Bodo Möller [Wed, 12 Feb 2003 22:01:12 +0000 (22:01 +0000)]
new lock for EC_PRE_COMP structures
Submitted by: Nils Larsch
Bodo Möller [Wed, 12 Feb 2003 18:30:16 +0000 (18:30 +0000)]
Allow EC_GROUP objects to share precomputation for improved memory
efficiency (EC_PRE_COMP objects are now constant once completed).
Extend 'extra_data' API to support arbitrarily many slots (although we
need only one at the moment).
Modify EC internal 'extra_data' API: EC_GROUP_[clear_]free_extra_data
now frees only a single slot (the previous functions are available as
EC_GROUP_[clear_]free_all_extra_data).
Submitted by: Nils Larsch
Reviewed by: Bodo Moeller
Richard Levitte [Wed, 12 Feb 2003 17:20:39 +0000 (17:20 +0000)]
Adjust DES_cbc_cksum() so the returned value is the same as MIT's
mit_des_cbc_cksum(). The difference was first observed, then verified by
looking at the MIT source.
Dr. Stephen Henson [Wed, 12 Feb 2003 17:06:02 +0000 (17:06 +0000)]
Option to disable SSL auto chain build
Bodo Möller [Wed, 12 Feb 2003 14:17:41 +0000 (14:17 +0000)]
comments
Bodo Möller [Tue, 11 Feb 2003 16:42:30 +0000 (16:42 +0000)]
first section is now "Changes between 0.9.7a and 0.9.8", not "... 0.9.7 and 0.9.8"
Dr. Stephen Henson [Tue, 11 Feb 2003 14:06:27 +0000 (14:06 +0000)]
GeneralString support in mini-ASN1 compiler
Dr. Stephen Henson [Mon, 10 Feb 2003 17:52:10 +0000 (17:52 +0000)]
Typo.
Richard Levitte [Mon, 10 Feb 2003 11:14:35 +0000 (11:14 +0000)]
Make sure memcpy() is properly declared by including string.h.
Bodo Möller [Sat, 8 Feb 2003 19:51:37 +0000 (19:51 +0000)]
fix EC_GROUP_copy for EC_GFp_nist_method()
Submitted by: Nils Larsch
Bodo Möller [Sat, 8 Feb 2003 19:49:16 +0000 (19:49 +0000)]
avoid coredump
Submitted by: Nils Larsch
Bodo Möller [Sat, 8 Feb 2003 15:56:05 +0000 (15:56 +0000)]
remove debugging leftovers
Bodo Möller [Fri, 7 Feb 2003 11:54:57 +0000 (11:54 +0000)]
comment
Bodo Möller [Thu, 6 Feb 2003 19:32:06 +0000 (19:32 +0000)]
typo
Richard Levitte [Thu, 6 Feb 2003 19:30:06 +0000 (19:30 +0000)]
PKCS#1 has a new RFC, which we do implement
Bodo Möller [Thu, 6 Feb 2003 19:25:12 +0000 (19:25 +0000)]
implement fast point multiplication with precomputation
Submitted by: Nils Larsch
Reviewed by: Bodo Moeller
Bodo Möller [Wed, 5 Feb 2003 16:54:10 +0000 (16:54 +0000)]
typo in WIN16 section
Submitted by: Toni Andjelkovic <toni@soth.at>
Bodo Möller [Wed, 5 Feb 2003 16:40:29 +0000 (16:40 +0000)]
SSL_add_dir_cert_subjects_to_stack now exists for WIN32
Dr. Stephen Henson [Wed, 5 Feb 2003 00:34:31 +0000 (00:34 +0000)]
IPv6 display and input support for extensions usingh GeneralName.
Bodo Möller [Tue, 4 Feb 2003 12:57:34 +0000 (12:57 +0000)]
typo
Bodo Möller [Tue, 4 Feb 2003 12:28:11 +0000 (12:28 +0000)]
Update PRNG entry:
- OpenSSL version differences
- Sun /dev/urandom patch information
Ben Laurie [Sat, 1 Feb 2003 20:58:59 +0000 (20:58 +0000)]
Old-style callbacks can be NULL!
Ben Laurie [Sat, 1 Feb 2003 20:55:29 +0000 (20:55 +0000)]
Fix warning.
Richard Levitte [Fri, 31 Jan 2003 12:20:35 +0000 (12:20 +0000)]
We can't say in advance what the argument to BIO_socket_ioctl() should be, so
let's make that a void *. Also, BIO_socket_nbio() should send it an int
argument, not a long.
PR: 457
Richard Levitte [Thu, 30 Jan 2003 22:02:27 +0000 (22:02 +0000)]
Document -engine where missing.
PR: 424
Richard Levitte [Thu, 30 Jan 2003 21:49:12 +0000 (21:49 +0000)]
A few small bugs with BIO popping.
PR: 364
Richard Levitte [Thu, 30 Jan 2003 20:03:45 +0000 (20:03 +0000)]
The util scripts need to handled no-hw.
PR: 327
Richard Levitte [Thu, 30 Jan 2003 19:05:25 +0000 (19:05 +0000)]
The MASM situation is more difficult than described so far. It is part of VC++ 7.
PR: 327
Richard Levitte [Thu, 30 Jan 2003 19:01:56 +0000 (19:01 +0000)]
For VC++7 and up, the file is VSVARS32.BAT.
PR: 327
Richard Levitte [Thu, 30 Jan 2003 18:52:46 +0000 (18:52 +0000)]
The OPENSSL_NO_ENGINE has small problem: it changes certain structures. That's
bad, so let's not check OPENSSL_NO_ENGINE in those places. Fortunately, all
the header files where the problem existed include ossl_typ.h, which makes
a 'forward declaration' of the ENGINE type.
Richard Levitte [Thu, 30 Jan 2003 17:53:02 +0000 (17:53 +0000)]
make update
Richard Levitte [Thu, 30 Jan 2003 17:39:26 +0000 (17:39 +0000)]
Add the possibility to build without the ENGINE framework.
PR: 287
Geoff Thorpe [Thu, 30 Jan 2003 15:52:40 +0000 (15:52 +0000)]
Summarise the last couple of commits.
Geoff Thorpe [Thu, 30 Jan 2003 15:49:03 +0000 (15:49 +0000)]
This glues the GMP wrapper ENGINE into OpenSSL if it is being built (ie. if
the OPENSSL_USE_GMP symbol is defined). Also, I've re-ordered the listing
of other builtin ENGINEs to be alphabetical (though "dynamic" will still
come first).
Geoff Thorpe [Thu, 30 Jan 2003 15:43:07 +0000 (15:43 +0000)]
Commit a slightly modified version of an old experiment to do RSA private
key operations using the GMP library. The default is not to build (or use)
this code unless OPENSSL_USE_GMP is defined (because it will impose header
and linker dependencies that might need specifying too).
Geoff Thorpe [Thu, 30 Jan 2003 14:58:44 +0000 (14:58 +0000)]
"openssl engine" will not display ENGINE/DSO load failure errors when
testing availability of engines with "-t" - the old behaviour of is
produced by increasing the feature's verbosity with "-tt".
Richard Levitte [Thu, 30 Jan 2003 11:08:44 +0000 (11:08 +0000)]
Small typo, OENSSL should really be spelled OPENSSL.
PR: 476
Richard Levitte [Thu, 30 Jan 2003 11:00:34 +0000 (11:00 +0000)]
Fix a memory leak in SSL.
PR: 477
Richard Levitte [Thu, 30 Jan 2003 10:27:43 +0000 (10:27 +0000)]
cert_sk isn't always allocated, so freeing it may cause a crash.
PR: 481
Richard Levitte [Wed, 29 Jan 2003 15:06:35 +0000 (15:06 +0000)]
DVCS (see RFC 3029) was missing among the possible purposes.
Notified privately to me by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>,
one of the authors of said RFC
Bodo Möller [Tue, 28 Jan 2003 13:08:21 +0000 (13:08 +0000)]
simplify
Submitted by: Nils Larsch
Dr. Stephen Henson [Sun, 26 Jan 2003 13:38:56 +0000 (13:38 +0000)]
Correct EVP_SealInit() documentation, iv is an output
parameter.
Bodo Möller [Sat, 25 Jan 2003 15:28:49 +0000 (15:28 +0000)]
cofactor is optional in parameter encodings
Submitted by: Nils Larsch
Bodo Möller [Fri, 24 Jan 2003 22:28:32 +0000 (22:28 +0000)]
consistency
Bodo Möller [Fri, 24 Jan 2003 21:43:08 +0000 (21:43 +0000)]
For ecdsa-with-SHA1, as for id-dsa-with-sha1, omit 'parameters'
in AlgorithmIdentifier
Submitted by: Nils Larsch
Andy Polyakov [Fri, 24 Jan 2003 09:39:31 +0000 (09:39 +0000)]
Provide "dummy" &main::picmeup even in Windows perlasm modules.
Dr. Stephen Henson [Fri, 24 Jan 2003 01:12:01 +0000 (01:12 +0000)]
Check return value of gmtime() and add error codes
where it fails in ASN1_TIME_set().
Edit asn1.h so the new error code is the same in 0.9.7
and 0.9.8, rebuild new error codes.
Clear error queue in req.c if *_min or *_max is absent.
Andy Polyakov [Thu, 23 Jan 2003 10:05:39 +0000 (10:05 +0000)]
Workaround for lame compiler bug introduced in "CPU pack" for MSVC6SP5.
Andy Polyakov [Thu, 23 Jan 2003 09:52:34 +0000 (09:52 +0000)]
The patch speaks for itself.
Richard Levitte [Thu, 23 Jan 2003 08:10:04 +0000 (08:10 +0000)]
Missing 0 broke FreeBSD build.
PR: 470
Bodo Möller [Tue, 21 Jan 2003 09:53:14 +0000 (09:53 +0000)]
fix warnings
Submitted by: Nils Larsch
Andy Polyakov [Sun, 19 Jan 2003 21:47:06 +0000 (21:47 +0000)]
Suggestion was to change ${MACHINE} to i586 in lines in question. Well,
"whatever" doesn't the same (avoids 386 being passed to ./Configure),
consistent with other elder SCO targets and denotes that we probably
shouldn't care much about every out-of-date platform.
Andy Polyakov [Sun, 19 Jan 2003 21:29:59 +0000 (21:29 +0000)]
This is an *initial* tune-up. This update puts Itanium2 back on par with
Itanium. I mean if overall performance improvement over C version was X
for Itanium, it's X even for Itanium2.
Andy Polyakov [Sun, 19 Jan 2003 11:39:19 +0000 (11:39 +0000)]
Oops! Missed closing quote... Didn't have time to verify before a snapshot
was cut...
Andy Polyakov [Sat, 18 Jan 2003 21:57:30 +0000 (21:57 +0000)]
SCO target missed .so suffix.
Andy Polyakov [Sat, 18 Jan 2003 18:12:23 +0000 (18:12 +0000)]
-lresolv is not present on SCO Unix, RT#460.
Andy Polyakov [Sat, 18 Jan 2003 15:17:26 +0000 (15:17 +0000)]
Caldera/SCO targets erroneously limit themselves to 386. See RT#464.
Andy Polyakov [Sat, 18 Jan 2003 15:13:03 +0000 (15:13 +0000)]
Fix for AIX shared build, see RT#463.
Dr. Stephen Henson [Fri, 17 Jan 2003 00:48:47 +0000 (00:48 +0000)]
EVP_DecryptInit() should call EVP_CipherInit() not EVP_CipherInit_ex().
Richard Levitte [Thu, 16 Jan 2003 21:36:17 +0000 (21:36 +0000)]
Ingore the correct flag file.
Richard Levitte [Thu, 16 Jan 2003 21:32:56 +0000 (21:32 +0000)]
A few more files to ignore
Richard Levitte [Thu, 16 Jan 2003 21:20:30 +0000 (21:20 +0000)]
make update
Richard Levitte [Thu, 16 Jan 2003 18:29:30 +0000 (18:29 +0000)]
FreeBSD has /dev/crypto as well.
PR: 462
Richard Levitte [Thu, 16 Jan 2003 17:28:46 +0000 (17:28 +0000)]
Add some debugging output.
Lutz Jänicke [Thu, 16 Jan 2003 17:22:30 +0000 (17:22 +0000)]
Armor against systems without ranlib...
Submitted by: Thierry Lelegard <thierry.lelegard@canal-plus.fr>
PR: 461
Bodo Möller [Thu, 16 Jan 2003 16:05:23 +0000 (16:05 +0000)]
avoid potential confusion about curves (prime192v1 and prime256v1 are
also known as secp192r1 and secp256r1, respectively)
Submitted by: Nils Larsch, Bodo Moeller
Richard Levitte [Thu, 16 Jan 2003 13:01:36 +0000 (13:01 +0000)]
make update
Lutz Jänicke [Thu, 16 Jan 2003 07:54:52 +0000 (07:54 +0000)]
ncr-scde target needs -lc89 for strcasecmp() and ftime() (Tim Rice, Martin
Megele).
PR: 450
Richard Levitte [Thu, 16 Jan 2003 06:00:55 +0000 (06:00 +0000)]
Fix possible NULL dereferencial.
Notified by Verdon Walker <VWalker@novell.com>
Richard Levitte [Wed, 15 Jan 2003 17:23:16 +0000 (17:23 +0000)]
Add verbosity
Lutz Jänicke [Wed, 15 Jan 2003 14:54:59 +0000 (14:54 +0000)]
Fix initialization sequence to prevent freeing of unitialized objects.
Submitted by: Nils Larsch <nla@trustcenter.de>
PR: 459
Bodo Möller [Wed, 15 Jan 2003 11:47:28 +0000 (11:47 +0000)]
update error library for EC... changes
Submitted by: Nils Larsch
Lutz Jänicke [Wed, 15 Jan 2003 09:51:22 +0000 (09:51 +0000)]
Really fix SSLv2 session ID handling
PR: 377
Geoff Thorpe [Wed, 15 Jan 2003 02:01:55 +0000 (02:01 +0000)]
As with RSA, which was modified recently, this change makes it possible to
override key-generation implementations by placing handlers in the methods
for DSA and DH. Also, parameter generation for DSA and DH is possible by
another new handler for each method.
Dr. Stephen Henson [Tue, 14 Jan 2003 20:54:18 +0000 (20:54 +0000)]
Set EXPORT_VAR_AS_FN for BC-32 to work around a compiler bug,
Richard Levitte [Tue, 14 Jan 2003 15:42:16 +0000 (15:42 +0000)]
Extend the HOWTO on creating certificates, and add a HOWTO in creating keys.
PR: 422
Lutz Jänicke [Tue, 14 Jan 2003 13:57:06 +0000 (13:57 +0000)]
Document hpux-parisc2-cc problems, probably due to optimizer bug.
PR: 426
Richard Levitte [Tue, 14 Jan 2003 13:56:38 +0000 (13:56 +0000)]
Correct an example that has a few typos.
PR: 458
Richard Levitte [Mon, 13 Jan 2003 17:16:25 +0000 (17:16 +0000)]
Merge from 0.9.7-stable.
Andy Polyakov [Mon, 13 Jan 2003 16:34:05 +0000 (16:34 +0000)]
Minor FAQ update
Bodo Möller [Mon, 13 Jan 2003 15:57:33 +0000 (15:57 +0000)]
"!Cname surname" has now become redundant ...
Bodo Möller [Mon, 13 Jan 2003 15:52:04 +0000 (15:52 +0000)]
undo part of a recent change: it's "surname", not "surName"
(see X.520 aka ISO/IEC 9594-6)
Richard Levitte [Mon, 13 Jan 2003 15:35:22 +0000 (15:35 +0000)]
Make sure not to declare a clashing read() for DJGPP.
PR: 440
Richard Levitte [Mon, 13 Jan 2003 15:16:40 +0000 (15:16 +0000)]
DJGPP doesn't have DLLs, so skip adding to %PATH% in that environment.
PR: 453
Bodo Möller [Mon, 13 Jan 2003 14:58:49 +0000 (14:58 +0000)]
add something to the '$no_shared_warn' text
Richard Levitte [Mon, 13 Jan 2003 14:53:43 +0000 (14:53 +0000)]
Correct a misleading comment.
PR: 456
Richard Levitte [Mon, 13 Jan 2003 14:47:52 +0000 (14:47 +0000)]
Revert: the names of the cygwin distribution will not be named openssl2-*.
Requested by Corinna Vinschen <vinschen@redhat.com>
Richard Levitte [Mon, 13 Jan 2003 14:17:43 +0000 (14:17 +0000)]
UI_UTIL_read_pw() misinterpreted the values returned from UI functions.
PR: 456
Bodo Möller [Mon, 13 Jan 2003 13:44:20 +0000 (13:44 +0000)]
document BN_GENCB API by adding an example
Bodo Möller [Mon, 13 Jan 2003 13:18:22 +0000 (13:18 +0000)]
Typo.
NB: This and other manual pages should be updated for the new
BN_GENCB interface.
Richard Levitte [Mon, 13 Jan 2003 13:15:16 +0000 (13:15 +0000)]
tty_in will never be stderr, so it will always be closed, which means stdin
might get closed...
Reported by Mark Daniel <Mark.Daniel@wasd.vsm.com.au>
Bodo Möller [Mon, 13 Jan 2003 12:52:33 +0000 (12:52 +0000)]
typo
Andy Polyakov [Sun, 12 Jan 2003 21:39:13 +0000 (21:39 +0000)]
OpenBSD FAQ update. Apparently gas from binutils-2.x makes it impossible to
use gcc -fPIC ... on OpenBSD-i386. Alternative solution is provided.
Andy Polyakov [Sun, 12 Jan 2003 15:50:59 +0000 (15:50 +0000)]
Just an extra comment.
Richard Levitte [Sun, 12 Jan 2003 04:43:44 +0000 (04:43 +0000)]
Add better support for FreeBSD on non-x86 machines.
Add specific support for FreeBSD on sparc64.
PR: 427
Richard Levitte [Sat, 11 Jan 2003 11:40:39 +0000 (11:40 +0000)]
If the user said 'shared' and we haven't included support for shared libraries,
warn him or her.
Reminder by Andrew Marlow <apm35@student.open.ac.uk>
Richard Levitte [Fri, 10 Jan 2003 16:32:32 +0000 (16:32 +0000)]
Double the dollars that are intended for the command line.
PR: 423
Richard Levitte [Fri, 10 Jan 2003 16:14:32 +0000 (16:14 +0000)]
Add documentation on how to handle the shared libaries.
PR: 423
Richard Levitte [Fri, 10 Jan 2003 16:04:07 +0000 (16:04 +0000)]
Name the flag file correctly
Richard Levitte [Fri, 10 Jan 2003 11:30:44 +0000 (11:30 +0000)]
CFLAG, not CFLAGS