oweals/openssl.git
22 years agotypo fix
Geoff Thorpe [Mon, 5 Aug 2002 02:55:27 +0000 (02:55 +0000)]
typo fix

22 years agoVarious parts of the RSA documentation were inaccurate and out of date and
Geoff Thorpe [Sun, 4 Aug 2002 21:10:05 +0000 (21:10 +0000)]
Various parts of the RSA documentation were inaccurate and out of date and
this fixes those that I'm currently aware of. In particular, the ENGINE
interference in the RSA API has hopefully been clarified. This still needs
to be done for other areas of the API ...

22 years agoA single monolithic man page for the ENGINE stuff. This is a rough
Geoff Thorpe [Sun, 4 Aug 2002 21:03:04 +0000 (21:03 +0000)]
A single monolithic man page for the ENGINE stuff. This is a rough
first-cut but provides better documentation than having nothing on the
ENGINE API.

22 years agoThis commit was manufactured by cvs2svn to create branch
cvs2svn [Sun, 4 Aug 2002 20:57:20 +0000 (20:57 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_7-stable'.

22 years agoA single monolithic man page for the ENGINE stuff. This is a rough
Geoff Thorpe [Sun, 4 Aug 2002 20:57:19 +0000 (20:57 +0000)]
A single monolithic man page for the ENGINE stuff. This is a rough
first-cut but provides better documentation than having nothing on the
ENGINE API.

22 years agoFix "make install_docs" (and thus "make install").
Geoff Thorpe [Sun, 4 Aug 2002 20:40:23 +0000 (20:40 +0000)]
Fix "make install_docs" (and thus "make install").

22 years agoFix "make install_docs" (and thus "make install").
Geoff Thorpe [Sun, 4 Aug 2002 20:38:54 +0000 (20:38 +0000)]
Fix "make install_docs" (and thus "make install").

22 years agooops -- must use EVP_MD_size, not EVP_MD_block_size
Bodo Möller [Sat, 3 Aug 2002 18:50:17 +0000 (18:50 +0000)]
oops -- must use EVP_MD_size, not EVP_MD_block_size

22 years agooops -- must use EVP_MD_size, not EVP_MD_block_size
Bodo Möller [Sat, 3 Aug 2002 18:49:39 +0000 (18:49 +0000)]
oops -- must use EVP_MD_size, not EVP_MD_block_size

22 years agooops, undo previous change (was just for testing)
Bodo Möller [Sat, 3 Aug 2002 18:28:34 +0000 (18:28 +0000)]
oops, undo previous change (was just for testing)

22 years agofix bn_expand2
Bodo Möller [Sat, 3 Aug 2002 18:27:47 +0000 (18:27 +0000)]
fix bn_expand2

22 years agouse bn_wexpand instead of bn_expand2 (the latter is not needed here,
Bodo Möller [Sat, 3 Aug 2002 17:51:29 +0000 (17:51 +0000)]
use bn_wexpand instead of bn_expand2 (the latter is not needed here,
and it does not yet work correctly)

Submitted by: Douglas Stebila

22 years agoFix typo
Dr. Stephen Henson [Fri, 2 Aug 2002 19:03:41 +0000 (19:03 +0000)]
Fix typo

22 years agoFix typo
Dr. Stephen Henson [Fri, 2 Aug 2002 18:58:33 +0000 (18:58 +0000)]
Fix typo

22 years agoFix the ASN1 sanity check: correct header length
Dr. Stephen Henson [Fri, 2 Aug 2002 18:48:55 +0000 (18:48 +0000)]
Fix the ASN1 sanity check: correct header length
calculation and check overflow against LONG_MAX.

22 years agoFix the ASN1 sanity check: correct header length
Dr. Stephen Henson [Fri, 2 Aug 2002 18:42:40 +0000 (18:42 +0000)]
Fix the ASN1 sanity check: correct header length
calculation and check overflow against LONG_MAX.

22 years agodisable Sun divison algorithm by default
Bodo Möller [Fri, 2 Aug 2002 18:26:02 +0000 (18:26 +0000)]
disable Sun divison algorithm by default

22 years agofix bn_expand2
Bodo Möller [Fri, 2 Aug 2002 18:23:55 +0000 (18:23 +0000)]
fix bn_expand2

22 years agooptical changes
Bodo Möller [Fri, 2 Aug 2002 17:25:05 +0000 (17:25 +0000)]
optical changes

22 years agotypo
Bodo Möller [Fri, 2 Aug 2002 15:28:31 +0000 (15:28 +0000)]
typo

22 years agoremove obsolete part of comment
Bodo Möller [Fri, 2 Aug 2002 15:13:10 +0000 (15:13 +0000)]
remove obsolete part of comment

22 years agoremove obsoleted disabled code
Bodo Möller [Fri, 2 Aug 2002 15:07:08 +0000 (15:07 +0000)]
remove obsoleted disabled code

22 years agoLet BN_rand_range() abort with an error after 100 iterations
Bodo Möller [Fri, 2 Aug 2002 15:02:03 +0000 (15:02 +0000)]
Let BN_rand_range() abort with an error after 100 iterations
without success.

22 years agoupdate
Bodo Möller [Fri, 2 Aug 2002 14:58:09 +0000 (14:58 +0000)]
update

22 years agoChange BN_mod_sqrt() so that it verifies that the input value is
Bodo Möller [Fri, 2 Aug 2002 14:57:53 +0000 (14:57 +0000)]
Change BN_mod_sqrt() so that it verifies that the input value is
really the square of the return value.

22 years agomove GF2m tests to the end
Bodo Möller [Fri, 2 Aug 2002 14:49:59 +0000 (14:49 +0000)]
move GF2m tests to the end

22 years agoRename implementations of method functions so that they match
Bodo Möller [Fri, 2 Aug 2002 14:28:37 +0000 (14:28 +0000)]
Rename implementations of method functions so that they match
the new method names where _GF... suffixes have been removed.

Revert changes to ..._{get/set}_Jprojective_coordinates_...:
The current implementation for ECC over binary fields does not use
projective coordinates, and if it did, it would not use Jacobian
projective coordinates; so it's OK to use the ..._GFp prefix for all
this.

Add author attributions to some files so that it doesn't look
as if Sun wrote all of this :-)

22 years agotypos
Bodo Möller [Fri, 2 Aug 2002 13:52:19 +0000 (13:52 +0000)]
typos

22 years agoec2_smpt.c must be listed in LIBSRC
Bodo Möller [Fri, 2 Aug 2002 13:50:12 +0000 (13:50 +0000)]
ec2_smpt.c must be listed in LIBSRC

22 years agothere is no alternative EC_METHOD for curves over GF(2^m) (yet)
Bodo Möller [Fri, 2 Aug 2002 13:43:26 +0000 (13:43 +0000)]
there is no alternative EC_METHOD for curves over GF(2^m) (yet)

22 years agoadd support for elliptic curves over binary fields
Bodo Möller [Fri, 2 Aug 2002 13:42:24 +0000 (13:42 +0000)]
add support for elliptic curves over binary fields

Submitted by: Duglas Stebila <douglas.stebila@sun.com>,
              Sheueling Chang <sheueling.chang@sun.com>

(CHANGES entries by Bodo Moeller)

22 years agoextend curve list (additional curves over binary fields)
Bodo Möller [Fri, 2 Aug 2002 13:06:17 +0000 (13:06 +0000)]
extend curve list (additional curves over binary fields)

Submitted by: Sheueling Chang Shantz and Douglas Stebila (Sun Microsystems Laboratories)

22 years agoBinary field arithmetic contributed by Sun Microsystems.
Bodo Möller [Fri, 2 Aug 2002 13:03:55 +0000 (13:03 +0000)]
Binary field arithmetic contributed by Sun Microsystems.
The 'OPENSSL_NO_SUN_DIV' default is still subject to change,
so I didn't bother to finish the CHANGES entry yet.

Submitted by: Douglas Stebila <douglas.stebila@sun.com>, Sheueling Chang <sheueling.chang@sun.com>
(CHANGES entry by Bodo Moeller)

22 years agoAdd more WAP/WTLS elliptic curve OIDs.
Bodo Möller [Fri, 2 Aug 2002 12:28:34 +0000 (12:28 +0000)]
Add more WAP/WTLS elliptic curve OIDs.

Submitted by: Douglas Stebila <douglas.stebila@sun.com>

22 years agoNew error code ERR_R_DISABLED
Bodo Möller [Fri, 2 Aug 2002 12:27:21 +0000 (12:27 +0000)]
New error code ERR_R_DISABLED

Submitted by: Douglas Stebila <douglas.stebila@sun.com>

22 years agoget rid of OpenSSLDie
Bodo Möller [Fri, 2 Aug 2002 11:48:15 +0000 (11:48 +0000)]
get rid of OpenSSLDie

22 years agoget rid of OpenSSLDie
Bodo Möller [Fri, 2 Aug 2002 11:47:24 +0000 (11:47 +0000)]
get rid of OpenSSLDie

22 years agomake update
Richard Levitte [Fri, 2 Aug 2002 11:23:27 +0000 (11:23 +0000)]
make update

22 years agomake update
Richard Levitte [Fri, 2 Aug 2002 11:23:12 +0000 (11:23 +0000)]
make update

22 years agoCertain flag macros were tested with #if instead if #ifdef...
Richard Levitte [Fri, 2 Aug 2002 11:13:55 +0000 (11:13 +0000)]
Certain flag macros were tested with #if instead if #ifdef...

22 years agoCertain flag macros were tested with #if instead if #ifdef...
Richard Levitte [Fri, 2 Aug 2002 11:13:37 +0000 (11:13 +0000)]
Certain flag macros were tested with #if instead if #ifdef...

22 years agoWe don't need to find out which pod2man to use more than once
Richard Levitte [Thu, 1 Aug 2002 21:53:08 +0000 (21:53 +0000)]
We don't need to find out which pod2man to use more than once

22 years agoWe don't need to find out which pod2man to use more than once
Richard Levitte [Thu, 1 Aug 2002 21:52:56 +0000 (21:52 +0000)]
We don't need to find out which pod2man to use more than once

22 years agoDon't try testing with parallell make, that will just fail.
Richard Levitte [Thu, 1 Aug 2002 21:34:39 +0000 (21:34 +0000)]
Don't try testing with parallell make, that will just fail.
PR: 175

22 years agoDon't try testing with parallell make, that will just fail.
Richard Levitte [Thu, 1 Aug 2002 21:34:24 +0000 (21:34 +0000)]
Don't try testing with parallell make, that will just fail.
PR: 175

22 years agoAdd aix64-cc, and make sure that ar gets proper flags for 64-bit libraries
Richard Levitte [Thu, 1 Aug 2002 20:28:50 +0000 (20:28 +0000)]
Add aix64-cc, and make sure that ar gets proper flags for 64-bit libraries

22 years agoAdd aix64-cc, and make sure that ar gets proper flags for 64-bit libraries
Richard Levitte [Thu, 1 Aug 2002 20:28:16 +0000 (20:28 +0000)]
Add aix64-cc, and make sure that ar gets proper flags for 64-bit libraries

22 years agomake update
Richard Levitte [Thu, 1 Aug 2002 19:45:54 +0000 (19:45 +0000)]
make update

22 years agomake update
Richard Levitte [Thu, 1 Aug 2002 19:44:43 +0000 (19:44 +0000)]
make update

22 years agoAdd the CBC flag for cbc ciphers
Richard Levitte [Thu, 1 Aug 2002 19:33:08 +0000 (19:33 +0000)]
Add the CBC flag for cbc ciphers

22 years agoAdd the CBC flag for cbc ciphers
Richard Levitte [Thu, 1 Aug 2002 19:32:48 +0000 (19:32 +0000)]
Add the CBC flag for cbc ciphers

22 years agoAvoid yet another name clash with libdes, and make the declaration consistent
Richard Levitte [Thu, 1 Aug 2002 19:31:15 +0000 (19:31 +0000)]
Avoid yet another name clash with libdes, and make the declaration consistent
with the definition.

22 years agoAvoid yet another name clash with libdes, and make the declaration consistent
Richard Levitte [Thu, 1 Aug 2002 19:30:58 +0000 (19:30 +0000)]
Avoid yet another name clash with libdes, and make the declaration consistent
with the definition.

22 years agoMake it possible to load keys from stdin, and restore that
Richard Levitte [Thu, 1 Aug 2002 16:28:40 +0000 (16:28 +0000)]
Make it possible to load keys from stdin, and restore that
functionality in the programs that had that before.
Part fo PR 164

22 years agoMake it possible to load keys from stdin, and restore that
Richard Levitte [Thu, 1 Aug 2002 16:27:47 +0000 (16:27 +0000)]
Make it possible to load keys from stdin, and restore that
functionality in the programs that had that before.
Part fo PR 164

22 years agoOCSP and KRB5 Makefil.ssl should be consistent with all the others
Richard Levitte [Thu, 1 Aug 2002 14:19:08 +0000 (14:19 +0000)]
OCSP and KRB5 Makefil.ssl should be consistent with all the others

22 years agoOCSP and KRB5 Makefil.ssl should be consistent with all the others
Richard Levitte [Thu, 1 Aug 2002 14:18:52 +0000 (14:18 +0000)]
OCSP and KRB5 Makefil.ssl should be consistent with all the others

22 years agoLinux on s390 really knows about loading dynamically.
Richard Levitte [Thu, 1 Aug 2002 13:50:24 +0000 (13:50 +0000)]
Linux on s390 really knows about loading dynamically.
PR: 183

22 years agoLinux on s390 really knows about loading dynamically.
Richard Levitte [Thu, 1 Aug 2002 13:50:08 +0000 (13:50 +0000)]
Linux on s390 really knows about loading dynamically.
PR: 183

22 years agoCut'n'paste error with other reposnder certificates cleared.
Richard Levitte [Thu, 1 Aug 2002 13:39:46 +0000 (13:39 +0000)]
Cut'n'paste error with other reposnder certificates cleared.
PR: 190

22 years agoCut'n'paste error with other reposnder certificates cleared.
Richard Levitte [Thu, 1 Aug 2002 13:39:39 +0000 (13:39 +0000)]
Cut'n'paste error with other reposnder certificates cleared.
PR: 190

22 years agoIf CRYPTO_realloc() is called with a NULL pointer, have it call
Richard Levitte [Thu, 1 Aug 2002 10:08:45 +0000 (10:08 +0000)]
If CRYPTO_realloc() is called with a NULL pointer, have it call
OPENSSL_malloc().
PR: 187

22 years agoIf CRYPTO_realloc() is called with a NULL pointer, have it call
Richard Levitte [Thu, 1 Aug 2002 10:08:37 +0000 (10:08 +0000)]
If CRYPTO_realloc() is called with a NULL pointer, have it call
OPENSSL_malloc().
PR: 187

22 years agoIf the email address is moved from the subject to the subject alternate name,
Richard Levitte [Wed, 31 Jul 2002 14:06:09 +0000 (14:06 +0000)]
If the email address is moved from the subject to the subject alternate name,
the subject in the certificate would differ from the subject in the index file,
which has quite bad concequences.
PR: 180

22 years agoIf the email address is moved from the subject to the subject alternate name,
Richard Levitte [Wed, 31 Jul 2002 14:05:57 +0000 (14:05 +0000)]
If the email address is moved from the subject to the subject alternate name,
the subject in the certificate would differ from the subject in the index file,
which has quite bad concequences.
PR: 180

22 years agoMake sure to use $(MAKE) everywhere instead of make.
Richard Levitte [Wed, 31 Jul 2002 13:49:58 +0000 (13:49 +0000)]
Make sure to use $(MAKE) everywhere instead of make.
Part of PR 181

22 years agoMake sure to use $(MAKE) everywhere instead of make.
Richard Levitte [Wed, 31 Jul 2002 13:49:06 +0000 (13:49 +0000)]
Make sure to use $(MAKE) everywhere instead of make.
Part of PR 181

22 years agoln -f -s doesn't always work, so do a rm -f followed by a ln -s.
Richard Levitte [Wed, 31 Jul 2002 13:38:39 +0000 (13:38 +0000)]
ln -f -s doesn't always work, so do a rm -f followed by a ln -s.
Part of PR 181

22 years agoln -f -s doesn't always work, so do a rm -f followed by a ln -s.
Richard Levitte [Wed, 31 Jul 2002 13:38:32 +0000 (13:38 +0000)]
ln -f -s doesn't always work, so do a rm -f followed by a ln -s.
Part of PR 181

22 years agoThe version of the shared library should, for now, reflect the version
Richard Levitte [Wed, 31 Jul 2002 13:24:26 +0000 (13:24 +0000)]
The version of the shared library should, for now, reflect the version
of OpenSSL.
Part of PR 181.

22 years agoTypo.
Lutz Jänicke [Tue, 30 Jul 2002 13:36:31 +0000 (13:36 +0000)]
Typo.
Submitted by: Jeffrey Altman <jaltman@columbia.edu>
Reviewed by:
PR: 169

22 years agoTypo.
Lutz Jänicke [Tue, 30 Jul 2002 13:34:44 +0000 (13:34 +0000)]
Typo.
Submitted by: Jeffrey Altman <jaltman@columbia.edu>
Reviewed by:
PR: 169

22 years agoOpenSSL Security Advisory [30 July 2002]
Lutz Jänicke [Tue, 30 Jul 2002 13:04:04 +0000 (13:04 +0000)]
OpenSSL Security Advisory [30 July 2002]

Changes marked "(CHATS)" were sponsored by the Defense Advanced
Research Projects Agency (DARPA) and Air Force Research Laboratory,
Air Force Materiel Command, USAF, under agreement number
F30602-01-2-0537.

22 years ago"make update"
Lutz Jänicke [Tue, 30 Jul 2002 12:44:33 +0000 (12:44 +0000)]
"make update"

22 years ago0.9.6e and 0.9.7-beta3 are out.
Lutz Jänicke [Tue, 30 Jul 2002 11:32:47 +0000 (11:32 +0000)]
0.9.6e and 0.9.7-beta3 are out.

22 years agoTypo. OpenSSL_0_9_7-beta3
Lutz Jänicke [Tue, 30 Jul 2002 11:30:03 +0000 (11:30 +0000)]
Typo.
Submitted by:
Reviewed by:
PR:

22 years agoRelease 0.9.7-beta3
Lutz Jänicke [Tue, 30 Jul 2002 11:27:18 +0000 (11:27 +0000)]
Release 0.9.7-beta3
Submitted by:
Reviewed by:
PR:

22 years agoOpenSSL Security Advisory [30 July 2002]
Lutz Jänicke [Tue, 30 Jul 2002 11:21:19 +0000 (11:21 +0000)]
OpenSSL Security Advisory [30 July 2002]

Changes marked "(CHATS)" were sponsored by the Defense Advanced
Research Projects Agency (DARPA) and Air Force Research Laboratory,
Air Force Materiel Command, USAF, under agreement number
F30602-01-2-0537.
Submitted by:
Reviewed by:
PR:

22 years ago"make update"
Lutz Jänicke [Tue, 30 Jul 2002 07:18:03 +0000 (07:18 +0000)]
"make update"
Submitted by:
Reviewed by:
PR:

22 years agoOnly use DSA-functions if available.
Lutz Jänicke [Mon, 29 Jul 2002 13:31:44 +0000 (13:31 +0000)]
Only use DSA-functions if available.
Submitted by: "Hellan,Kim KHE" <KHE@kmd.dk>
Reviewed by:
PR: 167

22 years agoOnly use DSA-functions if available.
Lutz Jänicke [Mon, 29 Jul 2002 13:28:57 +0000 (13:28 +0000)]
Only use DSA-functions if available.
Submitted by: "Hellan,Kim KHE" <KHE@kmd.dk>
Reviewed by:
PR: 167

22 years agomention SSL_do_handshake()
Bodo Möller [Mon, 29 Jul 2002 12:35:19 +0000 (12:35 +0000)]
mention SSL_do_handshake()

22 years agomention SSL_do_handshake()
Bodo Möller [Mon, 29 Jul 2002 12:34:14 +0000 (12:34 +0000)]
mention SSL_do_handshake()

22 years agoUse SEC1 format for EC private keys.
Bodo Möller [Fri, 26 Jul 2002 08:41:04 +0000 (08:41 +0000)]
Use SEC1 format for EC private keys.
This is not ECDSA specific, so it's now PEM_STRING_ECPRIVATEKEY etc.

Submitted by: Nils Larsch <nlarsch@compuserve.de>

22 years agoAdd bn_dup_expand() comment from the main branch explaining that
Bodo Möller [Thu, 25 Jul 2002 12:14:41 +0000 (12:14 +0000)]
Add bn_dup_expand() comment from the main branch explaining that
bn_dup_expand() is broken.

[No need to fix this in 0.9.7-stable, it is just an unused internal
function.]

22 years agoMove zeroing from bn_expand_internal() to bn_expand2() so that it
Bodo Möller [Thu, 25 Jul 2002 12:12:39 +0000 (12:12 +0000)]
Move zeroing from bn_expand_internal() to bn_expand2() so that it
happens reliably, even if the BIGNUM is already sufficiently large.

[Note that the bn_expand()/bn_wexpand() macros call bn_expand2() only
if the BIGNUM actually has to grow, so this change does not add any
new overhead as currently bn_expand2() is never called directly.]

22 years agomore detailed instructions for export from US
Bodo Möller [Thu, 25 Jul 2002 11:19:58 +0000 (11:19 +0000)]
more detailed instructions for export from US

22 years agomore detailed instructions for export from US
Bodo Möller [Thu, 25 Jul 2002 11:19:36 +0000 (11:19 +0000)]
more detailed instructions for export from US

22 years agoDon't clobber loop variable.
Richard Levitte [Wed, 24 Jul 2002 14:43:00 +0000 (14:43 +0000)]
Don't clobber loop variable.
PR: 159

22 years agoDon't clobber loop variable.
Richard Levitte [Wed, 24 Jul 2002 14:42:38 +0000 (14:42 +0000)]
Don't clobber loop variable.
PR: 159

22 years agoDocument the recent DJGPP-related changes
Richard Levitte [Tue, 23 Jul 2002 13:46:05 +0000 (13:46 +0000)]
Document the recent DJGPP-related changes

22 years agoDocument the recent DJGPP-related changes
Richard Levitte [Tue, 23 Jul 2002 13:45:38 +0000 (13:45 +0000)]
Document the recent DJGPP-related changes

22 years agoMake dummy tests to make it easier to physically remove unwanted algorithms.
Richard Levitte [Tue, 23 Jul 2002 13:32:10 +0000 (13:32 +0000)]
Make dummy tests to make it easier to physically remove unwanted algorithms.
This should complete PR 75

22 years agoThis commit was manufactured by cvs2svn to create branch
cvs2svn [Tue, 23 Jul 2002 13:31:07 +0000 (13:31 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_7-stable'.

22 years agoMake dummy tests to make it easier to physically remove unwanted algorithms.
Richard Levitte [Tue, 23 Jul 2002 13:31:04 +0000 (13:31 +0000)]
Make dummy tests to make it easier to physically remove unwanted algorithms.
This should complete PR 75

22 years agoharmonize options with those for 'ecparam',
Bodo Möller [Tue, 23 Jul 2002 09:51:57 +0000 (09:51 +0000)]
harmonize options with those for 'ecparam',
remove redudant option '-pub'

Submitted by: Nils Larsch

22 years agoIf DH is disabled, don't define the DH functions.
Richard Levitte [Mon, 22 Jul 2002 14:18:11 +0000 (14:18 +0000)]
If DH is disabled, don't define the DH functions.
Notified by Kim Hellan <KHE@kmd.dk>

22 years agoIf DH is disabled, don't define the DH functions.
Richard Levitte [Mon, 22 Jul 2002 14:18:00 +0000 (14:18 +0000)]
If DH is disabled, don't define the DH functions.
Notified by Kim Hellan <KHE@kmd.dk>

22 years agofix a typo and clarify
Bodo Möller [Mon, 22 Jul 2002 09:05:41 +0000 (09:05 +0000)]
fix a typo and clarify

22 years agofix a typo and clarify
Bodo Möller [Mon, 22 Jul 2002 09:04:36 +0000 (09:04 +0000)]
fix a typo and clarify