Dr. Stephen Henson [Wed, 17 Jun 2009 11:26:09 +0000 (11:26 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 16 Jun 2009 16:55:01 +0000 (16:55 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 16 Jun 2009 16:39:20 +0000 (16:39 +0000)]
Updates from HEAD.
Dr. Stephen Henson [Mon, 15 Jun 2009 15:00:19 +0000 (15:00 +0000)]
Update from 0.9.8-stable.
Dr. Stephen Henson [Mon, 15 Jun 2009 11:23:33 +0000 (11:23 +0000)]
Update from HEAD.
Ben Laurie [Sun, 14 Jun 2009 10:23:29 +0000 (10:23 +0000)]
Two digits is not wide enough.
Ben Laurie [Sun, 14 Jun 2009 02:37:22 +0000 (02:37 +0000)]
Make depend.
Dr. Stephen Henson [Sat, 13 Jun 2009 20:47:09 +0000 (20:47 +0000)]
Update from HEAD.
Dr. Stephen Henson [Fri, 5 Jun 2009 14:57:10 +0000 (14:57 +0000)]
Stop gcc bracket warning.
Dr. Stephen Henson [Fri, 5 Jun 2009 14:56:48 +0000 (14:56 +0000)]
Stop warning if dtls disabled.
Dr. Stephen Henson [Fri, 5 Jun 2009 14:46:49 +0000 (14:46 +0000)]
PR: 1950
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve@openssl.org
DTLS fragment retransmission bug.
Ben Laurie [Fri, 5 Jun 2009 08:35:54 +0000 (08:35 +0000)]
Not always used.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:23:30 +0000 (11:23 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:06:28 +0000 (11:06 +0000)]
Update from HEAD.
Dr. Stephen Henson [Mon, 1 Jun 2009 12:14:15 +0000 (12:14 +0000)]
Update from HEAD.
Dr. Stephen Henson [Sun, 31 May 2009 17:11:24 +0000 (17:11 +0000)]
PR: 1921
Submitted by: Michael Tuexen <tuexen@fh-muenster.de>
Reviewed by: steve@openssl.org
Add ECDHE and PSK support to DTLS.
Dr. Stephen Henson [Sat, 30 May 2009 18:10:59 +0000 (18:10 +0000)]
Ensure canonical encodings of X509_NAME structures are valid.
Dr. Stephen Henson [Fri, 29 May 2009 18:58:59 +0000 (18:58 +0000)]
Update from HEAD.
Dr. Stephen Henson [Fri, 29 May 2009 14:02:30 +0000 (14:02 +0000)]
Update from 0.9.8-stable.
Dr. Stephen Henson [Thu, 28 May 2009 20:53:16 +0000 (20:53 +0000)]
Need definition of struct timeval for dtls1.h which broke WIN32 builds,
so include winsock.h. (might be a cleaner way to do this...)
Dr. Stephen Henson [Thu, 28 May 2009 20:49:29 +0000 (20:49 +0000)]
Update ordinals and sync with 0.9.8
Dr. Stephen Henson [Thu, 28 May 2009 20:45:26 +0000 (20:45 +0000)]
make errors
Dr. Stephen Henson [Thu, 28 May 2009 18:10:47 +0000 (18:10 +0000)]
Submitted by: Artem Chuprina <ran@cryptocom.ru>
Reviewed by: steve@openssl.org
Fix to match latest GOST in TLS draft.
Dr. Stephen Henson [Mon, 18 May 2009 17:37:13 +0000 (17:37 +0000)]
Add CHANGES entries from 0.9.8-stable.
Dr. Stephen Henson [Mon, 18 May 2009 16:11:58 +0000 (16:11 +0000)]
Delete line which should have gone with PR#1922.
Dr. Stephen Henson [Sun, 17 May 2009 16:04:21 +0000 (16:04 +0000)]
PR: 1929
Submitted by: Michael Tuexen <tuexen@fh-muenster.de>
Approved by: steve@openssl.org
Updated DTLS MTU bug fix.
Dr. Stephen Henson [Sun, 17 May 2009 15:57:51 +0000 (15:57 +0000)]
Revert previous MTU patch from PR#1929
Dr. Stephen Henson [Sun, 17 May 2009 14:48:02 +0000 (14:48 +0000)]
PR: 1599
Reformat PKCS12_parse manual page, document return values.
Richard Levitte [Sun, 17 May 2009 07:22:15 +0000 (07:22 +0000)]
Stupid typo
Dr. Stephen Henson [Sat, 16 May 2009 16:22:11 +0000 (16:22 +0000)]
PR: 1931
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Fix fragment handling memory leak.
Dr. Stephen Henson [Sat, 16 May 2009 16:17:46 +0000 (16:17 +0000)]
PR: 1930
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Limit size of DTLS record buffer queue.
Dr. Stephen Henson [Sat, 16 May 2009 11:16:15 +0000 (11:16 +0000)]
Disable ECDHE in DTLS in a cleaner way.
Dr. Stephen Henson [Sat, 16 May 2009 11:14:55 +0000 (11:14 +0000)]
Make the stuff compile again, fix missing prototype warnings.
Dr. Stephen Henson [Fri, 15 May 2009 23:07:41 +0000 (23:07 +0000)]
Update from HEAD.
Dr. Stephen Henson [Fri, 15 May 2009 22:58:13 +0000 (22:58 +0000)]
PR: 1922
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS Timer bug fix.
Dr. Stephen Henson [Fri, 15 May 2009 22:50:12 +0000 (22:50 +0000)]
PR: 1925
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org
VOS extended name support.
Richard Levitte [Fri, 15 May 2009 16:37:08 +0000 (16:37 +0000)]
Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
Thank you\!
(note: not tested for now, a few nightly builds should give indications though)
Richard Levitte [Fri, 15 May 2009 16:01:42 +0000 (16:01 +0000)]
Have mkdef.pl also handle VAX and Non-VAX differences for VMS
Richard Levitte [Fri, 15 May 2009 16:00:08 +0000 (16:00 +0000)]
Add a comment about libeay.num and ssleay.num
Andy Polyakov [Thu, 14 May 2009 18:25:29 +0000 (18:25 +0000)]
x86[_64]cpuid.pl: update from HEAD.
Dr. Stephen Henson [Wed, 13 May 2009 16:25:35 +0000 (16:25 +0000)]
PR: 1921
Submitted by: steve@openssl.org
Our DTLS implementation doesn't currently handle ECDHE so don't include
unsupported ciphers in client hello.
Dr. Stephen Henson [Wed, 13 May 2009 16:24:12 +0000 (16:24 +0000)]
Print out DTLS versions too.
Dr. Stephen Henson [Wed, 13 May 2009 11:51:30 +0000 (11:51 +0000)]
PR: 1923
Submitted by: Daniel Mentz <daniel.m@sent.com>, Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Don't access freed data structure.
Dr. Stephen Henson [Wed, 13 May 2009 11:32:24 +0000 (11:32 +0000)]
PR: 1924
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org
Fix _POSIX_C_SOURCE usage.
Andy Polyakov [Tue, 12 May 2009 20:24:23 +0000 (20:24 +0000)]
e_padlock.c: update from HEAD.
Dr. Stephen Henson [Thu, 7 May 2009 16:26:44 +0000 (16:26 +0000)]
Typo.
Dr. Stephen Henson [Wed, 6 May 2009 16:58:27 +0000 (16:58 +0000)]
Typo.
Dr. Stephen Henson [Wed, 6 May 2009 16:54:25 +0000 (16:54 +0000)]
Add debug-VC-WIN32 target and let mk1mf.pl auto detect it, update docs.
Richard Levitte [Wed, 6 May 2009 14:03:24 +0000 (14:03 +0000)]
Select updates from HEAD
Dr. Stephen Henson [Wed, 6 May 2009 10:23:39 +0000 (10:23 +0000)]
Don't use -D_CRT_NONSTDC_NO_DEPRECATE, fix bio_lcl.h instead.
Andy Polyakov [Tue, 5 May 2009 19:25:53 +0000 (19:25 +0000)]
Configure: update from HEAD (Camellia assembler in VC-WIN64A, CAPI engine
in mingw64).
Andy Polyakov [Tue, 5 May 2009 19:23:45 +0000 (19:23 +0000)]
ec_mult.c: update from HEAD (Win64 compile warnings).
Andy Polyakov [Tue, 5 May 2009 19:23:14 +0000 (19:23 +0000)]
cryptlib.c: update from HEAD.
Andy Polyakov [Tue, 5 May 2009 19:21:12 +0000 (19:21 +0000)]
perlasm: update from HEAD.
Andy Polyakov [Tue, 5 May 2009 19:17:00 +0000 (19:17 +0000)]
e_capi.c: update from HEAD.
Richard Levitte [Tue, 5 May 2009 08:46:30 +0000 (08:46 +0000)]
Update from HEAD
Dr. Stephen Henson [Wed, 29 Apr 2009 14:12:54 +0000 (14:12 +0000)]
If an SSLv2 method is explicitly asked for use the SSLv2 cipher string:
assume an application *really* wants SSLv2 if they do that.
Otherwise stick with the default which excludes all SSLv2 cipher suites.
Dr. Stephen Henson [Tue, 28 Apr 2009 22:35:42 +0000 (22:35 +0000)]
Typo.
Dr. Stephen Henson [Tue, 28 Apr 2009 22:01:53 +0000 (22:01 +0000)]
PR: 1629
Submitted by: Kaspar Brand <ossl-rt@velox.ch>
Approved by: steve@openssl.org
Don't use extensions if using SSLv3: this chokes some broken servers.
Dr. Stephen Henson [Tue, 28 Apr 2009 21:56:04 +0000 (21:56 +0000)]
PR: 1914
Make safestack work with C++.
Richard Levitte [Tue, 28 Apr 2009 13:00:50 +0000 (13:00 +0000)]
Update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:37:23 +0000 (19:37 +0000)]
v3_alt.c: otherName parsing fix from HEAD.
Submitted by: Love Hoernquist Aastrand
Andy Polyakov [Mon, 27 Apr 2009 19:32:13 +0000 (19:32 +0000)]
VC-32.pl: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:52 +0000 (19:31 +0000)]
test_padlock: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:30 +0000 (19:31 +0000)]
sha*-s390x.pl: minor update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:04 +0000 (19:31 +0000)]
rc4-x86_64.pl: Win64 SEH update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:30:36 +0000 (19:30 +0000)]
b_sock.c: readability update from HEAD.
Richard Levitte [Mon, 27 Apr 2009 00:08:50 +0000 (00:08 +0000)]
Updates from HEAD
Dr. Stephen Henson [Sun, 26 Apr 2009 15:50:55 +0000 (15:50 +0000)]
Update docs: can use backslashes now.
Dr. Stephen Henson [Sun, 26 Apr 2009 15:04:06 +0000 (15:04 +0000)]
Prevent warning if WINCE not used.
Dr. Stephen Henson [Sun, 26 Apr 2009 14:54:23 +0000 (14:54 +0000)]
Add extra no deprecate flags in Configure.
Dr. Stephen Henson [Sun, 26 Apr 2009 14:53:58 +0000 (14:53 +0000)]
This at least break WIN32 which doesn't have sys/time.h might need to make
this a bit more generous later...
Richard Levitte [Sun, 26 Apr 2009 12:26:04 +0000 (12:26 +0000)]
Add local symbol hacks for OpenVMS
Richard Levitte [Sun, 26 Apr 2009 12:16:12 +0000 (12:16 +0000)]
Cast to avoid signedness confusion
Richard Levitte [Sun, 26 Apr 2009 11:35:58 +0000 (11:35 +0000)]
Updates from HEAD
Dr. Stephen Henson [Thu, 23 Apr 2009 17:16:40 +0000 (17:16 +0000)]
Make no-rsa, no-dsa and no-dh compile again.
Dr. Stephen Henson [Thu, 23 Apr 2009 16:25:00 +0000 (16:25 +0000)]
Make no-ec work
Dr. Stephen Henson [Thu, 23 Apr 2009 16:12:09 +0000 (16:12 +0000)]
Make no-gost work properly.
Dr. Stephen Henson [Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)]
Some no-ec fixes (not complete yet).
Dr. Stephen Henson [Wed, 22 Apr 2009 17:36:45 +0000 (17:36 +0000)]
CryptoAPI engine only exists on WIN32.
Dr. Stephen Henson [Wed, 22 Apr 2009 17:31:04 +0000 (17:31 +0000)]
PR: 1902
Add ecdsa/ecdh algorithms to default for speed utility.
Dr. Stephen Henson [Wed, 22 Apr 2009 16:50:42 +0000 (16:50 +0000)]
Find openssl utility if on the PATH.
Dr. Stephen Henson [Wed, 22 Apr 2009 16:21:20 +0000 (16:21 +0000)]
PR: 1903
Submitted by: "Paul Smedley" <pauldespam@despamsmedley.id.au>
Approved by: steve@openssl.org
OS/2 fixes (excludes Makefile.shared patch for now).
Dr. Stephen Henson [Wed, 22 Apr 2009 15:40:54 +0000 (15:40 +0000)]
Fix WIN32 warnings.
Dr. Stephen Henson [Wed, 22 Apr 2009 12:17:02 +0000 (12:17 +0000)]
Fix WIN32 warning.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:30:54 +0000 (22:30 +0000)]
Another kerberos fix.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:27:41 +0000 (22:27 +0000)]
Change version to beta3-dev
Dr. Stephen Henson [Tue, 21 Apr 2009 22:20:12 +0000 (22:20 +0000)]
Some fixes for kerberos builds.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:42:01 +0000 (15:42 +0000)]
Fix RFC num.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:19:15 +0000 (15:19 +0000)]
Update STATUS.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:11:59 +0000 (15:11 +0000)]
Fix warning.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:02:20 +0000 (15:02 +0000)]
make update.
Dr. Stephen Henson [Tue, 21 Apr 2009 14:58:57 +0000 (14:58 +0000)]
Beta 2 preparation.
Dr. Stephen Henson [Sun, 19 Apr 2009 18:03:13 +0000 (18:03 +0000)]
PR: 1751
Submitted by: David Woodhouse <dwmw2@infradead.org>
Approved by: steve@openssl.org
Compatibility patches for Cisco VPN client DTLS.
Dr. Stephen Henson [Sun, 19 Apr 2009 17:58:01 +0000 (17:58 +0000)]
Fix error header files and error files too.
Dr. Stephen Henson [Thu, 16 Apr 2009 17:22:51 +0000 (17:22 +0000)]
PR: 1894
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Fix various typos and stuff.
Dr. Stephen Henson [Thu, 16 Apr 2009 16:42:02 +0000 (16:42 +0000)]
PR: 1900
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Remove unnecessary included header file.
Dr. Stephen Henson [Wed, 15 Apr 2009 15:16:29 +0000 (15:16 +0000)]
PR: 1895
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Updates to mkerr.pl script.
Dr. Stephen Henson [Wed, 15 Apr 2009 15:07:09 +0000 (15:07 +0000)]
PR: 1899
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Check for <= 0 when verifying CRL issuers.
Dr. Stephen Henson [Wed, 15 Apr 2009 14:49:36 +0000 (14:49 +0000)]
PR: 1828
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Updated DTLS Rentransmission bug patch.