oweals/openssl.git
21 years agoUpdate release information
Richard Levitte [Wed, 19 Feb 2003 14:02:37 +0000 (14:02 +0000)]
Update release information

21 years agoSecurity fix: Vaudenay timing attack on CBC.
Richard Levitte [Wed, 19 Feb 2003 12:03:59 +0000 (12:03 +0000)]
Security fix: Vaudenay timing attack on CBC.
An advisory will be posted to the web.  Expect a release within the hour.

21 years agoMake sure the memory allocation routines check for negative sizes
Richard Levitte [Wed, 19 Feb 2003 11:54:42 +0000 (11:54 +0000)]
Make sure the memory allocation routines check for negative sizes

21 years agoBorland C++ Builder 5 complains about unreachable statements.
Richard Levitte [Wed, 19 Feb 2003 11:22:15 +0000 (11:22 +0000)]
Borland C++ Builder 5 complains about unreachable statements.

21 years agoUpdate debub-steve* entries.
Dr. Stephen Henson [Wed, 19 Feb 2003 01:04:34 +0000 (01:04 +0000)]
Update debub-steve* entries.

21 years agoTypo.
Dr. Stephen Henson [Tue, 18 Feb 2003 12:46:47 +0000 (12:46 +0000)]
Typo.

21 years agoMake the no-err option work properly
Richard Levitte [Tue, 18 Feb 2003 12:14:57 +0000 (12:14 +0000)]
Make the no-err option work properly

21 years agoRemove "+Olibcalls" option from HPUX targets.
Bodo Möller [Sun, 16 Feb 2003 20:10:23 +0000 (20:10 +0000)]
Remove "+Olibcalls" option from HPUX targets.

Reportedly this option is deprecated, and on some systems
"make test" fails if it is included.

PR: 495

21 years agoSession cache implementations shouldn't have to access SSL_SESSION
Geoff Thorpe [Sat, 15 Feb 2003 20:38:57 +0000 (20:38 +0000)]
Session cache implementations shouldn't have to access SSL_SESSION
elements directly, so this missing functionality is required.

PR: 276

21 years agoDeclare prototypes for function pointer types, even if they are likely to
Geoff Thorpe [Sat, 15 Feb 2003 20:32:13 +0000 (20:32 +0000)]
Declare prototypes for function pointer types, even if they are likely to
be cast later on.

21 years agoUpdate docs.
Dr. Stephen Henson [Sat, 15 Feb 2003 01:09:55 +0000 (01:09 +0000)]
Update docs.

21 years agoSingle pass processing to cleartext S/MIME signing.
Dr. Stephen Henson [Sat, 15 Feb 2003 00:50:55 +0000 (00:50 +0000)]
Single pass processing to cleartext S/MIME signing.

21 years agoWe cache a montgomery form for 'n' if the PUBLIC flag is set, not PRIVATE.
Geoff Thorpe [Sat, 15 Feb 2003 00:18:38 +0000 (00:18 +0000)]
We cache a montgomery form for 'n' if the PUBLIC flag is set, not PRIVATE.

Also, I've added handling for other mod_exp calls that were not using any
cached montgomery forms. These cases matter only for special RSA keys (eg.
ones that are missing information) so are unlikely to be used in normal
circumstances.

21 years agoDavid Brumley <dbrumley@stanford.edu> noted and corrected a case in the
Geoff Thorpe [Fri, 14 Feb 2003 23:21:19 +0000 (23:21 +0000)]
David Brumley <dbrumley@stanford.edu> noted and corrected a case in the
verification step of CRT private key operations in the RSA code -
previously no montgomery form was checked or used for 'n', and so it would
be generated on the fly each time. As a result, private key operations are
now a percent or two faster.

Rather than adding this as another repetition of the nearly-identical
montgomery "check for first-use" initialisation code blocks, I've taken
this chance to create a helper function and macro-wrapper to replace them.

PR: 475

21 years agomake update
Bodo Möller [Fri, 14 Feb 2003 14:21:58 +0000 (14:21 +0000)]
make update

21 years agoAdd support for IA64.
Richard Levitte [Fri, 14 Feb 2003 13:30:35 +0000 (13:30 +0000)]
Add support for IA64.
PR: 454

21 years agoHandle krb5 libraries separately and make sure only libssl.so depends
Richard Levitte [Fri, 14 Feb 2003 13:12:00 +0000 (13:12 +0000)]
Handle krb5 libraries separately and make sure only libssl.so depends
on it.

21 years agoUpdate linux-mips and linux-mipsel to support threads and shared libraries.
Richard Levitte [Fri, 14 Feb 2003 08:56:21 +0000 (08:56 +0000)]
Update linux-mips and linux-mipsel to support threads and shared libraries.
I also updated the bn_ops field with values taken from OpenBSD-mips.
PR: 498

21 years agoPay attention to disabled SSL versions.
Richard Levitte [Fri, 14 Feb 2003 05:24:22 +0000 (05:24 +0000)]
Pay attention to disabled SSL versions.
PR: 500

21 years agoChange no_rmd160 to no_ripemd for consistency.
Richard Levitte [Fri, 14 Feb 2003 05:20:25 +0000 (05:20 +0000)]
Change no_rmd160 to no_ripemd for consistency.
PR: 500

21 years agoMake it possible to disable OCSP, the speed application, and the use of sockets.
Richard Levitte [Fri, 14 Feb 2003 01:02:58 +0000 (01:02 +0000)]
Make it possible to disable OCSP, the speed application, and the use of sockets.
PR: 358

21 years agoAdd full support for -rpath/-R, both in shared libraries and
Richard Levitte [Thu, 13 Feb 2003 23:52:54 +0000 (23:52 +0000)]
Add full support for -rpath/-R, both in shared libraries and
applications, at least on the platforms where it's known how
to do it.

Note: this has only been tested on GNU-based platforms (Linux), and
needs to be tested on all others.  Additionally, it's not yet
supported on the following platforms, for lack of information:

Darwin (MacOS X)
Cygwin
OSF1/Alpha
SVR3
ReliantUNIX

Please help out with testing and the platforms we don't yet know well
enough.

21 years agoAnother long name to deal with
Richard Levitte [Thu, 13 Feb 2003 13:21:13 +0000 (13:21 +0000)]
Another long name to deal with

21 years agoOh, the destest program did look at the return value...
Richard Levitte [Thu, 13 Feb 2003 08:53:40 +0000 (08:53 +0000)]
Oh, the destest program did look at the return value...

21 years agonew lock for EC_PRE_COMP structures
Bodo Möller [Wed, 12 Feb 2003 22:01:12 +0000 (22:01 +0000)]
new lock for EC_PRE_COMP structures

Submitted by: Nils Larsch

21 years agoAllow EC_GROUP objects to share precomputation for improved memory
Bodo Möller [Wed, 12 Feb 2003 18:30:16 +0000 (18:30 +0000)]
Allow EC_GROUP objects to share precomputation for improved memory
efficiency (EC_PRE_COMP objects are now constant once completed).

Extend 'extra_data' API to support arbitrarily many slots (although we
need only one at the moment).

Modify EC internal 'extra_data' API: EC_GROUP_[clear_]free_extra_data
now frees only a single slot (the previous functions are available as
EC_GROUP_[clear_]free_all_extra_data).

Submitted by: Nils Larsch
Reviewed by: Bodo Moeller

21 years agoAdjust DES_cbc_cksum() so the returned value is the same as MIT's
Richard Levitte [Wed, 12 Feb 2003 17:20:39 +0000 (17:20 +0000)]
Adjust DES_cbc_cksum() so the returned value is the same as MIT's
mit_des_cbc_cksum().  The difference was first observed, then verified by
looking at the MIT source.

21 years agoOption to disable SSL auto chain build
Dr. Stephen Henson [Wed, 12 Feb 2003 17:06:02 +0000 (17:06 +0000)]
Option to disable SSL auto chain build

21 years agocomments
Bodo Möller [Wed, 12 Feb 2003 14:17:41 +0000 (14:17 +0000)]
comments

21 years agofirst section is now "Changes between 0.9.7a and 0.9.8", not "... 0.9.7 and 0.9.8"
Bodo Möller [Tue, 11 Feb 2003 16:42:30 +0000 (16:42 +0000)]
first section is now "Changes between 0.9.7a and 0.9.8", not "... 0.9.7 and 0.9.8"

21 years agoGeneralString support in mini-ASN1 compiler
Dr. Stephen Henson [Tue, 11 Feb 2003 14:06:27 +0000 (14:06 +0000)]
GeneralString support in mini-ASN1 compiler

21 years agoTypo.
Dr. Stephen Henson [Mon, 10 Feb 2003 17:52:10 +0000 (17:52 +0000)]
Typo.

21 years agoMake sure memcpy() is properly declared by including string.h.
Richard Levitte [Mon, 10 Feb 2003 11:14:35 +0000 (11:14 +0000)]
Make sure memcpy() is properly declared by including string.h.

21 years agofix EC_GROUP_copy for EC_GFp_nist_method()
Bodo Möller [Sat, 8 Feb 2003 19:51:37 +0000 (19:51 +0000)]
fix EC_GROUP_copy for EC_GFp_nist_method()

Submitted by: Nils Larsch

21 years agoavoid coredump
Bodo Möller [Sat, 8 Feb 2003 19:49:16 +0000 (19:49 +0000)]
avoid coredump

Submitted by: Nils Larsch

21 years agoremove debugging leftovers
Bodo Möller [Sat, 8 Feb 2003 15:56:05 +0000 (15:56 +0000)]
remove debugging leftovers

21 years agocomment
Bodo Möller [Fri, 7 Feb 2003 11:54:57 +0000 (11:54 +0000)]
comment

21 years agotypo
Bodo Möller [Thu, 6 Feb 2003 19:32:06 +0000 (19:32 +0000)]
typo

21 years agoPKCS#1 has a new RFC, which we do implement
Richard Levitte [Thu, 6 Feb 2003 19:30:06 +0000 (19:30 +0000)]
PKCS#1 has a new RFC, which we do implement

21 years agoimplement fast point multiplication with precomputation
Bodo Möller [Thu, 6 Feb 2003 19:25:12 +0000 (19:25 +0000)]
implement fast point multiplication with precomputation

Submitted by: Nils Larsch
Reviewed by: Bodo Moeller

21 years agotypo in WIN16 section
Bodo Möller [Wed, 5 Feb 2003 16:54:10 +0000 (16:54 +0000)]
typo in WIN16 section

Submitted by: Toni Andjelkovic <toni@soth.at>

21 years agoSSL_add_dir_cert_subjects_to_stack now exists for WIN32
Bodo Möller [Wed, 5 Feb 2003 16:40:29 +0000 (16:40 +0000)]
SSL_add_dir_cert_subjects_to_stack now exists for WIN32

21 years agoIPv6 display and input support for extensions usingh GeneralName.
Dr. Stephen Henson [Wed, 5 Feb 2003 00:34:31 +0000 (00:34 +0000)]
IPv6 display and input support for extensions usingh GeneralName.

21 years agotypo
Bodo Möller [Tue, 4 Feb 2003 12:57:34 +0000 (12:57 +0000)]
typo

21 years agoUpdate PRNG entry:
Bodo Möller [Tue, 4 Feb 2003 12:28:11 +0000 (12:28 +0000)]
Update PRNG entry:
- OpenSSL version differences
- Sun /dev/urandom patch information

21 years agoOld-style callbacks can be NULL!
Ben Laurie [Sat, 1 Feb 2003 20:58:59 +0000 (20:58 +0000)]
Old-style callbacks can be NULL!

21 years agoFix warning.
Ben Laurie [Sat, 1 Feb 2003 20:55:29 +0000 (20:55 +0000)]
Fix warning.

21 years agoWe can't say in advance what the argument to BIO_socket_ioctl() should be, so
Richard Levitte [Fri, 31 Jan 2003 12:20:35 +0000 (12:20 +0000)]
We can't say in advance what the argument to BIO_socket_ioctl() should be, so
let's make that a void *.  Also, BIO_socket_nbio() should send it an int
argument, not a long.
PR: 457

21 years agoDocument -engine where missing.
Richard Levitte [Thu, 30 Jan 2003 22:02:27 +0000 (22:02 +0000)]
Document -engine where missing.
PR: 424

21 years agoA few small bugs with BIO popping.
Richard Levitte [Thu, 30 Jan 2003 21:49:12 +0000 (21:49 +0000)]
A few small bugs with BIO popping.
PR: 364

21 years agoThe util scripts need to handled no-hw.
Richard Levitte [Thu, 30 Jan 2003 20:03:45 +0000 (20:03 +0000)]
The util scripts need to handled no-hw.
PR: 327

21 years agoThe MASM situation is more difficult than described so far. It is part of VC++ 7.
Richard Levitte [Thu, 30 Jan 2003 19:05:25 +0000 (19:05 +0000)]
The MASM situation is more difficult than described so far.  It is part of VC++ 7.
PR: 327

21 years agoFor VC++7 and up, the file is VSVARS32.BAT.
Richard Levitte [Thu, 30 Jan 2003 19:01:56 +0000 (19:01 +0000)]
For VC++7 and up, the file is VSVARS32.BAT.
PR: 327

21 years agoThe OPENSSL_NO_ENGINE has small problem: it changes certain structures. That's
Richard Levitte [Thu, 30 Jan 2003 18:52:46 +0000 (18:52 +0000)]
The OPENSSL_NO_ENGINE has small problem: it changes certain structures.  That's
bad, so let's not check OPENSSL_NO_ENGINE in those places.  Fortunately, all
the header files where the problem existed include ossl_typ.h, which makes
a 'forward declaration' of the ENGINE type.

21 years agomake update
Richard Levitte [Thu, 30 Jan 2003 17:53:02 +0000 (17:53 +0000)]
make update

21 years agoAdd the possibility to build without the ENGINE framework.
Richard Levitte [Thu, 30 Jan 2003 17:39:26 +0000 (17:39 +0000)]
Add the possibility to build without the ENGINE framework.
PR: 287

21 years agoSummarise the last couple of commits.
Geoff Thorpe [Thu, 30 Jan 2003 15:52:40 +0000 (15:52 +0000)]
Summarise the last couple of commits.

21 years agoThis glues the GMP wrapper ENGINE into OpenSSL if it is being built (ie. if
Geoff Thorpe [Thu, 30 Jan 2003 15:49:03 +0000 (15:49 +0000)]
This glues the GMP wrapper ENGINE into OpenSSL if it is being built (ie. if
the OPENSSL_USE_GMP symbol is defined). Also, I've re-ordered the listing
of other builtin ENGINEs to be alphabetical (though "dynamic" will still
come first).

21 years agoCommit a slightly modified version of an old experiment to do RSA private
Geoff Thorpe [Thu, 30 Jan 2003 15:43:07 +0000 (15:43 +0000)]
Commit a slightly modified version of an old experiment to do RSA private
key operations using the GMP library. The default is not to build (or use)
this code unless OPENSSL_USE_GMP is defined (because it will impose header
and linker dependencies that might need specifying too).

21 years ago"openssl engine" will not display ENGINE/DSO load failure errors when
Geoff Thorpe [Thu, 30 Jan 2003 14:58:44 +0000 (14:58 +0000)]
"openssl engine" will not display ENGINE/DSO load failure errors when
testing availability of engines with "-t" - the old behaviour of is
produced by increasing the feature's verbosity with "-tt".

21 years agoSmall typo, OENSSL should really be spelled OPENSSL.
Richard Levitte [Thu, 30 Jan 2003 11:08:44 +0000 (11:08 +0000)]
Small typo, OENSSL should really be spelled OPENSSL.
PR: 476

21 years agoFix a memory leak in SSL.
Richard Levitte [Thu, 30 Jan 2003 11:00:34 +0000 (11:00 +0000)]
Fix a memory leak in SSL.
PR: 477

21 years agocert_sk isn't always allocated, so freeing it may cause a crash.
Richard Levitte [Thu, 30 Jan 2003 10:27:43 +0000 (10:27 +0000)]
cert_sk isn't always allocated, so freeing it may cause a crash.
PR: 481

21 years agoDVCS (see RFC 3029) was missing among the possible purposes.
Richard Levitte [Wed, 29 Jan 2003 15:06:35 +0000 (15:06 +0000)]
DVCS (see RFC 3029) was missing among the possible purposes.
Notified privately to me by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>,
one of the authors of said RFC

21 years agosimplify
Bodo Möller [Tue, 28 Jan 2003 13:08:21 +0000 (13:08 +0000)]
simplify

Submitted by: Nils Larsch

21 years agoCorrect EVP_SealInit() documentation, iv is an output
Dr. Stephen Henson [Sun, 26 Jan 2003 13:38:56 +0000 (13:38 +0000)]
Correct EVP_SealInit() documentation, iv is an output
parameter.

21 years agocofactor is optional in parameter encodings
Bodo Möller [Sat, 25 Jan 2003 15:28:49 +0000 (15:28 +0000)]
cofactor is optional in parameter encodings

Submitted by: Nils Larsch

21 years agoconsistency
Bodo Möller [Fri, 24 Jan 2003 22:28:32 +0000 (22:28 +0000)]
consistency

21 years agoFor ecdsa-with-SHA1, as for id-dsa-with-sha1, omit 'parameters'
Bodo Möller [Fri, 24 Jan 2003 21:43:08 +0000 (21:43 +0000)]
For ecdsa-with-SHA1, as for id-dsa-with-sha1, omit 'parameters'
in AlgorithmIdentifier

Submitted by: Nils Larsch

21 years agoProvide "dummy" &main::picmeup even in Windows perlasm modules.
Andy Polyakov [Fri, 24 Jan 2003 09:39:31 +0000 (09:39 +0000)]
Provide "dummy" &main::picmeup even in Windows perlasm modules.

21 years agoCheck return value of gmtime() and add error codes
Dr. Stephen Henson [Fri, 24 Jan 2003 01:12:01 +0000 (01:12 +0000)]
Check return value of gmtime() and add error codes
where it fails in ASN1_TIME_set().

Edit asn1.h so the new error code is the same in 0.9.7
and 0.9.8, rebuild new error codes.

Clear error queue in req.c if *_min or *_max is absent.

21 years agoWorkaround for lame compiler bug introduced in "CPU pack" for MSVC6SP5.
Andy Polyakov [Thu, 23 Jan 2003 10:05:39 +0000 (10:05 +0000)]
Workaround for lame compiler bug introduced in "CPU pack" for MSVC6SP5.

21 years agoThe patch speaks for itself.
Andy Polyakov [Thu, 23 Jan 2003 09:52:34 +0000 (09:52 +0000)]
The patch speaks for itself.

21 years agoMissing 0 broke FreeBSD build.
Richard Levitte [Thu, 23 Jan 2003 08:10:04 +0000 (08:10 +0000)]
Missing 0 broke FreeBSD build.
PR: 470

21 years agofix warnings
Bodo Möller [Tue, 21 Jan 2003 09:53:14 +0000 (09:53 +0000)]
fix warnings

Submitted by: Nils Larsch

21 years agoSuggestion was to change ${MACHINE} to i586 in lines in question. Well,
Andy Polyakov [Sun, 19 Jan 2003 21:47:06 +0000 (21:47 +0000)]
Suggestion was to change ${MACHINE} to i586 in lines in question. Well,
"whatever" doesn't the same (avoids 386 being passed to ./Configure),
consistent with other elder SCO targets and denotes that we probably
shouldn't care much about every out-of-date platform.

21 years agoThis is an *initial* tune-up. This update puts Itanium2 back on par with
Andy Polyakov [Sun, 19 Jan 2003 21:29:59 +0000 (21:29 +0000)]
This is an *initial* tune-up. This update puts Itanium2 back on par with
Itanium. I mean if overall performance improvement over C version was X
for Itanium, it's X even for Itanium2.

21 years agoOops! Missed closing quote... Didn't have time to verify before a snapshot
Andy Polyakov [Sun, 19 Jan 2003 11:39:19 +0000 (11:39 +0000)]
Oops! Missed closing quote... Didn't have time to verify before a snapshot
was cut...

21 years agoSCO target missed .so suffix.
Andy Polyakov [Sat, 18 Jan 2003 21:57:30 +0000 (21:57 +0000)]
SCO target missed .so suffix.

21 years ago-lresolv is not present on SCO Unix, RT#460.
Andy Polyakov [Sat, 18 Jan 2003 18:12:23 +0000 (18:12 +0000)]
-lresolv is not present on SCO Unix, RT#460.

21 years agoCaldera/SCO targets erroneously limit themselves to 386. See RT#464.
Andy Polyakov [Sat, 18 Jan 2003 15:17:26 +0000 (15:17 +0000)]
Caldera/SCO targets erroneously limit themselves to 386. See RT#464.

21 years agoFix for AIX shared build, see RT#463.
Andy Polyakov [Sat, 18 Jan 2003 15:13:03 +0000 (15:13 +0000)]
Fix for AIX shared build, see RT#463.

21 years agoEVP_DecryptInit() should call EVP_CipherInit() not EVP_CipherInit_ex().
Dr. Stephen Henson [Fri, 17 Jan 2003 00:48:47 +0000 (00:48 +0000)]
EVP_DecryptInit() should call EVP_CipherInit() not EVP_CipherInit_ex().

21 years agoIngore the correct flag file.
Richard Levitte [Thu, 16 Jan 2003 21:36:17 +0000 (21:36 +0000)]
Ingore the correct flag file.

21 years agoA few more files to ignore
Richard Levitte [Thu, 16 Jan 2003 21:32:56 +0000 (21:32 +0000)]
A few more files to ignore

21 years agomake update
Richard Levitte [Thu, 16 Jan 2003 21:20:30 +0000 (21:20 +0000)]
make update

21 years agoFreeBSD has /dev/crypto as well.
Richard Levitte [Thu, 16 Jan 2003 18:29:30 +0000 (18:29 +0000)]
FreeBSD has /dev/crypto as well.
PR: 462

21 years agoAdd some debugging output.
Richard Levitte [Thu, 16 Jan 2003 17:28:46 +0000 (17:28 +0000)]
Add some debugging output.

21 years agoArmor against systems without ranlib...
Lutz Jänicke [Thu, 16 Jan 2003 17:22:30 +0000 (17:22 +0000)]
Armor against systems without ranlib...
Submitted by: Thierry Lelegard <thierry.lelegard@canal-plus.fr>

PR: 461

21 years agoavoid potential confusion about curves (prime192v1 and prime256v1 are
Bodo Möller [Thu, 16 Jan 2003 16:05:23 +0000 (16:05 +0000)]
avoid potential confusion about curves (prime192v1 and prime256v1 are
also known as secp192r1 and secp256r1, respectively)

Submitted by: Nils Larsch, Bodo Moeller

21 years agomake update
Richard Levitte [Thu, 16 Jan 2003 13:01:36 +0000 (13:01 +0000)]
make update

21 years agoncr-scde target needs -lc89 for strcasecmp() and ftime() (Tim Rice, Martin
Lutz Jänicke [Thu, 16 Jan 2003 07:54:52 +0000 (07:54 +0000)]
ncr-scde target needs -lc89 for strcasecmp() and ftime() (Tim Rice, Martin
Megele).

PR: 450

21 years agoFix possible NULL dereferencial.
Richard Levitte [Thu, 16 Jan 2003 06:00:55 +0000 (06:00 +0000)]
Fix possible NULL dereferencial.
Notified by Verdon Walker <VWalker@novell.com>

21 years agoAdd verbosity
Richard Levitte [Wed, 15 Jan 2003 17:23:16 +0000 (17:23 +0000)]
Add verbosity

21 years agoFix initialization sequence to prevent freeing of unitialized objects.
Lutz Jänicke [Wed, 15 Jan 2003 14:54:59 +0000 (14:54 +0000)]
Fix initialization sequence to prevent freeing of unitialized objects.
Submitted by: Nils Larsch <nla@trustcenter.de>

PR: 459

21 years agoupdate error library for EC... changes
Bodo Möller [Wed, 15 Jan 2003 11:47:28 +0000 (11:47 +0000)]
update error library for EC... changes

Submitted by: Nils Larsch

21 years agoReally fix SSLv2 session ID handling
Lutz Jänicke [Wed, 15 Jan 2003 09:51:22 +0000 (09:51 +0000)]
Really fix SSLv2 session ID handling

PR: 377

21 years agoAs with RSA, which was modified recently, this change makes it possible to
Geoff Thorpe [Wed, 15 Jan 2003 02:01:55 +0000 (02:01 +0000)]
As with RSA, which was modified recently, this change makes it possible to
override key-generation implementations by placing handlers in the methods
for DSA and DH. Also, parameter generation for DSA and DH is possible by
another new handler for each method.

21 years agoSet EXPORT_VAR_AS_FN for BC-32 to work around a compiler bug,
Dr. Stephen Henson [Tue, 14 Jan 2003 20:54:18 +0000 (20:54 +0000)]
Set EXPORT_VAR_AS_FN for BC-32 to work around a compiler bug,

21 years agoExtend the HOWTO on creating certificates, and add a HOWTO in creating keys.
Richard Levitte [Tue, 14 Jan 2003 15:42:16 +0000 (15:42 +0000)]
Extend the HOWTO on creating certificates, and add a HOWTO in creating keys.
PR: 422