Richard Levitte [Wed, 14 Nov 2001 09:44:37 +0000 (09:44 +0000)]
Apply the following changes from the main trunk:
2001-04-27 23:33 levitte
* Makefile.org (1.135): A method to create shared libraries on AIX,
and according to "Howard Chu" <hyc@highlandsun.com>, it may be
general enough to work on any Unixly system.
Richard Levitte [Wed, 14 Nov 2001 09:38:55 +0000 (09:38 +0000)]
Apply the following changes from the main trunk:
2001-04-26 22:17 levitte
* Makefile.org (1.134): Linux shared libraries can be linked with
debug symbols. Tru64 shared libraries can be linked with static
libraries.
Richard Levitte [Wed, 14 Nov 2001 08:26:55 +0000 (08:26 +0000)]
Apply the following changes from the main trunk:
2001-01-10 17:43 bodo
* Makefile.org (1.118): Pass ${PERL} down to the Makefile in
sub-directory "test" in "make tests"
2001-01-10 17:40 bodo
* Makefile.org (1.117): Use $(PERL) in place of hard-coded perl
Richard Levitte [Wed, 14 Nov 2001 08:18:07 +0000 (08:18 +0000)]
Apply the following change from the main trunk:
2000-12-01 02:11 levitte
* Configure (1.243), config (1.71): Recognise Darwin as well. For
now, have it do exactly the same thing as for Rhapsody
Richard Levitte [Wed, 14 Nov 2001 08:08:04 +0000 (08:08 +0000)]
Apply the following change from the main trunk:
2000-11-14 12:05 jaenicke
* Makefile.org (1.115): Some platforms (namely HP-UX) require the
'x' bit set for shared libraries. For performance reasons, it is
also recommended to make the (mmap'ed) shared library 'read-only'.
-> New permissions for installed shared libraries = 555
This doesn't hurt anybody, provided the installation is performed
with 'cp -f' :-)
Richard Levitte [Wed, 14 Nov 2001 08:06:42 +0000 (08:06 +0000)]
Apply the following change from the main trunk:
2000-11-01 01:05 levitte
* Configure (1.236), Makefile.org (1.110), CHANGES (1.640): Add
support for shared libraries under Irix. Submitted by Albert
Chin-A-Young <china@thewrittenword.com>
Richard Levitte [Wed, 14 Nov 2001 07:52:33 +0000 (07:52 +0000)]
Apply the following change from the main trunk:
2000-11-01 01:05 levitte
* Configure (1.236), Makefile.org (1.110), CHANGES (1.640): Add
support for shared libraries under Irix. Submitted by Albert
Chin-A-Young <china@thewrittenword.com>
Richard Levitte [Wed, 14 Nov 2001 07:42:39 +0000 (07:42 +0000)]
Make default attributes consistent in all sub-packages (and thereby
closer to the main trunk).
Richard Levitte [Wed, 14 Nov 2001 07:23:45 +0000 (07:23 +0000)]
Correct the order of the changes.
Richard Levitte [Wed, 14 Nov 2001 07:18:47 +0000 (07:18 +0000)]
Apply the following change from the main trunk:
2000-11-01 00:14 levitte
* Configure (1.234), config (1.68), CHANGES (1.638): Add
configuration option to build on Linux on both big-endian and
little-endian MIPS. Submitted by Ralf Baechle
<ralf@uni-koblenz.de>
Richard Levitte [Wed, 14 Nov 2001 07:08:10 +0000 (07:08 +0000)]
Apply the following change from the main trunk:
2000-10-22 23:37 levitte
* Makefile.org (1.106): When building shared libraries on HP-UX
10.20 and HP-UX 11.00 (32bit), ld warns that -Fl "may not be
supported in future releases". We know that, and are doing things
in HP-UX 11 (64bit), so turn off that warning with
+vnocompatwarnings.
Richard Levitte [Wed, 14 Nov 2001 07:01:34 +0000 (07:01 +0000)]
Apply the following change from the main trunk:
2000-10-22 00:05 levitte
* Configure (1.232): FreeBSD-elf can do threads. However, there
seems to be confusion if you should defined _THREAD_SAFE (I found
that in an include file, and that's what everybody tells me) or
_THREADSAFE (that's what the gcc manual says in the
FreeBSD-specific section), so I defined both, just to be safe.
Richard Levitte [Wed, 14 Nov 2001 06:59:15 +0000 (06:59 +0000)]
Apply the following change from the main trunk:
2000-10-21 23:24 levitte
* CHANGES (1.631), Configure (1.231), Makefile.org (1.104):
Add what's needed to get shared libraries on HP-UX.
Richard Levitte [Tue, 13 Nov 2001 11:21:23 +0000 (11:21 +0000)]
That was incorrect. Revert.
Richard Levitte [Tue, 13 Nov 2001 11:10:29 +0000 (11:10 +0000)]
Apply change from revision 1.101 (2000-10-09 02:50 levitte):
Make sure ranlib is only used on .a libraries.
Bodo Möller [Tue, 13 Nov 2001 08:57:58 +0000 (08:57 +0000)]
update FAQ from main branch
Bodo Möller [Mon, 12 Nov 2001 23:29:23 +0000 (23:29 +0000)]
synchronise with HEAD branch,
remove redundant name OpenUNIX for OpenUNIX-8 configuration
Bodo Möller [Mon, 12 Nov 2001 22:13:28 +0000 (22:13 +0000)]
information on 0.9.6c-engine
Bodo Möller [Mon, 12 Nov 2001 15:25:17 +0000 (15:25 +0000)]
order entries as in main branch
Bodo Möller [Mon, 12 Nov 2001 15:15:46 +0000 (15:15 +0000)]
'make update'
Mark J. Cox [Mon, 12 Nov 2001 14:08:49 +0000 (14:08 +0000)]
Sync ia64.S in 0.9.6c-dev with ia64.S in 0.9.7 (some fixes had been
applied since the initial patch was created)
Submitted by:
Reviewed by:
PR:
Mark J. Cox [Mon, 12 Nov 2001 13:22:14 +0000 (13:22 +0000)]
Add an entry for gcc on UnixWare
Submitted by: Gary Benson
Reviewed by: Mark Cox
PR:
Mark J. Cox [Mon, 12 Nov 2001 12:49:25 +0000 (12:49 +0000)]
Add assembler implementation for IA-64
Submitted by: Andy Polyakov
Reviewed by: Mark Cox
PR:
Bodo Möller [Mon, 12 Nov 2001 11:33:07 +0000 (11:33 +0000)]
the PRNG race conditions were mostly a theoretical issue, remove from NEWS
Bodo Möller [Mon, 12 Nov 2001 11:27:34 +0000 (11:27 +0000)]
add changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c
Bodo Möller [Mon, 12 Nov 2001 11:22:45 +0000 (11:22 +0000)]
synchronize with HEAD branch
Bodo Möller [Sat, 10 Nov 2001 15:09:47 +0000 (15:09 +0000)]
order chronologically: move entry for recent s2_clnt.c/s2_srvr.c fixes to the top
Bodo Möller [Sat, 10 Nov 2001 10:43:51 +0000 (10:43 +0000)]
make code a little more similar to what it looked like before the fixes
Bodo Möller [Sat, 10 Nov 2001 02:14:43 +0000 (02:14 +0000)]
remove incorrect 'callback' prototype
Bodo Möller [Sat, 10 Nov 2001 01:15:29 +0000 (01:15 +0000)]
important SSL 2.0 bugfixes
Bodo Möller [Fri, 9 Nov 2001 13:10:47 +0000 (13:10 +0000)]
typo
Bodo Möller [Fri, 9 Nov 2001 13:03:12 +0000 (13:03 +0000)]
fix warning
Bodo Möller [Fri, 9 Nov 2001 12:59:15 +0000 (12:59 +0000)]
cast to 'unsigned long' before using ~ if we need an unsigned long result
Submitted by: "Stefan Marxen" <stefan.marxen@gmx.net>
Bodo Möller [Thu, 8 Nov 2001 14:52:40 +0000 (14:52 +0000)]
clarify
Bodo Möller [Thu, 8 Nov 2001 14:36:49 +0000 (14:36 +0000)]
Don't define _REENTRANT here in e_os.h. On systems where we need
_REENTRANT if threads support is enabled, the ./Configure entry must
define it so that it ends up in CFLAG.
Richard Levitte [Mon, 29 Oct 2001 13:06:29 +0000 (13:06 +0000)]
Addapt VMS scripts to the newer disk layout system ODS-5, which allows more than one period and mixed size characters in file names
Bodo Möller [Fri, 26 Oct 2001 14:03:51 +0000 (14:03 +0000)]
typo
Bodo Möller [Fri, 26 Oct 2001 13:03:28 +0000 (13:03 +0000)]
disable caching in BIO_gethostbyname
Bodo Möller [Thu, 25 Oct 2001 08:36:22 +0000 (08:36 +0000)]
'make update'
Bodo Möller [Thu, 25 Oct 2001 08:18:56 +0000 (08:18 +0000)]
Consistency with s2_... and s23_... variants (no real functional
change)
Bodo Möller [Thu, 25 Oct 2001 08:18:36 +0000 (08:18 +0000)]
Oops
Bodo Möller [Thu, 25 Oct 2001 06:06:50 +0000 (06:06 +0000)]
Assume TLS 1.0 if ClientHello fragment is too short.
Bodo Möller [Wed, 24 Oct 2001 19:05:26 +0000 (19:05 +0000)]
Fix SSL handshake functions and SSL_clear() such that SSL_clear()
never resets s->method to s->ctx->method when called from within one
of the SSL handshake functions.
Bodo Möller [Sat, 20 Oct 2001 17:52:40 +0000 (17:52 +0000)]
In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if
client_version is smaller than the protocol version in use.
Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0
if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the
client will at least see that alert.
Dr. Stephen Henson [Sat, 20 Oct 2001 16:23:18 +0000 (16:23 +0000)]
Typo.
Lutz Jänicke [Tue, 16 Oct 2001 14:25:27 +0000 (14:25 +0000)]
Flush buffers to prevent mixed output (Adam Back <adam@cypherspace.org>).
Bodo Möller [Mon, 15 Oct 2001 17:57:27 +0000 (17:57 +0000)]
make sure .rnd exists
Bodo Möller [Mon, 15 Oct 2001 17:42:43 +0000 (17:42 +0000)]
Fix ssl3_get_message to handle message fragmentation correctly.
Bodo Möller [Mon, 15 Oct 2001 17:40:22 +0000 (17:40 +0000)]
the previous commit accidentily removed 'ret = 1' from the SSL_ST_OK
case of ssl3_accept
Ulf Möller [Sun, 14 Oct 2001 00:58:32 +0000 (00:58 +0000)]
openbsd-x86 macros
Submitted by: Toomas Kiisk <vix@cyber.ee>
Lutz Jänicke [Fri, 12 Oct 2001 12:29:57 +0000 (12:29 +0000)]
Update information as a partial response to the post
From: "Chris D. Peterson" <cpeterson@aventail.com>
Subject: Implementation Issues with OpenSSL
To: openssl-users@openssl.org
Date: Wed, 22 Aug 2001 16:13:17 -0700
The patch included in the original post may improve the internal session
list handling (and is therefore worth a seperate investigation).
No change to the list handling will however solve the problems of incorrect
SSL_SESSION_free() calls. The session list is only one possible point of
failure, dangling pointers would also occur for SSL object currently
using the session. The correct solution is to only use SSL_SESSION_free()
when applicable!
Richard Levitte [Thu, 11 Oct 2001 19:43:45 +0000 (19:43 +0000)]
In certain cases, no encoding has been set up for the b64 filter. In
such cases, a flush should *not* attempt to finalise the encoding, as
the EVP_ENCODE_CTX structure will only be filled with garbage. For
the same reason, do the same check when a wpending is performed.
Richard Levitte [Thu, 11 Oct 2001 07:59:25 +0000 (07:59 +0000)]
Make sure the macro PEDANTIC is defined when we compile with
-pedantic, or some parts of the source will raise complaints from the
compiler.
Richard Levitte [Wed, 10 Oct 2001 21:52:27 +0000 (21:52 +0000)]
'make update'
Richard Levitte [Wed, 10 Oct 2001 21:51:00 +0000 (21:51 +0000)]
Add support for md4WithRSAEncryption.
Richard Levitte [Wed, 10 Oct 2001 06:15:42 +0000 (06:15 +0000)]
A few more OIDs, contributed by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>
Lutz Jänicke [Mon, 8 Oct 2001 08:38:12 +0000 (08:38 +0000)]
Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)
Lutz Jänicke [Mon, 1 Oct 2001 14:39:23 +0000 (14:39 +0000)]
Typos (Chris Pepper <pepper@mail.reppep.com>)
Richard Levitte [Mon, 24 Sep 2001 15:06:44 +0000 (15:06 +0000)]
In case of memory problems, the va_start() wasn't cleaned with a va_end().
Noticed by Thomas Klausner <wiz@danbala.ifoer.tuwien.ac.at>.
Bodo Möller [Mon, 24 Sep 2001 07:57:20 +0000 (07:57 +0000)]
comment
Bodo Möller [Sat, 22 Sep 2001 01:37:36 +0000 (01:37 +0000)]
crypto/idea was missing in the list of directories that may have been deleted
Bodo Möller [Fri, 21 Sep 2001 11:19:26 +0000 (11:19 +0000)]
bugfix: handle HelloRequest received during handshake correctly
Bodo Möller [Fri, 21 Sep 2001 07:01:04 +0000 (07:01 +0000)]
Disable session related stuff in SSL_ST_OK case of ssl3_accept if we
just sent a HelloRequest.
Bodo Möller [Fri, 21 Sep 2001 00:03:00 +0000 (00:03 +0000)]
Bugfix: correct cleanup after sending a HelloRequest
Bodo Möller [Thu, 20 Sep 2001 21:36:39 +0000 (21:36 +0000)]
fix ssl3_accept: don't call ssl_init_wbio_buffer() in HelloRequest case
Bodo Möller [Thu, 20 Sep 2001 18:34:36 +0000 (18:34 +0000)]
Fix ssl/s3_enc.c, ssl/t1_enc.c and ssl/s3_pkt.c so that we don't
reveal whether illegal block cipher padding was found or a MAC
verification error occured.
In ssl/s2_pkt.c, verify that the purported number of padding bytes is in
the legal range.
Bodo Möller [Fri, 14 Sep 2001 13:48:37 +0000 (13:48 +0000)]
add comment
Bodo Möller [Fri, 14 Sep 2001 13:32:03 +0000 (13:32 +0000)]
Increase permissible ClientKeyExchange message length as in main
branch (revision 1.50, 2000-11-17)
Lutz Jänicke [Thu, 13 Sep 2001 15:19:39 +0000 (15:19 +0000)]
Synchronize typo corrections with 0.9.7-dev
Lutz Jänicke [Thu, 13 Sep 2001 15:07:21 +0000 (15:07 +0000)]
One more manual page.
cvs2svn [Thu, 13 Sep 2001 15:05:43 +0000 (15:05 +0000)]
This commit was manufactured by cvs2svn to create branch
'OpenSSL_0_9_6-stable'.
Lutz Jänicke [Thu, 13 Sep 2001 15:05:42 +0000 (15:05 +0000)]
One more manual page.
Lutz Jänicke [Thu, 13 Sep 2001 13:21:38 +0000 (13:21 +0000)]
Rework section about return values another time (based on hints from
Bodo Moeller).
Bodo Möller [Thu, 13 Sep 2001 13:02:59 +0000 (13:02 +0000)]
avoid "statement not reached" warning
Geoff Thorpe [Wed, 12 Sep 2001 02:43:22 +0000 (02:43 +0000)]
Updated dependencies from "make update"
Geoff Thorpe [Wed, 12 Sep 2001 02:39:06 +0000 (02:39 +0000)]
Reduce the header dependencies on engine.h in apps/.
Geoff Thorpe [Wed, 12 Sep 2001 02:34:20 +0000 (02:34 +0000)]
ENGINE uses a very opaque design, so we can predeclare the structure type
in "types.h" so that very few headers will need to include engine.h,
generally only C files using API functions will need it (reducing
the header dependencies quite a lot).
Geoff Thorpe [Wed, 12 Sep 2001 01:54:17 +0000 (01:54 +0000)]
ENGINE files were renamed, and error strings are now in eng_err.c
Dr. Stephen Henson [Wed, 12 Sep 2001 00:19:20 +0000 (00:19 +0000)]
Add certificate and request demos.
Fix X509V3 macro so they compile.
Lutz Jänicke [Tue, 11 Sep 2001 13:08:51 +0000 (13:08 +0000)]
Make maximum certifcate chain size accepted from the peer application
settable (proposed by "Douglas E. Engert" <deengert@anl.gov>).
Bodo Möller [Tue, 11 Sep 2001 12:46:50 +0000 (12:46 +0000)]
add 'release showstopper' entry
Bodo Möller [Tue, 11 Sep 2001 12:26:56 +0000 (12:26 +0000)]
update
Bodo Möller [Tue, 11 Sep 2001 12:26:35 +0000 (12:26 +0000)]
update from main branch
Bodo Möller [Tue, 11 Sep 2001 12:20:20 +0000 (12:20 +0000)]
ex_data situation is no longer that bad
Geoff Thorpe [Mon, 10 Sep 2001 21:18:11 +0000 (21:18 +0000)]
make update
Geoff Thorpe [Mon, 10 Sep 2001 21:04:14 +0000 (21:04 +0000)]
Put all "common" initialisation in the apps_startup() and apps_shutdown()
macros in apps.h.
Geoff Thorpe [Mon, 10 Sep 2001 21:02:06 +0000 (21:02 +0000)]
enginetest needs 'memset' defined.
Ulf Möller [Mon, 10 Sep 2001 20:16:31 +0000 (20:16 +0000)]
missed one file
Bodo Möller [Mon, 10 Sep 2001 18:59:53 +0000 (18:59 +0000)]
While ispell may not like it, "cancelling" may be spelt with two "l"s
Bodo Möller [Mon, 10 Sep 2001 18:50:09 +0000 (18:50 +0000)]
fix memory leak (I think)
Bodo Möller [Mon, 10 Sep 2001 18:49:25 +0000 (18:49 +0000)]
remove an old comment
Bodo Möller [Mon, 10 Sep 2001 18:47:33 +0000 (18:47 +0000)]
restore previous revision -- memory leak should be fixed in mem.c
Bodo Möller [Mon, 10 Sep 2001 18:13:16 +0000 (18:13 +0000)]
fix memory leak
Bodo Möller [Mon, 10 Sep 2001 17:46:54 +0000 (17:46 +0000)]
avoid warning ('const' discarded)
Bodo Möller [Mon, 10 Sep 2001 17:18:56 +0000 (17:18 +0000)]
exclude disabled message digests
Bodo Möller [Mon, 10 Sep 2001 17:12:31 +0000 (17:12 +0000)]
add AES ciphers
Bodo Möller [Mon, 10 Sep 2001 17:00:28 +0000 (17:00 +0000)]
Update so that progs.h can indeed be automatically generated
(Working file: progs.h
revision 1.24
date: 2001/02/19 16:06:03; author: levitte; state: Exp; lines: +59 -59
Make all configuration macros available for application by making
sure they are available in opensslconf.h, by giving them names starting
with "OPENSSL_" to avoid conflicts with other packages and by making
sure e_os2.h will cover all platform-specific cases together with
opensslconf.h.
[...])
Bodo Möller [Mon, 10 Sep 2001 16:57:06 +0000 (16:57 +0000)]
typo
Bodo Möller [Mon, 10 Sep 2001 15:03:08 +0000 (15:03 +0000)]
comments
Bodo Möller [Mon, 10 Sep 2001 15:00:30 +0000 (15:00 +0000)]
Get rid of hazardous EVP_DigestInit_dbg/EVP_DigestInit case
distinction (which does not work well because if CRYPTO_MDEBUG is
defined at library compile time, it is not necessarily defined at
application compile time; and memory debugging now can be reconfigured
at run-time anyway). To get the intended semantics, we could just use
the EVP_DigestInit_dbg unconditionally (which uses the caller's
__FILE__ and __LINE__ for memory leak debugging), but this would make
memory debugging inconsistent. Instead, callers can use
CRYPTO_push_info() to track down memory leaks.
projects / oweals / openssl.git / log