Bodo Möller [Tue, 25 Jan 2000 22:35:20 +0000 (22:35 +0000)]
New manual page.
Bodo Möller [Mon, 24 Jan 2000 17:57:56 +0000 (17:57 +0000)]
Avoid a race condition.
Bodo Möller [Mon, 24 Jan 2000 16:02:29 +0000 (16:02 +0000)]
Improve clarity.
Bodo Möller [Mon, 24 Jan 2000 14:42:26 +0000 (14:42 +0000)]
Document RAND_load_file change.
Richard Levitte [Mon, 24 Jan 2000 14:19:00 +0000 (14:19 +0000)]
Man page section forgotten...
Bodo Möller [Mon, 24 Jan 2000 10:20:45 +0000 (10:20 +0000)]
Give the correct e-mail address even though the message is not quite serious
Bodo Möller [Mon, 24 Jan 2000 10:03:24 +0000 (10:03 +0000)]
RAND_load_file(..., -1) now means "read the complete file";
this is what we now use to read $RANDFILE / $HOME/.rnd.
(Previously, after 'cat'ting lots of stuff into .rnd
only the first MB would be looked at.)
Bugfix for apps/enc.c: Continue if RAND_pseudo_bytes returns 0
(only -1 is an error).
Bodo Möller [Mon, 24 Jan 2000 09:32:20 +0000 (09:32 +0000)]
RAND_pseudo_bytes is good enough for encryption IVs,
we should not need RAND_bytes (and we cannot use the latter
unless we load a seed file)
Bodo Möller [Mon, 24 Jan 2000 09:24:28 +0000 (09:24 +0000)]
The des_xcbc_encrypt apparently always fails.
Workaround so that "make test" continues anyway.
Richard Levitte [Mon, 24 Jan 2000 04:05:00 +0000 (04:05 +0000)]
Add the PID to the output on Win32.
Richard Levitte [Mon, 24 Jan 2000 02:24:37 +0000 (02:24 +0000)]
Let's make all the example formated the same, shall we?
Richard Levitte [Mon, 24 Jan 2000 02:15:59 +0000 (02:15 +0000)]
Correct indentation
Dr. Stephen Henson [Mon, 24 Jan 2000 01:50:17 +0000 (01:50 +0000)]
Document how CRYPTO_EX_DATA stuff works for
RSA structures. Other structures behave in
a similar way.
Ulf Möller [Mon, 24 Jan 2000 01:21:22 +0000 (01:21 +0000)]
Documented in the RSA_print page
Ulf Möller [Mon, 24 Jan 2000 01:20:39 +0000 (01:20 +0000)]
RSA_print etc
Ulf Möller [Mon, 24 Jan 2000 01:18:36 +0000 (01:18 +0000)]
Rename asn1/pkcs8.c to asn1/p8_key.c to avoid name conflict.
Dr. Stephen Henson [Sun, 23 Jan 2000 23:41:49 +0000 (23:41 +0000)]
Tidy up CRYPTO_EX_DATA structures.
Ulf Möller [Sun, 23 Jan 2000 22:06:24 +0000 (22:06 +0000)]
Document the BN library.
Bodo Möller [Sun, 23 Jan 2000 22:02:34 +0000 (22:02 +0000)]
Under VMS, ftruncate should be available
Bodo Möller [Sun, 23 Jan 2000 19:58:03 +0000 (19:58 +0000)]
As ftruncate is not availabe on all platforms, switch back to
opening the output file with "wb" to truncate it except on VMS
(where the file now keeps its original length because it is opened
with "rb+" -- does VMS have ftruncate?)
Dr. Stephen Henson [Sun, 23 Jan 2000 02:28:08 +0000 (02:28 +0000)]
Make s_server, s_client check cipher list return codes.
Update docs.
Dr. Stephen Henson [Sat, 22 Jan 2000 23:34:44 +0000 (23:34 +0000)]
Minor patch: check only match @STRENGTH and remove eNULL
comment.
Add documentation for the ciphers command including a full
description of cipher lists.
Bodo Möller [Sat, 22 Jan 2000 23:11:13 +0000 (23:11 +0000)]
update PRNG documentation/comments
Ulf Möller [Sat, 22 Jan 2000 21:26:52 +0000 (21:26 +0000)]
dh renamed to dhparam
Ulf Möller [Sat, 22 Jan 2000 21:26:01 +0000 (21:26 +0000)]
config string comment
Ulf Möller [Sat, 22 Jan 2000 21:25:36 +0000 (21:25 +0000)]
fail on all errors.
Ulf Möller [Sat, 22 Jan 2000 20:05:23 +0000 (20:05 +0000)]
Document the DH library, and make some minor changes along the way.
Dr. Stephen Henson [Sat, 22 Jan 2000 13:58:29 +0000 (13:58 +0000)]
Add new program dhparam and update docs.
Dr. Stephen Henson [Sat, 22 Jan 2000 12:49:48 +0000 (12:49 +0000)]
Gets Lutz Jaenicke's name right this time :-)
Apologies to both concerned.
Dr. Stephen Henson [Sat, 22 Jan 2000 03:17:06 +0000 (03:17 +0000)]
Apply Lutz Behnke's 56 bit cipher patch with a few
minor changes.
Docs haven't been added at this stage. They are probably
best included in the 'ciphers' program docs.
Ulf Möller [Fri, 21 Jan 2000 23:58:03 +0000 (23:58 +0000)]
Move ssl.pod to doc/ssl
Ulf Möller [Fri, 21 Jan 2000 23:39:15 +0000 (23:39 +0000)]
Use comment from md_rand.c (part 2, as well).
Ulf Möller [Fri, 21 Jan 2000 23:36:40 +0000 (23:36 +0000)]
Use comment from md_rand.c in rand.pod
Dr. Stephen Henson [Fri, 21 Jan 2000 22:38:52 +0000 (22:38 +0000)]
Docs for sess_id utility.
Bodo Möller [Fri, 21 Jan 2000 20:18:09 +0000 (20:18 +0000)]
change comments
Bodo Möller [Fri, 21 Jan 2000 19:54:22 +0000 (19:54 +0000)]
Avoid integer overflow in entropy counter.
Slightly clarify the RAND_... documentation.
Ulf Möller [Fri, 21 Jan 2000 17:50:27 +0000 (17:50 +0000)]
Document RAND library.
Ulf Möller [Fri, 21 Jan 2000 17:46:36 +0000 (17:46 +0000)]
Move ssl.pod to doc/ssl
Bodo Möller [Fri, 21 Jan 2000 17:11:26 +0000 (17:11 +0000)]
In RAND_write_file, truncate the file to the no. of bytes written
(we're now using fopen(..., "rb+") instead of fopen(..., "wb"),
so the file is not truncated automatically).
Bodo Möller [Fri, 21 Jan 2000 11:30:52 +0000 (11:30 +0000)]
add ERR_print_errors after "end" label.
Bodo Möller [Fri, 21 Jan 2000 11:20:22 +0000 (11:20 +0000)]
Don't "goto err" in client_master_key because no such label exists;
just return -1 as in other error cases.
Bodo Möller [Fri, 21 Jan 2000 09:36:47 +0000 (09:36 +0000)]
doc/man moved to doc/apps
Bodo Möller [Fri, 21 Jan 2000 09:35:56 +0000 (09:35 +0000)]
mention manual pages
Dr. Stephen Henson [Fri, 21 Jan 2000 02:42:14 +0000 (02:42 +0000)]
Make -CAcreateserial start from 1 instead of 0 for
serial numbers.
Dr. Stephen Henson [Fri, 21 Jan 2000 02:17:04 +0000 (02:17 +0000)]
Change the 'man' directory to 'apps'. Yes I wish cvs
could rename too :-(
Ulf Möller [Fri, 21 Jan 2000 01:15:56 +0000 (01:15 +0000)]
Check RAND_bytes() return value or use RAND_pseudo_bytes().
Ulf Möller [Fri, 21 Jan 2000 00:03:51 +0000 (00:03 +0000)]
Some more ifdefs for no-xxx options.
Ulf Möller [Fri, 21 Jan 2000 00:02:32 +0000 (00:02 +0000)]
Don't build the testapps automatically because the openssl program now
has s/mime functionality.
Ulf Möller [Fri, 21 Jan 2000 00:00:12 +0000 (00:00 +0000)]
AFAICS lst1 stands for "lshift test" not "list".
Ulf Möller [Thu, 20 Jan 2000 23:59:24 +0000 (23:59 +0000)]
WINDOWS is defined in e_os.h. The problem was WIN32 (the new egcs uses _WIN32).
Bodo Möller [Thu, 20 Jan 2000 23:16:07 +0000 (23:16 +0000)]
Define WINDOWS in all Mingw32 cases.
Bodo Möller [Thu, 20 Jan 2000 23:15:50 +0000 (23:15 +0000)]
Rename lst1 to list1 to avoid name conflict on some platforms.
Bodo Möller [Thu, 20 Jan 2000 23:15:15 +0000 (23:15 +0000)]
Define WINDOWS for Mingw32 and Cygwin.
Bodo Möller [Thu, 20 Jan 2000 23:08:07 +0000 (23:08 +0000)]
Define WINDOWS.
Dr. Stephen Henson [Thu, 20 Jan 2000 02:27:36 +0000 (02:27 +0000)]
Oops... undo change to wrong prototype.
Dr. Stephen Henson [Thu, 20 Jan 2000 01:37:17 +0000 (01:37 +0000)]
Finish off the X509_ATTRIBUTE string stuff.
Dr. Stephen Henson [Wed, 19 Jan 2000 01:02:13 +0000 (01:02 +0000)]
Rename X509_att*() stuff to X509at_*(), add X509_REQ wrappers.
Ulf Möller [Tue, 18 Jan 2000 15:08:49 +0000 (15:08 +0000)]
Rename rsa_oaep_test to the more appropriate name rsa_test for the
benefit of MS-DOS users.
Richard Levitte [Tue, 18 Jan 2000 09:30:51 +0000 (09:30 +0000)]
Compaq C 6.2 for VMS will complain when we want to convert
non-function pointers to function pointers and vice versa.
The current solution is to have unions that describe the
conversion we want to do, and gives us the ability to extract
the type of data we want.
The current solution is a quick fix, and can probably be made
in a more general or elegant way.
Richard Levitte [Tue, 18 Jan 2000 08:23:15 +0000 (08:23 +0000)]
Avoid converting void * to a function pointer when NULL is defined as
((void *)0), by have a 0 instead.
Richard Levitte [Tue, 18 Jan 2000 08:10:28 +0000 (08:10 +0000)]
A test script to check on the header files
Richard Levitte [Tue, 18 Jan 2000 08:09:19 +0000 (08:09 +0000)]
Build the test apps after all of the library has been built.
Richard Levitte [Mon, 17 Jan 2000 01:07:36 +0000 (01:07 +0000)]
SOCKETSHR is showing bad declarations again. However, a simple cast
which does no harm fixes that problem.
Richard Levitte [Mon, 17 Jan 2000 01:01:16 +0000 (01:01 +0000)]
Build the crypto test applications as well.
Richard Levitte [Mon, 17 Jan 2000 00:58:09 +0000 (00:58 +0000)]
Prepare for a possible disabling of certain messages that DEC C spews out.
Richard Levitte [Mon, 17 Jan 2000 00:57:10 +0000 (00:57 +0000)]
Give the user the possibility to ask for compilation of only the files
that are directly in crypto/, and prepare for a possible disabling of
certain messages that DEC C spews out.
Richard Levitte [Mon, 17 Jan 2000 00:49:52 +0000 (00:49 +0000)]
It doesn't make sense to try see if these variables are negative, since they're unsigned.
Richard Levitte [Mon, 17 Jan 2000 00:39:55 +0000 (00:39 +0000)]
Beautification and a few entries added.
Bodo Möller [Sun, 16 Jan 2000 21:29:57 +0000 (21:29 +0000)]
SSL_R_UNSUPPORTED_PROTOCOL (as in s23_clnt.c) for SSL 2 when
NO_SSL2 is defined, not SSL_R_UNKNOWN_PROTOCOL.
Ulf Möller [Sun, 16 Jan 2000 21:10:00 +0000 (21:10 +0000)]
Add missing #ifndefs that caused missing symbols when building libssl
as a shared library without RSA. Use #ifndef NO_SSL2 instead of
NO_RSA in ssl/s2*.c.
Submitted by: Kris Kennaway <kris@hub.freebsd.org>
Modified by Ulf Möller
Ulf Möller [Sun, 16 Jan 2000 21:07:36 +0000 (21:07 +0000)]
Header for RAND_seed()
Ulf Möller [Sun, 16 Jan 2000 16:04:26 +0000 (16:04 +0000)]
remove debug modification that I checked in accidentally
Ulf Möller [Sun, 16 Jan 2000 15:58:17 +0000 (15:58 +0000)]
New function RAND_pseudo_bytes() generated pseudorandom numbers that
are not guaranteed to be unpredictable.
Bodo Möller [Sun, 16 Jan 2000 14:21:00 +0000 (14:21 +0000)]
In ssl3_read_n, set rwstate to SSL_NOTHING when the requested
number of bytes could be read.
Richard Levitte [Sun, 16 Jan 2000 12:31:12 +0000 (12:31 +0000)]
Another name longer than 31 chars
Richard Levitte [Sun, 16 Jan 2000 12:30:16 +0000 (12:30 +0000)]
Cut'n'paste error
Ulf Möller [Sun, 16 Jan 2000 12:21:22 +0000 (12:21 +0000)]
RAND_seed
Richard Levitte [Sun, 16 Jan 2000 02:11:19 +0000 (02:11 +0000)]
Synchronise with the makefiles.
Richard Levitte [Sat, 15 Jan 2000 23:19:22 +0000 (23:19 +0000)]
Tell the truth about list separators.
Bodo Möller [Sat, 15 Jan 2000 21:48:46 +0000 (21:48 +0000)]
add "randomness"
Bodo Möller [Sat, 15 Jan 2000 20:24:12 +0000 (20:24 +0000)]
RAND_bytes's return values is 0 for an error, not -1.
Bodo Möller [Sat, 15 Jan 2000 03:08:52 +0000 (03:08 +0000)]
Enable memory checking earlier (we correctly free everything
except for the BIO through which we print the memory leak list,
and the leak printing function ignores this one block).
Richard Levitte [Fri, 14 Jan 2000 22:43:11 +0000 (22:43 +0000)]
Typo
Richard Levitte [Fri, 14 Jan 2000 21:54:34 +0000 (21:54 +0000)]
Typo...
Bodo Möller [Fri, 14 Jan 2000 20:07:12 +0000 (20:07 +0000)]
Delete "random" file .rnd in "make clean".
Bodo Möller [Fri, 14 Jan 2000 18:43:22 +0000 (18:43 +0000)]
Let "make test" survive without DEVRANDOM
(and rename a target in test/Makefile.ssl to make it
easier to guess the name of the file executed by it)
Bodo Möller [Fri, 14 Jan 2000 18:41:28 +0000 (18:41 +0000)]
In EVP_PKEY_assign[_...], return 0 for an error when they
"key" is NULL.
Bodo Möller [Fri, 14 Jan 2000 17:55:37 +0000 (17:55 +0000)]
- Pseudo-seed the PRNG in programs used for "make test"
because otherwise BN_rand will fail unless DEVRANDOM works,
which causes the programs to dump core because they
don't check the return value of BN_rand (and if they
did, we still couldn't test anything).
- add comment to some files that appear not to be used at all.
Bodo Möller [Fri, 14 Jan 2000 17:28:48 +0000 (17:28 +0000)]
Avoid some warnings, and run "make update".
Bodo Möller [Fri, 14 Jan 2000 09:08:39 +0000 (09:08 +0000)]
Avoid shadowing variables,
and re-enable seeding with more data than read from DEVRANDOM -- just
don't pretend it contains entropy.
Ulf Möller [Fri, 14 Jan 2000 02:31:32 +0000 (02:31 +0000)]
minor change for the prng
Bodo Möller [Thu, 13 Jan 2000 22:52:52 +0000 (22:52 +0000)]
Use CRYPTO_push_info to track down memory leak
(only the CRYPTO_push_info's in the apps/ directory
are included in the CVS commit, not all those I used
in crypto/)
Bodo Möller [Thu, 13 Jan 2000 21:36:06 +0000 (21:36 +0000)]
slightly change usage information
Bodo Möller [Thu, 13 Jan 2000 21:20:26 +0000 (21:20 +0000)]
note about things still to do with RAND_bytes
Bodo Möller [Thu, 13 Jan 2000 21:10:43 +0000 (21:10 +0000)]
Use CRYPTO_push_info to find a memory leak in pkcs12.c.
Ulf Möller [Thu, 13 Jan 2000 20:59:17 +0000 (20:59 +0000)]
Precautions against using the PRNG uninitialized: RAND_bytes() now
returns int (1 = ok, 0 = not seeded). New function RAND_add() is the
same as RAND_seed() but takes an estimate of the entropy as an additional
argument.
Bodo Möller [Thu, 13 Jan 2000 09:18:42 +0000 (09:18 +0000)]
Note about CRYPTO_malloc_init
Ulf Möller [Wed, 12 Jan 2000 20:47:46 +0000 (20:47 +0000)]
PKCS#1 signatures don't use randomness.
Add a note about the padding functions.
Ulf Möller [Wed, 12 Jan 2000 13:59:20 +0000 (13:59 +0000)]
corrections
Bodo Möller [Wed, 12 Jan 2000 11:57:30 +0000 (11:57 +0000)]
Turn BN_prime_checks into a macro.
Primes p where (p-1)/2 is prime too are called "safe", not "strong".