Richard Levitte
7ed20a2158
Merge of stuff from main trunk, all conflicts resolved.
2000-06-19 14:44:57 +00:00
Richard Levitte
86787f93d6
- merged in the latest from the main trunk, fixed all conflicts
...
- implemented nCipher support via the nfhwcrhk library (not well tested).
- make update + make depend
2000-06-13 16:21:06 +00:00
Richard Levitte
d44c7dcf00
Merge in code from main trunk to BRANCH_engine.
2000-06-08 11:00:37 +00:00
Richard Levitte
6a1129837a
Main trunk changes merged into BRANCH_engine. There were no
...
conflicts, which is a good thing. Propper tagging of merge point
done.
2000-05-30 07:16:56 +00:00
Bodo Möller
2c05c494c0
Implement SSL_OP_TLS_ROLLBACK_BUG for servers.
...
Call dh_tmp_cb with correct 'is_export' flag.
Avoid tabs in CHANGES.
2000-05-25 09:50:40 +00:00
Dr. Stephen Henson
b4b41f48d1
Add DSA library string. Workaround for IIS .key file invalid
...
ASN1 encoding.
2000-05-24 13:09:59 +00:00
Richard Levitte
6d7cce481e
Add a note about the new document.
2000-05-18 21:25:48 +00:00
Dr. Stephen Henson
439df5087f
Fix c_rehash script, add -fingerprint option to crl.
2000-05-18 00:33:00 +00:00
Ulf Möller
0e1c06128a
Get rid of more non-ANSI declarations.
2000-05-15 22:54:43 +00:00
Dr. Stephen Henson
0cb957a684
Fix for SSL server purpose checking
2000-05-04 23:03:49 +00:00
Dr. Stephen Henson
a331a305e9
Make PKCS#12 code handle missing passwords.
...
Add a couple of FAQs.
2000-05-04 00:08:35 +00:00
Bodo Möller
316e6a66f2
Note apps/x509.c bugfixes.
2000-05-02 20:29:03 +00:00
Bodo Möller
dcba2534fa
Avoid leaking memory in thread_hash (and enable memory leak detection
...
for it).
2000-04-29 23:58:05 +00:00
Ulf Möller
3973628ea6
Submitted by:
...
Reviewed by:
PR:
2000-04-27 15:06:26 +00:00
Geoff Thorpe
deb4d50e51
Previously, the default RSA_METHOD was NULL until the first RSA structure was
...
initialised, at which point an appropriate default was chosen. This meant a
call to RSA_get_default_method might have returned FALSE.
This change fixes that; now any called to RSA_new(), RSA_new_method(NULL), or
RSA_get_default_method() will ensure that a default is chosen if it wasn't
already.
2000-04-20 06:44:18 +00:00
Geoff Thorpe
b9e6391582
This change facilitates name translation for shared libraries. The
...
technique used is far from perfect and alternatives are welcome.
Basically if the translation flag is set, the string is not too
long, and there appears to be no path information in the string,
then it is converted to whatever the standard should be for the
DSO_METHOD in question, eg;
blah --> libblah.so on *nix, and
blah --> blah.dll on win32.
This change also introduces the DSO_ctrl() function that is used
by the name translation stuff.
2000-04-19 21:45:17 +00:00
Bodo Möller
e5c84d5152
New function ERR_error_string_n.
2000-04-14 23:36:15 +00:00
Richard Levitte
a9831305d8
I forgot to update the change log
2000-04-10 15:48:16 +00:00
Bodo Möller
1d90f28029
In theory, TLS v1 ciphersuites are not the same as SSL v3 ciphersuites
2000-04-06 22:33:14 +00:00
Geoff Thorpe
6ef4d9d512
Better make a note of what's going on ... :-)
2000-04-04 22:49:27 +00:00
Richard Levitte
c90341a155
Tagging has now been done, update to the next version (it's not quite
...
as important to keep a low profile here :-))
2000-04-01 11:24:27 +00:00
Richard Levitte
5e61580bbd
Version and name changes, and a last minute changelog
2000-04-01 11:15:15 +00:00
Bodo Möller
cf194c1f68
Entry for ssleay_rand_status locking fix.
2000-03-30 08:12:35 +00:00
Bodo Möller
3bc90f2373
Fix typo in -clrext option, but add a compatibility hack because
...
0.9.5a should not break anything that works in 0.9.5.
2000-03-27 18:10:08 +00:00
Dr. Stephen Henson
b475baffb2
Fix for HMAC.
2000-03-27 00:53:27 +00:00
Dr. Stephen Henson
e77066ea0a
Fix a memory leak in PKCS12_parse.
...
Don't copy private key to X509 etc public key structures.
Fix for warning.
2000-03-22 13:50:23 +00:00
Ulf Möller
7af4816f0e
des_quad_cksum() byte order bug fix.
...
See http://www.pdc.kth.se/kth-krb/
Their solution for CRAY is somewhat awkward.
I'll assume that a "short" is 32 bits on CRAY to avoid the
#ifdef _CRAY
typedef struct {
unsigned int a:32;
unsigned int b:32;
} XXX;
#else
typedef DES_LONG XXX;
#endif
2000-03-19 02:06:37 +00:00
Dr. Stephen Henson
80870566cf
Make V_ASN1_APP_CHOOSE work again.
2000-03-14 03:29:57 +00:00
Bodo Möller
df1ff3f1b3
Correction.
2000-03-13 21:01:05 +00:00
Bodo Möller
7694ddcbc0
Clarifications for 'no-XXX'.
2000-03-13 20:48:23 +00:00
Bodo Möller
46c4647e3c
"openssl no-..." commands for avoiding the need to grep
...
"openssl list-standard-commands".
2000-03-13 20:31:46 +00:00
Bodo Möller
65b002f399
Update test suite so that 'make test' succeeds in 'no-rsa' configuration.
2000-03-13 19:24:39 +00:00
Bodo Möller
e11f0de67f
Copy DH key (if available) in addition to the bare parameters
...
in SSL_new.
If SSL_OP_SINGLE_DH_USE is set, don't waste time in SSL_[CTX_]set_tmp_dh
on computing a DH key that will be ignored anyway.
ssltest -dhe1024dsa (w/ 160-bit sub-prime) had an unfair performance
advantage over -dhe1024 (safe prime): SSL_OP_SINGLE_DH_USE was
effectively always enabled because SSL_new ignored the DH key set in
the SSL_CTX. Now -dhe1024 takes the server only about twice as long
as -dhe1024dsa instead of three times as long (for 1024 bit RSA
with 1024 bit DH).
2000-03-13 17:07:04 +00:00
Bodo Möller
2d5e449a18
Mention -ign_eof.
2000-03-10 13:49:02 +00:00
Bodo Möller
daf4e53e86
spelling
2000-03-07 15:10:08 +00:00
Dr. Stephen Henson
068fdce877
New compatability trust and purpose settings.
2000-03-07 14:04:29 +00:00
Dr. Stephen Henson
48fe0eec67
Fix the PKCS#8 DSA code so it works again. All the
...
broken formats worked but the valid didn't :-(
2000-03-07 01:03:33 +00:00
Ulf Möller
4c4d87f95f
bug fix release planned
2000-03-06 14:24:25 +00:00
Bodo Möller
59fc2b0fc2
Preserve reason strings in automatically build tables.
2000-03-05 00:19:36 +00:00
Bodo Möller
0a150c5c9f
Generate correct error reasons strings for SYSerr.
2000-03-04 01:36:53 +00:00
Bodo Möller
41918458c0
New '-dsaparam' option for 'openssl dhparam', and related fixes.
2000-03-03 22:18:19 +00:00
Dr. Stephen Henson
d9c88a3902
Move the 'file scope' argument in set_label to
...
the third argument: the second was being used
already.
2000-03-03 00:06:40 +00:00
Bodo Möller
84d14408bf
Use RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.
2000-03-02 22:44:55 +00:00
Bodo Möller
5eb8ca4d92
Use RAND_METHOD for implementing RAND_status.
2000-03-02 14:34:58 +00:00
Ulf Möller
7a2dfc2a20
Note bug fix for the DSA infinite loop
2000-03-01 19:07:58 +00:00
Bodo Möller
55f7d65db0
Document the 'rand' application.
2000-03-01 07:57:25 +00:00
Ralf S. Engelschall
010712ff23
Added configuration support for Linux/IA64
...
Submitted by: Rolf Haberrecker <rolf@suse.de>
2000-02-29 15:29:02 +00:00
Ulf Möller
2da0c11926
Support assembler for Mingw32.
2000-02-28 19:16:41 +00:00
Ulf Möller
a4709b3d88
Shared library support for Solaris and HPUX
...
by Lutz Behnke and by Lutz Jaenicke.
Hopefully we'll have a unified way of handling shared libraries when
we move to autoconf...
2000-02-28 19:14:46 +00:00
Bodo Möller
865874f2dd
Switch to 0.9.6, and finally remove the annoying message
...
about renamed header files.
2000-02-28 18:03:16 +00:00