Richard Levitte
26414ee013
Increase internal security when using strncpy, by making sure the resulting string is NUL-terminated
2002-02-28 12:42:19 +00:00
Richard Levitte
5c62f68e14
Updated AEP engine, submitted by Diarmuid O'Neill <Diarmuid.ONeill@aep.ie>
2002-02-28 11:36:38 +00:00
Bodo Möller
59dbdb51dc
disable '#ifdef DEBUG' sections
2002-02-28 10:51:56 +00:00
Geoff Thorpe
92d1bc09cb
This adds a new ENGINE to support IBM 4758 cards, contributed by Maurice
...
Gittens.
2002-02-27 22:55:28 +00:00
Dr. Stephen Henson
b12540520d
Always init ctx_tmp in PKCS7_dataFinal since it is always cleaned up.
2002-02-26 19:33:24 +00:00
Richard Levitte
0d7b9b8b7e
make update, after moving around symbols in libeay.num to match
...
0.9.7-stable.
2002-02-26 14:41:29 +00:00
Dr. Stephen Henson
4a3e6bce79
Make the engine config module always add dynamic ENGINEs
...
to the list using dynamic_path. This stops ENGINEs which
don't supply any default algorithms being automatically
freed (because they have no references) and allows them
to be accessed by id.
Alternative dynamic loading behaviour can be achieved by
issuing the dynamic ENGINE ctrls separately in the config file.
2002-02-24 16:20:50 +00:00
Dr. Stephen Henson
a3829cb720
Updates from stable branch.
2002-02-23 13:50:29 +00:00
Dr. Stephen Henson
e84be9b495
New OPENSSL_LOAD_CONF define to load openssl.cnf
...
when OpenSSL_add_all_algorithms() is called.
2002-02-23 01:00:44 +00:00
Dr. Stephen Henson
3208ff58ca
make errors
2002-02-22 21:17:31 +00:00
Dr. Stephen Henson
6707d22a40
Update from stable branch.
2002-02-22 14:07:35 +00:00
Dr. Stephen Henson
3647bee263
Config code updates.
...
CONF_modules_unload() now calls CONF_modules_finish()
automatically.
Default use of section openssl_conf moved to
CONF_modules_load()
Load config file in several openssl utilities.
Most utilities now load modules from the config file,
though in a few (such as version) this isn't done
because it couldn't be used for anything.
In the case of ca and req the config file used is
the same as the utility itself: that is the -config
command line option can be used to specify an
alternative file.
2002-02-22 14:01:21 +00:00
Bodo Möller
3e563bcea7
disable '#ifdef DEBUG' sections
2002-02-21 13:07:44 +00:00
Dr. Stephen Henson
92f91ff48b
Config file updates from stable branch
2002-02-21 00:54:54 +00:00
Richard Levitte
5b7848a345
Add comfy aliases for AES in CBC mode.
2002-02-20 17:59:49 +00:00
Richard Levitte
915c6a21ba
Stop assuming the IV is 8 bytes long, use the real size instead.
...
This is especially important for AES that has a 16 bytes IV.
2002-02-20 17:55:08 +00:00
Richard Levitte
236be53269
gcc figures that the format specifier %2x means unsigned int, so let's
...
make n unsigned.
2002-02-20 13:50:36 +00:00
Richard Levitte
1fc1bd382b
Instead of casting a lvalue, let's constify meth.
2002-02-20 13:49:17 +00:00
Bodo Möller
3613e6fc57
simplifications
...
Submitted by: Nils Larsch
2002-02-20 13:08:17 +00:00
Richard Levitte
f19759a182
Instead of just checking for OpenVMS, check if DEC C is used, since it's as
...
picky on all platforms
2002-02-20 12:01:24 +00:00
Bodo Möller
d009bcbfb6
bugfix: allocate sufficiently large buffer
...
Submitted by: Nils Larsch
2002-02-20 11:59:42 +00:00
Richard Levitte
4b71f63ac0
Comparing a pointer (data) with 0 using > is incorrect. The changed
...
comparison doesn't look right, but at least it compiles. It would be nice
if the one who knows what this is supposed to do changed it to do it correctly
2002-02-20 11:57:33 +00:00
Richard Levitte
3adb8c3854
With Compaq make, it seems like # inside an action becomes part of the command, not a comment at all
2002-02-20 11:43:40 +00:00
Geoff Thorpe
5b2d6ff07e
make update
2002-02-20 08:33:55 +00:00
Richard Levitte
a6cd870784
The AES modes OFB and CFB are defined with 128 feedback bits. This
...
deviates from the "standard" 64 bits of feedback that all other
algorithms are using. Therefore, let's redo certain EVP macros to
accept different amounts of feedback bits for these modes.
Also, change e_aes.c to provide all usually available modes for AES.
CTR isn't included yet.
2002-02-16 12:39:07 +00:00
Richard Levitte
97879bcd57
Add the modes OFB128, CFB128 and CTR128 to AES.
...
Submitted by Stephen Sprunk <stephen@sprunk.org>
2002-02-16 12:20:34 +00:00
Richard Levitte
ab1dee1efc
Adjust the NID names for the AES modes OFB and CFB to contain the number
...
of feedback bits
2002-02-16 12:15:30 +00:00
Richard Levitte
e072aa535d
The macro IMPLEMENT_ASN1_FUNCTIONS_const already contains an ending ;,
...
so do not add one after the expansion, since ANSI C doesn't allow ;;
at this level (or at least, so tells me gcc).
2002-02-16 12:03:25 +00:00
Richard Levitte
48f9859d2a
Local time' shadows the global function
time()'. Rename the local
...
variable to `tim' (and, as a matter of consequence, `time_d' to `tim_d').
2002-02-16 12:01:13 +00:00
Richard Levitte
48b5083ca0
Missing #endif
2002-02-16 11:58:16 +00:00
Bodo Möller
e65991f977
fix indentation
2002-02-14 16:08:55 +00:00
Richard Levitte
3e83e686ba
Add the configuration target VxWorks.
2002-02-14 15:37:38 +00:00
Bodo Möller
8f06b00373
make it possible to disable memory checking for timings
2002-02-14 14:41:13 +00:00
Bodo Möller
6cc3700314
don't call OPENSSL_config(), this does not make any sense during "make test"
2002-02-14 13:51:20 +00:00
Richard Levitte
cc1489d2f2
Make sure memset() is defined by including string.h
...
Notified by Oscar Jacobsson <oscar@jacobsson.org>
2002-02-14 13:51:04 +00:00
Richard Levitte
016029c69f
For some reason, getting the topmost error was done the same way as
...
getting the bottommost one. I hope I understood correctly how this
should be done. It seems to work when running evp_test in an
environment where it can't find openssl.cnf.
2002-02-14 13:45:26 +00:00
Bodo Möller
d8309efc72
EC_GROUP_get_group_by_name() is now called EC_GROUP_new_by_name()
2002-02-14 10:23:20 +00:00
Ben Laurie
f43acc8a50
Fix warnings.
2002-02-14 09:59:35 +00:00
Bodo Möller
4d94ae00d5
ECDSA support
...
Submitted by: Nils Larsch <nla@trustcenter.de>
2002-02-13 18:21:51 +00:00
Bodo Möller
60d8bae30d
some modifications to named curve support
2002-02-13 17:57:52 +00:00
Richard Levitte
0caec9e8f8
Modify the main trunk version to 0.9.8-dev.
...
0.9.7 now lives in the branch OpenSSL_0_9_7-stable.
2002-02-13 17:46:38 +00:00
Bodo Möller
4f85a2e21e
new locks
2002-02-13 17:25:27 +00:00
Bodo Möller
945e15a253
add support for named curves
...
Submitted by: Nils Larsch <nla@trustcenter.de>
2002-02-13 17:22:59 +00:00
Richard Levitte
81269a81ee
Remove an unused variable.
2002-02-07 21:55:22 +00:00
Richard Levitte
3537525e00
Oops, do not unlock CRYPTO_LOCK_DYNLOCK when we locked
...
CRYPTO_LOCK_RAND...
2002-02-07 21:49:21 +00:00
Richard Levitte
d38f3ad1ee
I forgot to include the aep and sureware vendor header files.
2002-02-07 21:43:05 +00:00
Richard Levitte
e083f91497
Because AEP and we used the same AEP_R_ prefix for error reasons,
...
lets change our prefix to AEPHK_R_. Otherwise, we get very mysterious
errors because we happen to redefine AEP_R_OK and AEP_R_GENERAL_ERROR.
2002-02-07 21:12:08 +00:00
Richard Levitte
ba2cad19cf
Add aep and sureware implementations and clean up some error reasons
...
that were never part of the engine framework.
The aep and sureware implementations are taken directly from 0.9.6c
[engine] and have been modified to fit the newer engine framework and
to be possible to build shared libraries of.
The aep implementation has gone through quite a bunch of tests and is
cleaned up (there were some misunderstandings in it about how to use
locks).
The sureware hasn't been tested at all in this incarnation and is
basically a quick hack to get it to compile properly.
2002-02-07 20:44:14 +00:00
Richard Levitte
db0a1efcc9
Certain reasons aren't really part of the engine framework, so let's
...
make them ubsec-specific in the ubsec implementation.
2002-02-07 20:37:55 +00:00
Richard Levitte
9074521458
Generate the individual engines' error strings and macros
...
automatically.
2002-02-07 20:02:49 +00:00
Richard Levitte
de2f6e4dae
'make update'
2002-02-05 17:34:58 +00:00
Richard Levitte
44bdb056d4
With the changed des_old API, let's complete the work by renaming the
...
functions in ui_compat. This gave reason to rework that part more
thoroughly, so here are the changes made:
1. Add DES_read_password() and DES_read_2passwords() with the same
functionality as the corresponding old des_ functions, as a
convenience to the users.
2. Add UI_UTIL_read_pw_string() and UI_UTIL_read_pw() with the
functionality from des_read_pw_string() and des_read_pw(), again as
a concenience to the users.
3. Rename des_read_password(), des_read_2passwords(),
des_read_pw_string() and des_read_pw() by changing des_ to
_ossl_old_des_, and add the usual mapping macros.
4. Move the implementation of des_read_password() and
des_read_2passwords() to the des directory, since they are tightly
tied to DES anyway.
This change was inspired by a patch from Assar Westerlund <assar@sics.se>:
There are some functions that didn't get the kick-away-old-des-and-
replace-des-with-DES action. Here's a patch that adds DES_ and des_
(in des_old.h) versions of des_read_pw_string et al. This patch
includes some of the first des_old.h semi-colon macro fixes that I've
already sent.
2002-02-05 17:15:18 +00:00
Richard Levitte
c31bbf1e68
Apply one patch from Assar Westerlund <assar@sics.se>:
...
The following patch makes sure that string2key does not use weak DES
keys (then making them non-weak by xor:ing with 0xF0).
2002-02-05 15:05:42 +00:00
Richard Levitte
5e68f8ce15
Apply three patches from Assar Westerlund <assar@kth.se>:
...
This patch makes the macros in des_old.h actually pretend to be
functions.
There's no reason not to define _ossl_old_crypt when using
PERL5/FreeBSD/darwin/Next, since it makes using crypt and including
des.h break. Here's a trivial patch.
This patch fixes some of the typos used in macro names in des_old.h
and the number of arguments for some of them.
2002-02-05 06:02:58 +00:00
Richard Levitte
b9a3ef4c6e
ASN1_BIT_STRING_set_bit() didn't clear previously set bits
2002-02-03 21:31:41 +00:00
Dr. Stephen Henson
1955b87423
#undef some things that cause a conflict under Win32 when
...
wincrypt.h is included.
2002-02-02 13:19:27 +00:00
Lutz Jänicke
866eedb936
Shut up compiler warnings for inconsistent declarations.
2002-01-29 17:14:50 +00:00
Richard Levitte
1199e2d8cf
Apply patch from Toomas Kiisk <vix@cyber.ee> and complete it.
2002-01-29 12:36:01 +00:00
Bodo Möller
072569e0f1
Undo previous change, X509_check_issued() was correct.
...
[See
Message-ID: <3BB07999.30432AD2@celocom.com>
Date: Tue, 25 Sep 2001 13:33:29 +0100
From: Dr S N Henson <drh@celocom.com>
To: openssl-dev@openssl.org
Subject: Re: Error in v3_purp.c
]
2002-01-27 17:41:12 +00:00
Lutz Jänicke
2a81428489
Remove blanks at begin of empty lines irritating epv_test.c
2002-01-26 15:24:38 +00:00
Richard Levitte
b77fcddb6b
Apply a small patch from Oscar Jacobsson <oscar@jacobsson.org> that
...
makes things more compilable with VC++.
2002-01-26 04:50:41 +00:00
Richard Levitte
f6fbd470e3
It looks like I didn't remove everything that has to do with the
...
non-existant aestest.c.
2002-01-26 04:45:37 +00:00
Richard Levitte
63810d8566
Apply a small patch from Diego R. Lopez <diego.lopez@rediris.es>,
...
making X509_check_issued() properly match an issuer that's found in a
Authority Key Identifier.
2002-01-26 04:25:16 +00:00
Richard Levitte
123c401967
GCC uses __i386__.
2002-01-26 03:57:41 +00:00
Richard Levitte
2d57b73a50
I got a request to make the "old des" symbols more closely tied to
...
OpenSSL. Adding '_ossl' in the name seems to be a good way to do
this.
2002-01-26 01:14:09 +00:00
Richard Levitte
a297985f42
Apply a change by Toomas Kiisk <vix@cyber.ee>:
...
* Fix a crashbug and a logic bug in hwcrhk_load_pubkey()
2002-01-25 17:45:30 +00:00
Richard Levitte
72165799a8
There is no aestest currently. The EVP tester is used to check the
...
AES algorithm.
2002-01-25 07:52:25 +00:00
Geoff Thorpe
f1c2a9de45
The 'type' parameter, an EVP_MD pointer, represents the type of digest
...
required as well as a default implementation (when no ENGINE provides a
replacement implementation). This change makes sure the correct
implementation's "init()" handler is used rather than assuming 'type'.
2002-01-25 03:13:50 +00:00
Richard Levitte
52b66a622d
Keep the NIST AES vectors that were there previously.
2002-01-24 18:09:50 +00:00
Bodo Möller
273db408a8
sort functions ...
2002-01-24 17:17:33 +00:00
Bodo Möller
957b6db3b1
fix formatting of automatically generated error section
2002-01-24 16:20:42 +00:00
Bodo Möller
a14e2d9dfe
New functions
...
ERR_peek_last_error
ERR_peek_last_error_line
ERR_peek_last_error_line_data
(supersedes ERR_peek_top_error).
Rename OPENSSL_NO_OLD_DES_SUPPORT into OPENSSL_DISABLE_OLD_DES_SUPPORT
because OPENSSL_NO_... indicates disabled algorithms (according to
mkdef.pl).
2002-01-24 16:16:43 +00:00
Richard Levitte
fe19c448f0
make update
...
libeay.num got tweaked so the old des symbols would retain their
positions.
2002-01-24 12:31:54 +00:00
Richard Levitte
fcf6473199
Because of recent changes, there's no need to hack the des symbols any
...
more.
2002-01-24 12:30:15 +00:00
Richard Levitte
5dcf517d84
To avoid all kinds of link-level clashes, rename all old des_*
...
functions to _old_des_*.
2002-01-24 12:19:13 +00:00
Ben Laurie
24995f3a10
Support old DES APIs by default.
2002-01-22 23:19:01 +00:00
Ben Laurie
0fc5cf0870
Make no config file not an error. Move /dev/crypto config to ctrl.
2002-01-22 22:29:58 +00:00
Dr. Stephen Henson
f78d4a35f8
Constification.
2002-01-22 02:06:33 +00:00
Dr. Stephen Henson
df5eaa8a52
default_algorithms option in ENGINE config.
2002-01-22 01:40:18 +00:00
Lutz Jänicke
575e664a7c
Fix incorrect BIO_*_ctrl() macros (Shay Harding <sharding@ccbill.com>).
2002-01-21 17:59:37 +00:00
Richard Levitte
7389c848d4
Use FIPS-197 vectors for AES. The NIST vectors were constructed by
...
reencrypting or redecrypting the ciphertext 10000 times, which of
course gives higly different results.
2002-01-21 17:55:38 +00:00
Richard Levitte
4d393410f3
Add more of the NIST test vectors for AES.
...
For some reason, they give incorrect results with the OpenSSL
implementation. I wonder why...
2002-01-21 16:09:45 +00:00
Richard Levitte
bd69750360
Bring VMS up to date with development.
2002-01-21 15:37:53 +00:00
Dr. Stephen Henson
c9501c223f
Initial ENGINE config module, docs to follow.
...
Fix buffer overrun errors in OPENSSL_conf().
2002-01-21 03:02:36 +00:00
Ben Laurie
9dd5ae6553
Constification, add config to /dev/crypto.
2002-01-18 16:51:05 +00:00
Bodo Möller
e1e876072d
disable broken code
2002-01-18 12:28:05 +00:00
Ben Laurie
dd2589494f
Other errors are possible.
2002-01-18 12:19:24 +00:00
Ben Laurie
1cfa8a397f
Stupid apps should die, not fail silently.
2002-01-18 11:46:39 +00:00
Ben Laurie
bdae099862
Fix memory leak.
2002-01-18 11:32:30 +00:00
Ben Laurie
cca28b291c
Constification, missing declaration, update dependencies.
2002-01-18 10:59:43 +00:00
Ben Laurie
45d87a1ffe
Prototype info function.
2002-01-12 15:56:13 +00:00
Ben Laurie
37530362fa
Return value could be undefined.
2002-01-12 13:13:22 +00:00
Richard Levitte
fd795679bb
Patches to make OpenSSL compilable on MacOS/X.
...
Submitted by Pier Fumagalli <pier@betaversion.org>
2002-01-08 09:19:31 +00:00
Geoff Thorpe
e4dd79bbc8
- Add the same header stuff to aes_locl.h as is in des_locl.h to avoid
...
undefined functions (memset, etc).
- Put a .cvsignore in the aes directory too.
2002-01-05 12:55:08 +00:00
Dr. Stephen Henson
bc37d996fc
Experimental configuration code.
...
Incomplete, largely untested and subject to change/deletion.
2002-01-05 01:37:16 +00:00
Bodo Möller
245f44e2ab
add automatically generated ERR_load_... prototype
2002-01-04 13:12:08 +00:00
Bodo Möller
e5d6528a12
fix EVP_CIPHER_mode macro
...
Submitted by: "Dan S. Camper" <dan@bti.net>
2002-01-04 13:04:45 +00:00
Richard Levitte
6f9079fd50
Because Rijndael is more known as AES, use crypto/aes instead of
...
crypto/rijndael. Additionally, I applied the AES integration patch
from Stephen Sprunk <stephen@sprunk.org> and fiddled it to work
properly with the normal EVP constructs (and incidently work the same
way as all other symmetric cipher implementations).
This results in an API that looks a lot like the rest of the OpenSSL
cipher suite.
2002-01-02 16:55:35 +00:00
Richard Levitte
c938563a81
The block size may be something other than 8!
2002-01-02 16:51:17 +00:00
Richard Levitte
40928698bb
When RSA or DSA are disabled, do not include the stuff that's specific
...
to them.
2002-01-02 12:45:51 +00:00
Richard Levitte
138d8ab0c7
make update
2002-01-02 12:44:54 +00:00
Richard Levitte
67fec850e1
Allow verification of other types than DATA.
...
Submitted by Leonard Janke <leonard@votehere.net>
2002-01-02 11:54:38 +00:00
Richard Levitte
e7227322b3
Allow 8-bit characters. This is not really complete, it only marks
...
characters with the highest bit set as HIGHBIT. We need to expand
this to support the UTF-8 character set properly. However, this
solves the problem that the character 0x80 (which is common in UTF-8)
gets masked to 0x00.
Patch submitted by "Huang Yuzhen" <huangyuzhen@bj.tom.com>
2002-01-02 11:06:02 +00:00
Richard Levitte
a92ae07091
And just for the sake of completeness, let's add some standard macros...
2001-12-21 01:12:29 +00:00
Richard Levitte
68809d3969
Better use the same number in all branches, to avoid confusion
2001-12-21 01:08:40 +00:00
Richard Levitte
d6a89fcf88
Do not forget to compile comp_err.c
2001-12-20 22:12:10 +00:00
Ben Laurie
7c517a04b1
Security fix.
2001-12-20 12:18:08 +00:00
Bodo Möller
755cc53a6e
formatting consistency
2001-12-17 19:28:05 +00:00
Bodo Möller
1226c472b7
oops
2001-12-17 19:26:43 +00:00
Bodo Möller
4d7072f4b5
remove redundant ERR_load_... declarations
2001-12-17 19:22:23 +00:00
Bodo Möller
66df02fd98
fix BN_rand_range
2001-12-14 10:09:29 +00:00
Richard Levitte
f11fd3f4e1
Implement failover for ubsec. Submitted by Subramanian Ramamoorthy
...
<sram@broadcom.com> with the following comment:
[...] We have implemented failover (ie, if for some reason that the
hardware fails, the implementation detects this failure and performs
this operation as if no hardware is present, ie, in software) for
sometime now and have tested it here with our hardware. [...]
This change was cc:ed to exports@crypto.com
2001-12-12 12:53:13 +00:00
Ulf Möller
31106cc750
name confusion with HP library function prototype (?)
2001-12-10 18:52:06 +00:00
Ben Laurie
ff3fa48fc7
Improve back compatibility.
2001-12-09 21:53:31 +00:00
Dr. Stephen Henson
f3e24baddf
Don't overwrite signing time.
2001-12-07 00:36:32 +00:00
Richard Levitte
d4704d5245
UID was never a lable for uniqueIdentifier. However, LDAP and certain
...
RFCs concerning X.500 directories use UID as a shorter name for the
attribute type userId, which is defined by CCITT and available through
RFCs 1274 and 2247.
Unfortunately, if some applications have used the name "UID" for the
uniqueIdentifier attribute type, they will produce incorrect results.
However, I found it better to follow the standards that are out there
rather than having our own incompatible one.
2001-12-04 11:01:17 +00:00
Bodo Möller
c3fbf5d9a8
Fix: 2.5.29 is "id-ce", not "ld-ce" (sort of a typo in objects.h).
...
Fix (?): Delete 'ip-pda 6' (id-pda-pseudonym) because it does not exist
in RFC 3039.
Also change Perl scripts to put auto-generation warning in the
first lines of the file.
2001-12-03 13:47:22 +00:00
Dr. Stephen Henson
6a0dec9584
Make EVP_SealInit() return the correct value.
2001-12-01 23:09:38 +00:00
Dr. Stephen Henson
322de0c8c1
NO_DSA, NO_RSA patches.
2001-12-01 22:41:39 +00:00
Geoff Thorpe
bcbe4e5254
This looks to have been a typo.
2001-11-24 04:02:42 +00:00
Bodo Möller
883b0c2274
fix submitted by Andy Schneider <andy.schneider@bjss.co.uk>
...
(in main branch, hn_ncipher.c is already correct)
2001-11-23 20:58:40 +00:00
Bodo Möller
c05940edc7
comment
2001-11-22 11:08:38 +00:00
Geoff Thorpe
c507a16e49
Cut "ENGINE_ID" to the more concise "ID".
2001-11-22 10:08:49 +00:00
Geoff Thorpe
e4a6cf421a
When the "dynamic" ENGINE loads another ENGINE from a shared-library, it
...
essentially overwrites itself with the new ENGINE, with the exception of
reference counts, ex_data structures, and other 'admin' elements. However
if the new ENGINE doesn't populate certain elements, there's the risk of
the "dynamic" ENGINE's elements showing through - the "cmd_defns" were just
one of the possibilities. This implements a more comprehensive cleanup.
2001-11-22 09:13:18 +00:00
Geoff Thorpe
329636d6e3
The "openssl" ENGINE is no longer used except as a testing/debugging
...
device. This change enables it for building as a self-contained "dynamic"
ENGINE, to help testing such mechanisms.
2001-11-22 09:01:11 +00:00
Geoff Thorpe
9163b8fb23
'flags' should only be set inside DSO_load() if constructing a new DSO
...
object - otherwise we overwrite any flags that had been previously set in
the DSO before calling DSO_load().
2001-11-22 08:48:09 +00:00
Richard Levitte
9d93ce246c
On VMS, the norm is still that symbols are uppercased, so for now it's better
...
to trust that norm. I might implement a control for this later on
2001-11-16 13:12:19 +00:00
Bodo Möller
e71adb85c5
avoid stupid compiler warning
2001-11-16 11:37:36 +00:00
Richard Levitte
0d197a833c
On systems that don't do too well including headers from a different
...
directory, trust the building scripts to handle it properly.
2001-11-16 08:54:34 +00:00
Richard Levitte
e0031b80ee
Make sure evp_locl.h can be included (hw_openbsd_dev_crypto.c needs that).
2001-11-16 08:52:56 +00:00
Bodo Möller
b19941ab05
comment
2001-11-16 06:22:21 +00:00
Bodo Möller
752938daab
use a more interesting test case
2001-11-16 06:22:05 +00:00
Bodo Möller
c78515f55e
comments etc.
2001-11-15 22:35:41 +00:00
Bodo Möller
3ba1f11147
Improve EC efficiency.
2001-11-15 22:32:11 +00:00
Richard Levitte
acf60ef707
At least for the two common Unixly DSO loading methods, include the
...
system error in the error text.
2001-11-15 18:24:42 +00:00
Richard Levitte
b476df64a1
make update
...
perl util/mkerr.pl -recurse -write -rebuild
2001-11-15 12:25:14 +00:00
Richard Levitte
5b8a57ecae
After loading a dynamic engine, reset the command definitions to the
...
empty set. This prevents engines that do not set the command
definitions themselves to inherit the ones from "dynamic", which would
otherwise be very confusing.
2001-11-14 22:32:19 +00:00
Bodo Möller
3a8a0a3945
2001, not 2000
2001-11-09 13:15:05 +00:00
Bodo Möller
c5d4ab7e35
adjust to OpenSSL_0_9_6-stable version
2001-11-09 13:09:11 +00:00
Bodo Möller
b955dbd325
cast to 'unsigned long' before using ~ if we need an unsigned long result
...
Submitted by: "Stefan Marxen" <stefan.marxen@gmx.net>
2001-11-09 12:58:05 +00:00
Dr. Stephen Henson
3a3619b46a
PKCS#12 code fixes: initialize and cleanup digests and ciphers
...
properly.
2001-11-06 13:54:48 +00:00
Dr. Stephen Henson
b83eddc578
Win32 fixes.
2001-11-06 13:40:27 +00:00
Richard Levitte
7f558334ad
des_old.h doesn't really need to include des.h, so don't. That will
...
avoid clashes with other code that have their own DES_ functions but
really only use OpenSSL's old des_ functions.
2001-11-06 11:37:14 +00:00
Richard Levitte
6acc3b9689
Place the OpenSSL-specific headers back so they always get included,
...
or we get a dependency war in Makefile.ssl
2001-11-05 18:18:12 +00:00
Richard Levitte
66aa856698
No need to include anything on systems that do not have /dev/crypt
2001-11-05 12:44:14 +00:00
Richard Levitte
a7b42009c4
Change the shared library support so the shared libraries get built
...
sooner and the programs get built against the shared libraries.
This requires a bit more work. Things like -rpath and the possibility
to still link the programs statically should be included. Some
cleanup is also needed. This will be worked on.
2001-10-30 08:00:59 +00:00
Richard Levitte
7b5ffd6834
Addapt VMS scripts to the newer disk layout system ODS-5, which allows more than one period and mixed size characters in file names
2001-10-29 13:05:28 +00:00
Dr. Stephen Henson
1586365835
Stop compiler warnings.
2001-10-27 00:18:04 +00:00
Dr. Stephen Henson
7d5b04db4e
Add support for Subject Info Acess extension.
2001-10-27 00:16:53 +00:00
Bodo Möller
b693f941fd
Consistency fix in BUF_MEM_grow: Initialise to zero when new memory
...
had to be allocated, not just when reusing the existing buffer.
2001-10-26 13:12:25 +00:00
Bodo Möller
c602e7f4e8
disable caching in BIO_gethostbyname
2001-10-26 13:04:23 +00:00
Ben Laurie
f533b7780e
Fix warning.
2001-10-25 14:24:59 +00:00
Bodo Möller
cc2f5a8022
Like MD_Init, MD now must include a NULL engine pointer in its definition.
2001-10-25 08:53:54 +00:00
Bodo Möller
b441bf9226
remove redundant definitions that are also in des.h
2001-10-25 08:46:10 +00:00
Bodo Möller
af50b58c3f
filenames are des_old.[ch], not des.comp*
2001-10-25 08:23:13 +00:00
Richard Levitte
ce15d5a9dc
Remove DES_random_seed() but retain des_random_seed() for now. Change
...
the docs to reflect this change and correct libeay.num.
2001-10-25 06:46:22 +00:00
Richard Levitte
cfc781be6e
Have the removal warnings very high up in the source.
2001-10-25 05:37:10 +00:00
Richard Levitte
84acc3c2bc
A C file is a C file is a C file!
2001-10-24 21:31:14 +00:00
Richard Levitte
c2e4f17c1a
Due to an increasing number of clashes between modern OpenSSL and
...
libdes (which is still used out there) or other des implementations,
the OpenSSL DES functions are renamed to begin with DES_ instead of
des_. Compatibility routines are provided and declared by including
openssl/des_old.h. Those declarations are the same as were in des.h
when the OpenSSL project started, which is exactly how libdes looked
at that time, and hopefully still looks today.
The compatibility functions will be removed in some future release, at
the latest in version 1.0.
2001-10-24 21:21:12 +00:00
Richard Levitte
513d4b4c16
make update
2001-10-24 08:27:22 +00:00
Richard Levitte
7ef701519b
Correction of the id-pda OID's.
...
Submitted by Frederic.Giudicelli@INTRINsec.com
2001-10-23 14:30:57 +00:00
Dr. Stephen Henson
f1558bb424
Reject certificates with unhandled critical extensions.
2001-10-21 02:09:15 +00:00
Dr. Stephen Henson
98e6654938
Typo.
2001-10-20 16:22:28 +00:00
Dr. Stephen Henson
cecd263878
Add missing EVP_CIPHER_CTX_{init,cleanup}
2001-10-20 16:18:03 +00:00
Dr. Stephen Henson
581f1c8494
Modify EVP cipher behaviour in a similar way
...
to digests to retain compatibility.
2001-10-17 00:37:12 +00:00
Dr. Stephen Henson
20d2186c87
Retain compatibility of EVP_DigestInit() and EVP_DigestFinal()
...
with existing code.
Modify library to use digest *_ex() functions.
2001-10-16 01:24:29 +00:00
Ulf Möller
5dd955dcd2
openbsd-x86 macros
...
Submitted by: Toomas Kiisk <vix@cyber.ee>
2001-10-14 00:57:30 +00:00
Richard Levitte
67d0738aba
In certain cases, no encoding has been set up for the b64 filter. In
...
such cases, a flush should *not* attempt to finalise the encoding, as
the EVP_ENCODE_CTX structure will only be filled with garbage. For
the same reason, do the same check when a wpending is performed.
2001-10-11 19:38:40 +00:00
Richard Levitte
b8a61e7362
'make update'
2001-10-10 21:52:06 +00:00
Richard Levitte
dd5e774664
Add support for md4WithRSAEncryption.
2001-10-10 21:37:45 +00:00
Richard Levitte
b30245dae0
'make update'
2001-10-10 07:56:20 +00:00
Richard Levitte
116daf4c2f
To avoid commit wars over dependencies, let's make it so things that
...
depend on the environment, like the presence of the OpenBSD crypto
device or of Kerberos, do not change the dependencies within OpenSSL.
2001-10-10 07:55:02 +00:00
Richard Levitte
4b12506891
A few more OIDs, contributed by Peter Sylvester <Peter.Sylvester@EdelWeb.fr>
2001-10-09 15:32:23 +00:00
Geoff Thorpe
cf98440178
evp_test.c and evptests.txt both need to be linked in the test/ directory
...
however for different reasons. This separation should prevent the win32
build from interpreting evptests.txt as source code.
2001-10-09 01:38:31 +00:00
Geoff Thorpe
c500d44735
Change some EVP prototypes to use "cipher" rather than "type" as a variable
...
name. The implementations already use this anyway.
2001-10-08 17:25:42 +00:00
Geoff Thorpe
18eda73234
EVP_EncryptInit_ex() and EVP_DecryptInit_ex() had been defined in evp.h but
...
not implemented. (Bug reported by Martin Szotkowski)
This also changes the non-"_ex" versions to defer directly to
EVP_CipherInit_ex() rather than EVP_CipherInit() to avoid an unecessary
level of indirection.
2001-10-08 17:24:10 +00:00
Geoff Thorpe
7526e2c043
As ENGINE_load_openbsd_dev_crypto() is an API function, it makes sense for
...
it to be defined on all platforms whether or not it is of any practical
use on them. This also resolves linker problems on "special" platforms,
such as win32.
2001-10-08 17:08:17 +00:00
Geoff Thorpe
6d52f260bf
Make sure the "ENGINE_TABLE" cleanup callbacks have correct prototypes.
2001-10-08 17:06:52 +00:00
Geoff Thorpe
752f2b6785
Missing pointer in the eng_table_register function. Reported by
...
Martin Szotkowski.
2001-10-08 14:44:38 +00:00
Lutz Jänicke
e1c279b63d
Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)
2001-10-08 08:37:24 +00:00
Richard Levitte
f8000b9345
'make update'
2001-10-04 07:49:09 +00:00
Richard Levitte
77a8eb352f
Since ossl_typ.h is an exported header, we sure need to export it on
...
VMS as well :-).
2001-10-04 07:46:30 +00:00
Richard Levitte
114697bef3
Because there's chances we clash with the system's types.h, rename our
...
types.h to ossl_typ.h.
Also, it seems like krb5 was forgotten in some places.
2001-10-04 07:34:45 +00:00
Richard Levitte
2aa9043ad3
Because there's chances we clash with the system's types.h, rename our
...
types.h to ossl_typ.h.
2001-10-04 07:32:46 +00:00
Dr. Stephen Henson
1a095560f7
Use the maximum block length for the extra size in the encrypt
...
BIO buffer instead of hard coding it as 8.
2001-10-03 12:47:03 +00:00
Dr. Stephen Henson
f329b8d73b
Make EVP_DecryptUpdate work again.
2001-10-02 16:19:49 +00:00
Richard Levitte
e3a7463c5d
A lot of things are undeclared unless x509.h is included.
2001-10-02 11:06:42 +00:00
Richard Levitte
796c6eadcb
Hmm, everything "open" isn't necessarely "openssl" :-).
...
*sigh* habit...
2001-10-02 10:03:15 +00:00
Richard Levitte
b485e5b7e3
Woopsie...
2001-10-01 17:20:28 +00:00
Richard Levitte
1cf9d58cb4
sk_ENGINE_CLEANUP_ITEM_pop_free() is duplicated in ENGINE_cleanup().
...
Let's use sk_ENGINE_CLEANUP_ITEM_pop_free() instead.
2001-10-01 17:15:28 +00:00
Richard Levitte
0cff933416
Addapt seldom compiled code to new semantics of the key schedule (not
...
a pointer any more).
2001-10-01 17:10:10 +00:00
Richard Levitte
c41b29e5db
Some new symbols have very long names...
2001-10-01 17:09:17 +00:00
Richard Levitte
65fb3fa630
o_time.c contains symbols with dollar signs in them, so we must tell
...
the compiler not to warn about that.
2001-10-01 17:08:18 +00:00
Geoff Thorpe
0b0f08dbc7
The cleanup stack in ENGINE changed slightly, so this "make update" is
...
needed.
2001-10-01 16:39:58 +00:00
Geoff Thorpe
5c32657c80
The STACK macros take care of casting to and from the designated item type
...
of the stack, and the (void *) type used in the underlying sk_***
functions. However, declaring a STACK_OF(type) where type is a *function*
type implicitly involves casts between function pointers and data pointers.
That's a no-no. This changes the ENGINE_CLEANUP handling to use a regular
data type in the stack.
2001-10-01 16:26:00 +00:00
Dr. Stephen Henson
de822715b2
Constify EVP_SealInit, EVP_OpenInit
2001-09-28 01:47:36 +00:00
Dr. Stephen Henson
d46c1a8126
Support fractional seconds in GeneralizedTime
2001-09-28 00:44:44 +00:00
Richard Levitte
e32587d5a6
Synchronise with Unixly build.
2001-09-27 16:07:36 +00:00
Richard Levitte
37da54b10e
The #error message must match a very specific regexp (see mkdef.pl,
...
currently line 470).
2001-09-26 15:18:32 +00:00
Ben Laurie
0fea7ed4a4
Don't clean up stuff twice.
2001-09-26 15:15:03 +00:00