oweals/openssl.git
21 years agoSimplify cipher and digest lookup in PKCS#7 code.
Dr. Stephen Henson [Sat, 11 Oct 2003 16:46:40 +0000 (16:46 +0000)]
Simplify cipher and digest lookup in PKCS#7 code.

21 years agoNew function to initialize a PKCS7 structure of type other.
Dr. Stephen Henson [Fri, 10 Oct 2003 23:40:47 +0000 (23:40 +0000)]
New function to initialize a PKCS7 structure of type other.

21 years agoInitialize digested data type in PKCS7_set_type().
Dr. Stephen Henson [Fri, 10 Oct 2003 23:31:53 +0000 (23:31 +0000)]
Initialize digested data type in PKCS7_set_type().

21 years agoRetrieve correct content to sign when the
Dr. Stephen Henson [Fri, 10 Oct 2003 23:25:43 +0000 (23:25 +0000)]
Retrieve correct content to sign when the
type is "other".

21 years agoAvoid warnings: add missing prototype, don't shadow.
Dr. Stephen Henson [Fri, 10 Oct 2003 23:07:24 +0000 (23:07 +0000)]
Avoid warnings: add missing prototype, don't shadow.

21 years agoIn realloc, don't destroy the old memory area if a new one couldn't be
Richard Levitte [Tue, 7 Oct 2003 12:09:39 +0000 (12:09 +0000)]
In realloc, don't destroy the old memory area if a new one couldn't be
allocated.
Notified by Daniel Lucq <daniel@lucq.org>

21 years agomake update
Richard Levitte [Mon, 6 Oct 2003 12:22:42 +0000 (12:22 +0000)]
make update

21 years agos_client should inform the user of any compression/expansion methods used.
Richard Levitte [Mon, 6 Oct 2003 12:19:38 +0000 (12:19 +0000)]
s_client should inform the user of any compression/expansion methods used.

21 years agoAdd functionality to get information on compression methods (not quite complete).
Richard Levitte [Mon, 6 Oct 2003 12:18:39 +0000 (12:18 +0000)]
Add functionality to get information on compression methods (not quite complete).

21 years agoMake sure int SSL_COMP_add_compression_method() checks if a certain
Richard Levitte [Mon, 6 Oct 2003 11:00:15 +0000 (11:00 +0000)]
Make sure int SSL_COMP_add_compression_method() checks if a certain
compression identity is already present among the registered
compression methods, and if so, reject the addition request.

Declare SSL_COMP_get_compression_method() so it can be used properly.

Change ssltest.c so it checks what compression methods are available
and enumerates them.  As a side-effect, built-in compression methods
will be automagically loaded that way.  Additionally, change the
identities for ZLIB and RLE to be conformant to
draft-ietf-tls-compression-05.txt.

Finally, make update.

Next on my list: have the built-in compression methods added
"automatically" instead of requiring that the author call
SSL_COMP_add_compression_method() or
SSL_COMP_get_compression_methods().

21 years agoSetting the ex_data index is unsafe in a threaded environment, so
Richard Levitte [Mon, 6 Oct 2003 09:09:44 +0000 (09:09 +0000)]
Setting the ex_data index is unsafe in a threaded environment, so
let's wrap it with a lock.

21 years agoRemove unused code, don't use zlib functions that are really macros
Richard Levitte [Sat, 4 Oct 2003 09:09:19 +0000 (09:09 +0000)]
Remove unused code, don't use zlib functions that are really macros
and provide missing prototypes.

21 years agoCheck for errors from SSL_COMP_add_compression_method().
Richard Levitte [Thu, 2 Oct 2003 10:41:48 +0000 (10:41 +0000)]
Check for errors from SSL_COMP_add_compression_method().
Notified by Andrew Marlow <AMARLOW1@bloomberg.net>

21 years agoCorrect a mixup of return values
Richard Levitte [Thu, 2 Oct 2003 10:38:44 +0000 (10:38 +0000)]
Correct a mixup of return values

21 years agoInclude e_os.h to get a proper definition of memmove on the platforms
Richard Levitte [Wed, 1 Oct 2003 20:43:03 +0000 (20:43 +0000)]
Include e_os.h to get a proper definition of memmove on the platforms
that do not have it.

21 years agoCorrected misplacement of one of the greps...
Richard Levitte [Wed, 1 Oct 2003 15:06:36 +0000 (15:06 +0000)]
Corrected misplacement of one of the greps...

21 years agoRemove leading and trailing spaces and tabs
Richard Levitte [Wed, 1 Oct 2003 15:04:13 +0000 (15:04 +0000)]
Remove leading and trailing spaces and tabs

21 years agoAvoid 'file names' with spaces
Richard Levitte [Wed, 1 Oct 2003 15:03:15 +0000 (15:03 +0000)]
Avoid 'file names' with spaces

21 years agoUse correct case for manual page references
Richard Levitte [Wed, 1 Oct 2003 15:02:45 +0000 (15:02 +0000)]
Use correct case for manual page references

21 years agoCorrect incorrect mode bits change.
Richard Levitte [Tue, 30 Sep 2003 17:31:48 +0000 (17:31 +0000)]
Correct incorrect mode bits change.

21 years agoCorrect buggy PODs (missing commas and a prepended space).
Richard Levitte [Tue, 30 Sep 2003 17:22:19 +0000 (17:22 +0000)]
Correct buggy PODs (missing commas and a prepended space).

21 years agoASN1 parse fix and release file changes.
Dr. Stephen Henson [Tue, 30 Sep 2003 16:47:33 +0000 (16:47 +0000)]
ASN1 parse fix and release file changes.

21 years agoFurther VxWorks changes from Bob Bradley <bob@chaoticsoftware.com>, this
Richard Levitte [Sun, 28 Sep 2003 14:06:57 +0000 (14:06 +0000)]
Further VxWorks changes from Bob Bradley <bob@chaoticsoftware.com>, this
time involving VxWorks on MIPS

21 years agoSynchronise util/libeay.num with the 0.9.7-stable one.
Richard Levitte [Sun, 28 Sep 2003 09:34:50 +0000 (09:34 +0000)]
Synchronise util/libeay.num with the 0.9.7-stable one.
make update

21 years agoUhmm, It seem to have forgotten one file when I committed the MSDOS
Richard Levitte [Sun, 28 Sep 2003 07:11:33 +0000 (07:11 +0000)]
Uhmm, It seem to have forgotten one file when I committed the MSDOS
change yesterday.
PR: 669

21 years agoChange the indentation from 12 to indent+4.
Richard Levitte [Sat, 27 Sep 2003 22:48:33 +0000 (22:48 +0000)]
Change the indentation from 12 to indent+4.
PR: 657

21 years agoMake MD5 assembler code able to handle messages larger than 2GB on 32-bit
Richard Levitte [Sat, 27 Sep 2003 22:14:39 +0000 (22:14 +0000)]
Make MD5 assembler code able to handle messages larger than 2GB on 32-bit
systems and above.
PR: 664

21 years agoSelected changes for MSDOS, contributed by Gisle Vanem <giva@bgnett.no>.
Richard Levitte [Sat, 27 Sep 2003 21:56:08 +0000 (21:56 +0000)]
Selected changes for MSDOS, contributed by Gisle Vanem <giva@bgnett.no>.
PR: 669

21 years agoAdd reference counting around the thread state hash table.
Richard Levitte [Sat, 27 Sep 2003 20:29:05 +0000 (20:29 +0000)]
Add reference counting around the thread state hash table.
Unfortunately, this means that the dynamic ENGINE version just went up, and
isn't backward compatible.
PR: 678

21 years agoHave ssl3_ssl3_send_client_verify() change the state to SSL3_ST_SW_CERT_VRFY_B.
Richard Levitte [Sat, 27 Sep 2003 19:32:06 +0000 (19:32 +0000)]
Have ssl3_ssl3_send_client_verify() change the state to SSL3_ST_SW_CERT_VRFY_B.
PR: 679

21 years agoHave ssl3_send_certificate_request() change the state to SSL3_ST_SW_CERT_REQ_B.
Richard Levitte [Sat, 27 Sep 2003 19:27:06 +0000 (19:27 +0000)]
Have ssl3_send_certificate_request() change the state to SSL3_ST_SW_CERT_REQ_B.
PR: 680

21 years agoInclude the instance in the Kerberos ticket information.
Richard Levitte [Sat, 27 Sep 2003 17:55:13 +0000 (17:55 +0000)]
Include the instance in the Kerberos ticket information.
In s_server, print the received Kerberos information.
PR: 693

21 years agoCorrect small documentation error.
Richard Levitte [Sat, 27 Sep 2003 10:39:16 +0000 (10:39 +0000)]
Correct small documentation error.
PR: 698

21 years agoFree the Kerberos context upon freeing the SSL.
Richard Levitte [Sat, 27 Sep 2003 07:35:07 +0000 (07:35 +0000)]
Free the Kerberos context upon freeing the SSL.
Contributed by Andrew Mann <amann@tccgi.com>

21 years agoAdd necessary changes to be able to build on VxWorks for PPC860.
Richard Levitte [Sat, 27 Sep 2003 07:34:49 +0000 (07:34 +0000)]
Add necessary changes to be able to build on VxWorks for PPC860.
Contributed by Bob Bradley <bob@chaoticsoftware.com>

21 years agoFix prime generation loop in crypto/bn/bn_prime.pl by making
Ralf S. Engelschall [Thu, 25 Sep 2003 13:57:58 +0000 (13:57 +0000)]
Fix prime generation loop in crypto/bn/bn_prime.pl by making
sure the loop does correctly stop and breaking ("division by zero")
modulus operations are not performed. The (pre-generated) prime
table crypto/bn/bn_prime.h was already correct, but it could not be
re-generated on some platforms because of the "division by zero"
situation in the script.

21 years agoAdd -passin support to rsautl
Dr. Stephen Henson [Sun, 21 Sep 2003 02:20:02 +0000 (02:20 +0000)]
Add -passin support to rsautl

21 years agoIn order to get the expected self signed error when
Dr. Stephen Henson [Sun, 21 Sep 2003 02:18:15 +0000 (02:18 +0000)]
In order to get the expected self signed error when
calling X509_verify_cert() in x509.c the cert should
not be added to the trusted store.

21 years agoTypos.
Dr. Stephen Henson [Tue, 9 Sep 2003 23:44:39 +0000 (23:44 +0000)]
Typos.

21 years agoGeneralise the definition of strcasecmp() and strncasecmp() for
Richard Levitte [Tue, 9 Sep 2003 14:48:36 +0000 (14:48 +0000)]
Generalise the definition of strcasecmp() and strncasecmp() for
platforms that don't (necessarely) have it.  In the case of VMS, this
means moving a couple of functions from apps/ to crypto/ and make them
general (although only used privately).

21 years agoThese should be write-locks, not read-locks.
Geoff Thorpe [Mon, 8 Sep 2003 15:47:55 +0000 (15:47 +0000)]
These should be write-locks, not read-locks.

21 years agocertain changes have to be listed twice in this file because OpenSSL
Bodo Möller [Thu, 4 Sep 2003 12:52:56 +0000 (12:52 +0000)]
certain changes have to be listed twice in this file because OpenSSL
0.9.6h forked into 0.9.6i and 0.9.7 ...

21 years agoNew -ignore_err option in ocsp application to stop the server
Dr. Stephen Henson [Wed, 3 Sep 2003 23:56:01 +0000 (23:56 +0000)]
New -ignore_err option in ocsp application to stop the server
exiting on the first error in a request.

21 years agoOnly accept a client certificate if the server requests
Dr. Stephen Henson [Wed, 3 Sep 2003 23:47:34 +0000 (23:47 +0000)]
Only accept a client certificate if the server requests
one, as required by SSL/TLS specs.

21 years agooutlen should be int * in out_utf8.
Dr. Stephen Henson [Thu, 21 Aug 2003 12:32:12 +0000 (12:32 +0000)]
outlen should be int * in out_utf8.

21 years agofix out-of-bounds check in lock_dbg_cb (was too lose to detect all
Bodo Möller [Thu, 14 Aug 2003 10:33:56 +0000 (10:33 +0000)]
fix out-of-bounds check in lock_dbg_cb (was too lose to detect all
invalid cases)

PR: 674

21 years agomake sure no error is left in the queue that is intentionally ignored
Bodo Möller [Mon, 11 Aug 2003 18:56:22 +0000 (18:56 +0000)]
make sure no error is left in the queue that is intentionally ignored

21 years agoCorrect two problems, found by Martin Kochanski <cardbox@easynet.co.uk>:
Richard Levitte [Thu, 7 Aug 2003 11:57:42 +0000 (11:57 +0000)]
Correct two problems, found by Martin Kochanski <cardbox@easynet.co.uk>:

1. CreateToolhelp32Snapshot returns INVALID_HANDLE_VALUE, not NULL, on error.
2. On Windows CE, a snapshot handle is closed with CloseToolhelp32Snapshot,
   not CloseHandle.

21 years agoadd OpenSSL license
Bodo Möller [Wed, 6 Aug 2003 10:36:25 +0000 (10:36 +0000)]
add OpenSSL license

fix typo

21 years agoInclusion of openssl/engine.h should always be wrapped with a check that
Richard Levitte [Mon, 4 Aug 2003 10:12:36 +0000 (10:12 +0000)]
Inclusion of openssl/engine.h should always be wrapped with a check that
OPENSSL_NO_ENGINE is not defined.

21 years agoAvoid clashes with Win32 names in WinCrypt.h
Dr. Stephen Henson [Wed, 23 Jul 2003 00:10:43 +0000 (00:10 +0000)]
Avoid clashes with Win32 names in WinCrypt.h

21 years agoupdates for draft-ietf-tls-ecc-03.txt
Bodo Möller [Tue, 22 Jul 2003 12:34:21 +0000 (12:34 +0000)]
updates for draft-ietf-tls-ecc-03.txt

Submitted by: Douglas Stebila
Reviewed by: Bodo Moeller

21 years agoadd test for secp160r1
Bodo Möller [Tue, 22 Jul 2003 10:39:10 +0000 (10:39 +0000)]
add test for secp160r1
add code for kP+lQ timings

Submitted by: Douglas Stebila <douglas.stebila@sun.com>
Reviewed by: Bodo Moeller

21 years agotolerate extra data at end of client hello for SSL 3.0
Bodo Möller [Mon, 21 Jul 2003 15:17:46 +0000 (15:17 +0000)]
tolerate extra data at end of client hello for SSL 3.0

PR: 659

21 years agofix: 0.9.7 is based on 0.9.6h, not on 0.9.6k
Bodo Möller [Mon, 21 Jul 2003 15:08:01 +0000 (15:08 +0000)]
fix: 0.9.7 is based on 0.9.6h, not on 0.9.6k

typo in 0.9.6k section

21 years agonew function EC_GROUP_cmp() (used by EVP_PKEY_cmp())
Bodo Möller [Mon, 21 Jul 2003 13:43:28 +0000 (13:43 +0000)]
new function EC_GROUP_cmp() (used by EVP_PKEY_cmp())

Submitted by: Nils Larsch

21 years agomanpages for 'openssl ec' and 'openssl ecparam'
Bodo Möller [Mon, 21 Jul 2003 13:40:02 +0000 (13:40 +0000)]
manpages for 'openssl ec' and 'openssl ecparam'

Submitted by: Nils Larsch

21 years agoA document that has a very rough description of the X509
Richard Levitte [Thu, 10 Jul 2003 08:49:03 +0000 (08:49 +0000)]
A document that has a very rough description of the X509
functionality.  This is mostly so there's a way to get from the
crypto.html page to the function descriptions.

21 years agoReplace CCITT with ITU-T. Keep CCITT around as an alias.
Richard Levitte [Fri, 4 Jul 2003 15:45:04 +0000 (15:45 +0000)]
Replace CCITT with ITU-T.  Keep CCITT around as an alias.
make update

PR: 80

21 years agoMake sure openssl.pc is readable by everyone.
Richard Levitte [Fri, 4 Jul 2003 11:41:13 +0000 (11:41 +0000)]
Make sure openssl.pc is readable by everyone.
PR: 654

21 years agoThe counter is big-endian. Since it comes as an array of char,
Richard Levitte [Fri, 4 Jul 2003 11:37:50 +0000 (11:37 +0000)]
The counter is big-endian.  Since it comes as an array of char,
there's absolutely no need to special-case it on little-endian
machines.

Notified by Thierry Boivin <Thierry.Boivin@celsecat.com>

21 years agoOops, I forgot to replace 'counter' with 'ivec' when used...
Richard Levitte [Thu, 3 Jul 2003 20:50:44 +0000 (20:50 +0000)]
Oops, I forgot to replace 'counter' with 'ivec' when used...

21 years agoAdd -issuer_hash and make -subject_hash the default way to get the
Richard Levitte [Thu, 3 Jul 2003 20:45:09 +0000 (20:45 +0000)]
Add -issuer_hash and make -subject_hash the default way to get the
subject hash, with -hash a synonym kept around for backward
compatibility reasons.
PR: 650

21 years agoThe convenience argumetn for -nameopt and -certopt is ca_default, not
Richard Levitte [Thu, 3 Jul 2003 07:46:52 +0000 (07:46 +0000)]
The convenience argumetn for -nameopt and -certopt is ca_default, not
default_ca.
PR: 653

21 years agoThe 'counter' is really the IV.
Richard Levitte [Thu, 3 Jul 2003 06:42:43 +0000 (06:42 +0000)]
The 'counter' is really the IV.

21 years agoChange AES-CTR to increment the IV by 1 instead of 2^64.
Richard Levitte [Thu, 3 Jul 2003 06:41:30 +0000 (06:41 +0000)]
Change AES-CTR to increment the IV by 1 instead of 2^64.

21 years agoClarify wording of verify_callback() behaviour.
Lutz Jänicke [Thu, 26 Jun 2003 14:03:03 +0000 (14:03 +0000)]
Clarify wording of verify_callback() behaviour.

21 years agoOnly remove old files if they exist. [Maing32].
Richard Levitte [Thu, 26 Jun 2003 11:58:02 +0000 (11:58 +0000)]
Only remove old files if they exist.  [Maing32].
Notified by Michael Gerdau <mgd@technosis.de>

21 years agoNils Larsch told me I could remove that variable entirely.
Richard Levitte [Thu, 26 Jun 2003 11:52:23 +0000 (11:52 +0000)]
Nils Larsch told me I could remove that variable entirely.

21 years agomake update
Richard Levitte [Thu, 26 Jun 2003 10:27:11 +0000 (10:27 +0000)]
make update

21 years agoImplement missing functions.
Richard Levitte [Thu, 26 Jun 2003 10:26:42 +0000 (10:26 +0000)]
Implement missing functions.
Have the f parameter to _ctrl functions have the prototype (*)(void)
rather than (*)(), for the sake of C++ compilers.
Disable unimplemented functionality.

21 years ago"Remove" unused variable
Richard Levitte [Thu, 26 Jun 2003 10:23:00 +0000 (10:23 +0000)]
"Remove" unused variable

21 years agoConform with the standard prototype for engine control functions.
Richard Levitte [Thu, 26 Jun 2003 07:10:10 +0000 (07:10 +0000)]
Conform with the standard prototype for engine control functions.

21 years agoScan through the engines directory as well.
Richard Levitte [Thu, 26 Jun 2003 07:05:19 +0000 (07:05 +0000)]
Scan through the engines directory as well.

21 years agoThe definition of dynamic_ctrl() should change along with the
Richard Levitte [Thu, 26 Jun 2003 07:03:49 +0000 (07:03 +0000)]
The definition of dynamic_ctrl() should change along with the
declaration :-).

21 years agoimplement PKCS #8 / SEC1 private key format for ECC
Bodo Möller [Wed, 25 Jun 2003 21:35:05 +0000 (21:35 +0000)]
implement PKCS #8 / SEC1 private key format for ECC

Submitted by: Nils Larsch

21 years agoReturn EOF when an S/MIME part have been read.
Dr. Stephen Henson [Tue, 24 Jun 2003 17:11:44 +0000 (17:11 +0000)]
Return EOF when an S/MIME part have been read.

21 years agoMake sure the compiler knows we run with pedantic settings.
Richard Levitte [Fri, 20 Jun 2003 00:57:18 +0000 (00:57 +0000)]
Make sure the compiler knows we run with pedantic settings.

21 years agomake update
Richard Levitte [Thu, 19 Jun 2003 23:00:50 +0000 (23:00 +0000)]
make update

21 years agoDocument the last change.
Richard Levitte [Thu, 19 Jun 2003 19:04:13 +0000 (19:04 +0000)]
Document the last change.
PR: 587

21 years agoPrepare for changes in the 0.9.6 branch
Richard Levitte [Thu, 19 Jun 2003 19:01:05 +0000 (19:01 +0000)]
Prepare for changes in the 0.9.6 branch

21 years agoPrepare for changes in the 0.9.6 branch
Richard Levitte [Thu, 19 Jun 2003 18:59:27 +0000 (18:59 +0000)]
Prepare for changes in the 0.9.6 branch

21 years agoWe set the export flag for 512 *bit* keys, not 512 *byte* ones.
Richard Levitte [Thu, 19 Jun 2003 18:55:50 +0000 (18:55 +0000)]
We set the export flag for 512 *bit* keys, not 512 *byte* ones.
PR: 587

21 years agoAdd documentation for the new crlnumber configuration option.
Richard Levitte [Thu, 19 Jun 2003 17:52:57 +0000 (17:52 +0000)]
Add documentation for the new crlnumber configuration option.

21 years agoTypo.
Richard Levitte [Thu, 19 Jun 2003 17:50:37 +0000 (17:50 +0000)]
Typo.

21 years agoImplement CRL numbers.
Richard Levitte [Thu, 19 Jun 2003 17:40:16 +0000 (17:40 +0000)]
Implement CRL numbers.
Contributed in whole by Laurent Genier <Laurent.Genier@intrinsec.com>
PR: 644

21 years agodynamic_ctrl() didn't have exactly the same prototype as defined by
Richard Levitte [Thu, 19 Jun 2003 16:57:38 +0000 (16:57 +0000)]
dynamic_ctrl() didn't have exactly the same prototype as defined by
ENGINE_CTRL_FUNC_PTR.

21 years agoUnsigned vs. signed fixed.
Richard Levitte [Thu, 19 Jun 2003 16:56:48 +0000 (16:56 +0000)]
Unsigned vs. signed fixed.

21 years agoEXIT() should mainly be exit(n), not return(n). OPENSSL_EXIT() will
Richard Levitte [Thu, 19 Jun 2003 16:56:19 +0000 (16:56 +0000)]
EXIT() should mainly be exit(n), not return(n).  OPENSSL_EXIT() will
take care of returning if necessary.

21 years agoAdd the application data type to the README.
Richard Levitte [Wed, 18 Jun 2003 07:14:52 +0000 (07:14 +0000)]
Add the application data type to the README.

21 years agoMissing string and potential memory leaks.
Richard Levitte [Wed, 18 Jun 2003 07:12:28 +0000 (07:12 +0000)]
Missing string and potential memory leaks.
Notified by Goetz Babin-Ebell <goetz@shomitefo.de>

21 years agoSlightly better check of attributes. Now, mem_list_next can actually stop when the...
Richard Levitte [Thu, 12 Jun 2003 21:32:54 +0000 (21:32 +0000)]
Slightly better check of attributes.  Now, mem_list_next can actually stop when the searched for key doesn't have it's attributes within the range of the checked key.

21 years agoBeautify
Richard Levitte [Thu, 12 Jun 2003 18:13:27 +0000 (18:13 +0000)]
Beautify

21 years agoTypo.
Richard Levitte [Thu, 12 Jun 2003 01:04:05 +0000 (01:04 +0000)]
Typo.
PR: 584

21 years agoDo not try to use non-existent gmtime_r() on SunOS4.
Richard Levitte [Thu, 12 Jun 2003 00:57:25 +0000 (00:57 +0000)]
Do not try to use non-existent gmtime_r() on SunOS4.
PR: 585

21 years agoMake sure ssize_t is defined on SunOS4.
Richard Levitte [Thu, 12 Jun 2003 00:56:27 +0000 (00:56 +0000)]
Make sure ssize_t is defined on SunOS4.
PR: 585

21 years agoMake sure DSO-dlfcn works properly on SunOS4.
Richard Levitte [Thu, 12 Jun 2003 00:51:54 +0000 (00:51 +0000)]
Make sure DSO-dlfcn works properly on SunOS4.
PR: 585

21 years agoTypo.
Richard Levitte [Wed, 11 Jun 2003 22:45:53 +0000 (22:45 +0000)]
Typo.
PR: 593

21 years agoAdd the possibility to have symbols loaded globally with DSO.
Richard Levitte [Wed, 11 Jun 2003 22:42:28 +0000 (22:42 +0000)]
Add the possibility to have symbols loaded globally with DSO.

21 years agomake update
Richard Levitte [Wed, 11 Jun 2003 22:27:19 +0000 (22:27 +0000)]
make update