Ben Laurie
eb90a483ad
Add functions to add certs to stacks, used for CA file/path stuff in servers.
1999-02-28 17:41:55 +00:00
Ben Laurie
1efa9c33c0
Update dependencies.
1999-02-27 18:41:04 +00:00
Ralf S. Engelschall
74d7abc2ab
Get rid of remaining C++-style comments which strict C compilers hate.
...
(Pointed out by Carlos Amengual).
1999-02-27 12:17:40 +00:00
Dr. Stephen Henson
7283ecea22
BN_RECURSION causes the stuff in bn_mont.c to fall over for large keys. For
...
now change it to BN_RECURSION_MONT so it isn't compiled in.
1999-02-26 01:37:34 +00:00
Ralf S. Engelschall
4b8f2ce648
Typo
1999-02-25 11:06:52 +00:00
Ralf S. Engelschall
def9f43151
Fix 'port' variable from int' to
unsigned int' in crypto/bio/b_sock.c
...
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall
1999-02-25 10:54:27 +00:00
Ralf S. Engelschall
8aef252bf4
Change type of another md_len variable in pk7_doit.c:PKCS7_dataFinal()
...
from `int' to `unsigned int' because it's a length and initialized by
EVP_DigestFinal() which expects an `unsigned int *'.
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall
1999-02-25 10:47:24 +00:00
Ben Laurie
4f9b306ca7
Fix clearly untested "clever" hack.
1999-02-25 09:43:26 +00:00
Ralf S. Engelschall
74cc3698bd
More CVS ignore stuff...
1999-02-25 09:06:30 +00:00
Ralf S. Engelschall
1b3b0a54d1
Remember good pointers to Montgomery multiplication algorithm
...
descriptions as pointed out by Dave Carman <carman@erols.com>
1999-02-25 08:00:57 +00:00
Ben Laurie
1745a3fb9f
Code for reliable BIO.
1999-02-23 21:45:23 +00:00
Ben Laurie
55ab3bf7f9
Add reliable BIO.
1999-02-23 21:44:34 +00:00
Ben Laurie
15799403ad
Fix more warnings.
1999-02-23 12:53:49 +00:00
Ralf S. Engelschall
04fa4cb721
Make gcc -Wall happy ("might be used uninitialized...")
1999-02-23 07:47:30 +00:00
Ben Laurie
0849d13811
Add syslogging BIO.
1999-02-22 21:21:08 +00:00
Dr. Stephen Henson
e527ba09a6
Various changes to make this stuff compile under Win32 and VC++ with and
...
without -debug option to mk1mf.pl. Change _export to is_export (_export is
a reserved word under VC++). Add yucky function prototype function pointer
casts. Sanitise the included files in crypto/x509v3.
Also changed ssleay.exe target to openssl.exe
1999-02-22 01:26:40 +00:00
Ben Laurie
abf87f79f7
Fix warning.
1999-02-21 20:01:39 +00:00
Dr. Stephen Henson
0c8a1281d0
Make RSA_NO_PADDING really use no padding.
...
Submitted by: Ulf Moeller <ulf@fitug.de>
1999-02-21 17:39:07 +00:00
Dr. Stephen Henson
aa066b9e6e
Add more functionality to issuer alt name and subject alt name. New options
...
to include email addresses from DN and copy details from issuer certificate.
Include examples in openssl.cnf, update Win32 ordinals.
1999-02-21 01:46:45 +00:00
Ben Laurie
57c86f79bb
Fix a warning.
1999-02-20 16:36:28 +00:00
Ben Laurie
4004dbb7f6
Generate errors when public/private key check is done.
1999-02-20 11:50:07 +00:00
Dr. Stephen Henson
c74f1eb9bd
Preliminary support for reason code CRL extension.
1999-02-20 01:15:41 +00:00
Dr. Stephen Henson
ee5425d97d
Patch so the new crl stuff actually compiles this time :-) Also update the
...
Win32 ordinals.
1999-02-19 02:26:21 +00:00
Dr. Stephen Henson
0ca5f8b15c
Overhaul 'crl' application, add a proper X509_CRL_print function and start
...
to support CRL extensions.
1999-02-19 01:29:29 +00:00
Ben Laurie
6b056c414d
Fix case of new functions in error files.
1999-02-18 18:26:42 +00:00
Dr. Stephen Henson
0be9747b39
Oops! Remeber to include the other patches this time...
1999-02-17 23:22:57 +00:00
Dr. Stephen Henson
3d8accc3ae
Fuller authority key id support, partial support for private key usage extension
...
and really fix the ASN.1 IMPLICIT bug this time :-)
1999-02-17 23:21:01 +00:00
Ben Laurie
a49498969e
Add OAEP.
1999-02-17 21:11:08 +00:00
Dr. Stephen Henson
d08d8da432
Added code to GENERAL_NAME with support for more options and preliminary
...
support for assignment in config files.
1999-02-17 03:09:58 +00:00
Dr. Stephen Henson
a8236c8c32
Fix various memory leaks in SSL, apps and DSA
1999-02-15 21:05:21 +00:00
Dr. Stephen Henson
5236efdbf5
Update error codes.
1999-02-14 17:21:14 +00:00
Dr. Stephen Henson
388ff0b076
Add support for raw extensions. This means that you can include the DER encoding
...
of an arbitrary extension: e.g. 1.3.4.5=critical,RAW:12:34:56 Using this
technique currently unsupported extensions can be generated if you know their
DER encoding. Even if the extension is supported in future the raw extension
will still work: that is the raw version can always be used even if it is a
supported extension.
1999-02-14 16:48:22 +00:00
Ralf S. Engelschall
6013fa8395
Make sure latest Perl versions don't interpret some generated C array as Perl
...
array code in the crypto/err/err_genc.pl script.
Submitted by: Lars Weber <3weber@informatik.uni-hamburg.de>
Reviewed by: Ralf s. Engelschall
1999-02-14 13:21:52 +00:00
Dr. Stephen Henson
5c00879ef0
More Win32 fixes and upsdate INSTALL.W32 documentation.
1999-02-14 00:40:13 +00:00
Ben Laurie
08853ba82d
Finally(?) fix DES stuff.
1999-02-13 21:49:34 +00:00
Ben Laurie
c09c3c4b2f
Update dependencies.
1999-02-13 19:03:16 +00:00
Ben Laurie
4e31df2cd7
Fix ghastly DES declarations, and all consequential warnings.
1999-02-13 18:52:38 +00:00
Dr. Stephen Henson
e4119b9311
Fix typo in asn1.h (PRINTABLESTRING_STRING) and fix a bug in object creation
...
perl script. It failed if the OID had any zeros in it.
1999-02-13 17:15:32 +00:00
Ben Laurie
4a71b90deb
Add support for 3DES CBCM mode.
1999-02-13 15:03:47 +00:00
Ben Laurie
be560e7b67
Whoops, missed one.
1999-02-13 12:38:44 +00:00
Ben Laurie
9151d39645
Some cleanup.
1999-02-13 12:28:12 +00:00
Ben Laurie
65b8ca07a5
Tidy up asm stuff.
1999-02-12 19:05:10 +00:00
Dr. Stephen Henson
3773d138ce
Delete a few unused files in apps, restore CAST WIN32 ASM file to main
...
tree.
1999-02-11 00:07:39 +00:00
Ralf S. Engelschall
c91531d9fe
Remove three more bogus files (2x temp file, 1x trash)
1999-02-10 12:37:59 +00:00
Ralf S. Engelschall
0517335e3c
Ignore mx86unix.cpp which is generated on Intel platforms
1999-02-10 08:48:10 +00:00
Ralf S. Engelschall
155d7a0e1d
First cut for a very conservative source tree cleanup:
...
1. merge various obsolete readme texts into doc/ssleay.txt
where we collect the old documents and readme texts.
2. remove the first part of files where I'm already sure that we no longer need
them because of three reasons: either they are just temporary files which
were left by Eric or they are preserved original files where I've verified
that the diff is also available in the CVS via "cvs diff -rSSLeay_0_8_1b"
or they were renamed (as it was definitely the case for the crypto/md/
stuff).
We've still a horrible mess under crypto/bn/asm/. There for a lot of files
I'm sure whether we need them or not. So, when someone knows it better, feel
free to cleanup there.
1999-02-10 08:26:08 +00:00
Dr. Stephen Henson
df16c60842
Oops. Forgot to do a 'make errors'.
1999-02-10 01:36:45 +00:00
Dr. Stephen Henson
175b0942ec
More extension code. Incomplete support for subject and issuer alt
...
name, issuer and authority key id. Change the i2v function parameters
and add an extra 'crl' parameter in the X509V3_CTX structure: guess
what that's for :-) Fix to ASN1 macro which messed up
IMPLICIT tag and add f_enum.c which adds a2i, i2a for ENUMERATED.
1999-02-10 01:12:59 +00:00
Ben Laurie
c45beb91b3
Update dependencies.
1999-02-09 23:02:47 +00:00
Ben Laurie
bf5dcd135f
More exactitude with function arguments.
1999-02-09 23:01:08 +00:00
Dr. Stephen Henson
119f62881a
Oops... forgot to add new ENUMERATED file...
1999-02-09 01:30:41 +00:00
Dr. Stephen Henson
bceacf938f
Support for ASN1 ENUMERATED type. This copies and duplicates the ASN1_INTEGER
...
code and adds support to ASN1_TYPE and asn1parse.
1999-02-09 01:29:37 +00:00
Dr. Stephen Henson
068197a70c
Comment out def of currently unimplemented function to stop warning.
1999-02-08 00:48:30 +00:00
Dr. Stephen Henson
643aaa1979
Fix filename in comment.
1999-02-07 01:34:26 +00:00
Dr. Stephen Henson
142fcca8ca
Add support for GeneralName and GeneralNames extensions. Also preliminary
...
support for subject and issuer alt name. Add a new ASN1 macro and fix a
nasty bug that left an ASN1 buffer modified on an error condition with
IMPLICIT tagging.
1999-02-07 00:14:12 +00:00
Dr. Stephen Henson
ebbfd76c69
Delete legacy file.
1999-02-06 20:30:40 +00:00
Ben Laurie
547ff5e6a9
Slightly improved diagnostics.
1999-02-06 18:09:13 +00:00
Dr. Stephen Henson
a83d7d1491
Rename v3_bitstr.c to v3_bitst.c to fit in 8+3. Rebuild MINFO to reflect
...
change.
1999-02-06 12:35:53 +00:00
Dr. Stephen Henson
f614496cfb
Delete bogus V3 prototype and update the *.num files to include ordinals for
...
the new functions. Update MINFO.
1999-02-01 01:17:53 +00:00
Dr. Stephen Henson
9b3086fe38
Fix various stuff: that VC++ 5.0 chokes on:
...
1. Add *lots* of missing prototypes for static ssl functions.
2. VC++ doesn't understand the 'LL' suffix for 64 bits constants: change bn.org
3. Add a few missing prototypes in pem.org
Fix mk1mf.pl so it outputs a Makefile that doesn't choke Win95.
Fix mkdef.pl so it doesn't truncate longer names.
1999-01-31 17:30:18 +00:00
Ben Laurie
d433f9014e
Yet more pissing about to get PEM built at the right moment.
1999-01-31 15:00:12 +00:00
Mark J. Cox
351d899878
Add new function, EVP_MD_CTX_copy() to replace frequent use of memcpy.
...
Submitted by: Eric A Young - from changes to C2Net SSLeay
Reviewed by: Mark Cox
PR:
1999-01-31 12:14:39 +00:00
Ben Laurie
a96e7810e2
Squeeze a bit more speed out of MD5 assembler.
1999-01-30 17:53:00 +00:00
Ben Laurie
f33fbc2e1e
More pissing about to get pem.h to behave properly.
1999-01-30 14:05:52 +00:00
Ben Laurie
59ff713462
Break circular dependency between pem and err.
1999-01-30 13:40:34 +00:00
Ralf S. Engelschall
ae3d365f99
Ignore crypto/x509v3/lib
1999-01-30 13:26:41 +00:00
Ben Laurie
31df0990a1
Update dependencies.
1999-01-30 12:49:44 +00:00
Ben Laurie
5f0451daa2
Add dependencies.
1999-01-30 12:15:11 +00:00
Ben Laurie
fc8c1a5c67
Update dependencies.
1999-01-30 12:05:42 +00:00
Mark J. Cox
a0a5407901
Fixes to BN code. Previously the default was to define BN_RECURSION
...
but the BN code had some problems that would cause failures when
doing certificate verification and some other functions.
Submitted by: Eric A Young from a C2Net version of SSLeay
Reviewed by: Mark J Cox
PR:
1999-01-28 10:40:38 +00:00
Dr. Stephen Henson
8938272b32
Remember to add the new file this time :-)
1999-01-28 00:34:42 +00:00
Dr. Stephen Henson
92c046cac0
Add ASN1 code for netscape certificate sequences.
1999-01-28 00:16:44 +00:00
Dr. Stephen Henson
a27598bf7e
Add a few extended key usage OIDs.
1999-01-26 23:13:14 +00:00
Ben Laurie
fd9d35f56e
Oops. One header too many.
1999-01-25 21:36:51 +00:00
Ben Laurie
f3d2e56bb3
Update dependencies.
1999-01-25 21:25:54 +00:00
Ben Laurie
8a5222113b
Declare correctly on FreeBSD.
1999-01-25 21:20:57 +00:00
Ben Laurie
a224de3f5d
Reduce header dependencies.
1999-01-25 21:19:12 +00:00
Dr. Stephen Henson
f317aa4c9c
More X509 V3 stuff. Add support for extensions in the 'req' application
...
so that: openssl req -x509 -new -out cert.pem
will take extensions from openssl.cnf a sample for a CA is included.
Also change the directory order so pem is nearer the end. Otherwise 'make links'
wont work because pem.h can't be built.
1999-01-25 01:09:21 +00:00
Dr. Stephen Henson
d0cc3d3460
Add file x509v3.err.
1999-01-24 20:58:44 +00:00
Ben Laurie
41c62a8e56
Minor constification.
1999-01-24 17:54:23 +00:00
Dr. Stephen Henson
834eeef995
Continuing adding X509 V3 support. This starts to integrate the code with
...
the main library, but only with printing at present. To see this try:
openssl x509 -in cert.pem -text
on a certificate with some extensions in it.
1999-01-24 17:50:32 +00:00
Dr. Stephen Henson
9aeaf1b4a7
Initial addition of new X509 V3 files, tidy of old files.
1999-01-24 00:50:01 +00:00
Ben Laurie
1bbd21eec5
Correct bracketing error.
1999-01-21 11:46:01 +00:00
Dr. Stephen Henson
9b5cc156f3
Continued patches so certificates and CRLs now can support and use
...
GeneralizedTime.
1999-01-20 00:14:40 +00:00
Ben Laurie
6f93539970
This time, get it right.
1999-01-19 23:25:22 +00:00
Ben Laurie
8039257dbc
Finally lay dependencies to rest (I hope!).
1999-01-19 21:36:31 +00:00
Ben Laurie
b13a155492
Spelling mistake.
1999-01-19 19:18:20 +00:00
Dr. Stephen Henson
fdc71eccec
This is the result of a "make errors" with the new error building functionality
...
in place.
1999-01-18 22:19:46 +00:00
Dr. Stephen Henson
6c8abdd744
New err_code.pl script to retain old error codes. This should allow the use
...
of 'make errors' without causing huge re-organisations of files when a new
code is added.
1999-01-18 22:18:38 +00:00
Ben Laurie
4a66b7e0b2
Ignore auto-generated programs.
1999-01-17 16:28:06 +00:00
Ben Laurie
690ad20a0f
Dispose of generated programs.
1999-01-17 16:27:15 +00:00
Ben Laurie
649cdb7be9
Fix major cockup with short keys in CAST-128.
1999-01-17 16:26:24 +00:00
Ben Laurie
f9e6fac357
Oops. Missing NULL frees.
1999-01-17 14:19:31 +00:00
Ben Laurie
2c1ef383ae
Generate an error on an invalid directory.
1999-01-17 14:10:08 +00:00
Dr. Stephen Henson
f6aed2cda6
Time to blow up the source tree :-) This is the beginning of support for
...
GeneralizedTime. At several points PKIX specifies that GeneralizedTime can be
used but OpenSSL doesn't currently support it. This patch adds several files
and a bunch of functions.
Of interest is the ASN1_TIME structure and its related functions. At several
points certificates, CRLs et al specify that a time can be expressed as a
choice of UTCTime and GeneralizedTime. Currently OpenSSL interprets this
(wrongly) as UTCTime because GeneralizedTime isn't supported. The ASN1_TIME
stuff provides this functionality.
Still todo is to trace which cert and CRL points need an ASN1_TIME and modify
the utilities appropriately and of course fix all the bugs.
Note new OpenSSL copyright in the new file a_time.c. I didn't put it in
a_gentm.c because it is a minimally modified form a_utctm.c .
Since this adds new files and error codes you will need to do a 'make errors'
at the top level to add the new codes.
1999-01-17 00:13:14 +00:00
Dr. Stephen Henson
27eb622b78
Submitted by: Neil Costigan <neil.costigan@celocom.com>
...
PR:
1999-01-14 18:21:57 +00:00
Dr. Stephen Henson
2d723902a0
Fix OBJ_txt2nid(): old function was broken when input used the "dot" form, e.g.
...
1.2.3.4 . Also added new function OBJ_txt2obj().
1999-01-12 18:40:33 +00:00
Ben Laurie
a6801a91cd
Add prototype, fix parameter passing bug.
1999-01-10 20:36:02 +00:00
Ben Laurie
cf6dcfec97
Get rid of redundant files.
1999-01-09 13:01:35 +00:00
Ben Laurie
e03ddfae7e
Accept NULL in *_free.
1999-01-07 19:15:59 +00:00
Dr. Stephen Henson
ad65ce755e
Fix things so DH_free() will be no-op when passed NULL, like RSA_free() and
...
DSA_free(): this was causing crashes when for example an attempt was made
to handle a (currently) unsupported DH public key. Also X509_PUBKEY_set()i
wasn't checking errors from d2i_PublicKey().
1999-01-06 01:39:24 +00:00
Ben Laurie
e416ad9772
Free the right thing.
1999-01-04 21:43:32 +00:00
Ben Laurie
4a18cddd16
Only free if it ain't NULL.
1999-01-04 21:39:34 +00:00
Ben Laurie
bb65e20b1c
Remove the bugfix that was really a bug.
...
Submitted by: Arne Ansper <arne@ats.cyber.ee>
1999-01-04 20:11:31 +00:00
Ben Laurie
b5e406f755
Pass on BIO_CTRL_FLUSH.
...
Submitted by: Arne Ansper <arne@ats.cyber.ee>
1999-01-04 19:55:12 +00:00
Dr. Stephen Henson
10061c7c47
More EVP_PKEY patches for new functionality.
1999-01-03 23:00:45 +00:00
Ralf S. Engelschall
cb0f35d716
Make sure the already existing X509_STORE->depth variable is initialized
...
in X509_STORE_new(), but document the fact that this variable is still
unused in the certificate verification process.
1999-01-03 15:31:11 +00:00
Ralf S. Engelschall
4c7b481b4c
More .cvsignore stuff to make CVS quiet on our generated files.
1999-01-03 13:17:47 +00:00
Dr. Stephen Henson
098fc2c0d8
Remove one EVP_PKEY_free() that shouldn't be there.
1999-01-03 02:15:34 +00:00
Dr. Stephen Henson
cfcf645356
Make sure applications free up pkey structures and add netscape extension
...
handling to x509.c
1999-01-03 01:08:33 +00:00
Ben Laurie
cdbb8c2f26
Fix reference counting.
1999-01-02 19:04:27 +00:00
Paul C. Sutton
251f25e0b5
A couple more ssleay.cnf to openssl.cnf changes
1999-01-02 15:05:08 +00:00
Ralf S. Engelschall
06d5b16225
First cut of a cleanup for apps/. First the `ssleay' program is now named
...
`openssl' and second, the shortcut symlinks for the `openssl <command>' are no
longer created. This way we have a single and consistent command line
interface `openssl <command>', similar to `cvs <command>'.
Notice, the openssl.cnf, openssl.c and progs.pl files were changed after a
repository copy, i.e. they still contain the complete file history.
1999-01-02 12:59:33 +00:00
Ralf S. Engelschall
0491b70983
Make GCC happy by removing an unused variable defintion.
1999-01-02 12:10:43 +00:00
Dr. Stephen Henson
c35f549e8b
Move DSA test in ca.c inside #ifdef and make pubkey BIT STRING always have
...
zero unused bits.
1999-01-02 01:53:06 +00:00
Dr. Stephen Henson
ebc828cad9
Add extended key usage OID and update STATUS file.
1999-01-01 18:43:44 +00:00
Paul C. Sutton
56ee3117a5
Makefiles updated to exit if an error occurs in a sub-directory make
...
(including if user presses ^C)
1999-01-01 12:51:11 +00:00
Ralf S. Engelschall
f7ceceb518
Remove more old temporary files from CVS
1998-12-31 21:51:27 +00:00
Ben Laurie
c77f1b37fd
Fix name delete problem.
1998-12-31 17:08:34 +00:00
Ralf S. Engelschall
9cb0969f65
Fix version stuff:
...
1. The already released version was 0.9.1c and not 0.9.1b
2. The next release should be 0.9.2 and not 0.9.1d, because
first the changes are already too large, second we should avoid any more
0.9.1x confusions and third, the Apache version semantics of
VERSION.REVISION.PATCHLEVEL for the version string is reasonable (and here
.2 is already just a patchlevel and not major change).
tVS: ----------------------------------------------------------------------
1998-12-31 09:36:40 +00:00
stephen
e9b8eb3155
Fix for sk_insert bug: it never worked properly.
...
Allow explicit tag asn macros to handle indefinite length constructed stuff:
without this certain "certificates" can't be read in.
1998-12-31 00:59:02 +00:00
stephen
0c106d75e3
fix pk7_doit.c for new i2d_ASN1_SET argument
1998-12-30 20:34:50 +00:00
stephen
d97b4dd866
external error lib number now global and allow error lib to have a name
1998-12-30 18:42:02 +00:00
Ben Laurie
4098e89cbf
Fix incorrect DER encoding of SETs and all knock-ons from that.
1998-12-29 21:43:55 +00:00
Ben Laurie
03f8b04277
Add prototypes. Make Montgomery stuff explicitly for that purpose.
1998-12-29 17:22:31 +00:00
Ben Laurie
8d7ed6ff90
Deal with generated files.
1998-12-28 21:58:19 +00:00
Ralf S. Engelschall
320a14cb5b
*** empty log message ***
1998-12-23 12:09:47 +00:00
Ralf S. Engelschall
5f32680329
Switch version string to SSLeay/OpenSSL
1998-12-23 07:53:55 +00:00
Ralf S. Engelschall
f92e687e17
Fix unused variable warning of GCC
1998-12-22 16:20:18 +00:00
Ralf S. Engelschall
13e91dd365
Incorporation of RSEs assembled patches
1998-12-22 15:59:57 +00:00
Ralf S. Engelschall
651d0aff98
Various cleanups and fixed by Marc and Ralf to start the OpenTLS project
1998-12-22 15:04:48 +00:00
Ralf S. Engelschall
dfeab0689f
Import of old SSLeay release: SSLeay 0.9.1b (unreleased)
1998-12-21 11:00:56 +00:00
Ralf S. Engelschall
31b8d86844
This commit was generated by cvs2svn to track changes on a CVS vendor
...
branch.
1998-12-21 11:00:56 +00:00
Ralf S. Engelschall
15403de6ca
Import of old SSLeay release: SSLeay 0.9.1b (unreleased)
1998-12-21 11:00:43 +00:00
Ralf S. Engelschall
7dfb0b774e
This commit was generated by cvs2svn to track changes on a CVS vendor
...
branch.
1998-12-21 11:00:43 +00:00
Ralf S. Engelschall
58964a4922
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
Ralf S. Engelschall
d02b48c63a
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00