oweals/openssl.git
20 years agomake update
Richard Levitte [Tue, 23 Mar 2004 15:31:30 +0000 (15:31 +0000)]
make update

20 years agoMakefile.ssl is no more. We generate Makefile directly.
Richard Levitte [Tue, 23 Mar 2004 15:28:21 +0000 (15:28 +0000)]
Makefile.ssl is no more.  We generate Makefile directly.

20 years agoIt's a mistake to commit the generated Makefile
Richard Levitte [Tue, 23 Mar 2004 15:24:31 +0000 (15:24 +0000)]
It's a mistake to commit the generated Makefile

20 years agoRecent changes from 0.9.7-stable.
Richard Levitte [Tue, 23 Mar 2004 15:01:13 +0000 (15:01 +0000)]
Recent changes from 0.9.7-stable.

20 years agoAdd FIPS mode to openssl app.
Ben Laurie [Sat, 13 Mar 2004 20:34:08 +0000 (20:34 +0000)]
Add FIPS mode to openssl app.

20 years agoImprove test output.
Ben Laurie [Sat, 13 Mar 2004 17:46:12 +0000 (17:46 +0000)]
Improve test output.

20 years agoIRIX 6.x shared build fix-up.
Andy Polyakov [Fri, 12 Mar 2004 21:33:49 +0000 (21:33 +0000)]
IRIX 6.x shared build fix-up.

20 years agoSpelling the test right helps.
Ben Laurie [Thu, 11 Mar 2004 17:39:49 +0000 (17:39 +0000)]
Spelling the test right helps.

20 years agoFinish elimination of Makefile.ssl
Ben Laurie [Thu, 11 Mar 2004 12:31:43 +0000 (12:31 +0000)]
Finish elimination of Makefile.ssl

20 years agoStep 1 in blowing away Makefile.ssl
Ben Laurie [Wed, 10 Mar 2004 09:23:51 +0000 (09:23 +0000)]
Step 1 in blowing away Makefile.ssl

20 years agoRecent changes from 0.9.7-stable.
Richard Levitte [Mon, 8 Mar 2004 14:14:21 +0000 (14:14 +0000)]
Recent changes from 0.9.7-stable.

20 years agoRecent changes from 0.9.7-stable.
Richard Levitte [Mon, 8 Mar 2004 04:36:19 +0000 (04:36 +0000)]
Recent changes from 0.9.7-stable.

20 years agoAdd pairwise tests, fix makefiles.
Ben Laurie [Fri, 5 Mar 2004 08:28:01 +0000 (08:28 +0000)]
Add pairwise tests, fix makefiles.

20 years agoTypos.
Dr. Stephen Henson [Thu, 4 Mar 2004 21:45:16 +0000 (21:45 +0000)]
Typos.

Reported by: Jose Castejon-Amenedo <Jose.Castejon-Amenedo@hp.com>

20 years agoSuperfluous bracket.
Ben Laurie [Wed, 3 Mar 2004 18:25:12 +0000 (18:25 +0000)]
Superfluous bracket.

20 years agoIn FIPS mode ranlib before hashing.
Ben Laurie [Wed, 3 Mar 2004 15:10:09 +0000 (15:10 +0000)]
In FIPS mode ranlib before hashing.

20 years agoMore configuration docs.
Dr. Stephen Henson [Tue, 2 Mar 2004 13:33:52 +0000 (13:33 +0000)]
More configuration docs.

20 years agoThis commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
cvs2svn [Tue, 2 Mar 2004 13:31:33 +0000 (13:31 +0000)]
This commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
0_9_7-stable'.

20 years agoConfig docs.
Dr. Stephen Henson [Tue, 2 Mar 2004 13:31:32 +0000 (13:31 +0000)]
Config docs.

20 years agoSome changes from 0.9.7-stable that haven't been merged in yet.
Richard Levitte [Tue, 2 Mar 2004 03:31:57 +0000 (03:31 +0000)]
Some changes from 0.9.7-stable that haven't been merged in yet.

20 years agoDocumentation of the KISS autoconfig functions.
Dr. Stephen Henson [Tue, 2 Mar 2004 01:02:08 +0000 (01:02 +0000)]
Documentation of the KISS autoconfig functions.

20 years agoThis commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
cvs2svn [Tue, 2 Mar 2004 01:01:12 +0000 (01:01 +0000)]
This commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
0_9_7-stable'.

20 years agoDocumentation of the KISS autoconfig functions.
Dr. Stephen Henson [Tue, 2 Mar 2004 01:01:11 +0000 (01:01 +0000)]
Documentation of the KISS autoconfig functions.

20 years agoMore autoconfig docs.
Dr. Stephen Henson [Mon, 1 Mar 2004 19:16:45 +0000 (19:16 +0000)]
More autoconfig docs.

20 years agoMore autoconfig docs.
Dr. Stephen Henson [Mon, 1 Mar 2004 19:15:24 +0000 (19:15 +0000)]
More autoconfig docs.

20 years agoAvoid a memory leak in OCSP_parse_url().
Richard Levitte [Mon, 1 Mar 2004 14:58:22 +0000 (14:58 +0000)]
Avoid a memory leak in OCSP_parse_url().
Notified by Paul Siegel <psiegel@corestreet.com>

20 years agoFix from head.
Dr. Stephen Henson [Mon, 1 Mar 2004 13:24:08 +0000 (13:24 +0000)]
Fix from head.

20 years agoSince the last commit also included the OCSP nonce change
Dr. Stephen Henson [Mon, 1 Mar 2004 01:10:26 +0000 (01:10 +0000)]
Since the last commit also included the OCSP nonce change
(which I thought I'd included before). I'd better add the
corresponding CHANGES entry.

20 years agoInitial docs for the OpenSSL library configuration via openssl.cnf
Dr. Stephen Henson [Mon, 1 Mar 2004 01:05:53 +0000 (01:05 +0000)]
Initial docs for the OpenSSL library configuration via openssl.cnf

20 years agoInitial docs for the OpenSSL library configuration via openssl.cnf
Dr. Stephen Henson [Mon, 1 Mar 2004 01:04:40 +0000 (01:04 +0000)]
Initial docs for the OpenSSL library configuration via openssl.cnf

20 years agoFix broken test vectors.
Ben Laurie [Sun, 29 Feb 2004 19:18:15 +0000 (19:18 +0000)]
Fix broken test vectors.

20 years agoAdd ECDSA documentation.
Geoff Thorpe [Fri, 27 Feb 2004 23:03:23 +0000 (23:03 +0000)]
Add ECDSA documentation.

Submitted by: Nils Larsch

20 years agoAES is spelled AES, not ASE. Oops...
Richard Levitte [Fri, 27 Feb 2004 02:24:49 +0000 (02:24 +0000)]
AES is spelled AES, not ASE.  Oops...

20 years agoMake sure the given EVP_PKEY is updated in the PEM_STRING_PKCS8INF case also.
Richard Levitte [Thu, 26 Feb 2004 22:07:45 +0000 (22:07 +0000)]
Make sure the given EVP_PKEY is updated in the PEM_STRING_PKCS8INF case also.
PR: 833

20 years agoDocument the AES options for 'openssl smime'.
Richard Levitte [Thu, 26 Feb 2004 21:44:41 +0000 (21:44 +0000)]
Document the AES options for 'openssl smime'.
PR: 834

20 years agoA cleanup of the ecs_ossl.c code and some (doxygen) comments for ecdsa.h
Geoff Thorpe [Sun, 22 Feb 2004 19:32:53 +0000 (19:32 +0000)]
A cleanup of the ecs_ossl.c code and some (doxygen) comments for ecdsa.h

Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe

20 years agoWhen adding positive elements, we can use BN_uadd() instead of BN_add().
Geoff Thorpe [Sun, 22 Feb 2004 19:30:41 +0000 (19:30 +0000)]
When adding positive elements, we can use BN_uadd() instead of BN_add().

Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe

20 years agoUse an OCTET STRING for the encoding of an OCSP nonce value.
Dr. Stephen Henson [Thu, 19 Feb 2004 18:16:38 +0000 (18:16 +0000)]
Use an OCTET STRING for the encoding of an OCSP nonce value.

The old raw format can't be handled by some implementations
and updates to RFC2560 will make this mandatory.

20 years agoImprove selftests, check for stuck PRNG(!).
Ben Laurie [Tue, 17 Feb 2004 11:51:54 +0000 (11:51 +0000)]
Improve selftests, check for stuck PRNG(!).

20 years agoRecent changes from 0.9.7-stable.
Richard Levitte [Fri, 13 Feb 2004 21:57:51 +0000 (21:57 +0000)]
Recent changes from 0.9.7-stable.
make update

20 years agoFiles to ignore
Richard Levitte [Fri, 13 Feb 2004 21:56:23 +0000 (21:56 +0000)]
Files to ignore

20 years agoWe have to save text0 each time round the outer loop.
Ben Laurie [Thu, 12 Feb 2004 19:32:57 +0000 (19:32 +0000)]
We have to save text0 each time round the outer loop.

20 years agominor signed/unsigned warning fixes
Geoff Thorpe [Tue, 10 Feb 2004 18:46:10 +0000 (18:46 +0000)]
minor signed/unsigned warning fixes

20 years agoFix handling of -offset and -length in asn1parse tool.
Dr. Stephen Henson [Sun, 8 Feb 2004 13:31:53 +0000 (13:31 +0000)]
Fix handling of -offset and -length in asn1parse tool.

If -offset exceeds -length of data available exit with an error.

Don't read past end of total data available when -offset supplied.

If -length exceeds total available truncate it.

20 years agoFix handling of -offset and -length in asn1parse tool.
Dr. Stephen Henson [Sun, 8 Feb 2004 13:30:04 +0000 (13:30 +0000)]
Fix handling of -offset and -length in asn1parse tool.

If -offset exceeds -length of data available exit with an error.

Don't read past end of total data available when -offset supplied.

If -length exceeds total available truncate it.

20 years agoTypo in crypto/bn/asm/x86_64.c, bn_div_words().
Andy Polyakov [Sat, 7 Feb 2004 09:51:28 +0000 (09:51 +0000)]
Typo in crypto/bn/asm/x86_64.c, bn_div_words().
PR: 821

20 years agoTypo in crypto/bn/asm/x86_64.c, bn_div_words().
Andy Polyakov [Sat, 7 Feb 2004 09:50:46 +0000 (09:50 +0000)]
Typo in crypto/bn/asm/x86_64.c, bn_div_words().
PR: 821

20 years agoImprove test suite. BEN_FIPS_TEST_5
Ben Laurie [Mon, 2 Feb 2004 15:25:30 +0000 (15:25 +0000)]
Improve test suite.

20 years agoAdd flag to avoid continuous
Dr. Stephen Henson [Sun, 1 Feb 2004 13:39:51 +0000 (13:39 +0000)]
Add flag to avoid continuous
memory allocate when calling EVP_MD_CTX_copy_ex().

Without this HMAC is several times slower than
< 0.9.7.

20 years agoWrong variable!
Ben Laurie [Sat, 31 Jan 2004 17:18:02 +0000 (17:18 +0000)]
Wrong variable!

20 years agoForce odd parity.
Ben Laurie [Sat, 31 Jan 2004 16:39:59 +0000 (16:39 +0000)]
Force odd parity.

20 years agoEliminate pointless variable.
Ben Laurie [Sat, 31 Jan 2004 16:30:13 +0000 (16:30 +0000)]
Eliminate pointless variable.

20 years agoTest suite plus failure if selftest fails.
Ben Laurie [Fri, 30 Jan 2004 19:22:22 +0000 (19:22 +0000)]
Test suite plus failure if selftest fails.

20 years agoTypo in PA-RISC 2 rules in crypto/bn/Makefile.ssl
Andy Polyakov [Fri, 30 Jan 2004 05:41:23 +0000 (05:41 +0000)]
Typo in PA-RISC 2 rules in crypto/bn/Makefile.ssl

20 years agoHP/UX PA-RISC 2 targets update.
Andy Polyakov [Thu, 29 Jan 2004 22:16:08 +0000 (22:16 +0000)]
HP/UX PA-RISC 2 targets update.

20 years agoRemove typos
Richard Levitte [Thu, 29 Jan 2004 11:24:32 +0000 (11:24 +0000)]
Remove typos

20 years ago-Wtraditional was a little too much...
Richard Levitte [Thu, 29 Jan 2004 10:56:18 +0000 (10:56 +0000)]
-Wtraditional was a little too much...

20 years agoRecent changes from 0.9.7-stable
Richard Levitte [Thu, 29 Jan 2004 09:48:49 +0000 (09:48 +0000)]
Recent changes from 0.9.7-stable

20 years agoRecent changes from 0.9.7-stable
Richard Levitte [Thu, 29 Jan 2004 09:40:44 +0000 (09:40 +0000)]
Recent changes from 0.9.7-stable

20 years agoTypo
Richard Levitte [Thu, 29 Jan 2004 02:55:43 +0000 (02:55 +0000)]
Typo

20 years agoIn the development branch, it feels quite all right to warn on a lot
Richard Levitte [Thu, 29 Jan 2004 00:05:09 +0000 (00:05 +0000)]
In the development branch, it feels quite all right to warn on a lot
more stuff.

20 years agomake update
Richard Levitte [Wed, 28 Jan 2004 19:07:41 +0000 (19:07 +0000)]
make update

20 years agoAdd the missing parts for DES CFB1 and CFB8.
Richard Levitte [Wed, 28 Jan 2004 19:05:35 +0000 (19:05 +0000)]
Add the missing parts for DES CFB1 and CFB8.
Add the corresponding AES parts while I'm at it.
make update

20 years agomake update
Richard Levitte [Wed, 28 Jan 2004 18:38:33 +0000 (18:38 +0000)]
make update

20 years agoUnsigned vs. signed problem removed
Richard Levitte [Wed, 28 Jan 2004 08:48:11 +0000 (08:48 +0000)]
Unsigned vs. signed problem removed

20 years ago#undef _POSIX_C_SOURCE in ui_openssl.c ruined IRIX builds. Comment on why
Andy Polyakov [Tue, 27 Jan 2004 22:06:48 +0000 (22:06 +0000)]
#undef _POSIX_C_SOURCE in ui_openssl.c ruined IRIX builds. Comment on why
_POSIX_C_SOURCE needed in first place.

20 years agoCFB DES sync-up with FIPS branch.
Andy Polyakov [Tue, 27 Jan 2004 21:47:35 +0000 (21:47 +0000)]
CFB DES sync-up with FIPS branch.

20 years agoAvoid signed vs. unsigned warnings (which are treated like errors on
Richard Levitte [Tue, 27 Jan 2004 01:16:38 +0000 (01:16 +0000)]
Avoid signed vs. unsigned warnings (which are treated like errors on
Windows).

20 years agoS_IFBLK and S_IFCHR may not exist in some places (like Windows), so
Richard Levitte [Mon, 26 Jan 2004 23:45:32 +0000 (23:45 +0000)]
S_IFBLK and S_IFCHR may not exist in some places (like Windows), so
let's check for those macros, and if they aren't defined, let's assume
there aren't Unixly devices on this platform.

20 years agoEven though C specification explicitly says that constant type "stretches"
Andy Polyakov [Sun, 25 Jan 2004 10:53:43 +0000 (10:53 +0000)]
Even though C specification explicitly says that constant type "stretches"
automatically to accomodate the value, some compilers fail to do so. Most
notably 0x0123456789ABCDEF should come out as long long in 32-bit context,
but HP compiler truncates it to 32-bit value. Which in turn breaks GF(2^m)
arithmetics in hpux-parisc2-cc build. Therefore this fix...

20 years agoFix declaration inconsistency in ecparam.c.
Andy Polyakov [Sat, 24 Jan 2004 16:51:59 +0000 (16:51 +0000)]
Fix declaration inconsistency in ecparam.c.

20 years agoGet rid of bogus warning when compiling with Sun vendor compiler.
Andy Polyakov [Sat, 24 Jan 2004 16:31:21 +0000 (16:31 +0000)]
Get rid of bogus warning when compiling with Sun vendor compiler.

20 years agoReserve for unaligned buffer. The problem was "pointed out" be HPUX64
Andy Polyakov [Sat, 24 Jan 2004 15:04:38 +0000 (15:04 +0000)]
Reserve for unaligned buffer. The problem was "pointed out" be HPUX64
gcc, which failed to compile it with "not aligned" at higher optimization
levels.

20 years agoFix for DES_cfb_encrypt corrupting output buffer. This renders certain
Andy Polyakov [Sat, 24 Jan 2004 10:33:33 +0000 (10:33 +0000)]
Fix for DES_cfb_encrypt corrupting output buffer. This renders certain
code in corresponding EVP modules obsolete, which I remove at once.

20 years agoWe're passed p, so let's use p instead of making assumptions.
Richard Levitte [Sat, 24 Jan 2004 01:16:02 +0000 (01:16 +0000)]
We're passed p, so let's use p instead of making assumptions.

20 years agoRecent changes from 0.9.7-stable.
Richard Levitte [Fri, 23 Jan 2004 16:09:01 +0000 (16:09 +0000)]
Recent changes from 0.9.7-stable.

20 years agoTypo...
Richard Levitte [Thu, 22 Jan 2004 22:36:46 +0000 (22:36 +0000)]
Typo...

20 years agoReplace expired certificate.
Dr. Stephen Henson [Wed, 21 Jan 2004 13:09:27 +0000 (13:09 +0000)]
Replace expired certificate.

20 years agoThis commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
cvs2svn [Wed, 21 Jan 2004 13:08:15 +0000 (13:08 +0000)]
This commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
0_9_7-stable'.

20 years agoReplace expired certificate.
Dr. Stephen Henson [Wed, 21 Jan 2004 13:08:11 +0000 (13:08 +0000)]
Replace expired certificate.

20 years agoSHA-1 assembler tune-up for Intel P4
Andy Polyakov [Wed, 21 Jan 2004 08:17:08 +0000 (08:17 +0000)]
SHA-1 assembler tune-up for Intel P4

20 years agoRecent and not so recent changes from 0.9.7-stable, all conflicts resolved.
Richard Levitte [Mon, 19 Jan 2004 08:53:02 +0000 (08:53 +0000)]
Recent and not so recent changes from 0.9.7-stable, all conflicts resolved.

20 years agoAdding a slash between the directoryt and the file is a problem with
Richard Levitte [Sat, 10 Jan 2004 18:04:38 +0000 (18:04 +0000)]
Adding a slash between the directoryt and the file is a problem with
VMS.  The C RTL can handle it well if the "directory" is a logical
name with no colon, therefore ending being 'logname/file'.  However,
if the given logical names actually has a colon, or if you use a full
VMS-syntax directory, you end up with 'logname:/file' or
'dev:[dir1.dir2]/file', and that isn't handled in any good way.

So, on VMS, we need to check if the directory string ends with a
separator (one of ':', ']' or '>' (< and > can be used instead [ and
])), and handle that by not inserting anything between the directory
spec and the file name.  In all other cases, it's assumed the
directory spec is a logical name, so we need to place a colon between
it and the file.

Notified by Kevin Greaney <kevin.greaney@hp.com>.

20 years agoCover all DSA setups when running tests
Lutz Jänicke [Thu, 8 Jan 2004 07:46:37 +0000 (07:46 +0000)]
Cover all DSA setups when running tests
PR: #748
Submitted by: Kirill Kochetkov <kochet@ixbt.com>

20 years agoThis commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
cvs2svn [Thu, 8 Jan 2004 07:38:16 +0000 (07:38 +0000)]
This commit was manufactured by cvs2svn to create branch 'OpenSSL-fips-
0_9_7-stable'.

20 years agoUpdates to s_time manual page
Lutz Jänicke [Thu, 8 Jan 2004 07:38:15 +0000 (07:38 +0000)]
Updates to s_time manual page
PR: #570
Submitted by: Martin Witzel <MWITZEL@de.ibm.com>

20 years agoImprove debugging.
Ben Laurie [Tue, 6 Jan 2004 18:02:32 +0000 (18:02 +0000)]
Improve debugging.

20 years agoAdd s_time manual page
Lutz Jänicke [Sun, 4 Jan 2004 18:59:14 +0000 (18:59 +0000)]
Add s_time manual page
Submitted by: "Martin Witzel" <MWITZEL@de.ibm.com>

PR: #570

20 years agoUpdate URI
Lutz Jänicke [Sun, 4 Jan 2004 18:05:50 +0000 (18:05 +0000)]
Update URI
Submitted by: Gertjan van Oosten <gertjan@West.NL>

PR: #804

20 years agounintptr_t and <inttypes.h> are not strictly portable with respect to
Lutz Jänicke [Sun, 4 Jan 2004 17:53:21 +0000 (17:53 +0000)]
unintptr_t and <inttypes.h> are not strictly portable with respect to
ANSI C 89.
Undo change to maintain compatibility.

20 years agoFix Perl problems on sparc64.
Richard Levitte [Sat, 27 Dec 2003 16:13:18 +0000 (16:13 +0000)]
Fix Perl problems on sparc64.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoAvoid including cryptlib.h, it's not really needed.
Richard Levitte [Sat, 27 Dec 2003 16:10:30 +0000 (16:10 +0000)]
Avoid including cryptlib.h, it's not really needed.
Check if IDEA is being built or not.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoOnly use environment variables if uid and gid are the same as euid and egid.
Richard Levitte [Sat, 27 Dec 2003 16:07:20 +0000 (16:07 +0000)]
Only use environment variables if uid and gid are the same as euid and egid.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoCheck if a random "file" is really a device file, and treat it
Richard Levitte [Sat, 27 Dec 2003 16:02:22 +0000 (16:02 +0000)]
Check if a random "file" is really a device file, and treat it
specially if it is.
Add a few OpenBSD-specific cases.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoCorrect documentation typos.
Richard Levitte [Sat, 27 Dec 2003 15:04:54 +0000 (15:04 +0000)]
Correct documentation typos.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoOpenBSD-internal changes.
Richard Levitte [Sat, 27 Dec 2003 15:02:56 +0000 (15:02 +0000)]
OpenBSD-internal changes.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoUse sh explicitely to run point.sh
Richard Levitte [Sat, 27 Dec 2003 14:59:07 +0000 (14:59 +0000)]
Use sh explicitely to run point.sh
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoInclude strings.h so strcasecmp() and strncasecmp() get properly declared.
Richard Levitte [Sat, 27 Dec 2003 14:54:48 +0000 (14:54 +0000)]
Include strings.h so strcasecmp() and strncasecmp() get properly declared.

20 years agoUse BUF_strlcpy() instead of strcpy().
Richard Levitte [Sat, 27 Dec 2003 14:40:17 +0000 (14:40 +0000)]
Use BUF_strlcpy() instead of strcpy().
Use BUF_strlcat() instead of strcat().
Use BIO_snprintf() instead of sprintf().
In some cases, keep better track of buffer lengths.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>

20 years agoAdd a newline at the end of the last line.
Richard Levitte [Sat, 27 Dec 2003 14:26:14 +0000 (14:26 +0000)]
Add a newline at the end of the last line.
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>