Ulf Möller
2fef6785c6
Write random seed file in binary mode.
...
Submitted by: Richard Levitte <levitte@stacken.kth.se>
1999-04-16 11:16:00 +00:00
Dr. Stephen Henson
953937bdc6
Fix a horrible BN bug in bn_expand2 which caused BN_add_word() et al to fail
...
when they cause the destination to expand.
To see how evil this is try this:
#include <pem.h>
main()
{
BIGNUM *bn = NULL;
int i;
bn = BN_new();
BN_hex2bn(&bn, "FFFFFFFF");
BN_add_word(bn, 1);
printf("Value %s\n", BN_bn2hex(bn));
}
This would typically fail before the patch.
It also screws up if you comment out the BN_hex2bn line above or in any
situation where BN_add_word() causes the number of BN_ULONGs in the result
to change (try doubling the number of FFs).
1999-04-15 23:07:00 +00:00
Ben Laurie
abed0b8a1f
Add new experimental ciphersuites. Bring naming into line with RFC.
1999-04-15 18:52:13 +00:00
Ben Laurie
28db340142
Just use an ANSI declaration, instead.
1999-04-15 10:10:21 +00:00
Bodo Möller
c1cf1eecdb
/* Just some comments. */
...
Submitted by:
Reviewed by:
PR:
1999-04-14 23:47:41 +00:00
Dr. Stephen Henson
28a98809d1
Add some utilities to support SXNet extension also add support in DEF files
...
generator to typesafe stacks.
1999-04-14 23:44:41 +00:00
Bodo Möller
d91f8c3ce8
Cleaning up Ben's clean-ups :-)
...
Submitted by:
Reviewed by:
PR:
1999-04-14 23:10:11 +00:00
Bodo Möller
9e7bd9b5fe
Make Windows compilers happy.
...
Submitted by:Tom Titchener
Reviewed by:
PR:
1999-04-14 21:43:02 +00:00
Bodo Möller
f0f1b4e400
Some tiny fixes.
...
Submitted by:
Reviewed by:
PR:
Submitted by:
Reviewed by:
PR:
1999-04-14 20:17:23 +00:00
Ben Laurie
8f7de4f04c
Typo.
1999-04-14 11:13:47 +00:00
Ralf S. Engelschall
52a48254c7
Start with some plans...
1999-04-14 09:32:51 +00:00
Dr. Stephen Henson
0490a86d01
Delete all the old X509V3 pack and unpack stuff and various structures and
...
files associated with them. This stuff is all obsoleted by the new X509V3 code.
1999-04-13 23:56:39 +00:00
Ralf S. Engelschall
baf748ba09
SSL_ALLOW_ENULL was renamed to SSL_FORBID_ENULL some time ago by Ben.
1999-04-13 11:01:44 +00:00
Bodo Möller
dd5ae70333
Submitted by:
...
Reviewed by:
PR:
1999-04-13 02:32:38 +00:00
Ulf Möller
5fbe91d86b
New Configure option "rsaref".
1999-04-13 00:58:49 +00:00
Bodo Möller
5fd4e2b16b
Don#t auto-generate crypto/pem/pem.h -- a fixed file is fine for it.
...
Submitted by:
Reviewed by:
PR:
1999-04-12 19:58:17 +00:00
Ben Laurie
f73e07cf42
Add type-safe STACKs and SETs.
1999-04-12 17:23:57 +00:00
Ben Laurie
a36a1a5146
gcc claims this is a shadow, though I can't find what it is shadowing...
1999-04-12 17:17:39 +00:00
Ralf S. Engelschall
f9a2593163
Add `openssl ca -revoke <certfile>' facility which revokes a certificate
...
specified in <certfile> by updating the entry in the index.txt file.
This way one no longer has to edit the index.txt file manually for
revoking a certificate. The -revoke option does the gory details now.
Submitted by: Massimiliano Pala <madwolf@openca.org>
Cleaned up and integrated by: Ralf S. Engelschall
1999-04-12 11:45:14 +00:00
Ralf S. Engelschall
2f0cd19533
Fix openssl crl -noout -text' combination where
-noout' killed the `-text'
...
option at all and this way the `-noout -text' combination was inconsistent in
`openssl crl' with the friends in `openssl x509|rsa|dsa'.
1999-04-12 10:36:16 +00:00
Ralf S. Engelschall
268c2102e3
Make sure a corresponding plain text error message exists for the
...
X509_V_ERR_CERT_REVOKED/23 error number which can occur when a
verify callback function determined that a certificate was revoked.
1999-04-12 09:59:05 +00:00
Bodo Möller
4211a99ba0
Obsoleted by new openssl command "list-cipher-commands".
...
Submitted by:
Reviewed by:
PR:
1999-04-11 02:52:44 +00:00
Bodo Möller
fc8ee06b4d
Submitted by:
...
Reviewed by:
PR:
1999-04-11 02:49:35 +00:00
Ralf S. Engelschall
7c7c88515f
Fix a few typos and tabs while I'm poking around in ca.c...
1999-04-10 13:15:38 +00:00
Ben Laurie
c0035435a9
Rid the world of yet more evil casts.
1999-04-10 12:09:17 +00:00
Ben Laurie
3bb307c10c
Adjust renegotiation slightly.
1999-04-10 12:08:46 +00:00
Ralf S. Engelschall
94c95d04c6
Fix a typo in the X.509v3 docs: cRLSign instead of cRLCertSign is correct
...
according to the sources.... found by Steffen Dettmer <steffen@tfh-berlin.de>.
1999-04-10 11:33:28 +00:00
Ben Laurie
5a88a6eabf
Rid the world of more evil casts.
1999-04-10 10:36:19 +00:00
Ben Laurie
215c24fc8e
Install signal handler if we are using sigaction.
1999-04-10 10:21:44 +00:00
Bodo Möller
c7ac31e26e
Bugfix: s_client occasionally would sleep in select() when it should
...
have checked SSL_pending() first.
Submitted by:
Reviewed by:
PR:
1999-04-09 20:54:25 +00:00
Ulf Möller
9d892e2855
recent changes.
1999-04-09 17:04:32 +00:00
Ulf Möller
28847dd153
Test PKCS#1 v1.5 padding as well.
1999-04-09 16:26:37 +00:00
Ulf Möller
a5a47e4afb
Use Perl 5 even if Perl 4 comes first in the search path.
1999-04-09 16:25:25 +00:00
Ulf Möller
a8da89186c
Separate DSA functionality from ASN.1 encoding.
...
New functions DSA_do_sign and DSA_do_verify to provide access to
the raw DSA values.
1999-04-09 16:24:32 +00:00
Bodo Möller
dae08db4a0
Preprocessor file to allow testenc to test only those ciphers
...
that are available.
Submitted by:
Reviewed by:
PR:
1999-04-09 10:44:50 +00:00
Bodo Möller
adbfb08354
Tiny comment to improve code comprehensibility.
...
Submitted by:
Reviewed by:
PR:
1999-04-09 07:12:17 +00:00
Dr. Stephen Henson
d2e26dccd1
Add PKCS#5 v2.0 ASN1 structures.
1999-04-08 23:55:42 +00:00
Ulf Möller
acafc0b4ae
Bugs.
1999-04-08 20:45:53 +00:00
Bodo Möller
3f90e6793f
New "open issue" (ERR_...).
...
Submitted by:
Reviewed by:
PR:
1999-04-08 20:29:19 +00:00
Ulf Möller
44a25707fd
Avoid error message about missing gcc.
...
Submitted by: Niels Poppe <niels@netbox.org>
1999-04-08 19:51:16 +00:00
Bodo Möller
fa3da3cf09
Be more optimistic about the availability of termios for ~ECHO,
...
because sgtty emulation tends to fail on various systems.
Submitted by:
Reviewed by:
PR:
1999-04-08 17:10:27 +00:00
Ulf Möller
bacad008eb
Bad dependencies.
1999-04-08 15:19:36 +00:00
Ulf Möller
bc9cd58e8a
Test RSA after the BN library it is based on.
...
Submitted by: Anonymous <nobody@replay.com>
1999-04-08 15:09:24 +00:00
Ulf Möller
f4ea5ec563
Fix linux-mips entry.
...
Submitted by: Niels Poppe <niels@netbox.org>
1999-04-08 00:10:19 +00:00
Ulf Möller
1ad86e8e7d
bn_div_words has been added to alpha.s (Hannes Reinecke's patch).
1999-04-07 23:37:33 +00:00
Ulf Möller
f4371a650a
More assembler problems; new OCSP patch; obsolete patches removed from
...
list.
1999-04-07 17:31:11 +00:00
Ulf Möller
20232a9ca5
Bug fix for X.509 two-digit year.
...
Pointed out by Alexander Tyshlek <tyshlek@fuib.com> and Peter Gutmann
<pgut001@cs.auckland.ac.nz>
1999-04-06 15:29:54 +00:00
Ulf Möller
e8d628156f
Remove obsolete files from SSLeay 0.8.
1999-04-06 15:22:55 +00:00
Ben Laurie
121bd68d1c
Don't shadow.
1999-04-03 14:52:01 +00:00
Bodo Möller
cf897932ca
Avoid EADDRINUSE for s_server.
...
Submitted by:
Reviewed by:
PR:
1999-04-02 23:35:43 +00:00