Dr. Stephen Henson [Wed, 26 Aug 2009 11:44:18 +0000 (11:44 +0000)]
PR: 2015
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Define LIBDIR properly.
Richard Levitte [Wed, 26 Aug 2009 11:21:57 +0000 (11:21 +0000)]
Moving up the inclusion of e_os.h was a bad idea.
Put it back where it was and place an inclusion of e_os2.h to get platform
macros defined...
Richard Levitte [Tue, 25 Aug 2009 07:30:10 +0000 (07:30 +0000)]
Make sure ENGINES can be separately compiled as well.
Make sure _XOPEN_SOURCE_EXTENDED is defined in opensslconf.h
Submitted by Zoltan Arpadffy <zoli@polarhome.com>
Richard Levitte [Tue, 25 Aug 2009 07:28:18 +0000 (07:28 +0000)]
Remove tmdiff.h from EXHEADERS as it doesn't exist.
Don't have separate installation directory variables for VAX and AXP.
Submitted by Zoltan Arpadffy <zoli@polarhome.com>
Richard Levitte [Tue, 25 Aug 2009 07:26:25 +0000 (07:26 +0000)]
Add CMS to the list of applications.
Define EXE_DIR earlier.
Make sure S_SOCKET also gets compiled with _POSIX_C_SOURCE defined.
Submitted by Zoltan Arpadffy <zoli@polarhome.com>
Richard Levitte [Tue, 25 Aug 2009 07:24:00 +0000 (07:24 +0000)]
Move up the inclusion of e_os.h so OPENSSL_SYS_VMS_DECC has a chance
to be properly defined.
Richard Levitte [Tue, 25 Aug 2009 07:22:07 +0000 (07:22 +0000)]
Make it possible to compile non-assembler routines on AXP as well.
Submitted by Zoltan Arpadffy <arpadffy@polarhome.com>
Richard Levitte [Tue, 25 Aug 2009 07:19:25 +0000 (07:19 +0000)]
Make engines compile on VMS for ia64 as well.
Parse file types in a more secure manner.
Submitted by sms@antinode.info (Steven M. Schweda)
Richard Levitte [Tue, 25 Aug 2009 07:19:21 +0000 (07:19 +0000)]
file ia64.opt was added on branch OpenSSL_0_9_8-stable on 2009-08-25 07:19:25 +0000
Richard Levitte [Tue, 25 Aug 2009 07:19:19 +0000 (07:19 +0000)]
file alpha.opt was added on branch OpenSSL_0_9_8-stable on 2009-08-25 07:19:24 +0000
Richard Levitte [Tue, 25 Aug 2009 07:17:12 +0000 (07:17 +0000)]
Correct some typos and missing things.
Submitted by Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se>
Richard Levitte [Tue, 25 Aug 2009 07:10:40 +0000 (07:10 +0000)]
Include proper header files for time functions.
Submitted by Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se>
Dr. Stephen Henson [Sat, 15 Aug 2009 10:50:28 +0000 (10:50 +0000)]
Use SHA1 and not deprecated MD5 in demos.
Dr. Stephen Henson [Thu, 13 Aug 2009 15:14:32 +0000 (15:14 +0000)]
PR: 1997
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS timeout handling fix.
Dr. Stephen Henson [Wed, 12 Aug 2009 16:44:44 +0000 (16:44 +0000)]
Update README with bug report and contribution details.
Dr. Stephen Henson [Mon, 10 Aug 2009 15:52:33 +0000 (15:52 +0000)]
Typo
Dr. Stephen Henson [Mon, 10 Aug 2009 15:30:17 +0000 (15:30 +0000)]
PR: 1999
Submitted by: "Bayram Kurumahmut" <kbayram@ubicom.com>
Approved by: steve@openssl.org
Don't use HAVE_FORK in apps/speed.c it can conflict with configured version.
Dr. Stephen Henson [Mon, 10 Aug 2009 15:15:27 +0000 (15:15 +0000)]
Backport GeneralizedTime fractional seconds support from HEAD.
Dr. Stephen Henson [Mon, 10 Aug 2009 14:37:51 +0000 (14:37 +0000)]
PR: 2003
Make it possible to install OpenSSL in directories with name other
than "lib" for example "lib64". Based on patch from Jeremy Utley.
Dr. Stephen Henson [Mon, 10 Aug 2009 11:52:15 +0000 (11:52 +0000)]
Quote $(CC) in a few places so spaces in CC work properly.
Dr. Stephen Henson [Sun, 9 Aug 2009 16:42:55 +0000 (16:42 +0000)]
Oops, fips_check_rsa isn't static.
Dr. Stephen Henson [Sun, 9 Aug 2009 16:02:50 +0000 (16:02 +0000)]
Fix signed/unsigned warnings and make several functions static.
Dr. Stephen Henson [Sun, 9 Aug 2009 15:51:24 +0000 (15:51 +0000)]
Stop signed/unsigned warning.
Dr. Stephen Henson [Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)]
Add missing CHANGES entry for OID 0x80 fix.
Dr. Stephen Henson [Sun, 9 Aug 2009 14:51:56 +0000 (14:51 +0000)]
Add COMP error strings.
Dr. Stephen Henson [Sun, 9 Aug 2009 14:49:00 +0000 (14:49 +0000)]
Backport modified version of MIME wrapper for PKCS#7. This ensures
correct values for micalg among other things.
Dr. Stephen Henson [Thu, 6 Aug 2009 16:23:17 +0000 (16:23 +0000)]
Fix error codes.
Dr. Stephen Henson [Thu, 6 Aug 2009 16:22:57 +0000 (16:22 +0000)]
Reject leading 0x80 in OID subidentifiers.
Dr. Stephen Henson [Wed, 5 Aug 2009 15:48:48 +0000 (15:48 +0000)]
Make no-comp compile again under WIN32.
Dr. Stephen Henson [Tue, 28 Jul 2009 12:51:19 +0000 (12:51 +0000)]
Skip CE config if we don't need it instead of producing an error message.
Dr. Stephen Henson [Sun, 26 Jul 2009 16:06:41 +0000 (16:06 +0000)]
Make genrsa work again.
Dr. Stephen Henson [Fri, 24 Jul 2009 14:00:14 +0000 (14:00 +0000)]
Update ordinals and add NETWARE platform to handle renamed asc2uni functions.
Dr. Stephen Henson [Fri, 24 Jul 2009 13:47:32 +0000 (13:47 +0000)]
PR: 1992
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
RAND_poll() and CreateToolhelp32Snapshot() stability for WIN32.
Dr. Stephen Henson [Fri, 24 Jul 2009 13:35:23 +0000 (13:35 +0000)]
Ooops, missing space.
Dr. Stephen Henson [Fri, 24 Jul 2009 13:26:55 +0000 (13:26 +0000)]
Update TABLE.
Dr. Stephen Henson [Fri, 24 Jul 2009 13:26:27 +0000 (13:26 +0000)]
Add additional debug targets.
Dr. Stephen Henson [Fri, 24 Jul 2009 13:06:35 +0000 (13:06 +0000)]
PR: 1990
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS socket timeout bug fix.
Dr. Stephen Henson [Fri, 24 Jul 2009 11:50:51 +0000 (11:50 +0000)]
PR: 1993
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS cookie resumption and typo fix.
Dr. Stephen Henson [Fri, 24 Jul 2009 11:34:19 +0000 (11:34 +0000)]
Submitted by: Doug Claar <dougopenssl@claar.org>
Approved by: steve@openssl.org
Add support for x86_64 and rpmbuild 4.1 in openssl.spec
Dr. Stephen Henson [Fri, 24 Jul 2009 11:24:07 +0000 (11:24 +0000)]
PR: 1989
Submitted by: Viktor Szakáts <harbour.01@syenar.hu>
Approved by: steve@openssl.org
Too few arguments in definition of BIO_get_cont_int_port macro.
Dr. Stephen Henson [Fri, 24 Jul 2009 11:14:56 +0000 (11:14 +0000)]
PR: 1991
Submitted by: Michael Tuexen <tuexen@fh-muenster.de>
Approved by: steve@openssl.org
Print DTLS message types out with -msg arg.
Dr. Stephen Henson [Fri, 24 Jul 2009 11:09:54 +0000 (11:09 +0000)]
PR: 1994
Submitted by: Gilles PION <gpion@lfdj.com>
Approved by: steve@openssl.org
Remove extra $.
Dr. Stephen Henson [Thu, 16 Jul 2009 09:58:27 +0000 (09:58 +0000)]
OSX DSO fix from HEAD.
Dr. Stephen Henson [Wed, 15 Jul 2009 11:03:08 +0000 (11:03 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Mon, 13 Jul 2009 22:37:45 +0000 (22:37 +0000)]
PR: 1984
Submitted by: Michael Tüxen <Michael.Tuexen@lurchi.franken.de>
Approved by: steve@openssl.org
PR#1984 DTLS fix for 0.9.8.
Dr. Stephen Henson [Mon, 13 Jul 2009 11:53:53 +0000 (11:53 +0000)]
Document MD2 deprecation.
Dr. Stephen Henson [Sat, 11 Jul 2009 22:35:53 +0000 (22:35 +0000)]
Delete invalid reference to HMAC_CTX.
Dr. Stephen Henson [Sat, 11 Jul 2009 22:30:49 +0000 (22:30 +0000)]
Update from HEAD
Dr. Stephen Henson [Wed, 8 Jul 2009 08:33:27 +0000 (08:33 +0000)]
Remove MD2 from digest algorithm table. This follows the recommendation in
several places that it is not used in new applications.
Dr. Stephen Henson [Sat, 4 Jul 2009 11:56:10 +0000 (11:56 +0000)]
Fix warnings.
Dr. Stephen Henson [Sat, 4 Jul 2009 11:49:36 +0000 (11:49 +0000)]
Update from HEAD.
Dr. Stephen Henson [Wed, 1 Jul 2009 11:32:40 +0000 (11:32 +0000)]
Update from 1.0.0-stable
Dr. Stephen Henson [Tue, 30 Jun 2009 22:29:24 +0000 (22:29 +0000)]
Make text line up.
Dr. Stephen Henson [Tue, 30 Jun 2009 22:20:46 +0000 (22:20 +0000)]
PR: 1960
Approved by: steve@openssl.org
Encode compression id in {i2d,d2i}_SSL_SESSION().
Dr. Stephen Henson [Tue, 30 Jun 2009 20:55:19 +0000 (20:55 +0000)]
Typo.
Dr. Stephen Henson [Tue, 30 Jun 2009 11:42:50 +0000 (11:42 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Tue, 30 Jun 2009 11:32:36 +0000 (11:32 +0000)]
PR: 1822
Submitted by: "Philip A. Prindeville" <philipp_subx@redfish-solutions.com>
Reviewed by: steve@openssl.org
Use $(EXE_EXT) when invoking fips_standalone_sha1
Dr. Stephen Henson [Tue, 30 Jun 2009 11:22:25 +0000 (11:22 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Sun, 28 Jun 2009 16:23:05 +0000 (16:23 +0000)]
PR: 1942
Submitted by: David Woodhouse <dwmw2@infradead.org>
Approved by: steve@openssl.org
Replace ad-hoc chain builder with X509_verify_cert().
Dr. Stephen Henson [Fri, 26 Jun 2009 23:56:10 +0000 (23:56 +0000)]
Oops, moved too much.
Dr. Stephen Henson [Fri, 26 Jun 2009 22:52:18 +0000 (22:52 +0000)]
PR: 1961
Submitted by: Martin Gerbershagen <martin.gerbershagen@nsn.com>
Approved by: steve@openssl.org
Avoid memory leak if RAND_bytes() fails.
Dr. Stephen Henson [Fri, 26 Jun 2009 15:02:01 +0000 (15:02 +0000)]
PR: 1949
Submitted by: David.Smith@cern.ch
Approved by: steve@openssl.org
When checking whether to flush the output BIO use BIO_CTRL_WPENDING instead
of BIO_CTRL_INFO. In most cases this will have no effect since the following
BIOs wont buffer. In the case of a following buffering BIO this will check
for any pending data in the whole chain and not just the single BIO.
See:
https://issues.apache.org/bugzilla/show_bug.cgi?id=46952
for a detailed analysis of this issue.
Dr. Stephen Henson [Fri, 26 Jun 2009 11:34:22 +0000 (11:34 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Thu, 25 Jun 2009 17:12:26 +0000 (17:12 +0000)]
Fix from HEAD.
Dr. Stephen Henson [Mon, 22 Jun 2009 10:32:27 +0000 (10:32 +0000)]
Ooops, apply PR #1946 to 0.9.8 too.
Dr. Stephen Henson [Wed, 17 Jun 2009 12:11:53 +0000 (12:11 +0000)]
Fix broken config entries.
Dr. Stephen Henson [Wed, 17 Jun 2009 11:58:17 +0000 (11:58 +0000)]
Correct CHANGES entry.
Dr. Stephen Henson [Wed, 17 Jun 2009 11:55:51 +0000 (11:55 +0000)]
PR: 1943
Submitted by: Guenter <lists@gknw.net>
Approved by: steve@openssl.org
Rename uni2asc and asc2uni on Netware to avoid a name clash.
Dr. Stephen Henson [Wed, 17 Jun 2009 11:49:18 +0000 (11:49 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Wed, 17 Jun 2009 11:26:39 +0000 (11:26 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 16 Jun 2009 16:50:08 +0000 (16:50 +0000)]
PR: 1957
Submitted by: Mark Ashley <mark@ibiblio.org>
Reviewed by: steve@openssl.org
Quote FIPSLD_CC and CC in Makefiles.
Dr. Stephen Henson [Mon, 15 Jun 2009 14:52:38 +0000 (14:52 +0000)]
Don't check self-signed signature in X509_verify_cert(), the check just
wastes processing time and doesn't add any security.
Dr. Stephen Henson [Fri, 5 Jun 2009 15:05:10 +0000 (15:05 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Fri, 5 Jun 2009 11:53:49 +0000 (11:53 +0000)]
Fix from 1.0.0-stable.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:31:32 +0000 (11:31 +0000)]
PR: 1937
Submitted by: Mark Phalan <Mark.Phalan@Sun.COM>
Reviewed by: steve@openssl.org
Fix misuse of st_mode field in struct stat.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:23:51 +0000 (11:23 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:19:54 +0000 (11:19 +0000)]
PR: 1939
Submitted by: Sean Boudreau <seanb@qnx.com>
Reviewed by: steve@openssl.org
Better QNX6 support.
Dr. Stephen Henson [Tue, 2 Jun 2009 11:06:54 +0000 (11:06 +0000)]
Update from HEAD.
Mark J. Cox [Tue, 2 Jun 2009 09:20:52 +0000 (09:20 +0000)]
Update changelog to show fix for PR1679 as per Tomas Hoger's testing:
http://thread.gmane.org/gmane.comp.security.oss.general/1769/focus=1814
Dr. Stephen Henson [Mon, 1 Jun 2009 12:18:21 +0000 (12:18 +0000)]
PR: 1944
Submitted by: Guenter <lists@gknw.net>
Reviewed by: steve@openssl.org
Fix gcc warning on mingw.
Dr. Stephen Henson [Mon, 1 Jun 2009 12:14:53 +0000 (12:14 +0000)]
Update from HEAD.
Dr. Stephen Henson [Fri, 29 May 2009 14:01:35 +0000 (14:01 +0000)]
Use correct values for lookup method.
Dr. Stephen Henson [Fri, 29 May 2009 12:09:07 +0000 (12:09 +0000)]
Oops, forgot #endif...
Dr. Stephen Henson [Fri, 29 May 2009 12:00:22 +0000 (12:00 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Thu, 28 May 2009 20:47:59 +0000 (20:47 +0000)]
Update ordinals.
Mark J. Cox [Tue, 26 May 2009 08:21:56 +0000 (08:21 +0000)]
Add the corresponding CVE names to the CHANGES entry for 0.9.8 branch
Dr. Stephen Henson [Mon, 18 May 2009 17:34:16 +0000 (17:34 +0000)]
Add CHANGES entries for security relate issues PR#1923, PR#1930 and PR#1931.
Dr. Stephen Henson [Mon, 18 May 2009 16:22:43 +0000 (16:22 +0000)]
0.9.8 version of PR#1931 fix.
Dr. Stephen Henson [Mon, 18 May 2009 16:12:56 +0000 (16:12 +0000)]
Fix from 1.0.0-stable branch.
Dr. Stephen Henson [Sun, 17 May 2009 16:48:19 +0000 (16:48 +0000)]
Formatting fix.
Dr. Stephen Henson [Sun, 17 May 2009 16:42:14 +0000 (16:42 +0000)]
Modified PR#1929 update from 1.0.0-stable.
Dr. Stephen Henson [Sun, 17 May 2009 16:28:13 +0000 (16:28 +0000)]
Reverted fix to PR#1931.. breaks compilation in 0.9.8.
Dr. Stephen Henson [Sun, 17 May 2009 14:48:57 +0000 (14:48 +0000)]
Update from 1.0.0-stable
Richard Levitte [Sun, 17 May 2009 07:22:18 +0000 (07:22 +0000)]
Stupid typo
Dr. Stephen Henson [Sat, 16 May 2009 16:23:35 +0000 (16:23 +0000)]
Fix from 1.0.0-stable.
Dr. Stephen Henson [Sat, 16 May 2009 16:18:45 +0000 (16:18 +0000)]
Update from 1.0.0-stable.
Dr. Stephen Henson [Sat, 16 May 2009 15:51:59 +0000 (15:51 +0000)]
Updates from 1.0.0-stable.
Dr. Stephen Henson [Fri, 15 May 2009 23:07:59 +0000 (23:07 +0000)]
Update from HEAD.
Richard Levitte [Fri, 15 May 2009 16:37:29 +0000 (16:37 +0000)]
Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
Thank you\!
(note: not tested for now, a few nightly builds should give indications though)
Richard Levitte [Fri, 15 May 2009 16:15:03 +0000 (16:15 +0000)]
make update