oweals/openssl.git
22 years agoThis commit was manufactured by cvs2svn to create tag 'BEFORE_COMPAQ_PATCH'. BEFORE_COMPAQ_PATCH
cvs2svn [Tue, 21 May 2002 08:59:59 +0000 (08:59 +0000)]
This commit was manufactured by cvs2svn to create tag 'BEFORE_COMPAQ_PATCH'.

22 years agoThis commit was manufactured by cvs2svn to create branch 'BRANCH_VMS_64BIT'.
cvs2svn [Tue, 21 May 2002 08:59:58 +0000 (08:59 +0000)]
This commit was manufactured by cvs2svn to create branch 'BRANCH_VMS_64BIT'.

22 years agoaccept NULL in 'free' functions
Bodo Möller [Tue, 21 May 2002 08:59:57 +0000 (08:59 +0000)]
accept NULL in 'free' functions

22 years agoReorganise -subj option code, fix buffer overrun.
Dr. Stephen Henson [Sun, 19 May 2002 16:31:10 +0000 (16:31 +0000)]
Reorganise -subj option code, fix buffer overrun.

22 years agoFix Mingw32 asm build: use the Unix
Dr. Stephen Henson [Sun, 19 May 2002 12:03:05 +0000 (12:03 +0000)]
Fix Mingw32 asm build: use the Unix
bignum assembly method of bn-586.pl
and co-586.pl which (for some reason)
VC++ doesn't use.

22 years agoAdd missing EVP_CIPHER_CTX_init call.
Dr. Stephen Henson [Sat, 18 May 2002 23:43:10 +0000 (23:43 +0000)]
Add missing EVP_CIPHER_CTX_init call.

22 years agoFix incorrect =over 4 location.
Lutz Jänicke [Thu, 16 May 2002 17:45:37 +0000 (17:45 +0000)]
Fix incorrect =over 4 location.
Submitted by: David Waitzman <djw@bbn.com>
Reviewed by: Lutz Jaenicke
PR: [openssl.org #38]

22 years agofix EVP_dsa_sha macro
Bodo Möller [Thu, 16 May 2002 12:51:18 +0000 (12:51 +0000)]
fix EVP_dsa_sha macro

Submitted by: Nils Larsch

22 years agoUse the indirect way to the actual request tracker, so that people
Lutz Jänicke [Thu, 16 May 2002 10:01:53 +0000 (10:01 +0000)]
Use the indirect way to the actual request tracker, so that people
also are informed about the credentials required for guest access
and the operation instructions.

22 years agoupdate
Bodo Möller [Thu, 16 May 2002 09:28:09 +0000 (09:28 +0000)]
update

22 years agoZero cipher_data in EVP_CIPHER_CTX_cleanup
Dr. Stephen Henson [Wed, 15 May 2002 18:49:25 +0000 (18:49 +0000)]
Zero cipher_data in EVP_CIPHER_CTX_cleanup

Add cleanup calls to evp_test.c

Allow reuse of cipher contexts by removing
automatic cleanup in EVP_*Final().

22 years agomake b_print.c consistent with the rest of OpenSSL:
Bodo Möller [Tue, 14 May 2002 19:40:58 +0000 (19:40 +0000)]
make b_print.c consistent with the rest of OpenSSL:
disable assert() except for debug builds

22 years agoAdd missing '"'
Lutz Jänicke [Sun, 12 May 2002 20:37:44 +0000 (20:37 +0000)]
Add missing '"'
Submitted by: Boyd Gerber <gerberb@zenez.com>

22 years agoRecognize PPC64 target.
Lutz Jänicke [Sun, 12 May 2002 19:45:51 +0000 (19:45 +0000)]
Recognize PPC64 target.
Submitted by:
Reviewed by:
PR: 26

22 years agoEVP_SealFinal should return a value.
Dr. Stephen Henson [Sat, 11 May 2002 17:37:08 +0000 (17:37 +0000)]
EVP_SealFinal should return a value.

22 years agovalues were reset for no reason.
Ulf Möller [Sat, 11 May 2002 09:15:42 +0000 (09:15 +0000)]
values were reset for no reason.

22 years agoupdated Mingw32 instructions.
Ulf Möller [Sat, 11 May 2002 09:14:40 +0000 (09:14 +0000)]
updated Mingw32 instructions.

22 years agoAdd config entry debug-steve-linux-pseudo64. This sets the
Dr. Stephen Henson [Fri, 10 May 2002 23:00:43 +0000 (23:00 +0000)]
Add config entry debug-steve-linux-pseudo64.  This sets the
SIXTY_FOUR bignum library option to use 64 bit operations
on the 32 bit linux platform.

This is very inefficient but it can be used to test some
of the 64 bit logic on a 32 bit platform.

22 years agoFallback to normal multiply if n2 == 8 and dna or dnb is not zero
Dr. Stephen Henson [Fri, 10 May 2002 22:18:13 +0000 (22:18 +0000)]
Fallback to normal multiply if n2 == 8 and dna or dnb is not zero
in bn_mul_recursive.

This is (hopefully) what was triggering bignum errors on 64 bit
platforms and causing the BN_mod_mul test to fail.

22 years agoAvoid gcc warning: BN_DEC_CONV when SIXTY_FOUR_BIT is defined is unsigned.
Dr. Stephen Henson [Fri, 10 May 2002 22:07:37 +0000 (22:07 +0000)]
Avoid gcc warning: BN_DEC_CONV when SIXTY_FOUR_BIT is defined is unsigned.

22 years agoUpdating status for 0.9.6d
Richard Levitte [Thu, 9 May 2002 23:54:02 +0000 (23:54 +0000)]
Updating status for 0.9.6d

22 years agoSynchronise the FAQ
Richard Levitte [Thu, 9 May 2002 23:41:40 +0000 (23:41 +0000)]
Synchronise the FAQ

22 years agoMake the huge buffer smaller, so the size becomes reasonable for small-stack environm...
Richard Levitte [Thu, 9 May 2002 20:14:00 +0000 (20:14 +0000)]
Make the huge buffer smaller, so the size becomes reasonable for small-stack environments.
Notified by Verdon Walker <VWalker@novell.com>

22 years agoOne place where VMS wasn't changed to OPENSSL_SYS_VMS...
Richard Levitte [Thu, 9 May 2002 18:27:06 +0000 (18:27 +0000)]
One place where VMS wasn't changed to OPENSSL_SYS_VMS...

22 years agoMove an assert() to avoid core dumps when a static buffer hasn't been given.
Richard Levitte [Thu, 9 May 2002 18:19:21 +0000 (18:19 +0000)]
Move an assert() to avoid core dumps when a static buffer hasn't been given.
Notified by Verdon Walker <VWalker@novell.com>

22 years agoSmall documentation fix for EVP_CipherFinal or EVP_CipherFinal_ex.
Richard Levitte [Wed, 8 May 2002 15:20:38 +0000 (15:20 +0000)]
Small documentation fix for EVP_CipherFinal or EVP_CipherFinal_ex.
Notified by Stella Power <snpower@maths.tcd.ie>.
PR: 24

22 years agoGenerate an error if rewinding wasn't possible.
Richard Levitte [Wed, 8 May 2002 15:12:59 +0000 (15:12 +0000)]
Generate an error if rewinding wasn't possible.
Notified by Ken Hirsch <kenhirsch@myself.com>.
PR: 23

22 years agoChange internals of the EC library so that the functions
Bodo Möller [Wed, 8 May 2002 11:54:24 +0000 (11:54 +0000)]
Change internals of the EC library so that the functions
EC_GROUP_{set_generator,get_generator,get_order,get_cofactor} are
implemented directly in crypto/ec/ec_lib.c and not dispatched to
methods.

Also fix EC_GROUP_copy to copy the NID.

22 years agoAdd missing ";" after fi
Lutz Jänicke [Tue, 7 May 2002 15:35:48 +0000 (15:35 +0000)]
Add missing ";" after fi
Submitted by: bryanh@giraffe-data.com
Reviewed by:
PR: [openssl.org #18]

22 years agoin SignerInfo, use ecdsa-with-SHA1 OID for ECDSA (not ecPublicKey)
Bodo Möller [Tue, 7 May 2002 15:14:12 +0000 (15:14 +0000)]
in SignerInfo, use ecdsa-with-SHA1 OID for ECDSA (not ecPublicKey)

Submitted by: Nils Larsch

22 years agoFix ciphersuite list to enforce low priority for RC4.
Bodo Möller [Tue, 7 May 2002 08:36:26 +0000 (08:36 +0000)]
Fix ciphersuite list to enforce low priority for RC4.

22 years agoensure that, for each strength, RC4 ciphers have least preference
Bodo Möller [Tue, 7 May 2002 07:59:35 +0000 (07:59 +0000)]
ensure that, for each strength, RC4 ciphers have least preference
in the default ciphersuite list

22 years agorefer to latest draft for AES ciphersuites
Bodo Möller [Tue, 7 May 2002 07:55:36 +0000 (07:55 +0000)]
refer to latest draft for AES ciphersuites

22 years agofix warning
Bodo Möller [Mon, 6 May 2002 10:44:59 +0000 (10:44 +0000)]
fix warning

22 years agoupdate
Bodo Möller [Sun, 5 May 2002 23:47:46 +0000 (23:47 +0000)]
update

22 years agoimprove wNAF generation
Bodo Möller [Sun, 5 May 2002 23:45:09 +0000 (23:45 +0000)]
improve wNAF generation

22 years agodisable AES ciphersuites unless explicitly requested
Bodo Möller [Sun, 5 May 2002 23:44:27 +0000 (23:44 +0000)]
disable AES ciphersuites unless explicitly requested

22 years agofix casts
Bodo Möller [Sun, 5 May 2002 23:00:28 +0000 (23:00 +0000)]
fix casts

22 years agoMake sure that date is run under the C locale, so dates are given in the
Richard Levitte [Thu, 2 May 2002 08:05:46 +0000 (08:05 +0000)]
Make sure that date is run under the C locale, so dates are given in the
default format.
PR: 16

22 years agoAdd apps_startup and bio_err init code to smime.c
Dr. Stephen Henson [Wed, 1 May 2002 20:07:46 +0000 (20:07 +0000)]
Add apps_startup and bio_err init code to smime.c

22 years agoFix escaping when using the -subj option of "openssl req", document
Lutz Jänicke [Tue, 30 Apr 2002 12:08:18 +0000 (12:08 +0000)]
Fix escaping when using the -subj option of "openssl req", document
'hidden' -nameopt support. (Robert Joop <joop@fokus.gmd.de>)

22 years agoAdd information about -nameopt option for x509.
Lutz Jänicke [Mon, 29 Apr 2002 16:01:41 +0000 (16:01 +0000)]
Add information about -nameopt option for x509.

22 years agoundo nonsense patch (r *is* signed or we have signedness mismatches elsewhere)
Bodo Möller [Mon, 29 Apr 2002 11:03:06 +0000 (11:03 +0000)]
undo nonsense patch (r *is* signed or we have signedness mismatches elsewhere)

22 years agoFix unsigned vs. signed clash
Richard Levitte [Mon, 29 Apr 2002 10:29:38 +0000 (10:29 +0000)]
Fix unsigned vs. signed clash

22 years agoSynchronise with 0.9.7-stable.
Richard Levitte [Mon, 29 Apr 2002 10:28:29 +0000 (10:28 +0000)]
Synchronise with 0.9.7-stable.

22 years agoSynchronise with 0.9.7-stable.
Richard Levitte [Mon, 29 Apr 2002 10:19:19 +0000 (10:19 +0000)]
Synchronise with 0.9.7-stable.

22 years agoFix crypto/asn1/a_sign.c so that 'parameters' is omitted (not
Bodo Möller [Fri, 26 Apr 2002 08:28:34 +0000 (08:28 +0000)]
Fix crypto/asn1/a_sign.c so that 'parameters' is omitted (not
encoded as NULL) with id-dsa-with-sha1.

Submitted by: Nils Larsch

22 years agoAdd generationQualifier OID (proposed by Fiel Cabral).
Lutz Jänicke [Thu, 25 Apr 2002 18:03:13 +0000 (18:03 +0000)]
Add generationQualifier OID (proposed by Fiel Cabral).

22 years agoPotential memory leak removed. Notified by <threaded@totalise.co.uk>
Richard Levitte [Thu, 25 Apr 2002 10:11:21 +0000 (10:11 +0000)]
Potential memory leak removed.  Notified by <threaded@totalise.co.uk>

22 years agonew items for 0.9.7
Bodo Möller [Thu, 25 Apr 2002 07:52:07 +0000 (07:52 +0000)]
new items for 0.9.7

22 years agooops
Bodo Möller [Thu, 25 Apr 2002 07:46:35 +0000 (07:46 +0000)]
oops

22 years agoAlgorithmIdentifier bugs
Bodo Möller [Thu, 25 Apr 2002 06:29:27 +0000 (06:29 +0000)]
AlgorithmIdentifier bugs

22 years agofix usage (no 'key')
Bodo Möller [Tue, 23 Apr 2002 13:56:14 +0000 (13:56 +0000)]
fix usage (no 'key')

22 years agoUhmmm, if we use && after having tested for the presence of the certificate,
Richard Levitte [Tue, 23 Apr 2002 13:15:08 +0000 (13:15 +0000)]
Uhmmm, if we use && after having tested for the presence of the certificate,
we just *might* stand a certain chance of actually getting it written
to file...

22 years agoERR_file_name is no longer being used.
Lutz Jänicke [Mon, 22 Apr 2002 13:54:50 +0000 (13:54 +0000)]
ERR_file_name is no longer being used.

22 years agoAdd cygwin build script (Corinna Vinschen <vinschen@redhat.com>).
Lutz Jänicke [Sun, 21 Apr 2002 17:54:03 +0000 (17:54 +0000)]
Add cygwin build script (Corinna Vinschen <vinschen@redhat.com>).

22 years agoMake sure ec and ecdsa is properly handled in Windows.
Richard Levitte [Sat, 20 Apr 2002 10:23:56 +0000 (10:23 +0000)]
Make sure ec and ecdsa is properly handled in Windows.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoSignedness mismatch.
Richard Levitte [Sat, 20 Apr 2002 10:23:19 +0000 (10:23 +0000)]
Signedness mismatch.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoThe callback must have (void) as argument list.
Richard Levitte [Sat, 20 Apr 2002 10:22:42 +0000 (10:22 +0000)]
The callback must have (void) as argument list.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoNo point constifying an int.
Richard Levitte [Sat, 20 Apr 2002 10:22:01 +0000 (10:22 +0000)]
No point constifying an int.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoDo not free p if it hasn't been used yet.
Richard Levitte [Sat, 20 Apr 2002 10:19:20 +0000 (10:19 +0000)]
Do not free p if it hasn't been used yet.
Notified by Bernd Matthes <bernd.matthes@gemplus.com>

22 years agoMake sure the opened directory is closed on exit.
Richard Levitte [Thu, 18 Apr 2002 16:20:13 +0000 (16:20 +0000)]
Make sure the opened directory is closed on exit.
Notified by Lorinczy Zsigmond <lzsiga@mail.ahiv.hu>

22 years agoMissing "Configure" entry (Jean-Marc Desperrier <jean-marc.desperrier@certplus.com>).
Lutz Jänicke [Thu, 18 Apr 2002 12:47:50 +0000 (12:47 +0000)]
Missing "Configure" entry (Jean-Marc Desperrier <jean-marc.desperrier@certplus.com>).

22 years agoOptimize: better shortcut evaluation ("Howard Chu" <hyc@highlandsun.com>).
Lutz Jänicke [Thu, 18 Apr 2002 11:54:06 +0000 (11:54 +0000)]
Optimize: better shortcut evaluation ("Howard Chu" <hyc@highlandsun.com>).

22 years agoHandle headings uniformly to allow automatic processing.
Lutz Jänicke [Thu, 18 Apr 2002 08:11:31 +0000 (08:11 +0000)]
Handle headings uniformly to allow automatic processing.

22 years ago'version' is not optional in the encoding
Bodo Möller [Wed, 17 Apr 2002 11:35:52 +0000 (11:35 +0000)]
'version' is not optional in the encoding

Submitted by: Nils Larsch

22 years ago'version' is not optional in the encoding
Bodo Möller [Wed, 17 Apr 2002 11:31:20 +0000 (11:31 +0000)]
'version' is not optional in the encoding

Submitted by: Nils Larsch

22 years agocheck return values
Bodo Möller [Wed, 17 Apr 2002 09:31:34 +0000 (09:31 +0000)]
check return values

Submitted by: Nils Larsch

22 years agoget rid of some assignments that have become obsolete
Bodo Möller [Mon, 15 Apr 2002 15:29:43 +0000 (15:29 +0000)]
get rid of some assignments that have become obsolete

22 years agoDocument OID changes.
Lutz Jänicke [Mon, 15 Apr 2002 14:18:30 +0000 (14:18 +0000)]
Document OID changes.

22 years agoUse the "mail" short name according to RFC2798 (Michael Bell
Lutz Jänicke [Mon, 15 Apr 2002 13:30:41 +0000 (13:30 +0000)]
Use the "mail" short name according to RFC2798 (Michael Bell
<michael.bell@rz.hu-berlin.de>).

22 years agoSome more OID enhancements.
Lutz Jänicke [Mon, 15 Apr 2002 10:41:38 +0000 (10:41 +0000)]
Some more OID enhancements.

22 years agoFix CRLF problem in BASE64 decode.
Lutz Jänicke [Mon, 15 Apr 2002 09:55:40 +0000 (09:55 +0000)]
Fix CRLF problem in BASE64 decode.

22 years agoremove disabled code
Bodo Möller [Sun, 14 Apr 2002 13:28:17 +0000 (13:28 +0000)]
remove disabled code

22 years agofix length field we create when converting SSL 2.0 format into SSL 3.0/TLS 1.0 format
Bodo Möller [Sun, 14 Apr 2002 13:05:15 +0000 (13:05 +0000)]
fix length field we create when converting SSL 2.0 format into SSL 3.0/TLS 1.0 format
(the bug was introduced with message callback support)

22 years agoImplement known-IV countermeasure.
Bodo Möller [Sat, 13 Apr 2002 22:47:20 +0000 (22:47 +0000)]
Implement known-IV countermeasure.

Fix length checks in ssl3_get_client_hello().

Use s->s3->in_read_app_data differently to fix ssl3_read_internal().

22 years agoAvoid emacs backup files when making a snapshot
Richard Levitte [Sat, 13 Apr 2002 12:28:44 +0000 (12:28 +0000)]
Avoid emacs backup files when making a snapshot

22 years agoanother error discovered by Karsten Braaten. The number was not even
Ulf Möller [Sat, 13 Apr 2002 09:58:50 +0000 (09:58 +0000)]
another error discovered by Karsten Braaten. The number was not even
prime!

22 years agolooks like a typo
Bodo Möller [Fri, 12 Apr 2002 13:52:40 +0000 (13:52 +0000)]
looks like a typo

22 years agoclean up and synchronize with 0.9.6-stable
Bodo Möller [Fri, 12 Apr 2002 13:45:29 +0000 (13:45 +0000)]
clean up and synchronize with 0.9.6-stable

22 years agoECDSA representation bugfixes
Bodo Möller [Fri, 12 Apr 2002 08:57:01 +0000 (08:57 +0000)]
ECDSA representation bugfixes

Submitted by: Nils Larsch

22 years agoCheck error code from a2d_ASN1_OBJECT().
Richard Levitte [Thu, 11 Apr 2002 22:13:58 +0000 (22:13 +0000)]
Check error code from a2d_ASN1_OBJECT().

22 years agoChange the date to XX xxx XXXX in development versions.
Richard Levitte [Thu, 11 Apr 2002 21:51:40 +0000 (21:51 +0000)]
Change the date to XX xxx XXXX in development versions.

22 years agoSynchronize with 0.9.7-stable.
Lutz Jänicke [Thu, 11 Apr 2002 18:43:52 +0000 (18:43 +0000)]
Synchronize with 0.9.7-stable.

22 years agoSynchronize with 0.9.7-stable branch
Lutz Jänicke [Wed, 10 Apr 2002 19:52:40 +0000 (19:52 +0000)]
Synchronize with 0.9.7-stable branch

22 years agoKeep my own specially optimized HP-UX shared library building up to date.
Lutz Jänicke [Wed, 10 Apr 2002 12:35:45 +0000 (12:35 +0000)]
Keep my own specially optimized HP-UX shared library building up to date.

22 years agoharmonize capitalization
Bodo Möller [Tue, 9 Apr 2002 12:42:47 +0000 (12:42 +0000)]
harmonize capitalization

22 years agofix ECDSA handling
Bodo Möller [Tue, 9 Apr 2002 12:01:21 +0000 (12:01 +0000)]
fix ECDSA handling

Submitted by: Nils Larsch

22 years agoadd usage examples
Bodo Möller [Tue, 9 Apr 2002 11:54:24 +0000 (11:54 +0000)]
add usage examples

22 years agoApply OID fixes for elliptic curves as supplied by
Lutz Jänicke [Mon, 8 Apr 2002 15:49:53 +0000 (15:49 +0000)]
Apply OID fixes for elliptic curves as supplied by
Nils Larsch <nlarsch@compuserve.de>.

22 years agoerror reported by Karsten Braaten
Ulf Möller [Sun, 7 Apr 2002 13:33:16 +0000 (13:33 +0000)]
error reported by Karsten Braaten

22 years agoAllow longer program names (VMS allows up to 39 characters).
Richard Levitte [Sat, 6 Apr 2002 20:22:48 +0000 (20:22 +0000)]
Allow longer program names (VMS allows up to 39 characters).
Submitted by Compaq.

22 years agomake update (libeay.num has been edited to match 0.9.7-stable)
Richard Levitte [Sat, 6 Apr 2002 19:16:12 +0000 (19:16 +0000)]
make update (libeay.num has been edited to match 0.9.7-stable)

22 years agoAllow longer program names (VMS allows up to 39 characters).
Richard Levitte [Sat, 6 Apr 2002 19:00:50 +0000 (19:00 +0000)]
Allow longer program names (VMS allows up to 39 characters).
Submitted by Compaq.

22 years agoOops, the system macro for VMS is OPENSSL_SYS_VMS, not VMS
Richard Levitte [Sat, 6 Apr 2002 11:58:04 +0000 (11:58 +0000)]
Oops, the system macro for VMS is OPENSSL_SYS_VMS, not VMS

22 years agoRecognise DEC C++ as equivalent to DEC C for the definitions of OPENSSL_EXTERN and...
Richard Levitte [Sat, 6 Apr 2002 11:37:18 +0000 (11:37 +0000)]
Recognise DEC C++ as equivalent to DEC C for the definitions of OPENSSL_EXTERN and OPENSSL_GLOBAL.
Submitted by Compaq.

22 years agoUse recv() and send() for socket communication on VMS instead of read()
Richard Levitte [Sat, 6 Apr 2002 11:35:49 +0000 (11:35 +0000)]
Use recv() and send() for socket communication on VMS instead of read()
and write().  The reason is that read() and write() make additional record
level locking which causes hangs of Compaq Secure Web Server (Apache) with
SSL.
Submitted by Compaq.

22 years agoMake shared libraries resolve global symbols within themselves first.
Richard Levitte [Sat, 6 Apr 2002 09:42:19 +0000 (09:42 +0000)]
Make shared libraries resolve global symbols within themselves first.
Currently only on GNUish linkers...
Submitted by Steven Bade <sbade@austin.ibm.com>

22 years agoFix buggy object definitions (Svenning Sorensen <sss@sss.dnsalias.net>).
Lutz Jänicke [Thu, 4 Apr 2002 17:48:37 +0000 (17:48 +0000)]
Fix buggy object definitions (Svenning Sorensen <sss@sss.dnsalias.net>).

22 years agoForgot one of the casts
Richard Levitte [Wed, 3 Apr 2002 15:01:28 +0000 (15:01 +0000)]
Forgot one of the casts