Bodo Möller
745c70e565
Move MAC computations for Finished from ssl3_read_bytes into
...
ssl3_get_message, which is more logical (and avoids a bug,
in addition to the one that I introduced yesterday :-)
and makes Microsoft "fast SGC" less special.
MS SGC should still work now without an extra state of its own
(it goes directly to SSL3_ST_SR_CLNT_HELLO_C, which is the usual state
for reading the body of a Client Hello message), however this should
be tested to make sure, and I don't have a MS SGC client.
2000-02-21 10:16:30 +00:00
Richard Levitte
9dd2b2a940
Blowfish docs.
2000-02-21 03:01:23 +00:00
Ulf Möller
10a926c1eb
More compact Configure usage message.
2000-02-21 00:55:45 +00:00
Richard Levitte
d3442bc780
Move the registration of callback functions to special functions
...
designed for that. This removes the potential error to mix data and
function pointers.
Please note that I'm a little unsure how incorrect calls to the old
ctrl functions should be handled, in som cases. I currently return 0
and that's it, but it may be more correct to generate a genuine error
in those cases.
2000-02-20 23:43:02 +00:00
Bodo Möller
dab6f09573
Workaround for irrelevant problem.
2000-02-20 23:40:01 +00:00
Bodo Möller
45206340d3
ignore Client Hellos when we're in handshake anyway
2000-02-20 23:35:31 +00:00
Bodo Möller
b35e9050f2
Tolerate fragmentation and interleaving in the SSL 3/TLS record layer.
2000-02-20 23:04:06 +00:00
Ulf Möller
9f7b1b24e2
Document OPENSSL_VERSION_NUMBER
2000-02-20 21:00:22 +00:00
Ulf Möller
4ec19e203c
Fix gcc warnings.
2000-02-20 20:59:21 +00:00
Dr. Stephen Henson
d754b3850f
Change the 'other' structure in certificate aux info.
2000-02-20 18:27:23 +00:00
Bodo Möller
853f757ece
Allow for higher granularity of entropy estimates by using 'double'
...
instead of 'unsigned' counters.
Seed PRNG in MacOS/GetHTTPS.src/GetHTTPS.cpp.
Partially submitted by Yoram Meroz <yoram@mail.idrive.com>.
2000-02-19 15:22:53 +00:00
Dr. Stephen Henson
ae1bb4e572
Add -clrext option to 'x509'
2000-02-19 00:46:02 +00:00
Bodo Möller
fb77c6fb45
Keep variable names consistent with corresponding pre-processor
...
symbols.
2000-02-18 21:08:37 +00:00
Ulf Möller
7fa1343e93
Make excluded cipher entry in opensslconf.h a bit more descriptive.
2000-02-18 19:01:55 +00:00
Bodo Möller
ad86060357
Change the example to show apr1 with an 8-character salt.
2000-02-18 11:51:58 +00:00
Bodo Möller
e5b4462f47
Stay compatible to older Perl5 releases (see diff -r1.11 -r1.12).
2000-02-18 11:35:10 +00:00
Bodo Möller
26dc267f8c
Avoid potential conflicts between #defines in opensslconf.h and
...
defines when compiling applications, and allow applications to
select what #defines to enable -- OPENSSL_EXLUCDE_DEFINES
enables the "#define NO_whatever" stuff only, which avoids
potential severe confusion caused by "#define _REENTRANT" when
opensslconf.h is not the first header file #included.
2000-02-18 11:15:32 +00:00
Bodo Möller
a91451ef13
add missing 'static'
2000-02-18 10:39:40 +00:00
Richard Levitte
fb044c592d
Make Configure add the configuration options that it was copmiled
...
with.
Currently, those defines are protected with a OPENSSL_EXCLUDED. That
may not be the best strategy, but it will do for now.
2000-02-18 09:11:37 +00:00
Richard Levitte
4328d51d08
Cosmetic change. No, openssl.h.in is not autogenerated :-)
2000-02-18 09:06:55 +00:00
Dr. Stephen Henson
8a208cba97
New functions and option to use NEW in certificate requests.
2000-02-18 00:54:21 +00:00
Bodo Möller
5c2ec54f12
Make sure the return value of by_file_ctrl(..., X509_L_FILE_LOAD, ...)
...
aka X509_LOOKUP_load_file(...) is always 0 or 1, not the counter
returned from the recently introduced function X509_load_cert_crl_file.
X509_STORE_load_locations expects X509_LOOKUP_load_file to return 1 on
success, and possibly there's other software that relies on this too.
2000-02-17 21:04:40 +00:00
Bodo Möller
73c5591944
Casts now unnecessary because of changed prototype.
2000-02-17 18:36:21 +00:00
Ben Laurie
c417db4675
Get rid of evil cast.
2000-02-17 09:39:22 +00:00
Ben Laurie
671cf7f54a
Reflect API changes.
2000-02-17 09:39:01 +00:00
Dr. Stephen Henson
cd3c54e50f
Add -pass argument to 'enc'.
...
Fix to make Win32 compile work again.
2000-02-17 00:41:43 +00:00
Dr. Stephen Henson
a3fe382e2d
Pass phrase reorganisation.
2000-02-16 23:16:01 +00:00
Ben Laurie
bd03b99b9b
Add support for Compaq Atalla crypto accelerator.
2000-02-16 22:15:39 +00:00
Andy Polyakov
8691ff97a1
Move primes to read-only segment.
2000-02-16 13:24:06 +00:00
Ben Laurie
bd44570322
Fix signed/unsigned warnings.
2000-02-16 12:09:17 +00:00
Ulf Möller
e1c55191cb
Install manpages below OPENSSLDIR (I think it was meant to be this way?).
...
New variable for man directory.
2000-02-15 18:34:46 +00:00
Ulf Möller
02d034cc24
Create the man directories where the manpages will be put.
2000-02-15 18:21:33 +00:00
Andy Polyakov
2aca27a9a8
Move initial key to read-only segment.
2000-02-15 17:43:12 +00:00
Andy Polyakov
bc80c86031
Move CAST_S_tables to read-only segment.
2000-02-15 17:37:44 +00:00
Andy Polyakov
f8bbcf3af0
Avoid GNU C assembler templates under Solaris x86.
2000-02-15 17:31:12 +00:00
Andy Polyakov
89cee61b45
New NO_INLINE_ASM macro. Primary target for the moment is Solaris x86
...
which can't stand GNU C assembler templates.
2000-02-15 17:20:52 +00:00
Dr. Stephen Henson
de469ef21e
Fix for Netscape "hang" bug.
2000-02-15 14:19:44 +00:00
Andy Polyakov
ea96c4bc7f
test_mont was exercising 100-bit multiplication modulus X*I-bit, where
...
X is 5120 on 32-bit and 151552 on 64-bit architectures and I varies
from 0 to 4. As result the test was *unreasonably* slow and virtually
impossible to complete on 64-bit architectures (e.g. IRIX bc couldn't
even swallow such long lines).
2000-02-15 13:50:02 +00:00
Richard Levitte
207c7df746
Remove the access() call altogether for VMS, since it doesn't quite
...
work for directory specifications (this will be reported as a bug to
DEC^H^H^HCompaq). It could as well be removed for all others as well,
since stat() and open() will return appropriate errors as well, but I
leave that to someone else to decide.
2000-02-15 09:44:54 +00:00
Richard Levitte
5f5b8d2bcd
Time ran away...
2000-02-14 16:58:40 +00:00
Richard Levitte
c6ce792fc5
Add a couple of forgotten $(PERL), and make the code to run pod2html a
...
tad more readable.
2000-02-14 16:55:23 +00:00
Dr. Stephen Henson
c9080477ec
Modernise 'selfsign.c' to use new X509_NAME code
...
and add example of extension aliasing. Also fix
the extension aliasing because it didn't work :-)
2000-02-13 00:28:26 +00:00
Andy Polyakov
bcba6cc60f
HP-UX tune-up: new unified configs, HP C compiler bug workaround.
2000-02-12 23:33:01 +00:00
Dr. Stephen Henson
d13e4eb0b5
Make pkcs12 and smime applications seed random number
...
generator (otherwise they don't work) and add -rand
option. Update docs.
2000-02-12 03:03:04 +00:00
Richard Levitte
07fc35519e
A hack to make sure access() will give us the correct answer about the
...
accessability of an "empty" directory. Thsi *is* weird, and a better
solution will be provided in apps/ca.c, when I get time to hack at it.
2000-02-11 18:12:47 +00:00
Bodo Möller
3ebf0be142
Corrections.
2000-02-11 17:18:50 +00:00
Bodo Möller
cbcc5c01f9
Update.
2000-02-11 16:31:04 +00:00
Bodo Möller
e6e7b5f3df
Implement MD5-based "apr1" password hash.
2000-02-11 16:25:44 +00:00
Ben Laurie
b1f8affbd5
Correct time in seconds instead of minutes.
2000-02-11 16:08:40 +00:00
Ben Laurie
efb416299f
Fix shadow.
2000-02-11 13:11:18 +00:00