Richard Levitte [Fri, 16 Nov 2001 13:13:09 +0000 (13:13 +0000)]
On VMS, the norm is still that symbols are uppercased, so for now it's better
to trust that norm. I might implement a control for this later on
Richard Levitte [Thu, 15 Nov 2001 14:33:49 +0000 (14:33 +0000)]
Restore extern "C" balance.
Richard Levitte [Thu, 15 Nov 2001 12:44:57 +0000 (12:44 +0000)]
perl util/mkerr.pl -recurse -write -rebuild
Richard Levitte [Thu, 15 Nov 2001 12:41:39 +0000 (12:41 +0000)]
make update
perl util/mkdef.pl crypto update rewrite
Richard Levitte [Thu, 15 Nov 2001 12:36:30 +0000 (12:36 +0000)]
make update
perl util/mkdef.pl crypto update rewrite
Richard Levitte [Thu, 15 Nov 2001 12:18:01 +0000 (12:18 +0000)]
Apply the following changes from the main trunk:
2001-03-08 13:14 bodo
* util/mkerr.pl (1.14): Change mkerr.pl so that it puts the
ERR_load_..._strings() prototype in header files that it writes.
2001-05-10 02:07 steve
* util/mkerr.pl (1.15): Fix to allow multiple NONE libraries in
mkerr.pl .
Geoff Thorpe [Thu, 15 Nov 2001 01:56:10 +0000 (01:56 +0000)]
The change in the HEAD to not cache gethostbyname() values made two
functions redundant - which were later commented out. This does the same
for the merge of the gethostbyname() change to 0.9.6-stable.
Bodo Möller [Wed, 14 Nov 2001 21:21:04 +0000 (21:21 +0000)]
remove obsolete entry
Bodo Möller [Wed, 14 Nov 2001 21:19:47 +0000 (21:19 +0000)]
fix warning
Bodo Möller [Wed, 14 Nov 2001 21:18:30 +0000 (21:18 +0000)]
consistency between main branch and stable branch
Richard Levitte [Wed, 14 Nov 2001 10:59:35 +0000 (10:59 +0000)]
Remove temporary files
Richard Levitte [Wed, 14 Nov 2001 10:44:13 +0000 (10:44 +0000)]
Apply the following changes from the main trunk:
2001-10-10 16:46 levitte
* Configure (1.294), Makefile.org (1.142): For systems where gcc is
used and where we don't know if GNU ld is used or not, let's ask
collect2 which ld it uses and choose to use the target
do-gnu_shared if GNU ld is used.
This solves the reported problems on Solaris systems where GNU cc
is used but GNU ld isn't, and probably on other systems with
similar setups.
Richard Levitte [Wed, 14 Nov 2001 10:08:55 +0000 (10:08 +0000)]
Apply the following changes from the main trunk:
2001-06-05 06:41 levitte
* Makefile.org (1.137): Small detail about AIX forgotten...
Richard Levitte [Wed, 14 Nov 2001 09:45:30 +0000 (09:45 +0000)]
Apply the following changes from the main trunk:
2001-02-13 14:08 levitte
* Configure (1.251): Update of linux-ppc. Contributed by MATSUURA
Takanori <t-matsuu@protein.osaka-u.ac.jp>
Richard Levitte [Wed, 14 Nov 2001 09:44:37 +0000 (09:44 +0000)]
Apply the following changes from the main trunk:
2001-04-27 23:33 levitte
* Makefile.org (1.135): A method to create shared libraries on AIX,
and according to "Howard Chu" <hyc@highlandsun.com>, it may be
general enough to work on any Unixly system.
Richard Levitte [Wed, 14 Nov 2001 09:38:55 +0000 (09:38 +0000)]
Apply the following changes from the main trunk:
2001-04-26 22:17 levitte
* Makefile.org (1.134): Linux shared libraries can be linked with
debug symbols. Tru64 shared libraries can be linked with static
libraries.
Richard Levitte [Wed, 14 Nov 2001 08:26:55 +0000 (08:26 +0000)]
Apply the following changes from the main trunk:
2001-01-10 17:43 bodo
* Makefile.org (1.118): Pass ${PERL} down to the Makefile in
sub-directory "test" in "make tests"
2001-01-10 17:40 bodo
* Makefile.org (1.117): Use $(PERL) in place of hard-coded perl
Richard Levitte [Wed, 14 Nov 2001 08:18:07 +0000 (08:18 +0000)]
Apply the following change from the main trunk:
2000-12-01 02:11 levitte
* Configure (1.243), config (1.71): Recognise Darwin as well. For
now, have it do exactly the same thing as for Rhapsody
Richard Levitte [Wed, 14 Nov 2001 08:08:04 +0000 (08:08 +0000)]
Apply the following change from the main trunk:
2000-11-14 12:05 jaenicke
* Makefile.org (1.115): Some platforms (namely HP-UX) require the
'x' bit set for shared libraries. For performance reasons, it is
also recommended to make the (mmap'ed) shared library 'read-only'.
-> New permissions for installed shared libraries = 555
This doesn't hurt anybody, provided the installation is performed
with 'cp -f' :-)
Richard Levitte [Wed, 14 Nov 2001 08:06:42 +0000 (08:06 +0000)]
Apply the following change from the main trunk:
2000-11-01 01:05 levitte
* Configure (1.236), Makefile.org (1.110), CHANGES (1.640): Add
support for shared libraries under Irix. Submitted by Albert
Chin-A-Young <china@thewrittenword.com>
Richard Levitte [Wed, 14 Nov 2001 07:52:33 +0000 (07:52 +0000)]
Apply the following change from the main trunk:
2000-11-01 01:05 levitte
* Configure (1.236), Makefile.org (1.110), CHANGES (1.640): Add
support for shared libraries under Irix. Submitted by Albert
Chin-A-Young <china@thewrittenword.com>
Richard Levitte [Wed, 14 Nov 2001 07:42:39 +0000 (07:42 +0000)]
Make default attributes consistent in all sub-packages (and thereby
closer to the main trunk).
Richard Levitte [Wed, 14 Nov 2001 07:23:45 +0000 (07:23 +0000)]
Correct the order of the changes.
Richard Levitte [Wed, 14 Nov 2001 07:18:47 +0000 (07:18 +0000)]
Apply the following change from the main trunk:
2000-11-01 00:14 levitte
* Configure (1.234), config (1.68), CHANGES (1.638): Add
configuration option to build on Linux on both big-endian and
little-endian MIPS. Submitted by Ralf Baechle
<ralf@uni-koblenz.de>
Richard Levitte [Wed, 14 Nov 2001 07:08:10 +0000 (07:08 +0000)]
Apply the following change from the main trunk:
2000-10-22 23:37 levitte
* Makefile.org (1.106): When building shared libraries on HP-UX
10.20 and HP-UX 11.00 (32bit), ld warns that -Fl "may not be
supported in future releases". We know that, and are doing things
in HP-UX 11 (64bit), so turn off that warning with
+vnocompatwarnings.
Richard Levitte [Wed, 14 Nov 2001 07:01:34 +0000 (07:01 +0000)]
Apply the following change from the main trunk:
2000-10-22 00:05 levitte
* Configure (1.232): FreeBSD-elf can do threads. However, there
seems to be confusion if you should defined _THREAD_SAFE (I found
that in an include file, and that's what everybody tells me) or
_THREADSAFE (that's what the gcc manual says in the
FreeBSD-specific section), so I defined both, just to be safe.
Richard Levitte [Wed, 14 Nov 2001 06:59:15 +0000 (06:59 +0000)]
Apply the following change from the main trunk:
2000-10-21 23:24 levitte
* CHANGES (1.631), Configure (1.231), Makefile.org (1.104):
Add what's needed to get shared libraries on HP-UX.
Richard Levitte [Tue, 13 Nov 2001 11:21:23 +0000 (11:21 +0000)]
That was incorrect. Revert.
Richard Levitte [Tue, 13 Nov 2001 11:10:29 +0000 (11:10 +0000)]
Apply change from revision 1.101 (2000-10-09 02:50 levitte):
Make sure ranlib is only used on .a libraries.
Bodo Möller [Tue, 13 Nov 2001 08:57:58 +0000 (08:57 +0000)]
update FAQ from main branch
Bodo Möller [Mon, 12 Nov 2001 23:29:23 +0000 (23:29 +0000)]
synchronise with HEAD branch,
remove redundant name OpenUNIX for OpenUNIX-8 configuration
Bodo Möller [Mon, 12 Nov 2001 22:13:28 +0000 (22:13 +0000)]
information on 0.9.6c-engine
Bodo Möller [Mon, 12 Nov 2001 15:25:17 +0000 (15:25 +0000)]
order entries as in main branch
Bodo Möller [Mon, 12 Nov 2001 15:15:46 +0000 (15:15 +0000)]
'make update'
Mark J. Cox [Mon, 12 Nov 2001 14:08:49 +0000 (14:08 +0000)]
Sync ia64.S in 0.9.6c-dev with ia64.S in 0.9.7 (some fixes had been
applied since the initial patch was created)
Submitted by:
Reviewed by:
PR:
Mark J. Cox [Mon, 12 Nov 2001 13:22:14 +0000 (13:22 +0000)]
Add an entry for gcc on UnixWare
Submitted by: Gary Benson
Reviewed by: Mark Cox
PR:
Mark J. Cox [Mon, 12 Nov 2001 12:49:25 +0000 (12:49 +0000)]
Add assembler implementation for IA-64
Submitted by: Andy Polyakov
Reviewed by: Mark Cox
PR:
Bodo Möller [Mon, 12 Nov 2001 11:33:07 +0000 (11:33 +0000)]
the PRNG race conditions were mostly a theoretical issue, remove from NEWS
Bodo Möller [Mon, 12 Nov 2001 11:27:34 +0000 (11:27 +0000)]
add changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c
Bodo Möller [Mon, 12 Nov 2001 11:22:45 +0000 (11:22 +0000)]
synchronize with HEAD branch
Bodo Möller [Sat, 10 Nov 2001 15:09:47 +0000 (15:09 +0000)]
order chronologically: move entry for recent s2_clnt.c/s2_srvr.c fixes to the top
Bodo Möller [Sat, 10 Nov 2001 10:43:51 +0000 (10:43 +0000)]
make code a little more similar to what it looked like before the fixes
Bodo Möller [Sat, 10 Nov 2001 02:14:43 +0000 (02:14 +0000)]
remove incorrect 'callback' prototype
Bodo Möller [Sat, 10 Nov 2001 01:15:29 +0000 (01:15 +0000)]
important SSL 2.0 bugfixes
Bodo Möller [Fri, 9 Nov 2001 13:10:47 +0000 (13:10 +0000)]
typo
Bodo Möller [Fri, 9 Nov 2001 13:03:12 +0000 (13:03 +0000)]
fix warning
Bodo Möller [Fri, 9 Nov 2001 12:59:15 +0000 (12:59 +0000)]
cast to 'unsigned long' before using ~ if we need an unsigned long result
Submitted by: "Stefan Marxen" <stefan.marxen@gmx.net>
Bodo Möller [Thu, 8 Nov 2001 14:52:40 +0000 (14:52 +0000)]
clarify
Bodo Möller [Thu, 8 Nov 2001 14:36:49 +0000 (14:36 +0000)]
Don't define _REENTRANT here in e_os.h. On systems where we need
_REENTRANT if threads support is enabled, the ./Configure entry must
define it so that it ends up in CFLAG.
Richard Levitte [Mon, 29 Oct 2001 13:06:29 +0000 (13:06 +0000)]
Addapt VMS scripts to the newer disk layout system ODS-5, which allows more than one period and mixed size characters in file names
Bodo Möller [Fri, 26 Oct 2001 14:03:51 +0000 (14:03 +0000)]
typo
Bodo Möller [Fri, 26 Oct 2001 13:03:28 +0000 (13:03 +0000)]
disable caching in BIO_gethostbyname
Bodo Möller [Thu, 25 Oct 2001 08:36:22 +0000 (08:36 +0000)]
'make update'
Bodo Möller [Thu, 25 Oct 2001 08:18:56 +0000 (08:18 +0000)]
Consistency with s2_... and s23_... variants (no real functional
change)
Bodo Möller [Thu, 25 Oct 2001 08:18:36 +0000 (08:18 +0000)]
Oops
Bodo Möller [Thu, 25 Oct 2001 06:06:50 +0000 (06:06 +0000)]
Assume TLS 1.0 if ClientHello fragment is too short.
Bodo Möller [Wed, 24 Oct 2001 19:05:26 +0000 (19:05 +0000)]
Fix SSL handshake functions and SSL_clear() such that SSL_clear()
never resets s->method to s->ctx->method when called from within one
of the SSL handshake functions.
Bodo Möller [Sat, 20 Oct 2001 17:52:40 +0000 (17:52 +0000)]
In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if
client_version is smaller than the protocol version in use.
Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0
if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the
client will at least see that alert.
Dr. Stephen Henson [Sat, 20 Oct 2001 16:23:18 +0000 (16:23 +0000)]
Typo.
Lutz Jänicke [Tue, 16 Oct 2001 14:25:27 +0000 (14:25 +0000)]
Flush buffers to prevent mixed output (Adam Back <adam@cypherspace.org>).
Bodo Möller [Mon, 15 Oct 2001 17:57:27 +0000 (17:57 +0000)]
make sure .rnd exists
Bodo Möller [Mon, 15 Oct 2001 17:42:43 +0000 (17:42 +0000)]
Fix ssl3_get_message to handle message fragmentation correctly.
Bodo Möller [Mon, 15 Oct 2001 17:40:22 +0000 (17:40 +0000)]
the previous commit accidentily removed 'ret = 1' from the SSL_ST_OK
case of ssl3_accept
Ulf Möller [Sun, 14 Oct 2001 00:58:32 +0000 (00:58 +0000)]
openbsd-x86 macros
Submitted by: Toomas Kiisk <vix@cyber.ee>
Lutz Jänicke [Fri, 12 Oct 2001 12:29:57 +0000 (12:29 +0000)]
Update information as a partial response to the post
From: "Chris D. Peterson" <cpeterson@aventail.com>
Subject: Implementation Issues with OpenSSL
To: openssl-users@openssl.org
Date: Wed, 22 Aug 2001 16:13:17 -0700
The patch included in the original post may improve the internal session
list handling (and is therefore worth a seperate investigation).
No change to the list handling will however solve the problems of incorrect
SSL_SESSION_free() calls. The session list is only one possible point of
failure, dangling pointers would also occur for SSL object currently
using the session. The correct solution is to only use SSL_SESSION_free()
when applicable!
Richard Levitte [Thu, 11 Oct 2001 19:43:45 +0000 (19:43 +0000)]
In certain cases, no encoding has been set up for the b64 filter. In
such cases, a flush should *not* attempt to finalise the encoding, as
the EVP_ENCODE_CTX structure will only be filled with garbage. For
the same reason, do the same check when a wpending is performed.
Richard Levitte [Thu, 11 Oct 2001 07:59:25 +0000 (07:59 +0000)]
Make sure the macro PEDANTIC is defined when we compile with
-pedantic, or some parts of the source will raise complaints from the
compiler.
Richard Levitte [Wed, 10 Oct 2001 21:52:27 +0000 (21:52 +0000)]
'make update'
Richard Levitte [Wed, 10 Oct 2001 21:51:00 +0000 (21:51 +0000)]
Add support for md4WithRSAEncryption.
Richard Levitte [Wed, 10 Oct 2001 06:15:42 +0000 (06:15 +0000)]
A few more OIDs, contributed by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>
Lutz Jänicke [Mon, 8 Oct 2001 08:38:12 +0000 (08:38 +0000)]
Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)
Lutz Jänicke [Mon, 1 Oct 2001 14:39:23 +0000 (14:39 +0000)]
Typos (Chris Pepper <pepper@mail.reppep.com>)
Richard Levitte [Mon, 24 Sep 2001 15:06:44 +0000 (15:06 +0000)]
In case of memory problems, the va_start() wasn't cleaned with a va_end().
Noticed by Thomas Klausner <wiz@danbala.ifoer.tuwien.ac.at>.
Bodo Möller [Mon, 24 Sep 2001 07:57:20 +0000 (07:57 +0000)]
comment
Bodo Möller [Sat, 22 Sep 2001 01:37:36 +0000 (01:37 +0000)]
crypto/idea was missing in the list of directories that may have been deleted
Bodo Möller [Fri, 21 Sep 2001 11:19:26 +0000 (11:19 +0000)]
bugfix: handle HelloRequest received during handshake correctly
Bodo Möller [Fri, 21 Sep 2001 07:01:04 +0000 (07:01 +0000)]
Disable session related stuff in SSL_ST_OK case of ssl3_accept if we
just sent a HelloRequest.
Bodo Möller [Fri, 21 Sep 2001 00:03:00 +0000 (00:03 +0000)]
Bugfix: correct cleanup after sending a HelloRequest
Bodo Möller [Thu, 20 Sep 2001 21:36:39 +0000 (21:36 +0000)]
fix ssl3_accept: don't call ssl_init_wbio_buffer() in HelloRequest case
Bodo Möller [Thu, 20 Sep 2001 18:34:36 +0000 (18:34 +0000)]
Fix ssl/s3_enc.c, ssl/t1_enc.c and ssl/s3_pkt.c so that we don't
reveal whether illegal block cipher padding was found or a MAC
verification error occured.
In ssl/s2_pkt.c, verify that the purported number of padding bytes is in
the legal range.
Bodo Möller [Fri, 14 Sep 2001 13:48:37 +0000 (13:48 +0000)]
add comment
Bodo Möller [Fri, 14 Sep 2001 13:32:03 +0000 (13:32 +0000)]
Increase permissible ClientKeyExchange message length as in main
branch (revision 1.50, 2000-11-17)
Lutz Jänicke [Thu, 13 Sep 2001 15:19:39 +0000 (15:19 +0000)]
Synchronize typo corrections with 0.9.7-dev
Lutz Jänicke [Thu, 13 Sep 2001 15:07:21 +0000 (15:07 +0000)]
One more manual page.
cvs2svn [Thu, 13 Sep 2001 15:05:43 +0000 (15:05 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_6-stable'.
Lutz Jänicke [Thu, 13 Sep 2001 15:05:42 +0000 (15:05 +0000)]
One more manual page.
Lutz Jänicke [Thu, 13 Sep 2001 13:21:38 +0000 (13:21 +0000)]
Rework section about return values another time (based on hints from
Bodo Moeller).
Bodo Möller [Thu, 13 Sep 2001 13:02:59 +0000 (13:02 +0000)]
avoid "statement not reached" warning
Geoff Thorpe [Wed, 12 Sep 2001 02:43:22 +0000 (02:43 +0000)]
Updated dependencies from "make update"
Geoff Thorpe [Wed, 12 Sep 2001 02:39:06 +0000 (02:39 +0000)]
Reduce the header dependencies on engine.h in apps/.
Geoff Thorpe [Wed, 12 Sep 2001 02:34:20 +0000 (02:34 +0000)]
ENGINE uses a very opaque design, so we can predeclare the structure type
in "types.h" so that very few headers will need to include engine.h,
generally only C files using API functions will need it (reducing
the header dependencies quite a lot).
Geoff Thorpe [Wed, 12 Sep 2001 01:54:17 +0000 (01:54 +0000)]
ENGINE files were renamed, and error strings are now in eng_err.c
Dr. Stephen Henson [Wed, 12 Sep 2001 00:19:20 +0000 (00:19 +0000)]
Add certificate and request demos.
Fix X509V3 macro so they compile.
Lutz Jänicke [Tue, 11 Sep 2001 13:08:51 +0000 (13:08 +0000)]
Make maximum certifcate chain size accepted from the peer application
settable (proposed by "Douglas E. Engert" <deengert@anl.gov>).
Bodo Möller [Tue, 11 Sep 2001 12:46:50 +0000 (12:46 +0000)]
add 'release showstopper' entry
Bodo Möller [Tue, 11 Sep 2001 12:26:56 +0000 (12:26 +0000)]
update
Bodo Möller [Tue, 11 Sep 2001 12:26:35 +0000 (12:26 +0000)]
update from main branch
Bodo Möller [Tue, 11 Sep 2001 12:20:20 +0000 (12:20 +0000)]
ex_data situation is no longer that bad
Geoff Thorpe [Mon, 10 Sep 2001 21:18:11 +0000 (21:18 +0000)]
make update
Geoff Thorpe [Mon, 10 Sep 2001 21:04:14 +0000 (21:04 +0000)]
Put all "common" initialisation in the apps_startup() and apps_shutdown()
macros in apps.h.