Richard Levitte [Thu, 23 Mar 2000 21:14:11 +0000 (21:14 +0000)]
Tagging has been done, update to next probable version...
Richard Levitte [Thu, 23 Mar 2000 21:12:50 +0000 (21:12 +0000)]
I almost forgot...
Richard Levitte [Thu, 23 Mar 2000 21:07:41 +0000 (21:07 +0000)]
Time for version 0.9.5a beta2
I know it's earlier than announced. The high amount of problems in
beta1 warants this, however.
Richard Levitte [Thu, 23 Mar 2000 19:31:37 +0000 (19:31 +0000)]
New FAQ for the OpenSSH configuration problem.
I know, this isn't really a OpenSSL issue, but we keep getting
questions about it, so we might as well provide the solution...
Richard Levitte [Thu, 23 Mar 2000 18:14:21 +0000 (18:14 +0000)]
Clean up context, even if an error occured.
Ulf Möller [Thu, 23 Mar 2000 17:54:58 +0000 (17:54 +0000)]
ssize_t for Ultrix
Richard Levitte [Thu, 23 Mar 2000 11:08:49 +0000 (11:08 +0000)]
Corrected. It said before that ivec had to be initialised to zero,
which isn't true. What is true, however, is that SSH assumes it is.
Bodo Möller [Thu, 23 Mar 2000 09:51:23 +0000 (09:51 +0000)]
"make update"
Richard Levitte [Thu, 23 Mar 2000 07:32:34 +0000 (07:32 +0000)]
A quick hack to have ssize_t work with gcc under SunOS 4 (tested on
SunOS 4.1.4).
Dr. Stephen Henson [Thu, 23 Mar 2000 02:35:47 +0000 (02:35 +0000)]
Update docs and remove old PKCS#7 README file.
Ulf Möller [Wed, 22 Mar 2000 15:30:03 +0000 (15:30 +0000)]
RAND_event()
Dr. Stephen Henson [Wed, 22 Mar 2000 13:50:23 +0000 (13:50 +0000)]
Fix a memory leak in PKCS12_parse.
Don't copy private key to X509 etc public key structures.
Fix for warning.
Ulf Möller [Tue, 21 Mar 2000 20:42:35 +0000 (20:42 +0000)]
more failures
Ulf Möller [Tue, 21 Mar 2000 11:40:33 +0000 (11:40 +0000)]
More failures.
Richard Levitte [Mon, 20 Mar 2000 21:38:25 +0000 (21:38 +0000)]
Ulf M\81öller reports OpenBSD-x86 and solaris-sparcv9-cc passed.
Ulf Möller [Mon, 20 Mar 2000 18:19:38 +0000 (18:19 +0000)]
OpenBSD complains.
Ulf Möller [Mon, 20 Mar 2000 18:16:52 +0000 (18:16 +0000)]
In some of the Makefiles CPP was not defined.
Richard Levitte [Mon, 20 Mar 2000 16:52:29 +0000 (16:52 +0000)]
Jaenick Lutz reports that hpux-parisc-cc with +02 passed.
Richard Levitte [Mon, 20 Mar 2000 15:56:14 +0000 (15:56 +0000)]
Ref: Message-ID: <
20000320070111.A90876@wiz.Sendmail.COM>
Ulf Möller [Mon, 20 Mar 2000 13:40:16 +0000 (13:40 +0000)]
Problems with the Windows build.
Bodo Möller [Mon, 20 Mar 2000 13:39:06 +0000 (13:39 +0000)]
Document pseudo-commands.
Ulf Möller [Mon, 20 Mar 2000 12:17:20 +0000 (12:17 +0000)]
Mention the bug fixes.
Richard Levitte [Mon, 20 Mar 2000 11:29:11 +0000 (11:29 +0000)]
I just got a not very pleasant report.
Richard Levitte [Mon, 20 Mar 2000 09:23:05 +0000 (09:23 +0000)]
There are a few new features in 0.9.5a... And I've probably
forgotten a few.
Richard Levitte [Mon, 20 Mar 2000 09:22:04 +0000 (09:22 +0000)]
New status
Richard Levitte [Mon, 20 Mar 2000 07:47:37 +0000 (07:47 +0000)]
Tagging done, we move to the next possible.
Richard Levitte [Mon, 20 Mar 2000 07:36:22 +0000 (07:36 +0000)]
Beta 1 of 0.9.5a building.
Richard Levitte [Mon, 20 Mar 2000 07:35:38 +0000 (07:35 +0000)]
make update
Richard Levitte [Mon, 20 Mar 2000 07:22:47 +0000 (07:22 +0000)]
Change the version text, it's time to release the first beta of 0.9.5a.
Ulf Möller [Sun, 19 Mar 2000 22:58:12 +0000 (22:58 +0000)]
Sample application using RAND_event() to collect entropy from mouse
movements, keyboard etc. and write it to a seed file.
Ulf Möller [Sun, 19 Mar 2000 22:57:07 +0000 (22:57 +0000)]
Bug fix: RAND_write_file() failed to write to files created by open()
on Win32.
Richard Levitte [Sun, 19 Mar 2000 19:10:03 +0000 (19:10 +0000)]
Make sure an error condition is returned if, for some reason, the file
couldn't be opened.
Ulf Möller [Sun, 19 Mar 2000 17:20:26 +0000 (17:20 +0000)]
oops. don't use "entropy" directly.
Ulf Möller [Sun, 19 Mar 2000 17:14:25 +0000 (17:14 +0000)]
New function RAND_event() collects entropy from Windows events.
Ulf Möller [Sun, 19 Mar 2000 12:15:24 +0000 (12:15 +0000)]
FLAT_INC is not needed; we use -I.. all the time
Ulf Möller [Sun, 19 Mar 2000 12:13:44 +0000 (12:13 +0000)]
Integrate podd.h sk.h into set_key.c
Richard Levitte [Sun, 19 Mar 2000 09:35:19 +0000 (09:35 +0000)]
Change the notation and coding of the version to be able to contain
both a patch level and a beta status. IMHO, it also makes more sense
to have beta status be part of the development status than to have it
be an alternate name for patch levels under special conditions.
Richard Levitte [Sun, 19 Mar 2000 09:23:25 +0000 (09:23 +0000)]
Keep in sync with Unix code, and prepare for a misfeature fix.
Ulf Möller [Sun, 19 Mar 2000 02:18:45 +0000 (02:18 +0000)]
make update
Ulf Möller [Sun, 19 Mar 2000 02:10:17 +0000 (02:10 +0000)]
cleanup.
Ulf Möller [Sun, 19 Mar 2000 02:09:37 +0000 (02:09 +0000)]
libdes manpage.
This may still contain a few errors from the old documentation,
but most of it should make sense.
Ulf Möller [Sun, 19 Mar 2000 02:06:37 +0000 (02:06 +0000)]
des_quad_cksum() byte order bug fix.
See http://www.pdc.kth.se/kth-krb/
Their solution for CRAY is somewhat awkward.
I'll assume that a "short" is 32 bits on CRAY to avoid the
#ifdef _CRAY
typedef struct {
unsigned int a:32;
unsigned int b:32;
} XXX;
#else
typedef DES_LONG XXX;
#endif
Ulf Möller [Sat, 18 Mar 2000 22:00:26 +0000 (22:00 +0000)]
add =cut
Ulf Möller [Sat, 18 Mar 2000 18:39:58 +0000 (18:39 +0000)]
DES in Perl was incomplete and not very useful
Ulf Möller [Sat, 18 Mar 2000 18:37:43 +0000 (18:37 +0000)]
superseded by des_modes.pod
Ulf Möller [Sat, 18 Mar 2000 17:55:09 +0000 (17:55 +0000)]
change manpages to pod. Contents are not up to date!
Bodo Möller [Sat, 18 Mar 2000 15:18:27 +0000 (15:18 +0000)]
Eliminate memory leaks in mem_dbg.c.
Richard Levitte [Sat, 18 Mar 2000 09:11:00 +0000 (09:11 +0000)]
Small bugs in the test scripts removed.
Richard Levitte [Sat, 18 Mar 2000 09:09:31 +0000 (09:09 +0000)]
e_os.h: don't do double work with status codes.
openssl.c: make damn sure e_os.h knows about OPENSSL_C
Richard Levitte [Fri, 17 Mar 2000 23:49:15 +0000 (23:49 +0000)]
Make sure to complete the cleanup of names.
Richard Levitte [Fri, 17 Mar 2000 10:02:16 +0000 (10:02 +0000)]
Bugs corrected
Richard Levitte [Fri, 17 Mar 2000 09:25:36 +0000 (09:25 +0000)]
The previous exit code handling was completely bogus for VMS.
Richard Levitte [Thu, 16 Mar 2000 21:20:35 +0000 (21:20 +0000)]
Typo corrected.
Bodo Möller [Thu, 16 Mar 2000 16:17:00 +0000 (16:17 +0000)]
Point out the PRNG usage bug affecting openssl rsa.
(Should we point to snapshots, or directly give the one-line patch?)
Bodo Möller [Tue, 14 Mar 2000 21:25:39 +0000 (21:25 +0000)]
Remove CRYPTO_push/pop_info invocations to improve code readability --
I hope all memory leaks that may occur here have already been tracked down.
Bodo Möller [Tue, 14 Mar 2000 16:35:36 +0000 (16:35 +0000)]
Avoid a warning.
Bodo Möller [Tue, 14 Mar 2000 16:05:19 +0000 (16:05 +0000)]
SSL_ALLOW_ADH no longer has a meaning.
Bodo Möller [Tue, 14 Mar 2000 14:33:11 +0000 (14:33 +0000)]
Insert a comment: This is one of the few files in this directory
that is actually used (even though it may not appear so at first
sight).
Bodo Möller [Tue, 14 Mar 2000 14:10:56 +0000 (14:10 +0000)]
Use correct function names in SSLerr macros.
Bodo Möller [Tue, 14 Mar 2000 13:56:00 +0000 (13:56 +0000)]
Remove "Makefile.uni" files and some related stuff.
This was meant for building individual ciphers separately;
but nothing of this is maintained, it does not work
because we rely on central configuration by the Configure
utility with <openssl/opensslconf.h> etc., so the files
are only wasting space and time.
Richard Levitte [Tue, 14 Mar 2000 06:51:18 +0000 (06:51 +0000)]
Typos corrected.
Richard Levitte [Tue, 14 Mar 2000 06:30:02 +0000 (06:30 +0000)]
Make it possible top build just a part of the crypto library.
Richard Levitte [Tue, 14 Mar 2000 06:17:52 +0000 (06:17 +0000)]
Target added.
Richard Levitte [Tue, 14 Mar 2000 06:12:30 +0000 (06:12 +0000)]
Bugs corrected, and a couple of include files to get declarations for
lib$-functions and sys$-functions.
Richard Levitte [Tue, 14 Mar 2000 04:32:24 +0000 (04:32 +0000)]
Typo corrected
Richard Levitte [Tue, 14 Mar 2000 04:23:03 +0000 (04:23 +0000)]
bss_log has dollars, so compile it with that warning flag disabled.
Richard Levitte [Tue, 14 Mar 2000 04:16:10 +0000 (04:16 +0000)]
Typo corrected
Richard Levitte [Tue, 14 Mar 2000 04:09:48 +0000 (04:09 +0000)]
Make sure strcmp() gets declared.
Dr. Stephen Henson [Tue, 14 Mar 2000 03:29:57 +0000 (03:29 +0000)]
Make V_ASN1_APP_CHOOSE work again.
Bodo Möller [Mon, 13 Mar 2000 23:06:03 +0000 (23:06 +0000)]
another typo
Bodo Möller [Mon, 13 Mar 2000 23:01:32 +0000 (23:01 +0000)]
typo
Richard Levitte [Mon, 13 Mar 2000 22:27:52 +0000 (22:27 +0000)]
Synchronise with Unixly tests
Bodo Möller [Mon, 13 Mar 2000 21:01:05 +0000 (21:01 +0000)]
Correction.
Bodo Möller [Mon, 13 Mar 2000 20:48:23 +0000 (20:48 +0000)]
Clarifications for 'no-XXX'.
Bodo Möller [Mon, 13 Mar 2000 20:47:45 +0000 (20:47 +0000)]
Run test_ssl last -- it's the only test that really uses the SSL library
in addition to the crypto library.
Bodo Möller [Mon, 13 Mar 2000 20:31:46 +0000 (20:31 +0000)]
"openssl no-..." commands for avoiding the need to grep
"openssl list-standard-commands".
Bodo Möller [Mon, 13 Mar 2000 19:44:45 +0000 (19:44 +0000)]
Include a timing test that works without RSA.
Bodo Möller [Mon, 13 Mar 2000 19:35:37 +0000 (19:35 +0000)]
Corrections.
In testss, use MD5 as digest algorithm so that the resulting
certificates can be used for testssl with RSA.
Bodo Möller [Mon, 13 Mar 2000 19:30:59 +0000 (19:30 +0000)]
Update usage info
Bodo Möller [Mon, 13 Mar 2000 19:24:39 +0000 (19:24 +0000)]
Update test suite so that 'make test' succeeds in 'no-rsa' configuration.
Richard Levitte [Mon, 13 Mar 2000 19:05:18 +0000 (19:05 +0000)]
Synchronise with Unix.
Richard Levitte [Mon, 13 Mar 2000 18:59:11 +0000 (18:59 +0000)]
Correct a potential bug.
Bodo Möller [Mon, 13 Mar 2000 18:05:59 +0000 (18:05 +0000)]
Don't try to test the RSA command if it is not available.
Bodo Möller [Mon, 13 Mar 2000 17:07:04 +0000 (17:07 +0000)]
Copy DH key (if available) in addition to the bare parameters
in SSL_new.
If SSL_OP_SINGLE_DH_USE is set, don't waste time in SSL_[CTX_]set_tmp_dh
on computing a DH key that will be ignored anyway.
ssltest -dhe1024dsa (w/ 160-bit sub-prime) had an unfair performance
advantage over -dhe1024 (safe prime): SSL_OP_SINGLE_DH_USE was
effectively always enabled because SSL_new ignored the DH key set in
the SSL_CTX. Now -dhe1024 takes the server only about twice as long
as -dhe1024dsa instead of three times as long (for 1024 bit RSA
with 1024 bit DH).
Bodo Möller [Mon, 13 Mar 2000 15:06:54 +0000 (15:06 +0000)]
Connection timings (using ISO C function clock()).
Bodo Möller [Mon, 13 Mar 2000 08:04:20 +0000 (08:04 +0000)]
Remove Win32 assembler files. They are always rebuilt (with some
choice of parameters) when they are needed.
Bodo Möller [Sun, 12 Mar 2000 23:27:14 +0000 (23:27 +0000)]
cleaning up a little
Ulf Möller [Sun, 12 Mar 2000 12:52:36 +0000 (12:52 +0000)]
asm workaround for SuSE Linux
proposed by Holger Reif
Ulf Möller [Sun, 12 Mar 2000 12:49:45 +0000 (12:49 +0000)]
make update
Bodo Möller [Sat, 11 Mar 2000 01:29:26 +0000 (01:29 +0000)]
Workaround for Windoze weirdness.
Bodo Möller [Sat, 11 Mar 2000 01:29:14 +0000 (01:29 +0000)]
On NeXT, ssize_t is int, not long (see <sys/types.h> -- the definition
is activated only when _POSIX_SOURCE is defined).
Ulf Möller [Fri, 10 Mar 2000 23:45:51 +0000 (23:45 +0000)]
NO_SYSLOG is defined for MSDOS anyway. just don't include the Unix
header...
Ulf Möller [Fri, 10 Mar 2000 23:45:28 +0000 (23:45 +0000)]
ssize_t
Bodo Möller [Fri, 10 Mar 2000 21:44:38 +0000 (21:44 +0000)]
Use signed types where necessary, and add missing functionality
to make SSL_nread0 work.
Ulf Möller [Fri, 10 Mar 2000 17:43:05 +0000 (17:43 +0000)]
Use L for all constants.
Ulf Möller [Fri, 10 Mar 2000 17:02:12 +0000 (17:02 +0000)]
Don't generate asm files for no-asm.
Ulf Möller [Fri, 10 Mar 2000 17:01:23 +0000 (17:01 +0000)]
Repair bss_log.
Curiously enough, void functions don't return a value.
Bodo Möller [Fri, 10 Mar 2000 13:49:02 +0000 (13:49 +0000)]
Mention -ign_eof.
Bodo Möller [Fri, 10 Mar 2000 13:23:20 +0000 (13:23 +0000)]
Always use fixed DH parameters created with 'dhparam -C',
don't dynamically create them. This allows using ssltest
for approximate performance comparisons:
$ time ./ssltest -num 50 -tls1 -cert ../apps/server2.pem \
[-no_dhe|-dhe1024dsa|-dhe1024]
(server2.pem contains a 1024 bit RSA key, the default has only
512 bits.) Note that these timings contain both the server's and
the client's computations, they are not a good indicator for
server workload in different configurations.
Richard Levitte [Fri, 10 Mar 2000 12:18:28 +0000 (12:18 +0000)]
Add the possibility (with -ign_eof) to ignore end of file on input but
still not be quiet. Also make it clear that -quiet implicitely means
-ign_eof as well.