Bodo Möller
3e9ae0c462
Oops
2001-10-25 08:18:36 +00:00
Bodo Möller
96ec4ce0d2
Assume TLS 1.0 if ClientHello fragment is too short.
2001-10-25 06:06:50 +00:00
Bodo Möller
38b3e9edde
Fix SSL handshake functions and SSL_clear() such that SSL_clear()
...
never resets s->method to s->ctx->method when called from within one
of the SSL handshake functions.
2001-10-24 19:05:26 +00:00
Bodo Möller
9ccadf1c6f
In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if
...
client_version is smaller than the protocol version in use.
Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0
if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the
client will at least see that alert.
2001-10-20 17:52:40 +00:00
Dr. Stephen Henson
1e55e768c3
Typo.
2001-10-20 16:23:18 +00:00
Lutz Jänicke
b914a547e1
Flush buffers to prevent mixed output (Adam Back <adam@cypherspace.org>).
2001-10-16 14:25:27 +00:00
Bodo Möller
03b148f4a9
make sure .rnd exists
2001-10-15 17:57:27 +00:00
Bodo Möller
2dbdcd9734
Fix ssl3_get_message to handle message fragmentation correctly.
2001-10-15 17:42:43 +00:00
Bodo Möller
1147fa5a5f
the previous commit accidentily removed 'ret = 1' from the SSL_ST_OK
...
case of ssl3_accept
2001-10-15 17:40:22 +00:00
Ulf Möller
a9eba3f3f5
openbsd-x86 macros
...
Submitted by: Toomas Kiisk <vix@cyber.ee>
2001-10-14 00:58:32 +00:00
Lutz Jänicke
aa8a33c230
Update information as a partial response to the post
...
From: "Chris D. Peterson" <cpeterson@aventail.com>
Subject: Implementation Issues with OpenSSL
To: openssl-users@openssl.org
Date: Wed, 22 Aug 2001 16:13:17 -0700
The patch included in the original post may improve the internal session
list handling (and is therefore worth a seperate investigation).
No change to the list handling will however solve the problems of incorrect
SSL_SESSION_free() calls. The session list is only one possible point of
failure, dangling pointers would also occur for SSL object currently
using the session. The correct solution is to only use SSL_SESSION_free()
when applicable!
2001-10-12 12:29:57 +00:00
Richard Levitte
46ff8e0d0a
In certain cases, no encoding has been set up for the b64 filter. In
...
such cases, a flush should *not* attempt to finalise the encoding, as
the EVP_ENCODE_CTX structure will only be filled with garbage. For
the same reason, do the same check when a wpending is performed.
2001-10-11 19:43:45 +00:00
Richard Levitte
3f9077278a
Make sure the macro PEDANTIC is defined when we compile with
...
-pedantic, or some parts of the source will raise complaints from the
compiler.
2001-10-11 07:59:25 +00:00
Richard Levitte
accb6063f3
'make update'
2001-10-10 21:52:27 +00:00
Richard Levitte
744301ccd8
Add support for md4WithRSAEncryption.
2001-10-10 21:51:00 +00:00
Richard Levitte
a295ca8cf9
A few more OIDs, contributed by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>
2001-10-10 06:15:42 +00:00
Lutz Jänicke
293c4d747c
Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)
2001-10-08 08:38:12 +00:00
Lutz Jänicke
09389cbef5
Typos (Chris Pepper <pepper@mail.reppep.com>)
2001-10-01 14:39:23 +00:00
Richard Levitte
594a3e5bd5
In case of memory problems, the va_start() wasn't cleaned with a va_end().
...
Noticed by Thomas Klausner <wiz@danbala.ifoer.tuwien.ac.at>.
2001-09-24 15:06:44 +00:00
Bodo Möller
ae9010abd5
comment
2001-09-24 07:57:20 +00:00
Bodo Möller
ae3a6640b7
crypto/idea was missing in the list of directories that may have been deleted
2001-09-22 01:37:36 +00:00
Bodo Möller
029dfa64d4
bugfix: handle HelloRequest received during handshake correctly
2001-09-21 11:19:26 +00:00
Bodo Möller
f8845509b6
Disable session related stuff in SSL_ST_OK case of ssl3_accept if we
...
just sent a HelloRequest.
2001-09-21 07:01:04 +00:00
Bodo Möller
3f98e1dd11
Bugfix: correct cleanup after sending a HelloRequest
2001-09-21 00:03:00 +00:00
Bodo Möller
e53afa9e9b
fix ssl3_accept: don't call ssl_init_wbio_buffer() in HelloRequest case
2001-09-20 21:36:39 +00:00
Bodo Möller
e41c5bd730
Fix ssl/s3_enc.c, ssl/t1_enc.c and ssl/s3_pkt.c so that we don't
...
reveal whether illegal block cipher padding was found or a MAC
verification error occured.
In ssl/s2_pkt.c, verify that the purported number of padding bytes is in
the legal range.
2001-09-20 18:34:36 +00:00
Bodo Möller
10981a5c84
add comment
2001-09-14 13:48:37 +00:00
Bodo Möller
9cf8888149
Increase permissible ClientKeyExchange message length as in main
...
branch (revision 1.50, 2000-11-17)
2001-09-14 13:32:03 +00:00
Lutz Jänicke
491d390ec9
Synchronize typo corrections with 0.9.7-dev
2001-09-13 15:19:39 +00:00
Lutz Jänicke
87301baec9
One more manual page.
2001-09-13 15:07:21 +00:00
cvs2svn
0cf4df488b
This commit was manufactured by cvs2svn to create branch
...
'OpenSSL_0_9_6-stable'.
2001-09-13 15:05:43 +00:00
Lutz Jänicke
d59c3e5046
One more manual page.
2001-09-13 15:05:42 +00:00
Lutz Jänicke
6d8566f2eb
Rework section about return values another time (based on hints from
...
Bodo Moeller).
2001-09-13 13:21:38 +00:00
Bodo Möller
4e1b0d8904
avoid "statement not reached" warning
2001-09-13 13:02:59 +00:00
Geoff Thorpe
8ce2912fbc
Updated dependencies from "make update"
2001-09-12 02:43:22 +00:00
Geoff Thorpe
1372965e2e
Reduce the header dependencies on engine.h in apps/.
2001-09-12 02:39:06 +00:00
Geoff Thorpe
1a1422643b
ENGINE uses a very opaque design, so we can predeclare the structure type
...
in "types.h" so that very few headers will need to include engine.h,
generally only C files using API functions will need it (reducing
the header dependencies quite a lot).
2001-09-12 02:34:20 +00:00
Geoff Thorpe
409960491d
ENGINE files were renamed, and error strings are now in eng_err.c
2001-09-12 01:54:17 +00:00
Dr. Stephen Henson
96bd6f730a
Add certificate and request demos.
...
Fix X509V3 macro so they compile.
2001-09-12 00:19:20 +00:00
Lutz Jänicke
c0f5dd070b
Make maximum certifcate chain size accepted from the peer application
...
settable (proposed by "Douglas E. Engert" <deengert@anl.gov>).
2001-09-11 13:08:51 +00:00
Bodo Möller
9d7a8d3578
add 'release showstopper' entry
2001-09-11 12:46:50 +00:00
Bodo Möller
4dec4f646d
update
2001-09-11 12:26:56 +00:00
Bodo Möller
fde9626cff
update from main branch
2001-09-11 12:26:35 +00:00
Bodo Möller
2cb924b052
ex_data situation is no longer that bad
2001-09-11 12:20:20 +00:00
Geoff Thorpe
51ac0cfe44
make update
2001-09-10 21:18:11 +00:00
Geoff Thorpe
16e819e1d8
Put all "common" initialisation in the apps_startup() and apps_shutdown()
...
macros in apps.h.
2001-09-10 21:04:14 +00:00
Geoff Thorpe
1023cfe70d
enginetest needs 'memset' defined.
2001-09-10 21:02:06 +00:00
Ulf Möller
8e0a2d8461
missed one file
2001-09-10 20:16:31 +00:00
Bodo Möller
e13ae96d7c
While ispell may not like it, "cancelling" may be spelt with two "l"s
2001-09-10 18:59:53 +00:00
Bodo Möller
9f29ec4721
fix memory leak (I think)
2001-09-10 18:50:09 +00:00