oweals/openssl.git
22 years agoCheck errors when parsing a PKCS8INF PEM FILE, or there will be a core dump on error.
Richard Levitte [Wed, 5 Jun 2002 11:58:29 +0000 (11:58 +0000)]
Check errors when parsing a PKCS8INF PEM FILE, or there will be a core dump on error.
PR: 77

22 years agoDocumentation bug corrected.
Richard Levitte [Wed, 5 Jun 2002 09:31:05 +0000 (09:31 +0000)]
Documentation bug corrected.
PR: 70

22 years agoSince there's no continuation, the ; can go as well :-)
Richard Levitte [Wed, 5 Jun 2002 09:08:41 +0000 (09:08 +0000)]
Since there's no continuation, the ; can go as well :-)

22 years agoThere is no continuation at this point.
Lutz Jänicke [Wed, 5 Jun 2002 08:00:36 +0000 (08:00 +0000)]
There is no continuation at this point.

22 years agoOn some systems the default "perl" may still be perl4, use the correct
Lutz Jänicke [Wed, 5 Jun 2002 07:28:07 +0000 (07:28 +0000)]
On some systems the default "perl" may still be perl4, use the correct
version determined by "config" instead.

22 years agoThe correct PERL interpreter is passed via commandline.
Lutz Jänicke [Wed, 5 Jun 2002 07:03:17 +0000 (07:03 +0000)]
The correct PERL interpreter is passed via commandline.

22 years agoUpdate the recognision of GCC version numbers to handle the prefix text
Richard Levitte [Wed, 5 Jun 2002 05:00:51 +0000 (05:00 +0000)]
Update the recognision of GCC version numbers to handle the prefix text
that GCC 3.1 adds to the --version output

22 years agomake update (including adjusting libeay.num in HEAD to the changes in the
Richard Levitte [Tue, 4 Jun 2002 22:32:44 +0000 (22:32 +0000)]
make update (including adjusting libeay.num in HEAD to the changes in the
0.9.7-stable libeay.num

22 years agoTypo.
Lutz Jänicke [Tue, 4 Jun 2002 20:43:10 +0000 (20:43 +0000)]
Typo.
PR: 72

22 years agouse sstrsep() to get the proper type to aoti().
Richard Levitte [Mon, 3 Jun 2002 15:27:46 +0000 (15:27 +0000)]
use sstrsep() to get the proper type to aoti().
Remove unneeded cast in ustrsep().
PR: 69

22 years ago0.9.7-beta1 is just being released.
Lutz Jänicke [Sat, 1 Jun 2002 15:33:36 +0000 (15:33 +0000)]
0.9.7-beta1 is just being released.

22 years agoDocument the AES changes.
Richard Levitte [Fri, 31 May 2002 13:16:10 +0000 (13:16 +0000)]
Document the AES changes.

22 years agoAdd the AES test vectors from NIST document SP800-38A.
Richard Levitte [Fri, 31 May 2002 13:13:43 +0000 (13:13 +0000)]
Add the AES test vectors from NIST document SP800-38A.

22 years agoMake it possible to give vectors only for decryption or encryption.
Richard Levitte [Fri, 31 May 2002 13:12:49 +0000 (13:12 +0000)]
Make it possible to give vectors only for decryption or encryption.

22 years agoFor CFB and OFB modes, always create the encryption key.
Richard Levitte [Fri, 31 May 2002 13:11:44 +0000 (13:11 +0000)]
For CFB and OFB modes, always create the encryption key.

22 years agoDeclare the CFB and OFB modes for AES, and prepare for a declaration
Richard Levitte [Fri, 31 May 2002 13:08:53 +0000 (13:08 +0000)]
Declare the CFB and OFB modes for AES, and prepare for a declaration
of CTR mode.

22 years agoIn CFB mode, the iv is always encrypted.
Richard Levitte [Fri, 31 May 2002 13:07:39 +0000 (13:07 +0000)]
In CFB mode, the iv is always encrypted.

22 years agoReformat the CFLAG string so it can be made part of a C string.
Richard Levitte [Thu, 30 May 2002 18:06:35 +0000 (18:06 +0000)]
Reformat the CFLAG string so it can be made part of a C string.
Incidently, this works pretty well on the command line as well.
PR: 52

22 years agoSupport the newly release gcc 3.1 on 64-bit Solaris. Not automatic.
Richard Levitte [Thu, 30 May 2002 17:28:16 +0000 (17:28 +0000)]
Support the newly release gcc 3.1 on 64-bit Solaris.  Not automatic.
PR: 57

22 years agoSupport shared libraries properly on linux-sparcv[89].
Richard Levitte [Thu, 30 May 2002 17:07:38 +0000 (17:07 +0000)]
Support shared libraries properly on linux-sparcv[89].
PR: 60

22 years agoa B< that wasn't properly ended.
Richard Levitte [Thu, 30 May 2002 16:55:15 +0000 (16:55 +0000)]
a B< that wasn't properly ended.

22 years agoCheck the return values where memory allocation failures may happen.
Richard Levitte [Thu, 30 May 2002 16:47:45 +0000 (16:47 +0000)]
Check the return values where memory allocation failures may happen.
PR: 49

22 years agoCAformat should not be used for CA key format.
Richard Levitte [Thu, 30 May 2002 16:24:18 +0000 (16:24 +0000)]
CAformat should not be used for CA key format.

22 years agoMake sure that MS_STATIC isn't defined to 'static' under Win32.
Richard Levitte [Thu, 30 May 2002 15:44:54 +0000 (15:44 +0000)]
Make sure that MS_STATIC isn't defined to 'static' under Win32.
PR: 51

22 years agopod2man.pl would only remove the first LF from the name.
Richard Levitte [Thu, 30 May 2002 15:30:17 +0000 (15:30 +0000)]
pod2man.pl would only remove the first LF from the name.

22 years agoApparently, there are still chances we have to deal with buggy pod2man versions.
Richard Levitte [Thu, 30 May 2002 15:19:43 +0000 (15:19 +0000)]
Apparently, there are still chances we have to deal with buggy pod2man versions.
Deal with that by testing any available pod2man and using it if appropriate,
and falling back to util/pod2man.pl if none was found.

22 years agoCorrect AES counter mode, which incorrectly incremented the counter before
Richard Levitte [Thu, 30 May 2002 14:06:06 +0000 (14:06 +0000)]
Correct AES counter mode, which incorrectly incremented the counter before
using it.
PR: 56

22 years agoNew functions EC_POINT_point2bn(), EC_POINT_bn2point(), EC_POINT_point2hex(), EC_POIN...
Bodo Möller [Thu, 30 May 2002 13:16:03 +0000 (13:16 +0000)]
New functions EC_POINT_point2bn(), EC_POINT_bn2point(), EC_POINT_point2hex(), EC_POINT_hex2point()

Submitted by: Nils Larsch

22 years agoCorrect darwin shared library support.
Richard Levitte [Thu, 30 May 2002 12:16:33 +0000 (12:16 +0000)]
Correct darwin shared library support.
PR: 39

22 years agoSome shlib extensions were in the wrong field
Richard Levitte [Thu, 30 May 2002 10:49:52 +0000 (10:49 +0000)]
Some shlib extensions were in the wrong field

22 years agoOur copy of pod2man.pl is old and comparatively broken, so lets remove it.
Richard Levitte [Thu, 30 May 2002 10:18:13 +0000 (10:18 +0000)]
Our copy of pod2man.pl is old and comparatively broken, so lets remove it.
PR: 30

22 years agoAdd more warnings for my debug targets.
Richard Levitte [Thu, 30 May 2002 09:40:46 +0000 (09:40 +0000)]
Add more warnings for my debug targets.

22 years agoRemove the duplicate description of -out.
Richard Levitte [Thu, 30 May 2002 06:24:35 +0000 (06:24 +0000)]
Remove the duplicate description of -out.
PR: 28

22 years agoMake i2c_ASN1_BIT_STRING return the correct length.
Dr. Stephen Henson [Wed, 29 May 2002 23:14:01 +0000 (23:14 +0000)]
Make i2c_ASN1_BIT_STRING return the correct length.

22 years agoSet DLOPEN_FLAG the same way on NetBSD as on OpenBSD.
Richard Levitte [Wed, 29 May 2002 21:00:08 +0000 (21:00 +0000)]
Set DLOPEN_FLAG the same way on NetBSD as on OpenBSD.
PR: 58, submitted by andrew@cis.uoguelph.ca

22 years agoThere is a chance that the input string is larger than size, and on VMS,
Richard Levitte [Wed, 29 May 2002 08:31:39 +0000 (08:31 +0000)]
There is a chance that the input string is larger than size, and on VMS,
this wasn't checked and could possibly be exploitable (slim chance, but still)

22 years agoRemove item listed twice <kromJx@crosswinds.net>.
Lutz Jänicke [Tue, 28 May 2002 17:48:54 +0000 (17:48 +0000)]
Remove item listed twice <kromJx@crosswinds.net>.

22 years agoCygnus correction. (I thought I had tested that...)
Ulf Möller [Mon, 27 May 2002 19:42:30 +0000 (19:42 +0000)]
Cygnus correction. (I thought I had tested that...)

22 years agofix Cygwin (remove extra colons)
Bodo Möller [Fri, 24 May 2002 20:39:31 +0000 (20:39 +0000)]
fix Cygwin (remove extra colons)

22 years agoUse assembler implementations with Cygwin.
Ulf Möller [Fri, 24 May 2002 20:24:38 +0000 (20:24 +0000)]
Use assembler implementations with Cygwin.
This also fixes the bn_sub_part_word problem.

22 years agoRecover from errors
Richard Levitte [Thu, 23 May 2002 23:31:22 +0000 (23:31 +0000)]
Recover from errors

22 years agomake update
Richard Levitte [Thu, 23 May 2002 13:52:57 +0000 (13:52 +0000)]
make update

22 years agoMake sure short aliases are used where required.
Richard Levitte [Thu, 23 May 2002 13:52:36 +0000 (13:52 +0000)]
Make sure short aliases are used where required.

22 years agoDefine a short alias for another long EC symbol.
Richard Levitte [Thu, 23 May 2002 13:34:38 +0000 (13:34 +0000)]
Define a short alias for another long EC symbol.

22 years agoMake sure ECDSA is built and tested on VMS.
Richard Levitte [Thu, 23 May 2002 13:33:55 +0000 (13:33 +0000)]
Make sure ECDSA is built and tested on VMS.
Avoid loops if linking an application fails.

22 years agoMake sure ECDSA is built and tested on VMS.
Richard Levitte [Thu, 23 May 2002 13:33:08 +0000 (13:33 +0000)]
Make sure ECDSA is built and tested on VMS.

22 years agoAllow the use of the TCP/IP stack keyword TCPIP and NONE
Richard Levitte [Wed, 22 May 2002 11:37:20 +0000 (11:37 +0000)]
Allow the use of the TCP/IP stack keyword TCPIP and NONE

22 years agoUse OPENSSL_SYS_VMS instead of just VMS
Richard Levitte [Wed, 22 May 2002 11:35:45 +0000 (11:35 +0000)]
Use OPENSSL_SYS_VMS instead of just VMS

22 years agoaccept NULL in 'free' functions
Bodo Möller [Tue, 21 May 2002 08:59:57 +0000 (08:59 +0000)]
accept NULL in 'free' functions

22 years agoReorganise -subj option code, fix buffer overrun.
Dr. Stephen Henson [Sun, 19 May 2002 16:31:10 +0000 (16:31 +0000)]
Reorganise -subj option code, fix buffer overrun.

22 years agoFix Mingw32 asm build: use the Unix
Dr. Stephen Henson [Sun, 19 May 2002 12:03:05 +0000 (12:03 +0000)]
Fix Mingw32 asm build: use the Unix
bignum assembly method of bn-586.pl
and co-586.pl which (for some reason)
VC++ doesn't use.

22 years agoAdd missing EVP_CIPHER_CTX_init call.
Dr. Stephen Henson [Sat, 18 May 2002 23:43:10 +0000 (23:43 +0000)]
Add missing EVP_CIPHER_CTX_init call.

22 years agoFix incorrect =over 4 location.
Lutz Jänicke [Thu, 16 May 2002 17:45:37 +0000 (17:45 +0000)]
Fix incorrect =over 4 location.
Submitted by: David Waitzman <djw@bbn.com>
Reviewed by: Lutz Jaenicke
PR: [openssl.org #38]

22 years agofix EVP_dsa_sha macro
Bodo Möller [Thu, 16 May 2002 12:51:18 +0000 (12:51 +0000)]
fix EVP_dsa_sha macro

Submitted by: Nils Larsch

22 years agoUse the indirect way to the actual request tracker, so that people
Lutz Jänicke [Thu, 16 May 2002 10:01:53 +0000 (10:01 +0000)]
Use the indirect way to the actual request tracker, so that people
also are informed about the credentials required for guest access
and the operation instructions.

22 years agoupdate
Bodo Möller [Thu, 16 May 2002 09:28:09 +0000 (09:28 +0000)]
update

22 years agoZero cipher_data in EVP_CIPHER_CTX_cleanup
Dr. Stephen Henson [Wed, 15 May 2002 18:49:25 +0000 (18:49 +0000)]
Zero cipher_data in EVP_CIPHER_CTX_cleanup

Add cleanup calls to evp_test.c

Allow reuse of cipher contexts by removing
automatic cleanup in EVP_*Final().

22 years agomake b_print.c consistent with the rest of OpenSSL:
Bodo Möller [Tue, 14 May 2002 19:40:58 +0000 (19:40 +0000)]
make b_print.c consistent with the rest of OpenSSL:
disable assert() except for debug builds

22 years agoAdd missing '"'
Lutz Jänicke [Sun, 12 May 2002 20:37:44 +0000 (20:37 +0000)]
Add missing '"'
Submitted by: Boyd Gerber <gerberb@zenez.com>

22 years agoRecognize PPC64 target.
Lutz Jänicke [Sun, 12 May 2002 19:45:51 +0000 (19:45 +0000)]
Recognize PPC64 target.
Submitted by:
Reviewed by:
PR: 26

22 years agoEVP_SealFinal should return a value.
Dr. Stephen Henson [Sat, 11 May 2002 17:37:08 +0000 (17:37 +0000)]
EVP_SealFinal should return a value.

22 years agovalues were reset for no reason.
Ulf Möller [Sat, 11 May 2002 09:15:42 +0000 (09:15 +0000)]
values were reset for no reason.

22 years agoupdated Mingw32 instructions.
Ulf Möller [Sat, 11 May 2002 09:14:40 +0000 (09:14 +0000)]
updated Mingw32 instructions.

22 years agoAdd config entry debug-steve-linux-pseudo64. This sets the
Dr. Stephen Henson [Fri, 10 May 2002 23:00:43 +0000 (23:00 +0000)]
Add config entry debug-steve-linux-pseudo64.  This sets the
SIXTY_FOUR bignum library option to use 64 bit operations
on the 32 bit linux platform.

This is very inefficient but it can be used to test some
of the 64 bit logic on a 32 bit platform.

22 years agoFallback to normal multiply if n2 == 8 and dna or dnb is not zero
Dr. Stephen Henson [Fri, 10 May 2002 22:18:13 +0000 (22:18 +0000)]
Fallback to normal multiply if n2 == 8 and dna or dnb is not zero
in bn_mul_recursive.

This is (hopefully) what was triggering bignum errors on 64 bit
platforms and causing the BN_mod_mul test to fail.

22 years agoAvoid gcc warning: BN_DEC_CONV when SIXTY_FOUR_BIT is defined is unsigned.
Dr. Stephen Henson [Fri, 10 May 2002 22:07:37 +0000 (22:07 +0000)]
Avoid gcc warning: BN_DEC_CONV when SIXTY_FOUR_BIT is defined is unsigned.

22 years agoUpdating status for 0.9.6d
Richard Levitte [Thu, 9 May 2002 23:54:02 +0000 (23:54 +0000)]
Updating status for 0.9.6d

22 years agoSynchronise the FAQ
Richard Levitte [Thu, 9 May 2002 23:41:40 +0000 (23:41 +0000)]
Synchronise the FAQ

22 years agoMake the huge buffer smaller, so the size becomes reasonable for small-stack environm...
Richard Levitte [Thu, 9 May 2002 20:14:00 +0000 (20:14 +0000)]
Make the huge buffer smaller, so the size becomes reasonable for small-stack environments.
Notified by Verdon Walker <VWalker@novell.com>

22 years agoOne place where VMS wasn't changed to OPENSSL_SYS_VMS...
Richard Levitte [Thu, 9 May 2002 18:27:06 +0000 (18:27 +0000)]
One place where VMS wasn't changed to OPENSSL_SYS_VMS...

22 years agoMove an assert() to avoid core dumps when a static buffer hasn't been given.
Richard Levitte [Thu, 9 May 2002 18:19:21 +0000 (18:19 +0000)]
Move an assert() to avoid core dumps when a static buffer hasn't been given.
Notified by Verdon Walker <VWalker@novell.com>

22 years agoSmall documentation fix for EVP_CipherFinal or EVP_CipherFinal_ex.
Richard Levitte [Wed, 8 May 2002 15:20:38 +0000 (15:20 +0000)]
Small documentation fix for EVP_CipherFinal or EVP_CipherFinal_ex.
Notified by Stella Power <snpower@maths.tcd.ie>.
PR: 24

22 years agoGenerate an error if rewinding wasn't possible.
Richard Levitte [Wed, 8 May 2002 15:12:59 +0000 (15:12 +0000)]
Generate an error if rewinding wasn't possible.
Notified by Ken Hirsch <kenhirsch@myself.com>.
PR: 23

22 years agoChange internals of the EC library so that the functions
Bodo Möller [Wed, 8 May 2002 11:54:24 +0000 (11:54 +0000)]
Change internals of the EC library so that the functions
EC_GROUP_{set_generator,get_generator,get_order,get_cofactor} are
implemented directly in crypto/ec/ec_lib.c and not dispatched to
methods.

Also fix EC_GROUP_copy to copy the NID.

22 years agoAdd missing ";" after fi
Lutz Jänicke [Tue, 7 May 2002 15:35:48 +0000 (15:35 +0000)]
Add missing ";" after fi
Submitted by: bryanh@giraffe-data.com
Reviewed by:
PR: [openssl.org #18]

22 years agoin SignerInfo, use ecdsa-with-SHA1 OID for ECDSA (not ecPublicKey)
Bodo Möller [Tue, 7 May 2002 15:14:12 +0000 (15:14 +0000)]
in SignerInfo, use ecdsa-with-SHA1 OID for ECDSA (not ecPublicKey)

Submitted by: Nils Larsch

22 years agoFix ciphersuite list to enforce low priority for RC4.
Bodo Möller [Tue, 7 May 2002 08:36:26 +0000 (08:36 +0000)]
Fix ciphersuite list to enforce low priority for RC4.

22 years agoensure that, for each strength, RC4 ciphers have least preference
Bodo Möller [Tue, 7 May 2002 07:59:35 +0000 (07:59 +0000)]
ensure that, for each strength, RC4 ciphers have least preference
in the default ciphersuite list

22 years agorefer to latest draft for AES ciphersuites
Bodo Möller [Tue, 7 May 2002 07:55:36 +0000 (07:55 +0000)]
refer to latest draft for AES ciphersuites

22 years agofix warning
Bodo Möller [Mon, 6 May 2002 10:44:59 +0000 (10:44 +0000)]
fix warning

22 years agoupdate
Bodo Möller [Sun, 5 May 2002 23:47:46 +0000 (23:47 +0000)]
update

22 years agoimprove wNAF generation
Bodo Möller [Sun, 5 May 2002 23:45:09 +0000 (23:45 +0000)]
improve wNAF generation

22 years agodisable AES ciphersuites unless explicitly requested
Bodo Möller [Sun, 5 May 2002 23:44:27 +0000 (23:44 +0000)]
disable AES ciphersuites unless explicitly requested

22 years agofix casts
Bodo Möller [Sun, 5 May 2002 23:00:28 +0000 (23:00 +0000)]
fix casts

22 years agoMake sure that date is run under the C locale, so dates are given in the
Richard Levitte [Thu, 2 May 2002 08:05:46 +0000 (08:05 +0000)]
Make sure that date is run under the C locale, so dates are given in the
default format.
PR: 16

22 years agoAdd apps_startup and bio_err init code to smime.c
Dr. Stephen Henson [Wed, 1 May 2002 20:07:46 +0000 (20:07 +0000)]
Add apps_startup and bio_err init code to smime.c

22 years agoFix escaping when using the -subj option of "openssl req", document
Lutz Jänicke [Tue, 30 Apr 2002 12:08:18 +0000 (12:08 +0000)]
Fix escaping when using the -subj option of "openssl req", document
'hidden' -nameopt support. (Robert Joop <joop@fokus.gmd.de>)

22 years agoAdd information about -nameopt option for x509.
Lutz Jänicke [Mon, 29 Apr 2002 16:01:41 +0000 (16:01 +0000)]
Add information about -nameopt option for x509.

22 years agoundo nonsense patch (r *is* signed or we have signedness mismatches elsewhere)
Bodo Möller [Mon, 29 Apr 2002 11:03:06 +0000 (11:03 +0000)]
undo nonsense patch (r *is* signed or we have signedness mismatches elsewhere)

22 years agoFix unsigned vs. signed clash
Richard Levitte [Mon, 29 Apr 2002 10:29:38 +0000 (10:29 +0000)]
Fix unsigned vs. signed clash

22 years agoSynchronise with 0.9.7-stable.
Richard Levitte [Mon, 29 Apr 2002 10:28:29 +0000 (10:28 +0000)]
Synchronise with 0.9.7-stable.

22 years agoSynchronise with 0.9.7-stable.
Richard Levitte [Mon, 29 Apr 2002 10:19:19 +0000 (10:19 +0000)]
Synchronise with 0.9.7-stable.

22 years agoFix crypto/asn1/a_sign.c so that 'parameters' is omitted (not
Bodo Möller [Fri, 26 Apr 2002 08:28:34 +0000 (08:28 +0000)]
Fix crypto/asn1/a_sign.c so that 'parameters' is omitted (not
encoded as NULL) with id-dsa-with-sha1.

Submitted by: Nils Larsch

22 years agoAdd generationQualifier OID (proposed by Fiel Cabral).
Lutz Jänicke [Thu, 25 Apr 2002 18:03:13 +0000 (18:03 +0000)]
Add generationQualifier OID (proposed by Fiel Cabral).

22 years agoPotential memory leak removed. Notified by <threaded@totalise.co.uk>
Richard Levitte [Thu, 25 Apr 2002 10:11:21 +0000 (10:11 +0000)]
Potential memory leak removed.  Notified by <threaded@totalise.co.uk>

22 years agonew items for 0.9.7
Bodo Möller [Thu, 25 Apr 2002 07:52:07 +0000 (07:52 +0000)]
new items for 0.9.7

22 years agooops
Bodo Möller [Thu, 25 Apr 2002 07:46:35 +0000 (07:46 +0000)]
oops

22 years agoAlgorithmIdentifier bugs
Bodo Möller [Thu, 25 Apr 2002 06:29:27 +0000 (06:29 +0000)]
AlgorithmIdentifier bugs

22 years agofix usage (no 'key')
Bodo Möller [Tue, 23 Apr 2002 13:56:14 +0000 (13:56 +0000)]
fix usage (no 'key')

22 years agoUhmmm, if we use && after having tested for the presence of the certificate,
Richard Levitte [Tue, 23 Apr 2002 13:15:08 +0000 (13:15 +0000)]
Uhmmm, if we use && after having tested for the presence of the certificate,
we just *might* stand a certain chance of actually getting it written
to file...