oweals/openssl.git
24 years agoAvoid integer overflow in entropy counter.
Bodo Möller [Fri, 21 Jan 2000 19:54:22 +0000 (19:54 +0000)]
Avoid integer overflow in entropy counter.
Slightly clarify the RAND_... documentation.

24 years agoDocument RAND library.
Ulf Möller [Fri, 21 Jan 2000 17:50:27 +0000 (17:50 +0000)]
Document RAND library.

24 years agoMove ssl.pod to doc/ssl
Ulf Möller [Fri, 21 Jan 2000 17:46:36 +0000 (17:46 +0000)]
Move ssl.pod to doc/ssl

24 years agoIn RAND_write_file, truncate the file to the no. of bytes written
Bodo Möller [Fri, 21 Jan 2000 17:11:26 +0000 (17:11 +0000)]
In RAND_write_file, truncate the file to the no. of bytes written
(we're now using fopen(..., "rb+") instead of fopen(..., "wb"),
so the file is not truncated automatically).

24 years agoadd ERR_print_errors after "end" label.
Bodo Möller [Fri, 21 Jan 2000 11:30:52 +0000 (11:30 +0000)]
add ERR_print_errors after "end" label.

24 years agoDon't "goto err" in client_master_key because no such label exists;
Bodo Möller [Fri, 21 Jan 2000 11:20:22 +0000 (11:20 +0000)]
Don't "goto err" in client_master_key because no such label exists;
just return -1 as in other error cases.

24 years agodoc/man moved to doc/apps
Bodo Möller [Fri, 21 Jan 2000 09:36:47 +0000 (09:36 +0000)]
doc/man moved to doc/apps

24 years agomention manual pages
Bodo Möller [Fri, 21 Jan 2000 09:35:56 +0000 (09:35 +0000)]
mention manual pages

24 years agoMake -CAcreateserial start from 1 instead of 0 for
Dr. Stephen Henson [Fri, 21 Jan 2000 02:42:14 +0000 (02:42 +0000)]
Make -CAcreateserial start from 1 instead of 0 for
serial numbers.

24 years agoChange the 'man' directory to 'apps'. Yes I wish cvs
Dr. Stephen Henson [Fri, 21 Jan 2000 02:17:04 +0000 (02:17 +0000)]
Change the 'man' directory to 'apps'. Yes I wish cvs
could rename too :-(

24 years agoCheck RAND_bytes() return value or use RAND_pseudo_bytes().
Ulf Möller [Fri, 21 Jan 2000 01:15:56 +0000 (01:15 +0000)]
Check RAND_bytes() return value or use RAND_pseudo_bytes().

24 years agoSome more ifdefs for no-xxx options.
Ulf Möller [Fri, 21 Jan 2000 00:03:51 +0000 (00:03 +0000)]
Some more ifdefs for no-xxx options.

24 years agoDon't build the testapps automatically because the openssl program now
Ulf Möller [Fri, 21 Jan 2000 00:02:32 +0000 (00:02 +0000)]
Don't build the testapps automatically because the openssl program now
has s/mime functionality.

24 years agoAFAICS lst1 stands for "lshift test" not "list".
Ulf Möller [Fri, 21 Jan 2000 00:00:12 +0000 (00:00 +0000)]
AFAICS lst1 stands for "lshift test" not "list".

24 years agoWINDOWS is defined in e_os.h. The problem was WIN32 (the new egcs uses _WIN32).
Ulf Möller [Thu, 20 Jan 2000 23:59:24 +0000 (23:59 +0000)]
WINDOWS is defined in e_os.h. The problem was WIN32 (the new egcs uses _WIN32).

24 years agoDefine WINDOWS in all Mingw32 cases.
Bodo Möller [Thu, 20 Jan 2000 23:16:07 +0000 (23:16 +0000)]
Define WINDOWS in all Mingw32 cases.

24 years agoRename lst1 to list1 to avoid name conflict on some platforms.
Bodo Möller [Thu, 20 Jan 2000 23:15:50 +0000 (23:15 +0000)]
Rename lst1 to list1 to avoid name conflict on some platforms.

24 years agoDefine WINDOWS for Mingw32 and Cygwin.
Bodo Möller [Thu, 20 Jan 2000 23:15:15 +0000 (23:15 +0000)]
Define WINDOWS for Mingw32 and Cygwin.

24 years agoDefine WINDOWS.
Bodo Möller [Thu, 20 Jan 2000 23:08:07 +0000 (23:08 +0000)]
Define WINDOWS.

24 years agoOops... undo change to wrong prototype.
Dr. Stephen Henson [Thu, 20 Jan 2000 02:27:36 +0000 (02:27 +0000)]
Oops... undo change to wrong prototype.

24 years agoFinish off the X509_ATTRIBUTE string stuff.
Dr. Stephen Henson [Thu, 20 Jan 2000 01:37:17 +0000 (01:37 +0000)]
Finish off the X509_ATTRIBUTE string stuff.

24 years agoRename X509_att*() stuff to X509at_*(), add X509_REQ wrappers.
Dr. Stephen Henson [Wed, 19 Jan 2000 01:02:13 +0000 (01:02 +0000)]
Rename X509_att*() stuff to X509at_*(), add X509_REQ wrappers.

24 years agoRename rsa_oaep_test to the more appropriate name rsa_test for the
Ulf Möller [Tue, 18 Jan 2000 15:08:49 +0000 (15:08 +0000)]
Rename rsa_oaep_test to the more appropriate name rsa_test for the
benefit of MS-DOS users.

24 years agoCompaq C 6.2 for VMS will complain when we want to convert
Richard Levitte [Tue, 18 Jan 2000 09:30:51 +0000 (09:30 +0000)]
Compaq C 6.2 for VMS will complain when we want to convert
non-function pointers to function pointers and vice versa.
The current solution is to have unions that describe the
conversion we want to do, and gives us the ability to extract
the type of data we want.

The current solution is a quick fix, and can probably be made
in a more general or elegant way.

24 years agoAvoid converting void * to a function pointer when NULL is defined as
Richard Levitte [Tue, 18 Jan 2000 08:23:15 +0000 (08:23 +0000)]
Avoid converting void * to a function pointer when NULL is defined as
((void *)0), by have a 0 instead.

24 years agoA test script to check on the header files
Richard Levitte [Tue, 18 Jan 2000 08:10:28 +0000 (08:10 +0000)]
A test script to check on the header files

24 years agoBuild the test apps after all of the library has been built.
Richard Levitte [Tue, 18 Jan 2000 08:09:19 +0000 (08:09 +0000)]
Build the test apps after all of the library has been built.

24 years agoSOCKETSHR is showing bad declarations again. However, a simple cast
Richard Levitte [Mon, 17 Jan 2000 01:07:36 +0000 (01:07 +0000)]
SOCKETSHR is showing bad declarations again.  However, a simple cast
which does no harm fixes that problem.

24 years agoBuild the crypto test applications as well.
Richard Levitte [Mon, 17 Jan 2000 01:01:16 +0000 (01:01 +0000)]
Build the crypto test applications as well.

24 years agoPrepare for a possible disabling of certain messages that DEC C spews out.
Richard Levitte [Mon, 17 Jan 2000 00:58:09 +0000 (00:58 +0000)]
Prepare for a possible disabling of certain messages that DEC C spews out.

24 years agoGive the user the possibility to ask for compilation of only the files
Richard Levitte [Mon, 17 Jan 2000 00:57:10 +0000 (00:57 +0000)]
Give the user the possibility to ask for compilation of only the files
that are directly in crypto/, and prepare for a possible disabling of
certain messages that DEC C spews out.

24 years agoIt doesn't make sense to try see if these variables are negative, since they're unsigned.
Richard Levitte [Mon, 17 Jan 2000 00:49:52 +0000 (00:49 +0000)]
It doesn't make sense to try see if these variables are negative, since they're unsigned.

24 years agoBeautification and a few entries added.
Richard Levitte [Mon, 17 Jan 2000 00:39:55 +0000 (00:39 +0000)]
Beautification and a few entries added.

24 years agoSSL_R_UNSUPPORTED_PROTOCOL (as in s23_clnt.c) for SSL 2 when
Bodo Möller [Sun, 16 Jan 2000 21:29:57 +0000 (21:29 +0000)]
SSL_R_UNSUPPORTED_PROTOCOL (as in s23_clnt.c) for SSL 2 when
NO_SSL2 is defined, not SSL_R_UNKNOWN_PROTOCOL.

24 years agoAdd missing #ifndefs that caused missing symbols when building libssl
Ulf Möller [Sun, 16 Jan 2000 21:10:00 +0000 (21:10 +0000)]
Add missing #ifndefs that caused missing symbols when building libssl
as a shared library without RSA.  Use #ifndef NO_SSL2 instead of
NO_RSA in ssl/s2*.c.

Submitted by: Kris Kennaway <kris@hub.freebsd.org>
Modified by Ulf Möller

24 years agoHeader for RAND_seed()
Ulf Möller [Sun, 16 Jan 2000 21:07:36 +0000 (21:07 +0000)]
Header for RAND_seed()

24 years agoremove debug modification that I checked in accidentally
Ulf Möller [Sun, 16 Jan 2000 16:04:26 +0000 (16:04 +0000)]
remove debug modification that I checked in accidentally

24 years agoNew function RAND_pseudo_bytes() generated pseudorandom numbers that
Ulf Möller [Sun, 16 Jan 2000 15:58:17 +0000 (15:58 +0000)]
New function RAND_pseudo_bytes() generated pseudorandom numbers that
are not guaranteed to be unpredictable.

24 years agoIn ssl3_read_n, set rwstate to SSL_NOTHING when the requested
Bodo Möller [Sun, 16 Jan 2000 14:21:00 +0000 (14:21 +0000)]
In ssl3_read_n, set rwstate to SSL_NOTHING when the requested
number of bytes could be read.

24 years agoAnother name longer than 31 chars
Richard Levitte [Sun, 16 Jan 2000 12:31:12 +0000 (12:31 +0000)]
Another name longer than 31 chars

24 years agoCut'n'paste error
Richard Levitte [Sun, 16 Jan 2000 12:30:16 +0000 (12:30 +0000)]
Cut'n'paste error

24 years agoRAND_seed
Ulf Möller [Sun, 16 Jan 2000 12:21:22 +0000 (12:21 +0000)]
RAND_seed

24 years agoSynchronise with the makefiles.
Richard Levitte [Sun, 16 Jan 2000 02:11:19 +0000 (02:11 +0000)]
Synchronise with the makefiles.

24 years agoTell the truth about list separators.
Richard Levitte [Sat, 15 Jan 2000 23:19:22 +0000 (23:19 +0000)]
Tell the truth about list separators.

24 years agoadd "randomness"
Bodo Möller [Sat, 15 Jan 2000 21:48:46 +0000 (21:48 +0000)]
add "randomness"

24 years agoRAND_bytes's return values is 0 for an error, not -1.
Bodo Möller [Sat, 15 Jan 2000 20:24:12 +0000 (20:24 +0000)]
RAND_bytes's return values is 0 for an error, not -1.

24 years agoEnable memory checking earlier (we correctly free everything
Bodo Möller [Sat, 15 Jan 2000 03:08:52 +0000 (03:08 +0000)]
Enable memory checking earlier (we correctly free everything
except for the BIO through which we print the memory leak list,
and the leak printing function ignores this one block).

24 years agoTypo
Richard Levitte [Fri, 14 Jan 2000 22:43:11 +0000 (22:43 +0000)]
Typo

24 years agoTypo...
Richard Levitte [Fri, 14 Jan 2000 21:54:34 +0000 (21:54 +0000)]
Typo...

24 years agoDelete "random" file .rnd in "make clean".
Bodo Möller [Fri, 14 Jan 2000 20:07:12 +0000 (20:07 +0000)]
Delete "random" file .rnd in "make clean".

24 years agoLet "make test" survive without DEVRANDOM
Bodo Möller [Fri, 14 Jan 2000 18:43:22 +0000 (18:43 +0000)]
Let "make test" survive without DEVRANDOM
(and rename a target in test/Makefile.ssl to make it
easier to guess the name of the file executed by it)

24 years agoIn EVP_PKEY_assign[_...], return 0 for an error when they
Bodo Möller [Fri, 14 Jan 2000 18:41:28 +0000 (18:41 +0000)]
In EVP_PKEY_assign[_...], return 0 for an error when they
"key" is NULL.

24 years ago- Pseudo-seed the PRNG in programs used for "make test"
Bodo Möller [Fri, 14 Jan 2000 17:55:37 +0000 (17:55 +0000)]
- Pseudo-seed the PRNG in programs used for "make test"
  because otherwise BN_rand will fail unless DEVRANDOM works,
  which causes the programs to dump core because they
  don't check the return value of BN_rand (and if they
  did, we still couldn't test anything).

- add comment to some files that appear not to be used at all.

24 years agoAvoid some warnings, and run "make update".
Bodo Möller [Fri, 14 Jan 2000 17:28:48 +0000 (17:28 +0000)]
Avoid some warnings, and run "make update".

24 years agoAvoid shadowing variables,
Bodo Möller [Fri, 14 Jan 2000 09:08:39 +0000 (09:08 +0000)]
Avoid shadowing variables,
and re-enable seeding with more data than read from DEVRANDOM -- just
don't pretend it contains entropy.

24 years agominor change for the prng
Ulf Möller [Fri, 14 Jan 2000 02:31:32 +0000 (02:31 +0000)]
minor change for the prng

24 years agoUse CRYPTO_push_info to track down memory leak
Bodo Möller [Thu, 13 Jan 2000 22:52:52 +0000 (22:52 +0000)]
Use CRYPTO_push_info to track down memory leak
(only the CRYPTO_push_info's in the apps/ directory
are included in the CVS commit, not all those I used
in crypto/)

24 years agoslightly change usage information
Bodo Möller [Thu, 13 Jan 2000 21:36:06 +0000 (21:36 +0000)]
slightly change usage information

24 years agonote about things still to do with RAND_bytes
Bodo Möller [Thu, 13 Jan 2000 21:20:26 +0000 (21:20 +0000)]
note about things still to do with RAND_bytes

24 years agoUse CRYPTO_push_info to find a memory leak in pkcs12.c.
Bodo Möller [Thu, 13 Jan 2000 21:10:43 +0000 (21:10 +0000)]
Use CRYPTO_push_info to find a memory leak in pkcs12.c.

24 years agoPrecautions against using the PRNG uninitialized: RAND_bytes() now
Ulf Möller [Thu, 13 Jan 2000 20:59:17 +0000 (20:59 +0000)]
Precautions against using the PRNG uninitialized: RAND_bytes() now
returns int (1 = ok, 0 = not seeded). New function RAND_add() is the
same as RAND_seed() but takes an estimate of the entropy as an additional
argument.

24 years agoNote about CRYPTO_malloc_init
Bodo Möller [Thu, 13 Jan 2000 09:18:42 +0000 (09:18 +0000)]
Note about CRYPTO_malloc_init

24 years agoPKCS#1 signatures don't use randomness.
Ulf Möller [Wed, 12 Jan 2000 20:47:46 +0000 (20:47 +0000)]
PKCS#1 signatures don't use randomness.
Add a note about the padding functions.

24 years agocorrections
Ulf Möller [Wed, 12 Jan 2000 13:59:20 +0000 (13:59 +0000)]
corrections

24 years agoTurn BN_prime_checks into a macro.
Bodo Möller [Wed, 12 Jan 2000 11:57:30 +0000 (11:57 +0000)]
Turn BN_prime_checks into a macro.

Primes p where (p-1)/2 is prime too are called "safe", not "strong".

24 years agoadd dependency and auto-generation rule for bn_prime.h
Bodo Möller [Wed, 12 Jan 2000 09:16:22 +0000 (09:16 +0000)]
add dependency and auto-generation rule for bn_prime.h
(created by bn_prime.pl, which now prints the copyright/license
note as found in bn_prime.h)

24 years agoDummy page superseded by crypto/crypto.pod
Ulf Möller [Tue, 11 Jan 2000 22:36:25 +0000 (22:36 +0000)]
Dummy page superseded by crypto/crypto.pod

24 years agoDocument the RSA library.
Ulf Möller [Tue, 11 Jan 2000 22:35:21 +0000 (22:35 +0000)]
Document the RSA library.

24 years agoAdded a comment about Win32.
Richard Levitte [Tue, 11 Jan 2000 22:32:37 +0000 (22:32 +0000)]
Added a comment about Win32.

24 years agoAdd more info to the memory allocation change log.
Richard Levitte [Tue, 11 Jan 2000 22:16:12 +0000 (22:16 +0000)]
Add more info to the memory allocation change log.
Suggested by Bodo.

24 years agoMake sure that generated files are labeled as such (except in dofile(), for now)
Richard Levitte [Tue, 11 Jan 2000 13:07:21 +0000 (13:07 +0000)]
Make sure that generated files are labeled as such (except in dofile(), for now)

24 years agoadd check for internal error
Bodo Möller [Tue, 11 Jan 2000 08:18:55 +0000 (08:18 +0000)]
add check for internal error

24 years agoThe buffer in ss3_read_n cannot actually occur because it is never
Bodo Möller [Tue, 11 Jan 2000 08:09:27 +0000 (08:09 +0000)]
The buffer in ss3_read_n cannot actually occur because it is never
called with max > n when extend is set.

24 years agoClean up some of the SSL server code.
Bodo Möller [Tue, 11 Jan 2000 01:07:26 +0000 (01:07 +0000)]
Clean up some of the SSL server code.

24 years agodep/ directory is not needed.
Ulf Möller [Tue, 11 Jan 2000 00:10:29 +0000 (00:10 +0000)]
dep/ directory is not needed.

24 years agoAdd missing =back.
Ulf Möller [Tue, 11 Jan 2000 00:06:40 +0000 (00:06 +0000)]
Add missing =back.

24 years agoUpdate docs.
Dr. Stephen Henson [Mon, 10 Jan 2000 00:11:51 +0000 (00:11 +0000)]
Update docs.

24 years agoNew function X509_CTX_rget_chain(), make SSL_SESSION_print() display return code.
Dr. Stephen Henson [Sun, 9 Jan 2000 14:21:40 +0000 (14:21 +0000)]
New function X509_CTX_rget_chain(), make SSL_SESSION_print() display return code.
Remove references to 'TXT' in -inform and -outform switches.

24 years agos_client and s_server now have their own man pages.
Bodo Möller [Sun, 9 Jan 2000 10:55:29 +0000 (10:55 +0000)]
s_client and s_server now have their own man pages.

24 years agoMan page for s_server.
Dr. Stephen Henson [Sun, 9 Jan 2000 01:26:43 +0000 (01:26 +0000)]
Man page for s_server.

24 years agoMake NO_RSA compile with pedantic.
Ben Laurie [Sat, 8 Jan 2000 21:06:24 +0000 (21:06 +0000)]
Make NO_RSA compile with pedantic.

24 years agoAdd -prexit command to s_client and patch some BIO
Dr. Stephen Henson [Sat, 8 Jan 2000 19:05:47 +0000 (19:05 +0000)]
Add -prexit command to s_client and patch some BIO
functions so it doesn't crash. Document s_client.

24 years agosuperseded by doc/man/openssl.pod
Bodo Möller [Sat, 8 Jan 2000 18:08:39 +0000 (18:08 +0000)]
superseded by doc/man/openssl.pod

24 years agoUnify doc/openssl.pod and doc/man/openssl.pod, which were almost the
Bodo Möller [Sat, 8 Jan 2000 18:08:02 +0000 (18:08 +0000)]
Unify doc/openssl.pod and doc/man/openssl.pod, which were almost the
same and now are identical.
The next step will be to delete doc/openssl.pod, this is just
to see the individual CVS deltas.

24 years agoUse basename instead of complicated sed line.
Bodo Möller [Sat, 8 Jan 2000 17:45:30 +0000 (17:45 +0000)]
Use basename instead of complicated sed line.

24 years agoManpages for the DH utils and fix for a memory leak in dh program
Dr. Stephen Henson [Sat, 8 Jan 2000 13:36:17 +0000 (13:36 +0000)]
Manpages for the DH utils and fix for a memory leak in dh program

24 years agoAdd PKCS#12 manpage and use MAC iteration counts by default.
Dr. Stephen Henson [Sat, 8 Jan 2000 03:16:04 +0000 (03:16 +0000)]
Add PKCS#12 manpage and use MAC iteration counts by default.

24 years agoInstall man pages.
Ulf Möller [Sat, 8 Jan 2000 02:08:13 +0000 (02:08 +0000)]
Install man pages.

24 years agoMinor format changes.
Ulf Möller [Sat, 8 Jan 2000 02:07:46 +0000 (02:07 +0000)]
Minor format changes.

24 years agoCA.pl is now generated automatically (using CA.pl.in as input)
Bodo Möller [Fri, 7 Jan 2000 13:06:28 +0000 (13:06 +0000)]
CA.pl is now generated automatically (using CA.pl.in as input)

24 years agoapps/openssl.cnf and the documentation say it's "nombstr",
Bodo Möller [Fri, 7 Jan 2000 13:05:41 +0000 (13:05 +0000)]
apps/openssl.cnf and the documentation say it's "nombstr",
but crypto/asn1/a_strnid.c had "nombchar".

24 years agomake no-des and no-rc2 work.
Bodo Möller [Fri, 7 Jan 2000 12:15:54 +0000 (12:15 +0000)]
make no-des and no-rc2 work.

24 years agoadd V_CRYPTO_MDEBUG_ALL
Bodo Möller [Fri, 7 Jan 2000 10:50:54 +0000 (10:50 +0000)]
add V_CRYPTO_MDEBUG_ALL
Submitted by:
Reviewed by:
PR:

24 years agoSubmitted by:
Ulf Möller [Fri, 7 Jan 2000 03:30:36 +0000 (03:30 +0000)]
Submitted by:
Reviewed by:
PR:

24 years agoHonor the no-xxx Configure options when creating .DEF files.
Ulf Möller [Fri, 7 Jan 2000 03:17:47 +0000 (03:17 +0000)]
Honor the no-xxx Configure options when creating .DEF files.

24 years ago#undef PKCS7_SIGNER_INFO for Win32 to avoid clashes.
Dr. Stephen Henson [Fri, 7 Jan 2000 02:23:42 +0000 (02:23 +0000)]
#undef PKCS7_SIGNER_INFO for Win32 to avoid clashes.

Fix so CRLDistributionPoints relativeName option uses
the correct type.

24 years agoRemove obsolete SSLeay instructions.
Ulf Möller [Fri, 7 Jan 2000 02:08:20 +0000 (02:08 +0000)]
Remove obsolete SSLeay instructions.

24 years agoispell.
Ulf Möller [Fri, 7 Jan 2000 02:07:13 +0000 (02:07 +0000)]
ispell.

24 years agoAdd some newlines needed for pod2man, and run ispell.
Ulf Möller [Fri, 7 Jan 2000 01:39:59 +0000 (01:39 +0000)]
Add some newlines needed for pod2man, and run ispell.

Submitted by:
Reviewed by:
PR:

24 years agoMore X509_ATTRIBUTE changes.
Dr. Stephen Henson [Fri, 7 Jan 2000 00:55:54 +0000 (00:55 +0000)]
More X509_ATTRIBUTE changes.