openssl

Author	SHA1	Message	Date
Richard Levitte	d44c7dcf00	Merge in code from main trunk to BRANCH_engine.	2000-06-08 11:00:37 +00:00
Bodo Möller	98e04f9eeb	Comments for SSL_get_peer_cert_chain inconsistency.	2000-03-27 18:07:45 +00:00
Richard Levitte	1e7396beeb	Some time in history, SSL_CTX_sessions() disappeared. It is now restored, but not as a macro this time...	2000-02-25 22:50:28 +00:00
Richard Levitte	29a5374fb6	Remove structures that are no longer used.	2000-02-24 14:00:05 +00:00
Ulf Möller	4d524e10b4	nicer manpages	2000-02-24 11:55:57 +00:00
Ulf Möller	4c5fac4ac4	Fix NO_RSA (misplaced #endif).	2000-02-24 04:41:03 +00:00
Dr. Stephen Henson	3142c86d65	Allow ADH to be used but not present in the default cipher list. Allow CERTIFICATE to be used in PEM headers for PKCS#7 structures: some CAs do this.	2000-02-23 01:11:01 +00:00
Bodo Möller	a2a0158959	Fix some bugs and document others	2000-02-21 17:09:54 +00:00
Richard Levitte	d3442bc780	Move the registration of callback functions to special functions designed for that. This removes the potential error to mix data and function pointers. Please note that I'm a little unsure how incorrect calls to the old ctrl functions should be handled, in som cases. I currently return 0 and that's it, but it may be more correct to generate a genuine error in those cases.	2000-02-20 23:43:02 +00:00
Ulf Möller	51ca375e7e	Seek out and destroy another evil cast.	2000-01-30 23:33:40 +00:00
Ulf Möller	9d1a01be8f	Source code cleanups: Use void * rather than char * in lhash, eliminate some of the -Wcast-qual warnings (debug-ben-strict target)	2000-01-30 22:20:28 +00:00
Dr. Stephen Henson	dd9d233e2a	Tidy up CRYPTO_EX_DATA structures.	2000-01-23 23:41:49 +00:00
Dr. Stephen Henson	018e57c74d	Apply Lutz Behnke's 56 bit cipher patch with a few minor changes. Docs haven't been added at this stage. They are probably best included in the 'ciphers' program docs.	2000-01-22 03:17:06 +00:00
Richard Levitte	a9188d4e17	Compaq C 6.2 for VMS will complain when we want to convert non-function pointers to function pointers and vice versa. The current solution is to have unions that describe the conversion we want to do, and gives us the ability to extract the type of data we want. The current solution is a quick fix, and can probably be made in a more general or elegant way.	2000-01-18 09:30:51 +00:00
Dr. Stephen Henson	25f923ddd1	New function X509_CTX_rget_chain(), make SSL_SESSION_print() display return code. Remove references to 'TXT' in -inform and -outform switches.	2000-01-09 14:21:40 +00:00
Bodo Möller	ca03109c3a	New functions SSL_get_finished, SSL_get_peer_finished. Add short state string for MS SGC.	2000-01-06 01:19:17 +00:00
Bodo Möller	245206eadd	Use prototypes.	2000-01-05 23:31:47 +00:00
Dr. Stephen Henson	dd4134101f	Change the trust and purpose code so it doesn't need init either and has a static and dynamic mix.	1999-12-02 02:33:56 +00:00
Dr. Stephen Henson	bb7cd4e3eb	Remainder of SSL purpose and trust code: trust and purpose setting in SSL_CTX and SSL, functions to set them and defaults if no values set.	1999-11-29 22:35:00 +00:00
Dr. Stephen Henson	13938aceca	Add part of chain verify SSL support code: not complete or doing anything yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.	1999-11-29 01:09:25 +00:00
Bodo Möller	204cf1abb0	Comments.	1999-08-08 14:21:04 +00:00
Bodo Möller	5e63691972	add comments	1999-08-08 14:07:30 +00:00
Bodo Möller	2b8e4959fb	generate error message	1999-08-02 21:41:46 +00:00
Bodo Möller	f3e67ac1bc	fix previous modification -- if ssl->cert is NULL, don't follow the pointer.	1999-08-02 20:09:23 +00:00
Bodo Möller	a63a3f58fd	The SSL_CTX's cert structure is not relevant for the SSL (because now SSL_new makes a copy).	1999-08-02 18:40:36 +00:00
Bodo Möller	74678cc2f8	Additional user data argument to pem_password_cb function type and to lots of PEM_... functions. Submitted by: Damien Miller <dmiller@ilogic.com.au>	1999-07-21 20:57:16 +00:00
Bodo Möller	e105643595	New functions SSL[_CTX]_{set,get}_mode; the initial set of mode flags is SSL_MODE_ENABLE_PARTIAL_WRITE, SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER.	1999-07-02 13:55:32 +00:00
Bodo Möller	d58d092bc9	Avoid warnings.	1999-06-10 16:29:32 +00:00
Ulf Möller	df63a389a5	"extern" is a C++ reserved word. Pointed out by: Janez Jere <jj@void.si>	1999-06-09 16:33:18 +00:00
Bodo Möller	b1c4fe3625	Don't mix real tabs with tabs expanded as 8 spaces -- that's a pain to read when using 4-space tabs.	1999-06-07 20:26:51 +00:00
Bodo Möller	3a66e306e4	Comments added.	1999-06-07 12:49:47 +00:00
Dr. Stephen Henson	a74c55cd8f	Various Win32 fixes. Change args in do_ms.bat to put platform last. Fix unsigned/signed cmp error in asn1parse. Change various pem_all.c args to use pem_password_cb.	1999-05-15 20:33:15 +00:00
Bodo Möller	7f0dae3276	OPENSSL_EXTERN, OPENSSL_GLOBAL	1999-05-15 14:23:29 +00:00
Bodo Möller	d3407350d8	Comment.	1999-05-15 10:40:02 +00:00
Bodo Möller	e2e3d5ce0c	A comment.	1999-05-15 00:00:28 +00:00
Bodo Möller	3ae76679c7	Introduce and use function typedef pem_password_cb so that we don't call those functions without having a parameter list declaration. (There are various similar cases left ...)	1999-05-14 11:52:49 +00:00
Ulf Möller	7d7d2cbcb0	VMS support. Submitted by: Richard Levitte <richard@levitte.org>	1999-05-13 11:37:32 +00:00
Bodo Möller	8a41eb70cc	First tiny changes in preparation of changing of "sess_cert" handling. Also I've subsituted real tabs for 8-spaces sequences in some lines so that things don't look that weird with a tab-width of 4.	1999-05-13 10:32:04 +00:00
Bodo Möller	ff71222024	And I thought I could spell ... but in caps really everything looks the same. Submitted by: Reviewed by: PR:	1999-05-11 07:54:38 +00:00
Bodo Möller	b31b04d951	Make SSL library a little more fool-proof by not requiring any longer that SSL_set_{accept,connect}_state be called before SSL_{accept,connect} may be used. Submitted by: Reviewed by: PR:	1999-05-11 07:43:16 +00:00
Bodo Möller	9d5cceac6f	No actual change, but the cert_st member of struct ssl_session_st is now called sess_cert instead of just cert. This is in preparation of further changes: Probably often when s->session->sess_cert is used, we should use s->cert instead; s->session->sess_cert should be a new structure containing only the stuff that is for just one connection (e.g. the peer's certificate, which the SSL client implementations currently store in s->session->[sess_]cert, which is a very confusing thing to do). Submitted by: Reviewed by: PR:	1999-05-09 21:22:45 +00:00
Bodo Möller	ca8e5b9b8a	Create a duplicate of the SSL_CTX's CERT in SSL_new instead of copying pointers. The cert_st handling is changed by this in various ways. Submitted by: Reviewed by: PR:	1999-05-09 20:12:44 +00:00
Bodo Möller	303c002898	Use "const char " instead of "char " for filenames passed to functions. Submitted by: Reviewed by: PR:	1999-05-09 10:12:10 +00:00
Ulf Möller	c2eb65ba7c	Remove unreachable return statements.	1999-05-05 22:06:44 +00:00
Bodo Möller	7f89714e64	Support verify_depth from the SSL API without need for user-defined callbacks. Submitted by: Reviewed by: PR:	1999-05-01 03:20:40 +00:00
Bodo Möller	4eb77b2679	New function SSL_CTX_set_session_id_context. Submitted by: Reviewed by: PR:	1999-04-30 17:15:56 +00:00
Ulf Möller	79df9d6272	New Configure option no-<cipher> (rsa, idea, rc5, ...).	1999-04-27 03:19:12 +00:00
Bodo Möller	ec577822f9	Change #include filenames from <foo.h> to <openssl.h>. Submitted by: Reviewed by: PR:	1999-04-23 22:13:45 +00:00
Ulf Möller	6b691a5c85	Change functions to ANSI C.	1999-04-19 21:31:43 +00:00
Ben Laurie	e778802f53	Massive constification.	1999-04-17 21:25:43 +00:00

1 2

72 commits