Richard Levitte [Fri, 29 Nov 2002 11:31:18 +0000 (11:31 +0000)]
A few more memset()s converted to OPENSSL_cleanse().
I *think* I got them all covered by now, bu please, if you find any more,
tell me and I'll correct it.
PR: 343
Richard Levitte [Thu, 28 Nov 2002 18:56:18 +0000 (18:56 +0000)]
Have all tests use EXIT() to exit rather than exit(), since the latter doesn't
always give the expected result on some platforms.
Richard Levitte [Thu, 28 Nov 2002 18:52:18 +0000 (18:52 +0000)]
Make sure EXIT() can always be used as one statement.
Richard Levitte [Thu, 28 Nov 2002 08:06:36 +0000 (08:06 +0000)]
Cleanse memory using the new OPENSSL_cleanse() function.
I've covered all the memset()s I felt safe modifying, but may have missed some.
Richard Levitte [Wed, 27 Nov 2002 13:45:38 +0000 (13:45 +0000)]
make update
Richard Levitte [Wed, 27 Nov 2002 12:24:54 +0000 (12:24 +0000)]
Add OPENSSL_cleanse() to help cleanse memory and avoid certain compiler
and linker optimizations.
PR: 343
cvs2svn [Wed, 27 Nov 2002 12:24:09 +0000 (12:24 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_6-stable'.
Richard Levitte [Wed, 27 Nov 2002 12:24:05 +0000 (12:24 +0000)]
Add OPENSSL_cleanse() to help cleanse memory and avoid certain compiler
and linker optimizations.
PR: 343
Richard Levitte [Tue, 26 Nov 2002 15:27:05 +0000 (15:27 +0000)]
I forgot that @ in strings must be escaped in Perl
Richard Levitte [Tue, 26 Nov 2002 11:14:38 +0000 (11:14 +0000)]
The logic in the main signing and verifying functions to check lengths was
incorrect. Fortunately, there is a second check that's correct, when adding
the pads.
PR: 355
Richard Levitte [Tue, 26 Nov 2002 11:14:32 +0000 (11:14 +0000)]
The logic in the main signing and verifying functions to check lengths was
incorrect. Fortunately, there is a second check that's correct, when adding
the pads.
PR: 355
Richard Levitte [Tue, 26 Nov 2002 10:11:58 +0000 (10:11 +0000)]
Heimdal isn't really supported right now. Say so, and offer a possibility
to force the use of Heimdal, and warn if that's used.
PR: 346
Richard Levitte [Tue, 26 Nov 2002 10:09:36 +0000 (10:09 +0000)]
Small bugfixes to the KSSL implementation.
PR: 349
Richard Levitte [Tue, 26 Nov 2002 09:19:17 +0000 (09:19 +0000)]
Heimdal isn't really supported right now. Say so, and offer a possibility
to force the use of Heimdal, and warn if that's used.
PR: 346
Bodo Möller [Sat, 23 Nov 2002 18:16:09 +0000 (18:16 +0000)]
rename some functions to improve consistency
Submitted by: Sheueling Chang
Bodo Möller [Fri, 22 Nov 2002 09:25:35 +0000 (09:25 +0000)]
add a comment
Richard Levitte [Fri, 22 Nov 2002 08:45:20 +0000 (08:45 +0000)]
Disable this module if OPENSSL_NO_SOCK is defined.
Richard Levitte [Fri, 22 Nov 2002 08:40:34 +0000 (08:40 +0000)]
Typo. OPENSSL_NO_ECDH, not NO_OPENSSL_ECDH
Richard Levitte [Thu, 21 Nov 2002 22:39:16 +0000 (22:39 +0000)]
Mention a current showstopper
Richard Levitte [Thu, 21 Nov 2002 22:39:08 +0000 (22:39 +0000)]
Mention a current showstopper
Bodo Möller [Wed, 20 Nov 2002 10:55:27 +0000 (10:55 +0000)]
avoid uninitialized memory read
Submitted by: Nils Larsch
Bodo Möller [Wed, 20 Nov 2002 10:53:33 +0000 (10:53 +0000)]
Make ec_GFp_simple_point_get_affine_coordinates() faster
for Montgomery representations.
Submitted by: Sheueling Chang, Bodo Moeller
Lutz Jänicke [Wed, 20 Nov 2002 10:48:58 +0000 (10:48 +0000)]
Fix bug introduced by the attempt to fix client side external session
caching (#288): now internal caching failed (#351):
Make sure, that cipher_id is set before comparing.
Submitted by:
Reviewed by:
PR: 288 (and 351)
Lutz Jänicke [Wed, 20 Nov 2002 10:48:05 +0000 (10:48 +0000)]
Fix bug introduced by the attempt to fix client side external session
caching (#288): now internal caching failed (#351):
Make sure, that cipher_id is set before comparing.
Submitted by:
Reviewed by:
PR: 288 (and 351)
Bodo Möller [Tue, 19 Nov 2002 12:10:08 +0000 (12:10 +0000)]
allocate bio_err before memory debugging is enabled to avoid memory leaks
(we can't release it before the CRYPTO_mem_leaks() call!)
Submitted by: Nils Larsch
Bodo Möller [Tue, 19 Nov 2002 11:56:05 +0000 (11:56 +0000)]
allocate bio_err before memory debugging is enabled to avoid memory leaks
(we can't release it before the CRYPTO_mem_leaks() call!)
Submitted by: Nils Larsch
Richard Levitte [Tue, 19 Nov 2002 11:52:24 +0000 (11:52 +0000)]
It works on my laptop :-).
Richard Levitte [Tue, 19 Nov 2002 11:40:14 +0000 (11:40 +0000)]
make update
Richard Levitte [Tue, 19 Nov 2002 11:28:28 +0000 (11:28 +0000)]
Fix an unsigned/signed mismatch.
Richard Levitte [Tue, 19 Nov 2002 09:34:34 +0000 (09:34 +0000)]
Update STATUS
Richard Levitte [Mon, 18 Nov 2002 23:58:24 +0000 (23:58 +0000)]
Add news items for 0.9.6h and expand on the 0.9.7 news as well.
Richard Levitte [Mon, 18 Nov 2002 23:57:31 +0000 (23:57 +0000)]
Add news items for 0.9.6h
Richard Levitte [Mon, 18 Nov 2002 23:56:15 +0000 (23:56 +0000)]
Document the addition of certificate pairs.
Richard Levitte [Mon, 18 Nov 2002 23:54:27 +0000 (23:54 +0000)]
Add the ASN.1 structures and functions for CertificatePair, which is
defined as follows (according to X.509_4thEditionDraftV6.pdf):
CertificatePair ::= SEQUENCE {
forward [0] Certificate OPTIONAL,
reverse [1] Certificate OPTIONAL,
-- at least one of the pair shall be present -- }
The only thing I'm not sure about is if it's implicit or explicit tags
that I should count on. For now, I'm thinking explicit, but will
gladly stand corrected.
Also implement the PEM functions to read and write certificate pairs,
and defined the PEM tag as "CERTIFICATE PAIR".
This needed to be defined, mostly for the sake of the LDAP attribute
crossCertificatePair, but may prove useful elsewhere as well.
Richard Levitte [Mon, 18 Nov 2002 23:06:36 +0000 (23:06 +0000)]
Determine HZ exactly as in apps/speed.c.
Richard Levitte [Mon, 18 Nov 2002 23:05:39 +0000 (23:05 +0000)]
Make sure sysconf exists (it doesn't in the VMS C RTL lesser than version 7).
Bodo Möller [Mon, 18 Nov 2002 14:37:35 +0000 (14:37 +0000)]
remove redundant functions
Bodo Möller [Mon, 18 Nov 2002 14:33:39 +0000 (14:33 +0000)]
use consistent order of function definitions
Bodo Möller [Mon, 18 Nov 2002 14:02:20 +0000 (14:02 +0000)]
fix memory leak in memory debuggin code ...
Submitted by: Nils Larsch
Bodo Möller [Mon, 18 Nov 2002 14:00:42 +0000 (14:00 +0000)]
fix memory leak in memory debuggin code ...
Submitted by: Nils Larsch
Bodo Möller [Mon, 18 Nov 2002 13:37:40 +0000 (13:37 +0000)]
allocate bio_err before memory debugging is enabled to avoid memory leaks
(we can't release it before the CRYPTO_mem_leaks() call!)
Submitted by: Nils Larsch
Richard Levitte [Mon, 18 Nov 2002 13:04:54 +0000 (13:04 +0000)]
A variable of type time_t is supposed to be a time measurement starting at
Epoch. offset isn't such a measurement, so let's stop pretend it is.
Richard Levitte [Mon, 18 Nov 2002 13:04:08 +0000 (13:04 +0000)]
A variable of type time_t is supposed to be a time measurement starting at
Epoch. offset isn't such a measurement, so let's stop pretend it is.
Lutz Jänicke [Mon, 18 Nov 2002 08:15:45 +0000 (08:15 +0000)]
Better workaround to the "=head1 NAME OPTIONS" pod2latex problem:
NAME OPTIONS are a subset of OPTIONS, so just make it =head2!
Submitted by:
Reviewed by:
PR: 333
Richard Levitte [Sun, 17 Nov 2002 19:48:19 +0000 (19:48 +0000)]
Make it possible to build for more than one CPU.
Clarify what the CE tests do.
Richard Levitte [Sun, 17 Nov 2002 08:07:08 +0000 (08:07 +0000)]
Ignore openssl.pc. This way, there's no risk that I'll add it again :-).
Richard Levitte [Sun, 17 Nov 2002 08:05:38 +0000 (08:05 +0000)]
Adding openssl.pc to the repository was a mistake,
since it's generated.
Richard Levitte [Sun, 17 Nov 2002 08:03:24 +0000 (08:03 +0000)]
Add the file openssl.pc that I forgot a while ago.
Richard Levitte [Sat, 16 Nov 2002 10:10:39 +0000 (10:10 +0000)]
I forgot this is compiled in test/, not crypto/ec/...
Richard Levitte [Sat, 16 Nov 2002 09:42:04 +0000 (09:42 +0000)]
We don't want TARGETCPU expanded here.
Richard Levitte [Fri, 15 Nov 2002 22:54:13 +0000 (22:54 +0000)]
Mention ActiveState Perl much earlier in INSTALL.WCE.
Richard Levitte [Fri, 15 Nov 2002 22:37:18 +0000 (22:37 +0000)]
WinCE patches
Lutz Jänicke [Fri, 15 Nov 2002 21:26:42 +0000 (21:26 +0000)]
Fix buggy #! magic and update ssleay->openssl
Submitted by:
Reviewed by:
PR: 305
Lutz Jänicke [Fri, 15 Nov 2002 21:25:16 +0000 (21:25 +0000)]
Fix buggy #! magic and update ssleay->openssl
Submitted by:
Reviewed by:
PR: 305
Richard Levitte [Fri, 15 Nov 2002 16:56:36 +0000 (16:56 +0000)]
Add the INHIBIT_SYMLINKS flag variable to help Cygwin.
Add missing semicolons.
Add a comment explaining a bunch of targets without any action lines.
Richard Levitte [Fri, 15 Nov 2002 16:48:38 +0000 (16:48 +0000)]
Changes to make shared library building and use work better with Cygwin
Richard Levitte [Fri, 15 Nov 2002 13:58:58 +0000 (13:58 +0000)]
Document the change to remove the 'done' flag variable in the
OpenSSL_add_all_*() routines
Richard Levitte [Fri, 15 Nov 2002 13:58:11 +0000 (13:58 +0000)]
Document the change to remove the 'done' flag variable in the
OpenSSL_add_all_*() routines
Bodo Möller [Fri, 15 Nov 2002 12:43:15 +0000 (12:43 +0000)]
this method does not need field_data1
Richard Levitte [Fri, 15 Nov 2002 11:21:33 +0000 (11:21 +0000)]
make update
Richard Levitte [Fri, 15 Nov 2002 11:20:43 +0000 (11:20 +0000)]
make update
Richard Levitte [Fri, 15 Nov 2002 11:18:05 +0000 (11:18 +0000)]
A few more Microsoft OIDs added
Richard Levitte [Fri, 15 Nov 2002 11:17:50 +0000 (11:17 +0000)]
A few more Microsoft OIDs added
Lutz Jänicke [Fri, 15 Nov 2002 10:53:33 +0000 (10:53 +0000)]
The pointer to the cipher object is not yet set, when session was reloaded
from external cache (using d2i_SSL_SESSION). Perform comparison based on
the cipher's id instead.
Submitted by: Steve Haslam <araqnid@innocent.com>
Reviewed by:
PR: 288
Lutz Jänicke [Fri, 15 Nov 2002 10:52:53 +0000 (10:52 +0000)]
The pointer to the cipher object is not yet set, when session was reloaded
from external cache (using d2i_SSL_SESSION). Perform comparison based on
the cipher's id instead.
Submitted by: Steve Haslam <araqnid@innocent.com>
Reviewed by:
PR: 288
Richard Levitte [Fri, 15 Nov 2002 10:28:38 +0000 (10:28 +0000)]
The architecture name is i486, not just 486
Richard Levitte [Fri, 15 Nov 2002 10:28:28 +0000 (10:28 +0000)]
The architecture name is i486, not just 486
Richard Levitte [Fri, 15 Nov 2002 10:19:35 +0000 (10:19 +0000)]
-Wid-clash-n isn't support in gcc 3, and I get better result from continuously
rebuilding on a VMS box.
Richard Levitte [Fri, 15 Nov 2002 10:19:23 +0000 (10:19 +0000)]
-Wid-clash-n isn't support in gcc 3, and I get better result from continuously
rebuilding on a VMS box.
Richard Levitte [Fri, 15 Nov 2002 10:15:56 +0000 (10:15 +0000)]
I know ANSI C doesn't like 'long long', and I don't want to see it
Richard Levitte [Fri, 15 Nov 2002 09:56:59 +0000 (09:56 +0000)]
Spell prototypes correctly :-)
Richard Levitte [Fri, 15 Nov 2002 09:56:01 +0000 (09:56 +0000)]
Spell prototypes correctly :-).
Richard Levitte [Fri, 15 Nov 2002 09:53:53 +0000 (09:53 +0000)]
Add -Wstrict-prototype and -Wmissing-prototype to my debugging targets
Richard Levitte [Fri, 15 Nov 2002 09:53:46 +0000 (09:53 +0000)]
Add -Wstrict-prototype and -Wmissing-prototype to my debugging targets
Richard Levitte [Fri, 15 Nov 2002 09:16:56 +0000 (09:16 +0000)]
We need to read one more byte of the REQUEST-CERTIFICATE message.
PR: 300
Richard Levitte [Fri, 15 Nov 2002 09:15:55 +0000 (09:15 +0000)]
We need to read one more byte of the REQUEST-CERTIFICATE message.
PR: 300
Dr. Stephen Henson [Fri, 15 Nov 2002 00:26:07 +0000 (00:26 +0000)]
Add SETWRAP modifier to ASN1 generate.
Richard Levitte [Thu, 14 Nov 2002 23:56:29 +0000 (23:56 +0000)]
make update
Richard Levitte [Thu, 14 Nov 2002 23:56:12 +0000 (23:56 +0000)]
make update
Richard Levitte [Thu, 14 Nov 2002 23:38:59 +0000 (23:38 +0000)]
Add A/UX target.
PR: 271
Richard Levitte [Thu, 14 Nov 2002 23:33:48 +0000 (23:33 +0000)]
Close the implicitely opened registry key.
PR: 264
Richard Levitte [Thu, 14 Nov 2002 23:33:28 +0000 (23:33 +0000)]
Close the implicitely opened registry key.
PR: 264
Richard Levitte [Thu, 14 Nov 2002 23:24:39 +0000 (23:24 +0000)]
Remove the flag variable in OpenSSL_add_all_ciphers() and
OpenSSL_add_all_digests(), as it doesn't really serve any
sensible purpose.
PR: 261
Lutz Jänicke [Thu, 14 Nov 2002 21:50:30 +0000 (21:50 +0000)]
Use =back to finish =over (found using pod2latex).
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 14 Nov 2002 21:42:50 +0000 (21:42 +0000)]
No such reference to link to (found running pod2latex).
Submitted by:
Reviewed by:
PR:
Lutz Jänicke [Thu, 14 Nov 2002 21:41:54 +0000 (21:41 +0000)]
No such reference to link to (found running pod2latex).
Submitted by:
Reviewed by:
PR:
Dr. Stephen Henson [Thu, 14 Nov 2002 18:15:52 +0000 (18:15 +0000)]
Fix documentation of i2d_X509_fp and i2d_X509_bio.
Richard Levitte [Thu, 14 Nov 2002 16:30:29 +0000 (16:30 +0000)]
Add Tandem OSS target.
PR: 192
Richard Levitte [Thu, 14 Nov 2002 16:30:11 +0000 (16:30 +0000)]
Add Tandem OSS target.
PR: 192
Richard Levitte [Thu, 14 Nov 2002 15:57:38 +0000 (15:57 +0000)]
Remove warnings.
Richard Levitte [Thu, 14 Nov 2002 15:38:47 +0000 (15:38 +0000)]
DCL logic bugs fixed.
(I really need to review my knowledge of the language)
Richard Levitte [Thu, 14 Nov 2002 14:07:59 +0000 (14:07 +0000)]
It seems like gcc 2.9aix5.1 doesn't do will with optimization level 3.
PR: 115
Richard Levitte [Thu, 14 Nov 2002 14:07:48 +0000 (14:07 +0000)]
It seems like gcc 2.9aix5.1 doesn't do will with optimization level 3.
PR: 115
Richard Levitte [Thu, 14 Nov 2002 13:01:12 +0000 (13:01 +0000)]
Add a FAQ on how to check the authenticity of the openSSL distribution.
PR: 292
Richard Levitte [Thu, 14 Nov 2002 13:00:59 +0000 (13:00 +0000)]
Add a FAQ on how to check the authenticity of the openSSL distribution.
PR: 292
Richard Levitte [Thu, 14 Nov 2002 12:40:52 +0000 (12:40 +0000)]
Cygwin fixes (the dummytest method to make all tests work was copied
from 0.9.7-stable)
Richard Levitte [Thu, 14 Nov 2002 12:39:39 +0000 (12:39 +0000)]
Cygwin fixes
Bodo Möller [Thu, 14 Nov 2002 12:17:47 +0000 (12:17 +0000)]
harmonize with 0.9.7 tree
Richard Levitte [Thu, 14 Nov 2002 11:22:01 +0000 (11:22 +0000)]
Fix to build better with DJGPP.
PR: 338
Here's the description, submitted by Gisle Vanem <giva@bgnett.no>:
1. sock_init() renamed to ssl_sock_init() in ./apps/s_socket.c due
to name-clash with Watt-32.
2. rand() renamed to Rand() in ./crypto/bn/divtest.c due to name-clash
with <stdlib.h>
3. Added calls to dbug_init()/sock_init() in some demo programs.
4. Changed cflags/lflags in configure. Watt-32 install root now taken
from $WATT_ROOT.
Lutz Jänicke [Thu, 14 Nov 2002 11:13:01 +0000 (11:13 +0000)]
Don't declare 2 WARNINGS sections
Submitted by:
Reviewed by:
PR: