Richard Levitte [Fri, 4 Oct 2002 13:31:06 +0000 (13:31 +0000)]
Add random number generation capability to the cswift engine.
Should this be added to 0.9.6-stable as well?
PR: 275
Richard Levitte [Fri, 4 Oct 2002 13:04:44 +0000 (13:04 +0000)]
If we're loading libz dynamically, and COMP_zlib() is called more than once,
only the first call would provide the correct result.
PR: 277
Richard Levitte [Fri, 4 Oct 2002 12:32:38 +0000 (12:32 +0000)]
Add a small note saying the 'debug' option should come before the platform in
the arguments to mk1mf.pl.
PR: 298
Richard Levitte [Fri, 4 Oct 2002 00:03:37 +0000 (00:03 +0000)]
Document should match reality :-).
PR: 255
Richard Levitte [Wed, 2 Oct 2002 00:18:59 +0000 (00:18 +0000)]
The OpenBSD project has replaced the first implementation of the /dev/crypto
engine with something they claim is better. I have nothing to compare to,
and I assume they know what they're talking about. The interesting part with
this one is that it's loaded by default on OpenBSD systems.
This change was originally introduced in OpenBSD's tracking of OpenSSL.
Bodo Möller [Thu, 26 Sep 2002 15:54:15 +0000 (15:54 +0000)]
fix more race conditions
Submitted by: "Patrick McCormick" <patrick@tellme.com>
PR: 262
Lutz Jänicke [Wed, 25 Sep 2002 20:17:58 +0000 (20:17 +0000)]
Add missing brackets.
Submitted by: "Chris Brook" <cbrook@v-one.com>
Reviewed by:
PR:
Bodo Möller [Wed, 25 Sep 2002 15:38:17 +0000 (15:38 +0000)]
really fix race conditions
Submitted by: "Patrick McCormick" <patrick@tellme.com>
PR: 262
PR: 291
Richard Levitte [Wed, 25 Sep 2002 14:14:16 +0000 (14:14 +0000)]
Make sure that the signal storage is regarded as volatile.
This correction was originally introduced in OpenBSD's tracking of OpenSSL.
Richard Levitte [Wed, 25 Sep 2002 13:34:37 +0000 (13:34 +0000)]
It makes more sense to refer to specific function manuals than the concept
manual when the specific function is refered to in the current manual text.
This correction was originally introduced in OpenBSD's tracking of OpenSSL.
Richard Levitte [Wed, 25 Sep 2002 13:26:40 +0000 (13:26 +0000)]
Remove *all* references to RSA_PKCS1_RSAref, since it doesn't exist any more.
This correction was originally introduced in OpenBSD's tracking of OpenSSL.
Richard Levitte [Wed, 25 Sep 2002 13:25:48 +0000 (13:25 +0000)]
Remove reference to RSA_PKCS1_RSAref, since it doesn't exist any more.
This correction was originally introduced in OpenBSD's tracking of OpenSSL.
Richard Levitte [Wed, 25 Sep 2002 13:11:16 +0000 (13:11 +0000)]
It makes more sense to refer to specific function manuals than the concept
manual when the specific function is refered to in the current manual text.
This correction was originally introduced in OpenBSD's tracking of OpenSSL.
Richard Levitte [Wed, 25 Sep 2002 12:52:23 +0000 (12:52 +0000)]
Incorrect argument order to memset()
Richard Levitte [Wed, 25 Sep 2002 12:49:45 +0000 (12:49 +0000)]
Missing ;
Richard Levitte [Wed, 25 Sep 2002 12:42:04 +0000 (12:42 +0000)]
-elapsed is also useful when using gettimeofday
Bodo Möller [Mon, 23 Sep 2002 14:28:12 +0000 (14:28 +0000)]
really fix race condition
PR: 262
Ulf Möller [Sun, 22 Sep 2002 08:51:33 +0000 (08:51 +0000)]
as in head
Ulf Möller [Sun, 22 Sep 2002 08:45:22 +0000 (08:45 +0000)]
as in main
cvs2svn [Sun, 22 Sep 2002 08:44:06 +0000 (08:44 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_7-stable'.
Ulf Möller [Sun, 22 Sep 2002 08:44:03 +0000 (08:44 +0000)]
make files didn't work on case insensitive filesystems
Bodo Möller [Fri, 20 Sep 2002 08:37:13 +0000 (08:37 +0000)]
there is no minimum length for session IDs
PR: 274
fix race condition
PR: 262
Bodo Möller [Thu, 19 Sep 2002 11:44:07 +0000 (11:44 +0000)]
there is no minimum length for session IDs
PR: 274
Bodo Möller [Thu, 19 Sep 2002 11:26:45 +0000 (11:26 +0000)]
fix race condition
PR: 262
Bodo Möller [Mon, 16 Sep 2002 13:52:48 +0000 (13:52 +0000)]
make sure 'neg' flag (which does not really matter for GF(2^m), but
could cause confusion for ECDSA) is set to zero
Submitted by: Sheueling Chang
Bodo Möller [Mon, 16 Sep 2002 13:45:14 +0000 (13:45 +0000)]
add URL for Internet Draft
Bodo Möller [Tue, 10 Sep 2002 07:36:52 +0000 (07:36 +0000)]
1. switch from "-newkey ecdsa:..." to "-newkey ec:..."
2. automatically create required sub-directories
Submitted by: Vipul Gupta <Vipul.Gupta@sun.com>
Bodo Möller [Tue, 10 Sep 2002 07:34:45 +0000 (07:34 +0000)]
Let 'openssl req' fail if an argument to '-newkey' is not
recognized instead of using RSA as a default.
Dr. Stephen Henson [Sun, 8 Sep 2002 16:25:55 +0000 (16:25 +0000)]
Really fix PKCS7_set_detached this time...
Dr. Stephen Henson [Sun, 8 Sep 2002 16:25:03 +0000 (16:25 +0000)]
Really fix PKCS7_set_detached this time...
Dr. Stephen Henson [Sat, 7 Sep 2002 22:59:34 +0000 (22:59 +0000)]
Fix typos in PKCS#12 ASN1 code.
Make PKCS7_set_detached work again.
Dr. Stephen Henson [Sat, 7 Sep 2002 22:57:49 +0000 (22:57 +0000)]
Fix typos in PKCS#12 ASN1 code.
Make PKCS7_set_detached work again.
Lutz Jänicke [Thu, 5 Sep 2002 07:52:05 +0000 (07:52 +0000)]
Consequently use term URI instead of URL
Submitted by: TJ Saunders <tj@castaglia.org>
Reviewed by:
PR: 268
Lutz Jänicke [Thu, 5 Sep 2002 07:51:23 +0000 (07:51 +0000)]
Consequently use term URI instead of URL
Submitted by: TJ Saunders <tj@castaglia.org>
Reviewed by:
PR: 268
Dr. Stephen Henson [Tue, 3 Sep 2002 00:09:45 +0000 (00:09 +0000)]
make update
Bodo Möller [Mon, 2 Sep 2002 14:22:51 +0000 (14:22 +0000)]
-nameopt fix has been moved to 0.9.7
Bodo Möller [Mon, 2 Sep 2002 07:12:08 +0000 (07:12 +0000)]
mention EC_get_builtin_curves()
Bodo Möller [Mon, 2 Sep 2002 07:08:33 +0000 (07:08 +0000)]
change API for looking at the internal curve list
Submitted by: Nils Larsch
Dr. Stephen Henson [Fri, 30 Aug 2002 18:26:26 +0000 (18:26 +0000)]
Apply -nameopt patches to 0.9.7
Dr. Stephen Henson [Fri, 30 Aug 2002 17:18:22 +0000 (17:18 +0000)]
Fix ASN1_STRING_to_UTF8: remove non sensical !*out test.
Dr. Stephen Henson [Fri, 30 Aug 2002 17:17:45 +0000 (17:17 +0000)]
Fix ASN1_STRING_to_UTF8: remove non sensical !*out test.
Bodo Möller [Thu, 29 Aug 2002 11:45:40 +0000 (11:45 +0000)]
don't memset(data,0,...) if data is NULL
Submitted by: anonymous
PR: 254
Bodo Möller [Thu, 29 Aug 2002 11:35:42 +0000 (11:35 +0000)]
don't memset(data,0,...) if data is NULL
Submitted by: anonymous
PR: 254
Geoff Thorpe [Wed, 28 Aug 2002 19:11:59 +0000 (19:11 +0000)]
Fix a bug to allow the 4758 ENGINE to build as a DSO.
Geoff Thorpe [Wed, 28 Aug 2002 19:11:08 +0000 (19:11 +0000)]
Fix a bug to allow the 4758 ENGINE to build as a DSO.
Bodo Möller [Tue, 27 Aug 2002 13:32:35 +0000 (13:32 +0000)]
don't write beyond buffer
Submitted by: Nils Larsch
Bodo Möller [Tue, 27 Aug 2002 10:38:09 +0000 (10:38 +0000)]
change 'usage' formatting
Bodo Möller [Mon, 26 Aug 2002 18:08:53 +0000 (18:08 +0000)]
less specific interface for EC_GROUP_get_basis_type
Submitted by: Nils Larsch, Bodo Moeller
Bodo Möller [Mon, 26 Aug 2002 14:50:52 +0000 (14:50 +0000)]
fix spacing
Bodo Möller [Mon, 26 Aug 2002 11:33:13 +0000 (11:33 +0000)]
move EC_GROUP_get_basis_type() from ec_lib.c to ec_asn1.c
Bodo Möller [Mon, 26 Aug 2002 11:25:54 +0000 (11:25 +0000)]
ASN1 for binary curves
Submitted by: Nils Larsch
Bodo Möller [Mon, 26 Aug 2002 11:25:14 +0000 (11:25 +0000)]
fix offsets
Submitted by: Nils Larsch
Bodo Möller [Mon, 26 Aug 2002 11:20:50 +0000 (11:20 +0000)]
ecdsa => ec
Submitted by: Nils Larsch
Dr. Stephen Henson [Fri, 23 Aug 2002 00:02:11 +0000 (00:02 +0000)]
Reinstate the check for invalid length BIT STRINGS,
which was effectively bypassed in the ASN1 changed.
Dr. Stephen Henson [Fri, 23 Aug 2002 00:00:54 +0000 (00:00 +0000)]
Reinstate the check for invalid length BIT STRINGS,
which was effectively bypassed in the ASN1 changed.
Dr. Stephen Henson [Thu, 22 Aug 2002 23:43:48 +0000 (23:43 +0000)]
Make -nameopt work in req and add support for -reqopt
Dr. Stephen Henson [Thu, 22 Aug 2002 23:03:04 +0000 (23:03 +0000)]
Change C++ style comments
Dr. Stephen Henson [Thu, 22 Aug 2002 23:00:54 +0000 (23:00 +0000)]
#if out unused function to shut the compiler up.
Dr. Stephen Henson [Thu, 22 Aug 2002 23:00:05 +0000 (23:00 +0000)]
Fix C++ style comments.
Dr. Stephen Henson [Thu, 22 Aug 2002 21:54:51 +0000 (21:54 +0000)]
Fix crahses and leaks in pkcs12 utility -chain option
Dr. Stephen Henson [Thu, 22 Aug 2002 21:54:24 +0000 (21:54 +0000)]
Fix crahses and leaks in pkcs12 utility -chain option
Richard Levitte [Sun, 18 Aug 2002 21:33:02 +0000 (21:33 +0000)]
Typo, I assigned the variable ld instead of my_ld...
Richard Levitte [Sun, 18 Aug 2002 21:32:19 +0000 (21:32 +0000)]
Typo, I assigned the variable ld instead of my_ld...
Richard Levitte [Sat, 17 Aug 2002 13:46:52 +0000 (13:46 +0000)]
So, I discovered that if you have your $PATH set so a ld different from
GNU ld comes first, checking the usage of collect2 gives that instead of
GNU ld, even if GNU ld would be the one that would get used if we link using
gcc. It's much better, apparently, to ask gcc directly what the path to
GNU ld is (provided it's there at all and gcc knows about it), and ask
the result if it's a GNU or not. The bonus is that our GNU ld detection
mechanism got shorter and easier to understand...
Richard Levitte [Sat, 17 Aug 2002 13:46:42 +0000 (13:46 +0000)]
So, I discovered that if you have your $PATH set so a ld different from
GNU ld comes first, checking the usage of collect2 gives that instead of
GNU ld, even if GNU ld would be the one that would get used if we link using
gcc. It's much better, apparently, to ask gcc directly what the path to
GNU ld is (provided it's there at all and gcc knows about it), and ask
the result if it's a GNU or not. The bonus is that our GNU ld detection
mechanism got shorter and easier to understand...
Lutz Jänicke [Fri, 16 Aug 2002 17:04:04 +0000 (17:04 +0000)]
Reorder cleanup sequence in SSL_CTX_free() to leave ex_data for remove_cb().
Submitted by:
Reviewed by:
PR: 212
Lutz Jänicke [Fri, 16 Aug 2002 17:02:30 +0000 (17:02 +0000)]
Reorder cleanup sequence in SSL_CTX_free() to leave ex_data for remove_cb().
Submitted by:
Reviewed by:
PR: 212
Lutz Jänicke [Fri, 16 Aug 2002 16:44:54 +0000 (16:44 +0000)]
Fix wrong URI.
Submitted by: Mike Castle <dalgoda@ix.netcom.com>
Reviewed by:
PR: 200
Bodo Möller [Fri, 16 Aug 2002 11:19:59 +0000 (11:19 +0000)]
typo
Submitted by: Nils Larsch
Bodo Möller [Fri, 16 Aug 2002 11:19:07 +0000 (11:19 +0000)]
'EC' vs. 'ECDSA'
Submitted by: Nils Larsch
Richard Levitte [Fri, 16 Aug 2002 09:41:35 +0000 (09:41 +0000)]
isalist was less trustable than I thought (or rather, one can trust it to
come up with all kinds of names we don't have in our targets).
Besides, our sparcv9 targets currently generate sparcv8 code, I'm told.
Richard Levitte [Fri, 16 Aug 2002 09:41:14 +0000 (09:41 +0000)]
isalist was less trustable than I thought (or rather, one can trust it to
come up with all kinds of names we don't have in our targets).
Besides, our sparcv9 targets currently generate sparcv8 code, I'm told.
Richard Levitte [Fri, 16 Aug 2002 06:15:58 +0000 (06:15 +0000)]
Add -lz to the ld flags when the user has chosen to link in zlib *statically*.
Notified by Doug Kaufman <dkaufman@rahul.net>
Richard Levitte [Fri, 16 Aug 2002 06:15:41 +0000 (06:15 +0000)]
Add -lz to the ld flags when the user has chosen to link in zlib *statically*.
Notified by Doug Kaufman <dkaufman@rahul.net>
Dr. Stephen Henson [Fri, 16 Aug 2002 01:53:24 +0000 (01:53 +0000)]
Fix block_size field for CFB and OFB modes: it should be 1.
Dr. Stephen Henson [Fri, 16 Aug 2002 01:38:34 +0000 (01:38 +0000)]
Fix block_size field for CFB and OFB modes: it should be 1.
Richard Levitte [Thu, 15 Aug 2002 22:06:14 +0000 (22:06 +0000)]
q may be used uninitialised
Richard Levitte [Thu, 15 Aug 2002 22:06:00 +0000 (22:06 +0000)]
q may be used uninitialised
Bodo Möller [Thu, 15 Aug 2002 16:17:20 +0000 (16:17 +0000)]
use correct function code in error message
Bodo Möller [Thu, 15 Aug 2002 16:17:02 +0000 (16:17 +0000)]
use correct function code in error message
Richard Levitte [Thu, 15 Aug 2002 15:21:00 +0000 (15:21 +0000)]
It seems like sun4u doesn't always have a sparcv9 inside. Trust isalist.
PR: 220
Richard Levitte [Thu, 15 Aug 2002 15:20:48 +0000 (15:20 +0000)]
It seems like sun4u doesn't always have a sparcv9 inside. Trust isalist.
PR: 220
Bodo Möller [Thu, 15 Aug 2002 14:52:54 +0000 (14:52 +0000)]
fix warnings (CHARSET_EBCDIC)
Submitted by: Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>
Bodo Möller [Thu, 15 Aug 2002 14:52:22 +0000 (14:52 +0000)]
fix warnings (CHARSET_EBCDIC)
Submitted by: Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>
Bodo Möller [Thu, 15 Aug 2002 14:23:23 +0000 (14:23 +0000)]
fix manpage
Bodo Möller [Thu, 15 Aug 2002 14:22:49 +0000 (14:22 +0000)]
fix manpage
Bodo Möller [Thu, 15 Aug 2002 14:17:19 +0000 (14:17 +0000)]
add crypto/ecdh
Richard Levitte [Thu, 15 Aug 2002 11:48:58 +0000 (11:48 +0000)]
I think that's the last forgotten compilation module.
Richard Levitte [Thu, 15 Aug 2002 10:59:59 +0000 (10:59 +0000)]
Missing =back.
Part of PR 196
Richard Levitte [Thu, 15 Aug 2002 10:59:55 +0000 (10:59 +0000)]
Missing =back.
Part of PR 196
Richard Levitte [Thu, 15 Aug 2002 10:50:42 +0000 (10:50 +0000)]
Add a FAQ entry for yet another bc failure.
PR: 199
Richard Levitte [Thu, 15 Aug 2002 10:50:31 +0000 (10:50 +0000)]
Add a FAQ entry for yet another bc failure.
PR: 199
Richard Levitte [Thu, 15 Aug 2002 09:40:08 +0000 (09:40 +0000)]
Yet a couple of modules forgotten. These weren't important for
OpenSSL itself, since they aren't used there (yet). It became quite
visible qhen building a shared library, however...
Richard Levitte [Thu, 15 Aug 2002 09:39:01 +0000 (09:39 +0000)]
Yet a couple of modules forgotten. These weren't important for
OpenSSL itself, since they aren't used there (yet). It became quite
visible qhen building a shared library, however...
Bodo Möller [Thu, 15 Aug 2002 09:21:31 +0000 (09:21 +0000)]
Simplify handling of named curves: get rid of EC_GROUP_new_by_name(),
EC_GROUP_new_by_nid() should be enough. This avoids a lot of
redundancy.
Submitted by: Nils Larsch
Richard Levitte [Thu, 15 Aug 2002 08:29:26 +0000 (08:29 +0000)]
Sometimes, the value of the variable containing the compiler call can
become rather large. This becomes a problem when the default 1024
character large buffer that WRITE uses isn't enough. WRITE/SYMBOL
uses a 2048 byte large buffer instead.
Richard Levitte [Thu, 15 Aug 2002 08:28:38 +0000 (08:28 +0000)]
Sometimes, the value of the variable containing the compiler call can
become rather large. This becomes a problem when the default 1024
character large buffer that WRITE uses isn't enough. WRITE/SYMBOL
uses a 2048 byte large buffer instead.
Bodo Möller [Wed, 14 Aug 2002 14:06:11 +0000 (14:06 +0000)]
change how pod2man is handled: explicitly invoke '$PERL' only when
needed, call 'pod2man' directly if this works
PR: 217
Bodo Möller [Wed, 14 Aug 2002 14:04:24 +0000 (14:04 +0000)]
change how pod2man is handled: explicitly invoke '$PERL' only when
needed, call 'pod2man' directly if this works
PR: 217
Richard Levitte [Wed, 14 Aug 2002 12:18:36 +0000 (12:18 +0000)]
Instead of returning errors when certain flags are unusable, just ignore them.
That will make the test go through even if DH (or in some cases ECDH) aren't
built into OpenSSL.
PR: 216, part 2