 Apr 2009 15:50:55 +0000 (15:50 +0000)]
Update docs: can use backslashes now.

15 years agoPrevent warning if WINCE not used.
Dr. Stephen Henson [Sun, 26 Apr 2009 15:04:06 +0000 (15:04 +0000)]
Prevent warning if WINCE not used.

15 years agoAdd extra no deprecate flags in Configure.
Dr. Stephen Henson [Sun, 26 Apr 2009 14:54:23 +0000 (14:54 +0000)]
Add extra no deprecate flags in Configure.

15 years agoThis at least break WIN32 which doesn't have sys/time.h might need to make
Dr. Stephen Henson [Sun, 26 Apr 2009 14:53:58 +0000 (14:53 +0000)]
This at least break WIN32 which doesn't have sys/time.h might need to make
this a bit more generous later...

15 years agoAdd local symbol hacks for OpenVMS
Richard Levitte [Sun, 26 Apr 2009 12:26:04 +0000 (12:26 +0000)]
Add local symbol hacks for OpenVMS

15 years agoCast to avoid signedness confusion
Richard Levitte [Sun, 26 Apr 2009 12:16:12 +0000 (12:16 +0000)]
Cast to avoid signedness confusion

15 years agoUpdates from HEAD
Richard Levitte [Sun, 26 Apr 2009 11:35:58 +0000 (11:35 +0000)]
Updates from HEAD

15 years agoMake no-rsa, no-dsa and no-dh compile again.
Dr. Stephen Henson [Thu, 23 Apr 2009 17:16:40 +0000 (17:16 +0000)]
Make no-rsa, no-dsa and no-dh compile again.

15 years agoMake no-ec work
Dr. Stephen Henson [Thu, 23 Apr 2009 16:25:00 +0000 (16:25 +0000)]
Make no-ec work

15 years agoMake no-gost work properly.
Dr. Stephen Henson [Thu, 23 Apr 2009 16:12:09 +0000 (16:12 +0000)]
Make no-gost work properly.

15 years agoSome no-ec fixes (not complete yet).
Dr. Stephen Henson [Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)]
Some no-ec fixes (not complete yet).

15 years agoCryptoAPI engine only exists on WIN32.
Dr. Stephen Henson [Wed, 22 Apr 2009 17:36:45 +0000 (17:36 +0000)]
CryptoAPI engine only exists on WIN32.

15 years agoPR: 1902
Dr. Stephen Henson [Wed, 22 Apr 2009 17:31:04 +0000 (17:31 +0000)]
PR: 1902

Add ecdsa/ecdh algorithms to default for speed utility.

15 years agoFind openssl utility if on the PATH.
Dr. Stephen Henson [Wed, 22 Apr 2009 16:50:42 +0000 (16:50 +0000)]
Find openssl utility if on the PATH.

15 years agoPR: 1903
Dr. Stephen Henson [Wed, 22 Apr 2009 16:21:20 +0000 (16:21 +0000)]
PR: 1903
Submitted by: "Paul Smedley" <pauldespam@despamsmedley.id.au>
Approved by: steve@openssl.org

OS/2 fixes (excludes Makefile.shared patch for now).

15 years agoFix WIN32 warnings.
Dr. Stephen Henson [Wed, 22 Apr 2009 15:40:54 +0000 (15:40 +0000)]
Fix WIN32 warnings.

15 years agoFix WIN32 warning.
Dr. Stephen Henson [Wed, 22 Apr 2009 12:17:02 +0000 (12:17 +0000)]
Fix WIN32 warning.

15 years agoAnother kerberos fix.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:30:54 +0000 (22:30 +0000)]
Another kerberos fix.

15 years agoChange version to beta3-dev
Dr. Stephen Henson [Tue, 21 Apr 2009 22:27:41 +0000 (22:27 +0000)]
Change version to beta3-dev

15 years agoSome fixes for kerberos builds.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:20:12 +0000 (22:20 +0000)]
Some fixes for kerberos builds.

15 years agoFix RFC num. OpenSSL_1_0_0-beta2
Dr. Stephen Henson [Tue, 21 Apr 2009 15:42:01 +0000 (15:42 +0000)]
Fix RFC num.

15 years agoUpdate STATUS.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:19:15 +0000 (15:19 +0000)]
Update STATUS.

15 years agoFix warning.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:11:59 +0000 (15:11 +0000)]
Fix warning.

15 years agomake update.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:02:20 +0000 (15:02 +0000)]
make update.

15 years agoBeta 2 preparation.
Dr. Stephen Henson [Tue, 21 Apr 2009 14:58:57 +0000 (14:58 +0000)]
Beta 2 preparation.

15 years agoPR: 1751
Dr. Stephen Henson [Sun, 19 Apr 2009 18:03:13 +0000 (18:03 +0000)]
PR: 1751
Submitted by: David Woodhouse <dwmw2@infradead.org>
Approved by: steve@openssl.org

Compatibility patches for Cisco VPN client DTLS.

15 years agoFix error header files and error files too.
Dr. Stephen Henson [Sun, 19 Apr 2009 17:58:01 +0000 (17:58 +0000)]
Fix error header files and error files too.

15 years agoPR: 1894
Dr. Stephen Henson [Thu, 16 Apr 2009 17:22:51 +0000 (17:22 +0000)]
PR: 1894
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Fix various typos and stuff.

15 years agoPR: 1900
Dr. Stephen Henson [Thu, 16 Apr 2009 16:42:02 +0000 (16:42 +0000)]
PR: 1900
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Remove unnecessary included header file.

15 years agoPR: 1895
Dr. Stephen Henson [Wed, 15 Apr 2009 15:16:29 +0000 (15:16 +0000)]
PR: 1895
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Updates to mkerr.pl script.

15 years agoPR: 1899
Dr. Stephen Henson [Wed, 15 Apr 2009 15:07:09 +0000 (15:07 +0000)]
PR: 1899
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Check for <= 0 when verifying CRL issuers.

15 years agoPR: 1828
Dr. Stephen Henson [Wed, 15 Apr 2009 14:49:36 +0000 (14:49 +0000)]
PR: 1828
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Updated DTLS Rentransmission bug patch.

15 years agoPR #1828 reverted: state save/restore incompatible with 1.0.0-stable.
Dr. Stephen Henson [Tue, 14 Apr 2009 15:29:34 +0000 (15:29 +0000)]
PR #1828 reverted: state save/restore incompatible with 1.0.0-stable.

15 years agoFix typo and stop WIN32 warnings.
Dr. Stephen Henson [Tue, 14 Apr 2009 15:13:35 +0000 (15:13 +0000)]
Fix typo and stop WIN32 warnings.

15 years agoPR: 1829
Dr. Stephen Henson [Tue, 14 Apr 2009 14:33:12 +0000 (14:33 +0000)]
PR: 1829
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

DTLS Timer Bug fix.

15 years agoPR: 1647
Dr. Stephen Henson [Tue, 14 Apr 2009 14:22:26 +0000 (14:22 +0000)]
PR: 1647
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Update patch for PR#1647.

15 years agoPR: 1827
Dr. Stephen Henson [Tue, 14 Apr 2009 14:20:57 +0000 (14:20 +0000)]
PR: 1827
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Updated patch for PR #1827

15 years agoPR: 1828
Dr. Stephen Henson [Tue, 14 Apr 2009 14:19:46 +0000 (14:19 +0000)]
PR: 1828
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Update from 0.9.8-stable.

15 years agoPR: 1838
Dr. Stephen Henson [Tue, 14 Apr 2009 14:18:16 +0000 (14:18 +0000)]
PR: 1838
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Updated patch from 0.9.8-stable.

15 years agoMake update.
Dr. Stephen Henson [Mon, 13 Apr 2009 11:40:00 +0000 (11:40 +0000)]
Make update.

15 years agoPR: 1786
Dr. Stephen Henson [Mon, 13 Apr 2009 11:36:19 +0000 (11:36 +0000)]
PR: 1786
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Add missing IMPLEMENT.

15 years agoPR: 1785
Dr. Stephen Henson [Mon, 13 Apr 2009 11:31:22 +0000 (11:31 +0000)]
PR: 1785
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Properly handle malloc failure.

15 years agoPR: 1896
Dr. Stephen Henson [Mon, 13 Apr 2009 11:26:31 +0000 (11:26 +0000)]
PR: 1896
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Remove double sk_*_free() definition and add missing definition to mkstack.pl

15 years agoPR: 1898
Dr. Stephen Henson [Mon, 13 Apr 2009 11:22:55 +0000 (11:22 +0000)]
PR: 1898
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org

Include correct headers in selftest.pl generated code.

15 years agoPR: 1887
Dr. Stephen Henson [Fri, 10 Apr 2009 16:42:28 +0000 (16:42 +0000)]
PR: 1887
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org

Document/clarify use of some options and include details of GOST algorihthm
usage.

15 years agoTypo.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:35:31 +0000 (11:35 +0000)]
Typo.

15 years agoPR: 1887 (part, modified)
Dr. Stephen Henson [Fri, 10 Apr 2009 11:25:54 +0000 (11:25 +0000)]
PR: 1887 (part, modified)
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org

Use correct command names in -engine description and fix typo.

15 years agoPR: 1887 (part)
Dr. Stephen Henson [Fri, 10 Apr 2009 11:07:35 +0000 (11:07 +0000)]
PR: 1887 (part)
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org

Added error codes for ccgost.

15 years agoFix usage messages and lookup digests later in req command.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:00:12 +0000 (11:00 +0000)]
Fix usage messages and lookup digests later in req command.

(part of PR #1887)

15 years agoPrint out registered digest names in dgst utility instead of hard
Dr. Stephen Henson [Fri, 10 Apr 2009 10:30:27 +0000 (10:30 +0000)]
Print out registered digest names in dgst utility instead of hard
coding them. Modify EVP_MD_do_all() to include registered digest name.

This is a modified version of part of PR#1887.

15 years agoPR: 1892
Dr. Stephen Henson [Wed, 8 Apr 2009 15:58:07 +0000 (15:58 +0000)]
PR: 1892

Fix memory leak when email:move option used.

15 years agoDisable SSLv2 cipher suites by default and avoid SSLv2 compatible client
Dr. Stephen Henson [Tue, 7 Apr 2009 17:01:07 +0000 (17:01 +0000)]
Disable SSLv2 cipher suites by default and avoid SSLv2 compatible client
hello if no SSLv2 cipher suites are included. This effectively disables
the broken SSLv2 use by default.

15 years agoUpdate from 0.9.8-stable.
Dr. Stephen Henson [Tue, 7 Apr 2009 16:30:32 +0000 (16:30 +0000)]
Update from 0.9.8-stable.

15 years agoUpdate from 0.9.8-stable
Dr. Stephen Henson [Tue, 7 Apr 2009 12:10:59 +0000 (12:10 +0000)]
Update from 0.9.8-stable

15 years agoPR: 1677
Dr. Stephen Henson [Mon, 6 Apr 2009 21:42:11 +0000 (21:42 +0000)]
PR: 1677
Submitted by: Vennemann <rvennemann@cool.ms>
Approved by: steve@openssl.org

Call RSA_new() after ENGINE has been set up.

15 years agoUse basename of objxref.pl not whole path in generated header.
Dr. Stephen Henson [Mon, 6 Apr 2009 16:16:23 +0000 (16:16 +0000)]
Use basename of objxref.pl not whole path in generated header.

15 years agoUpdates from HEAD.
Dr. Stephen Henson [Mon, 6 Apr 2009 16:02:51 +0000 (16:02 +0000)]
Updates from HEAD.

15 years agoPR: 1626
Dr. Stephen Henson [Mon, 6 Apr 2009 15:16:41 +0000 (15:16 +0000)]
PR: 1626
Submitted by: Cerutti Pietro <pietro.cerutti@bfh.ch>

Fix manual page.

15 years agoPR: 1890
Dr. Stephen Henson [Mon, 6 Apr 2009 14:31:36 +0000 (14:31 +0000)]
PR: 1890
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org

Fixes to --with-zlib-include and --with-zlib-lib and init PRNG for VOS.

15 years agoPR: 1899
Dr. Stephen Henson [Mon, 6 Apr 2009 14:25:02 +0000 (14:25 +0000)]
PR: 1899
Submitted by: Doug Kaufman <dkaufman@rahul.net>
Approved by: steve@openssl.org

Mingw fixes.

15 years agoFix error codes.
Dr. Stephen Henson [Sun, 5 Apr 2009 11:54:34 +0000 (11:54 +0000)]
Fix error codes.

15 years agoChange default openssl.cnf to only use issuer+serial option in AKID if no
Dr. Stephen Henson [Sat, 4 Apr 2009 18:09:43 +0000 (18:09 +0000)]
Change default openssl.cnf to only use issuer+serial option in AKID if no
SKID.

15 years agoMake no-ssl2 work including on Win32 builds.
Dr. Stephen Henson [Sat, 4 Apr 2009 17:57:34 +0000 (17:57 +0000)]
Make no-ssl2 work including on Win32 builds.

15 years agoFix warning.
Ben Laurie [Sat, 4 Apr 2009 13:39:48 +0000 (13:39 +0000)]
Fix warning.

15 years agoFix for VC++ 6 which chokes on the empty argument.
Dr. Stephen Henson [Sat, 4 Apr 2009 11:44:48 +0000 (11:44 +0000)]
Fix for VC++ 6 which chokes on the empty argument.

15 years agoPR: 1870
Dr. Stephen Henson [Fri, 3 Apr 2009 17:06:35 +0000 (17:06 +0000)]
PR: 1870
Submitted by: kilroy <kilroy@mail.zutom.sk>
Approved by: steve@openssl.org

Handle pkcs12 format correctly by not assuming PEM format straight away.

15 years agoUpdate from 0.9.8-stable.
Dr. Stephen Henson [Fri, 3 Apr 2009 16:54:37 +0000 (16:54 +0000)]
Update from 0.9.8-stable.

15 years agoPR: 1888
Dr. Stephen Henson [Fri, 3 Apr 2009 16:44:40 +0000 (16:44 +0000)]
PR: 1888
Submitted by: Tim Rice <tim@multitalents.net>
Approved by: steve@openssl.org

Allow SOCKLEN_T type to be overridden at config time e.g.
./config -DSOCKLEN_T=int

15 years agoPR: 1613
Dr. Stephen Henson [Fri, 3 Apr 2009 16:21:01 +0000 (16:21 +0000)]
PR: 1613
Submitted by: "Jean Rebiffe" <jrebiffe@gmail.com>
Approved by: steve@openssl.org

Free section.

15 years agoUpdate version info, fix typo.
Dr. Stephen Henson [Fri, 3 Apr 2009 11:50:59 +0000 (11:50 +0000)]
Update version info, fix typo.

15 years agoUpdate from 0.9.8-stable.
Dr. Stephen Henson [Fri, 3 Apr 2009 11:37:47 +0000 (11:37 +0000)]
Update from 0.9.8-stable.

15 years agoUpdate from 0.9.8-stable.
Dr. Stephen Henson [Thu, 2 Apr 2009 22:28:52 +0000 (22:28 +0000)]
Update from 0.9.8-stable.

15 years agoMake PKCS12_parse() handle some PKCS#12 files which have their own ideas
Dr. Stephen Henson [Thu, 2 Apr 2009 17:44:50 +0000 (17:44 +0000)]
Make PKCS12_parse() handle some PKCS#12 files which have their own ideas
about settings for local key id...

15 years agoFix demo program.
Dr. Stephen Henson [Thu, 2 Apr 2009 17:39:25 +0000 (17:39 +0000)]
Fix demo program.

15 years agoAdd USE_SOCKETS.
Dr. Stephen Henson [Thu, 2 Apr 2009 15:19:03 +0000 (15:19 +0000)]
Add USE_SOCKETS.

15 years agoPR: 1882
Dr. Stephen Henson [Thu, 2 Apr 2009 15:04:01 +0000 (15:04 +0000)]
PR: 1882
Submitted by: Corinna Vinschen <vinschen@redhat.com>
Approved by: steve@openssl.org

Typo.

15 years agoAdd another one...
Dr. Stephen Henson [Wed, 1 Apr 2009 15:22:00 +0000 (15:22 +0000)]
Add another one...

15 years agoPR: 1880
Dr. Stephen Henson [Wed, 1 Apr 2009 15:06:28 +0000 (15:06 +0000)]
PR: 1880

Document -ocsp_uri command line switch to x509 utility.

15 years agoPR:1880
Dr. Stephen Henson [Wed, 1 Apr 2009 14:59:18 +0000 (14:59 +0000)]
PR:1880

Load config in ts utility.

15 years agoUpdate README. OpenSSL_1_0_0-beta1
Dr. Stephen Henson [Wed, 1 Apr 2009 08:57:37 +0000 (08:57 +0000)]
Update README.

15 years agoMake update fixing duplicate ASN1 error codes.
Dr. Stephen Henson [Wed, 1 Apr 2009 08:55:54 +0000 (08:55 +0000)]
Make update fixing duplicate ASN1 error codes.

15 years agoUpdate for first beta.
Dr. Stephen Henson [Wed, 1 Apr 2009 08:47:28 +0000 (08:47 +0000)]
Update for first beta.

15 years agoWin32 build fixes.
Dr. Stephen Henson [Tue, 31 Mar 2009 22:04:25 +0000 (22:04 +0000)]
Win32 build fixes.

15 years agoFix other read call too.
Dr. Stephen Henson [Tue, 31 Mar 2009 21:57:26 +0000 (21:57 +0000)]
Fix other read call too.

15 years agoUse OPENSSL_SYS_WIN32 instead of _WIN32
Dr. Stephen Henson [Tue, 31 Mar 2009 21:45:29 +0000 (21:45 +0000)]
Use OPENSSL_SYS_WIN32 instead of _WIN32

15 years agoOops.
Dr. Stephen Henson [Tue, 31 Mar 2009 21:39:54 +0000 (21:39 +0000)]
Oops.

15 years agoAdd update from 0.9.8-stable branch.
Dr. Stephen Henson [Tue, 31 Mar 2009 21:35:55 +0000 (21:35 +0000)]
Add update from 0.9.8-stable branch.

15 years agoFix shlib version.
Dr. Stephen Henson [Tue, 31 Mar 2009 21:21:42 +0000 (21:21 +0000)]
Fix shlib version.