oweals/openssl.git
18 years agoSynchronise with openss.cnf
Richard Levitte [Sun, 26 Feb 2006 10:48:40 +0000 (10:48 +0000)]
Synchronise with openss.cnf

18 years agoAdd a TSA test. testtsa.com is a manual sh to dcl translation of
Richard Levitte [Sun, 26 Feb 2006 10:47:57 +0000 (10:47 +0000)]
Add a TSA test.  testtsa.com is a manual sh to dcl translation of
testtsa.

18 years agoAdd TS to the VMS build.
Richard Levitte [Sun, 26 Feb 2006 10:46:39 +0000 (10:46 +0000)]
Add TS to the VMS build.

18 years agoBreak out deltree in its' own command procedure.
Richard Levitte [Sun, 26 Feb 2006 10:44:57 +0000 (10:44 +0000)]
Break out deltree in its' own command procedure.

18 years agofix no-dh configure option; patch supplied by Peter Meerwald
Nils Larsch [Fri, 24 Feb 2006 17:58:43 +0000 (17:58 +0000)]
fix no-dh configure option; patch supplied by Peter Meerwald

18 years agoPrint out <INVALID> if an OID value is invalid.
Dr. Stephen Henson [Tue, 21 Feb 2006 01:00:08 +0000 (01:00 +0000)]
Print out <INVALID> if an OID value is invalid.

18 years agoTolerate a SEQUENCE in DN components.
Dr. Stephen Henson [Sun, 19 Feb 2006 13:44:47 +0000 (13:44 +0000)]
Tolerate a SEQUENCE in DN components.

18 years agoignore
Ulf Möller [Thu, 16 Feb 2006 20:43:04 +0000 (20:43 +0000)]
ignore

18 years agomessage style
Ulf Möller [Thu, 16 Feb 2006 20:33:47 +0000 (20:33 +0000)]
message style

18 years agooops
Ulf Möller [Thu, 16 Feb 2006 20:30:58 +0000 (20:30 +0000)]
oops

18 years agowrap shlib for testtsa
Ulf Möller [Thu, 16 Feb 2006 20:20:24 +0000 (20:20 +0000)]
wrap shlib for testtsa
Submitted by: David Somers <dsomers@omz13.com>

18 years agomake some internal functions static; patch supplied by Kurt Roeckx
Nils Larsch [Wed, 15 Feb 2006 20:20:20 +0000 (20:20 +0000)]
make some internal functions static; patch supplied by Kurt Roeckx

18 years agofix typos
Nils Larsch [Wed, 15 Feb 2006 19:42:22 +0000 (19:42 +0000)]
fix typos

PR: 1280

18 years agoFix from stable branch.
Dr. Stephen Henson [Wed, 15 Feb 2006 15:04:42 +0000 (15:04 +0000)]
Fix from stable branch.

18 years agoFix warnings.
Dr. Stephen Henson [Wed, 15 Feb 2006 14:45:31 +0000 (14:45 +0000)]
Fix warnings.

18 years agoshorter filenames
Ulf Möller [Wed, 15 Feb 2006 00:35:46 +0000 (00:35 +0000)]
shorter filenames

18 years agouse asn1 callbacks for new, free and d2i
Nils Larsch [Tue, 14 Feb 2006 07:55:03 +0000 (07:55 +0000)]
use asn1 callbacks for new, free and d2i

18 years agodon't use the l length modifier for int
Nils Larsch [Mon, 13 Feb 2006 09:50:04 +0000 (09:50 +0000)]
don't use the l length modifier for int

18 years agouse stricter prototypes, fix warnings
Nils Larsch [Mon, 13 Feb 2006 09:46:02 +0000 (09:46 +0000)]
use stricter prototypes, fix warnings

18 years agofix warning: add missing prototype
Nils Larsch [Mon, 13 Feb 2006 09:43:31 +0000 (09:43 +0000)]
fix warning: add missing prototype

18 years agofix warning
Nils Larsch [Mon, 13 Feb 2006 08:45:53 +0000 (08:45 +0000)]
fix warning

18 years agofix typo: pass pre-computed parameters to the underlying signature function; thanks...
Nils Larsch [Mon, 13 Feb 2006 08:16:00 +0000 (08:16 +0000)]
fix typo: pass pre-computed parameters to the underlying signature function; thanks to Lucas Newman

18 years ago*** empty log message ***
Ulf Möller [Sun, 12 Feb 2006 23:36:58 +0000 (23:36 +0000)]
*** empty log message ***

18 years agomake update
Ulf Möller [Sun, 12 Feb 2006 23:21:56 +0000 (23:21 +0000)]
make update

18 years agotime stamp Makefile, test files
Ulf Möller [Sun, 12 Feb 2006 23:19:25 +0000 (23:19 +0000)]
time stamp Makefile, test files
Submitted by: Zoltan Glozik <zglozik@opentsa.org>

18 years agoRFC 3161 compliant time stamp request creation, response generation
Ulf Möller [Sun, 12 Feb 2006 23:11:56 +0000 (23:11 +0000)]
RFC 3161 compliant time stamp request creation, response generation
and response verification.

Submitted by: Zoltan Glozik <zglozik@opentsa.org>
Reviewed by: Ulf Moeller

18 years agoMinor clarification.
Dr. Stephen Henson [Sat, 11 Feb 2006 01:54:19 +0000 (01:54 +0000)]
Minor clarification.

18 years agoAdd FAQ about AKID.
Dr. Stephen Henson [Sat, 11 Feb 2006 00:46:34 +0000 (00:46 +0000)]
Add FAQ about AKID.

18 years agoDocument the building macros.
Richard Levitte [Fri, 10 Feb 2006 08:48:43 +0000 (08:48 +0000)]
Document the building macros.

18 years agoAs an effect of revisions 1.261, BUILD_CMD was changed so $(DIRS)
Richard Levitte [Fri, 10 Feb 2006 08:04:59 +0000 (08:04 +0000)]
As an effect of revisions 1.261, BUILD_CMD was changed so $(DIRS)
wasn't respected when using it to build different parts of OpenSSL.
1.269 was an attempt to correct that, but unfortunately meant that we
built every part that was given i $(DIRS) 7 times.  This change puts
back the original intent with BUILD_CMD via the new macro
BUILD_ONE_CMD while keeping the intent with RECURSIVE_BUILD_CMD.

18 years agoFix warnings about "sin" conflicting with sin(3) definition.
Dr. Stephen Henson [Thu, 9 Feb 2006 17:17:41 +0000 (17:17 +0000)]
Fix warnings about "sin" conflicting with sin(3) definition.

18 years agoAvoid warnings about shadowed definitions.
Dr. Stephen Henson [Thu, 9 Feb 2006 17:11:12 +0000 (17:11 +0000)]
Avoid warnings about shadowed definitions.

18 years agoUpdate from 0.9.7-stable.
Dr. Stephen Henson [Thu, 9 Feb 2006 12:29:21 +0000 (12:29 +0000)]
Update from 0.9.7-stable.

18 years agoremove unnecessary check
Nils Larsch [Wed, 8 Feb 2006 18:52:43 +0000 (18:52 +0000)]
remove unnecessary check

18 years agop could be uninitialized
Nils Larsch [Wed, 8 Feb 2006 18:51:17 +0000 (18:51 +0000)]
p could be uninitialized

18 years agomove new member of SSL_SESSION to the end
Bodo Möller [Tue, 7 Feb 2006 14:26:43 +0000 (14:26 +0000)]
move new member of SSL_SESSION to the end
(minimize changes to binary format)

Submitted by: Peter Sylvester

18 years agoUpdate filenames in makefiles.
Dr. Stephen Henson [Sat, 4 Feb 2006 01:45:59 +0000 (01:45 +0000)]
Update filenames in makefiles.

18 years agoRecognize mingw in perlasm.
Dr. Stephen Henson [Sat, 4 Feb 2006 01:25:19 +0000 (01:25 +0000)]
Recognize mingw in perlasm.

18 years agofix if statement: call conn_state() if the BIO is not in the BIO_CONN_S_OK state
Nils Larsch [Thu, 2 Feb 2006 22:11:02 +0000 (22:11 +0000)]
fix if statement: call conn_state() if the BIO is not in the BIO_CONN_S_OK state

18 years agoIgnore zero length constructed segments.
Dr. Stephen Henson [Tue, 31 Jan 2006 18:36:29 +0000 (18:36 +0000)]
Ignore zero length constructed segments.

18 years agoTypo
Lutz Jänicke [Mon, 30 Jan 2006 17:06:00 +0000 (17:06 +0000)]
Typo

Submitted by: Girish Venkatachalam <girish1729@gmail.com>

18 years agoadd additional checks + cleanup
Nils Larsch [Sun, 29 Jan 2006 23:12:22 +0000 (23:12 +0000)]
add additional checks + cleanup

Submitted by: David Hartman <david_hartman@symantec.com>

18 years agoFixes for BOOL handling: produce errors for invalid string for mini-compiler,
Dr. Stephen Henson [Thu, 19 Jan 2006 17:16:56 +0000 (17:16 +0000)]
Fixes for BOOL handling: produce errors for invalid string for mini-compiler,
correctly encode FALSE for BOOL in ASN1_TYPE.

18 years agorecent changes from 0.9.8: fix cipher list order in s3_lib.c,
Nils Larsch [Sun, 15 Jan 2006 17:35:28 +0000 (17:35 +0000)]
recent changes from 0.9.8: fix cipher list order in s3_lib.c,
make "no-ssl2" work again

PR: 1217

18 years agoFix from stable branch.
Dr. Stephen Henson [Sun, 15 Jan 2006 17:31:08 +0000 (17:31 +0000)]
Fix from stable branch.

18 years agoTypo.
Dr. Stephen Henson [Sun, 15 Jan 2006 13:55:31 +0000 (13:55 +0000)]
Typo.

18 years agoUpdate from stable branch.
Dr. Stephen Henson [Sun, 15 Jan 2006 13:50:10 +0000 (13:50 +0000)]
Update from stable branch.

18 years agosigned vs. unsigned clash.
Richard Levitte [Sat, 14 Jan 2006 11:49:24 +0000 (11:49 +0000)]
signed vs. unsigned clash.

18 years agosupport numeric strings in ASN1_generate_nconf
Nils Larsch [Sat, 14 Jan 2006 09:21:33 +0000 (09:21 +0000)]
support numeric strings in ASN1_generate_nconf

18 years agofix comment
Nils Larsch [Fri, 13 Jan 2006 23:50:26 +0000 (23:50 +0000)]
fix comment

PR: 1270

18 years ago2 is a prime
Nils Larsch [Fri, 13 Jan 2006 23:27:59 +0000 (23:27 +0000)]
2 is a prime

PR: 1266

18 years agoFurther TLS extension improvements
Bodo Möller [Fri, 13 Jan 2006 09:21:10 +0000 (09:21 +0000)]
Further TLS extension improvements

Submitted by: Peter Sylvester

18 years agoForgot to initialize CC6DISABLEWARNINGS properly...
Richard Levitte [Wed, 11 Jan 2006 18:55:42 +0000 (18:55 +0000)]
Forgot to initialize CC6DISABLEWARNINGS properly...

18 years agoTypo...
Richard Levitte [Wed, 11 Jan 2006 13:31:04 +0000 (13:31 +0000)]
Typo...

18 years agoimprovements for alert handling
Bodo Möller [Wed, 11 Jan 2006 07:18:35 +0000 (07:18 +0000)]
improvements for alert handling

18 years agoMore TLS extension related changes.
Bodo Möller [Wed, 11 Jan 2006 06:10:40 +0000 (06:10 +0000)]
More TLS extension related changes.

Submitted by: Peter Sylvester

18 years agoFurther TLS extension updates
Bodo Möller [Mon, 9 Jan 2006 19:49:05 +0000 (19:49 +0000)]
Further TLS extension updates

Submitted by: Peter Sylvester

18 years agoDisable the Mixed Linkage warning for some selected modules. This is
Richard Levitte [Mon, 9 Jan 2006 19:23:01 +0000 (19:23 +0000)]
Disable the Mixed Linkage warning for some selected modules.  This is
because the Compaq C compiler will not accept that a variable be
declared extern then defined static without a warning.

18 years agoAvoid contradictive error code assignments.
Bodo Möller [Sun, 8 Jan 2006 21:54:24 +0000 (21:54 +0000)]
Avoid contradictive error code assignments.
"make errors".

18 years agoDetect more errors.
Bodo Möller [Sun, 8 Jan 2006 21:43:36 +0000 (21:43 +0000)]
Detect more errors.
Change assignment strategy: rathern than using max+r for new codes,
find first hole in list of existing codes.

18 years agoDetect SSL error code mishandling.
Bodo Möller [Sun, 8 Jan 2006 20:03:08 +0000 (20:03 +0000)]
Detect SSL error code mishandling.

18 years agoinclude max. codes in debug output
Bodo Möller [Sun, 8 Jan 2006 19:54:32 +0000 (19:54 +0000)]
include max. codes in debug output

18 years agoSome error code cleanups (SSL lib. used SSL_R_... codes reserved for alerts)
Bodo Möller [Sun, 8 Jan 2006 19:42:30 +0000 (19:42 +0000)]
Some error code cleanups (SSL lib. used SSL_R_... codes reserved for alerts)

18 years agoThere's no such things as DTLS1_AD_MISSING_HANDSHAKE_MESSAGE.
Bodo Möller [Sat, 7 Jan 2006 20:44:29 +0000 (20:44 +0000)]
There's no such things as DTLS1_AD_MISSING_HANDSHAKE_MESSAGE.
For now, anyway.

18 years agoprepare for additional RFC3546 alerts
Bodo Möller [Sat, 7 Jan 2006 20:33:16 +0000 (20:33 +0000)]
prepare for additional RFC3546 alerts

18 years agomake sure that the unrecognized_name alert actually gets sent
Bodo Möller [Sat, 7 Jan 2006 20:29:50 +0000 (20:29 +0000)]
make sure that the unrecognized_name alert actually gets sent

Submitted by: Peter Sylvester

18 years agocomplete and correct RFC3546 error codes
Bodo Möller [Sat, 7 Jan 2006 20:28:11 +0000 (20:28 +0000)]
complete and correct RFC3546 error codes

18 years agoFixes for TLS server_name extension
Bodo Möller [Fri, 6 Jan 2006 09:08:59 +0000 (09:08 +0000)]
Fixes for TLS server_name extension

Submitted by: Peter Sylvester

18 years agoAdd names for people who provided the TLS extension patch.
Bodo Möller [Wed, 4 Jan 2006 17:35:51 +0000 (17:35 +0000)]
Add names for people who provided the TLS extension patch.

18 years agoThe VMS I run on doesn't know socklen_t and uses size_t instead.
Richard Levitte [Wed, 4 Jan 2006 12:03:47 +0000 (12:03 +0000)]
The VMS I run on doesn't know socklen_t and uses size_t instead.

18 years agoFix signed/unsigned char clashes.
Richard Levitte [Wed, 4 Jan 2006 12:02:43 +0000 (12:02 +0000)]
Fix signed/unsigned char clashes.

18 years agoIn ASN1_parse() show tag value for ASN1 tags > 30.
Dr. Stephen Henson [Tue, 3 Jan 2006 14:20:07 +0000 (14:20 +0000)]
In ASN1_parse() show tag value for ASN1 tags > 30.

18 years agoVarious changes in the new TLS extension code, including the following:
Bodo Möller [Tue, 3 Jan 2006 03:27:19 +0000 (03:27 +0000)]
Various changes in the new TLS extension code, including the following:
 - fix indentation
 - rename some functions and macros
 - fix up confusion between SSL_ERROR_... and SSL_AD_... values

18 years agoMake sure that after the change from revision 1.261,
Bodo Möller [Tue, 3 Jan 2006 03:05:08 +0000 (03:05 +0000)]
Make sure that after the change from revision 1.261,
it's still possible to do a partial build.

18 years agoMissing files in the VMS installation
Richard Levitte [Mon, 2 Jan 2006 23:33:36 +0000 (23:33 +0000)]
Missing files in the VMS installation

18 years agoC style fix-up
Bodo Möller [Mon, 2 Jan 2006 23:29:12 +0000 (23:29 +0000)]
C style fix-up

18 years agoSupport TLS extensions (specifically, HostName)
Bodo Möller [Mon, 2 Jan 2006 23:14:37 +0000 (23:14 +0000)]
Support TLS extensions (specifically, HostName)

Submitted by: Peter Sylvester

18 years agoRefine login in b_sock.c.
Andy Polyakov [Mon, 2 Jan 2006 16:05:26 +0000 (16:05 +0000)]
Refine login in b_sock.c.

18 years agoCompile Windows with winsock2.h. But note that we still link with wsock32!
Andy Polyakov [Mon, 2 Jan 2006 13:44:06 +0000 (13:44 +0000)]
Compile Windows with winsock2.h. But note that we still link with wsock32!
This works because wsock32 commonly loads ws2_32 anyway and we [intend to]
check upon presense of winsock2-specific API at run-time.

18 years agoFix typo and purify logic in b_sock.c
Andy Polyakov [Mon, 2 Jan 2006 12:26:36 +0000 (12:26 +0000)]
Fix typo and purify logic in b_sock.c

18 years ago./util update, which covers various issues, but most importantly mkerr.pl
Andy Polyakov [Mon, 2 Jan 2006 12:13:07 +0000 (12:13 +0000)]
./util update, which covers various issues, but most importantly mkerr.pl
and mkdef.pl spinning in endless loop.

18 years agoTypo in win32_globallookup.
Andy Polyakov [Mon, 2 Jan 2006 12:06:22 +0000 (12:06 +0000)]
Typo in win32_globallookup.

18 years agoMake b_sock.c IPv6 savvy.
Andy Polyakov [Mon, 2 Jan 2006 09:12:46 +0000 (09:12 +0000)]
Make b_sock.c IPv6 savvy.

18 years ago"Relax" prototype and rename DSO_global_lookup_func to DSO_global_lookup.
Andy Polyakov [Mon, 2 Jan 2006 08:59:20 +0000 (08:59 +0000)]
"Relax" prototype and rename DSO_global_lookup_func to DSO_global_lookup.

18 years agoutil/mkerr.pl update to address various mkerr.pl problems [such as failure
Andy Polyakov [Sun, 1 Jan 2006 18:42:05 +0000 (18:42 +0000)]
util/mkerr.pl update to address various mkerr.pl problems [such as failure
to handle multi-line comments and endless loop while parsing overloaded
gnu-ish __attribute__].

18 years agoFix mapping "leak" in newly introduced win32_globallookup.
Andy Polyakov [Sun, 1 Jan 2006 18:38:59 +0000 (18:38 +0000)]
Fix mapping "leak" in newly introduced win32_globallookup.

18 years agoOops! Remove junk...
Andy Polyakov [Sat, 31 Dec 2005 14:54:22 +0000 (14:54 +0000)]
Oops! Remove junk...

18 years agoRewrite timeout computation in a way that is less prone to overflow.
Bodo Möller [Fri, 30 Dec 2005 23:51:36 +0000 (23:51 +0000)]
Rewrite timeout computation in a way that is less prone to overflow.

(Problem reported by Peter Sylvester.)

18 years agoAdd DSO_global_lookup_func implementation. See commentary in dso_lib.c
Andy Polyakov [Fri, 30 Dec 2005 22:53:59 +0000 (22:53 +0000)]
Add DSO_global_lookup_func implementation. See commentary in dso_lib.c
for further details.

18 years agoFix CFB and OFB modes in eng_padlock.c. Engine was consistent with itself,
Andy Polyakov [Wed, 28 Dec 2005 16:16:56 +0000 (16:16 +0000)]
Fix CFB and OFB modes in eng_padlock.c. Engine was consistent with itself,
but not interoperable with the rest of the world. test_padlock script is
added mostly for reference.

18 years agoMinor sparcv9 clean-ups.
Andy Polyakov [Tue, 27 Dec 2005 21:27:39 +0000 (21:27 +0000)]
Minor sparcv9 clean-ups.

18 years agoLower PADLOCK_CHUNK till value, which doesn't affect the benchmark results.
Andy Polyakov [Tue, 27 Dec 2005 21:21:56 +0000 (21:21 +0000)]
Lower PADLOCK_CHUNK till value, which doesn't affect the benchmark results.
Well, it's even contrary, 512 was observed to *improve* performance by 5%.
Excuse ourselves from treating C7 specially.

18 years agoWhoops, we were copying instead of comparing at the end of trying to
Richard Levitte [Tue, 20 Dec 2005 07:03:10 +0000 (07:03 +0000)]
Whoops, we were copying instead of comparing at the end of trying to
find a queue element.

Notified by nagendra modadugu <nagendra@cs.stanford.edu>

18 years agoAs SPARCV9 CPU flavor is [expected to be] detected at run-time, we can
Andy Polyakov [Mon, 19 Dec 2005 09:10:06 +0000 (09:10 +0000)]
As SPARCV9 CPU flavor is [expected to be] detected at run-time, we can
afford to relax SPARCV9/8+ compiler command line and produce "unversal"
binaries as we used to.

18 years agocomments
Ulf Möller [Sun, 18 Dec 2005 20:59:25 +0000 (20:59 +0000)]
comments

18 years agoEliminate possible mapping leak.
Andy Polyakov [Sun, 18 Dec 2005 19:14:01 +0000 (19:14 +0000)]
Eliminate possible mapping leak.

18 years agoTypo in sparcv8cap.c.
Andy Polyakov [Sun, 18 Dec 2005 19:13:03 +0000 (19:13 +0000)]
Typo in sparcv8cap.c.

18 years agoKeep disclaiming 16-bit platform support. For now remove WIN16 references
Andy Polyakov [Sun, 18 Dec 2005 19:11:37 +0000 (19:11 +0000)]
Keep disclaiming 16-bit platform support. For now remove WIN16 references
from .h files...

18 years agoMissing CFLAG in couple of depend: targets.
Andy Polyakov [Sun, 18 Dec 2005 19:00:54 +0000 (19:00 +0000)]
Missing CFLAG in couple of depend: targets.
PR: 1247
Submitted by: Doug Kaufman

18 years agoPut back OPENSSL_SYS_MSDOS definition to revive DJGPP built.
Andy Polyakov [Sun, 18 Dec 2005 18:55:55 +0000 (18:55 +0000)]
Put back OPENSSL_SYS_MSDOS definition to revive DJGPP built.
PR: 1247