Dr. Stephen Henson
7b65c3298f
Fix for a bug which meant encrypting BIOs sometimes wouldn't read the final
...
block.
1999-08-24 13:21:35 +00:00
Dr. Stephen Henson
13066cee60
Initial support for DH_METHOD. Also added a DH lock. A few changes made to
...
DSA_METHOD to make it more consistent with RSA_METHOD.
1999-08-23 23:11:32 +00:00
Dr. Stephen Henson
c0711f7f0f
Initial support for DSA_METHOD...
1999-08-22 17:57:38 +00:00
Dr. Stephen Henson
8484721adb
Allow memory bios to be read only and change PKCS#7 routines to use them.
1999-08-19 13:07:43 +00:00
Bodo Möller
de1915e48c
Fix horrible (and hard to track down) bug in ssl23_get_client_hello:
...
In case of a restart, v[0] and v[1] were incorrectly initialised.
This was interpreted by ssl3_get_client_key_exchange as an RSA decryption
failure (don't ask me why) and caused it to create a _random_ master key
instead (even weirder), which obviously led to incorrect input to
ssl3_generate_master_secret and thus caused "block cipher pad is
wrong" error messages from ssl3_enc for the client's Finished message.
Arrgh.
1999-08-18 17:14:42 +00:00
Dr. Stephen Henson
c6c3450643
Fix PKCS7_ENC_CONTENT_new() to include a sensible default content type and add
...
support for encrypted content type in PKCS7_set_content().
1999-08-17 12:58:01 +00:00
Dr. Stephen Henson
fd52057729
Add functions to allow extensions to be added to certificate requests.
...
Modify obj_dat.pl to take its files from the command line. Usage is now
perl obj_dat.pl objects.h obj_dat.h
this should avoid redirection shell escape problems under Win32.
1999-08-11 13:08:58 +00:00
Dr. Stephen Henson
87c49f622e
Support for parsing of certificate extensions in PKCS#10 requests: these are
...
used by things like Xenroll. Also include documentation for extendedKeyUsage
extension.
1999-08-09 22:38:05 +00:00
Bodo Möller
1b1a6e7808
-crlf option.
1999-08-09 13:01:48 +00:00
Ralf S. Engelschall
d91e201e96
Bump after tarball rolling.
...
Friends, feel free to start again hacking for 0.9.5... ;)
1999-08-09 11:14:08 +00:00
Bodo Möller
9a577e29e8
spelling
1999-08-08 22:41:24 +00:00
Ralf S. Engelschall
dfbaf95618
Install libRSAglue.a when OpenSSL is build with RSAref.
...
This should now finally make the RSAref users happy...
1999-08-08 19:12:26 +00:00
Ralf S. Engelschall
9639515871
A few more ``#ifndef NO_FP_API / #endif'' pairs for consistency.
...
Hint from: Andrija Antonijevic <TheAntony2@bigfoot.com>
1999-08-08 10:15:43 +00:00
Dr. Stephen Henson
ed7f60fbf9
Fix -startdate and -enddate arguments to 'ca' program. Also update NEWS file
...
with some 0.9.4 changes.
1999-08-06 21:47:09 +00:00
Bodo Möller
48c843c367
New function DSA_dup_DH, and fixes for bugs that were found
...
while implementing and using it.
1999-08-05 11:50:18 +00:00
Bodo Möller
41a6fdea80
0.9.4 won't be completed in July ...
1999-08-03 12:24:14 +00:00
Dr. Stephen Henson
922180d794
Allow the PKCS#7 (S/MIME encrypt) application to support more than one
...
recipient.
1999-07-30 01:12:46 +00:00
Bodo Möller
571199434c
Always use buildinf.h, which now includes the mk1mfinf.h data.
...
Using different files caused problems because the dependencies
in the Makefiles produced by mk1mf.pl were for the standard case,
i.e. mentioned buildinf.h and not mk1mfinf.h.
1999-07-29 12:57:23 +00:00
Dr. Stephen Henson
3e3d2ea2fc
New function OBJ_obj2txt()
1999-07-27 22:22:58 +00:00
Dr. Stephen Henson
770d19b862
New RSA flag RSA_FLAG_EXT_PKEY, to always call rsa_mod_exp.
1999-07-27 21:58:08 +00:00
Bodo Möller
2e0fc87599
Use correct CFLAG definition for makefile.one builds.
1999-07-27 09:10:36 +00:00
Andy Polyakov
a0618e3e5e
Added support for SPARC Linux.
1999-07-25 15:13:49 +00:00
Bodo Möller
74678cc2f8
Additional user data argument to pem_password_cb function type
...
and to lots of PEM_... functions.
Submitted by: Damien Miller <dmiller@ilogic.com.au>
1999-07-21 20:57:16 +00:00
Bodo Möller
664b99853c
avoid -DPLATFORM=\"...\" and -DCFLAGS=\"...\" command lines,
...
use new file buildinf.h instead.
1999-07-21 20:49:15 +00:00
Andy Polyakov
7363455fac
MIPS III/IV assembler module is reimplemented.
1999-07-20 15:50:20 +00:00
Bodo Möller
9c962484fe
SSL_MODE_ENABLE_PARTIAL_WRITE and SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER
...
work as intended, both for SSLv2 and TLS.
1999-07-19 12:59:12 +00:00
Bodo Möller
e391116a48
New compile time option -DCRYPTO_MDEBUG_THREAD.
1999-07-19 10:36:10 +00:00
Bodo Möller
458cddc104
Have CRYPTO_MDEBUG_TIME automatically set CRYPTO_MDEBUG,
...
and make it the default for some debugging configurations.
1999-07-19 09:25:35 +00:00
Ulf Möller
6434450cd6
DES library changes.
1999-07-16 00:50:45 +00:00
Dr. Stephen Henson
b617a5be59
Continues NASM support. This might work now. Its still experimental but it
...
passes all the tests. Added documentation in INSTALL.W32.
1999-07-12 23:35:10 +00:00
Bodo Möller
5059658219
fix memory leak in s3_clnt.c
1999-07-12 17:15:42 +00:00
Bodo Möller
03cd49447f
New function RSA_check_key,
...
openssl rsa -check
1999-07-11 22:00:55 +00:00
Dr. Stephen Henson
f598cd13a3
Various changes to stop VC++ choking under Win32.
1999-07-11 17:09:04 +00:00
Dr. Stephen Henson
f513939ebb
Add a debugging option to PKCS#5 v2.0 key generation function.
1999-07-11 12:40:46 +00:00
Dr. Stephen Henson
0ab8beb480
Copy flags in ASN1_STRING_dup()
1999-07-11 12:30:55 +00:00
Dr. Stephen Henson
f7daafa442
Fix a bug in x509.c that omitted DSA parameters when they didn't match the
...
signers parameters. Changed it to never omit parameters.
1999-07-11 01:48:21 +00:00
Bodo Möller
777ab7e611
Fix memory checking.
1999-07-09 16:27:30 +00:00
Bodo Möller
975d3dc2ca
remove editing artifacts
1999-07-09 13:02:14 +00:00
Bodo Möller
6888f2b35c
Mention modification to Configure.
1999-07-09 12:01:40 +00:00
Bodo Möller
e105643595
New functions SSL[_CTX]_{set,get}_mode; the initial set of mode flags is
...
SSL_MODE_ENABLE_PARTIAL_WRITE, SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER.
1999-07-02 13:55:32 +00:00
Ulf Möller
5271ebd9a3
More no-xxx option tweaks.
1999-06-30 00:42:56 +00:00
Dr. Stephen Henson
ce8b257413
New functions to allow RSA_METHODs to be changed without poking round in
...
RSA structure internals.
1999-06-29 22:22:42 +00:00
Bodo Möller
9c729e0a6d
Memory leak checks.
1999-06-25 14:04:10 +00:00
Dr. Stephen Henson
034292ad6a
Fix d2i_ASN1_INTEGER() and i2d_ASN1_INTEGER() so it correctly works out
...
the length of negative integers.
1999-06-24 01:50:27 +00:00
Dr. Stephen Henson
170afce58d
New function PKCS7_signatureVerify to allow the signing certificate to
...
be explicitly stated with PKCS#7 verify.
Also fix for util/mkerr.pl: if the -nostatic option is being used this will be
for an external library so the autogenerated C file should include the
header file as:
#include "any/path/to/header.h"
rather than the internal library form:
#include <openssl/header.h>
1999-06-22 13:33:22 +00:00
Dr. Stephen Henson
dbd665c210
Change the PEM_* function prototypes to use DECLARE_PEM macros and change
...
util/mkdef.pl to handle this. Also do a 'make update'.
1999-06-22 01:38:31 +00:00
Bodo Möller
f76a8084df
Perl variable names are case-sensitive ...
1999-06-21 11:32:25 +00:00
Dr. Stephen Henson
8623f693d9
New functions CONF_load_bio() and CONF_load_fp() to load a configuration
...
file from a bio or fp. Added some more constification to the BN library.
1999-06-20 17:36:11 +00:00
Bodo Möller
11af1a2758
Clarification.
1999-06-18 18:22:38 +00:00
Bodo Möller
a111306bbc
New function CRYPTO_num_locks.
1999-06-18 16:14:18 +00:00
Bodo Möller
95d29597b7
BIO pairs.
1999-06-12 01:03:40 +00:00
Dr. Stephen Henson
9bce3070ac
Fix to i2d_DSAPublicKey() to return the correct length.
...
Submitted by: Jeon KyoungHo <khjeon@sds.samsung.co.kr>
1999-06-11 22:30:45 +00:00
Dr. Stephen Henson
565d1065c3
Document the X509V3 code and change some of the extension function pointers
...
to use 'void *' rather than 'char *' for an "arbitrary extension".
1999-06-11 01:58:42 +00:00
Dr. Stephen Henson
b7d135b353
Two new functions to write out PKCS#8 private keys. Also fixes for some of
...
the the PBE code and a new constant PKCS5_DEFAULT_ITER for the default
iteration count if it is passed as zero.
1999-06-10 17:32:52 +00:00
Ralf S. Engelschall
9d9b559ef0
Fix determination of Perl interpreter: A perl or perl5
...
_directory_ in $PATH was also accepted as the interpreter.
1999-06-10 08:13:52 +00:00
Dr. Stephen Henson
5f6d0ea210
Reformat and "modernise" the sign.c demo.
1999-06-09 23:33:48 +00:00
Dr. Stephen Henson
f62676b92d
Change the PEM function implementation to use a common set of macros: this
...
should make modifying them easier.
Fix the selfsign demo: it was rather ancient and used deleted functions.
1999-06-09 18:05:30 +00:00
Bodo Möller
a7bd03960c
des_cbc_encrypt / des_ncbc_encrypt issue.
1999-06-09 18:01:49 +00:00
Bodo Möller
c77f47abfa
DES CBC change looks dubious to me.
1999-06-09 13:41:51 +00:00
Bodo Möller
8151f52add
Mention unistd.h.
1999-06-09 13:29:51 +00:00
Ben Laurie
05861c77e7
I keep forgetting to fix this: update the IV! Most important!
1999-06-09 11:08:36 +00:00
Ben Laurie
233bf734d3
Make "make test" fail if bntest fails an internal selfcheck.
1999-06-09 10:19:53 +00:00
Ulf Möller
908eb7b85a
Call our crypt implementation des_crypt(). crypt() now is a wrapper if
...
there is no system crypt() available.
1999-06-08 16:35:11 +00:00
Dr. Stephen Henson
8eb57af5fe
Complete support for PKCS#5 v2.0. Still needs extensive testing.
1999-06-08 00:09:51 +00:00
Bodo Möller
d4443edc57
Mention mkdir-p.pl.
1999-06-07 13:34:25 +00:00
Bodo Möller
272c933315
linux-sparc
1999-06-07 00:26:20 +00:00
Dr. Stephen Henson
69cbf46811
Rewrite PBE handling read to support PKCS#5 v2.0 and update the function
...
list for Win32.
1999-06-06 13:07:13 +00:00
Dr. Stephen Henson
e7871ffaa8
More PKCS#8 stuff. Support for unencrypted forms of private key.
1999-06-05 12:39:10 +00:00
Dr. Stephen Henson
600dec1586
Add a 'pkcs8' application for initial PKCS#8 support. Still needs lots more
...
options to handle encrypted and unencrypted forms and DER format input and
output.
1999-06-05 00:32:16 +00:00
Dr. Stephen Henson
ef8335d900
Add PKCS#5 v1.5 compatible algorithms and initial PKCS#8 support. PKCS#8 needs
...
more work: need an application and make the private key routines automatically
handle PKCS#8.
1999-06-04 23:32:14 +00:00
Ben Laurie
84c15db551
Some constification and stacks that slipped through the cracks (how?).
1999-06-04 22:23:10 +00:00
Bodo Möller
af258e0dec
remove conflict indicator ...
1999-06-04 21:52:12 +00:00
Bodo Möller
885982dc6e
"linux-sparc64-gcc" configuration
...
Submitted by: Ray Miller <ray.miller@oucs.ox.ac.uk>
1999-06-04 21:46:35 +00:00
Ulf Möller
a53955d8ab
Support the EBCDIC character set and BS2000/OSD-POSIX (work in progress).
...
Submitted by: Martin Kraemer <Martin.Kraemer@MchP.Siemens.De>
1999-06-04 21:35:58 +00:00
Ben Laurie
b4f76582d4
More evil cast removal.
1999-06-03 18:04:04 +00:00
Ben Laurie
213a75dbf2
Make samples compile.
1999-06-03 16:07:37 +00:00
Bodo Möller
748365eed7
More consistency.
1999-05-31 21:58:18 +00:00
Bodo Möller
0cceb1c708
BSD/OS 4.x support (bsdi-elf-gcc)
1999-05-30 23:54:52 +00:00
Ben Laurie
31fab3e8da
Prepare to release 0.9.3a
1999-05-29 14:13:15 +00:00
Bodo Möller
2e36cc41ef
sco5-gcc configuration.
...
Submitted by: David Greaves
1999-05-28 20:25:30 +00:00
Bodo Möller
054009a638
Updated C++ SSL demos.
...
Submitted (a month ago) by: Wade Scholine
1999-05-27 23:59:58 +00:00
Bodo Möller
71f080935a
Updated some demos.
...
Submitted by: Sean O Riordain <Sean.ORiordain@cyrona.com>
1999-05-27 23:52:31 +00:00
Bodo Möller
e95f626827
*** empty log message ***
1999-05-27 20:55:18 +00:00
Bodo Möller
472bde404f
Change function call according to current API.
1999-05-27 20:49:27 +00:00
Bodo Möller
557068c087
Final version for 0.9.3.
1999-05-24 22:38:23 +00:00
Ulf Möller
e14d4443a2
Bignum library bug fix. IRIX 6 passes "make test" now!
...
This also avoids the problems with SC4.2 and unpatched SC5.
Submitted by: Andy Polyakov <appro@fy.chalmers.se>
1999-05-20 01:43:07 +00:00
Dr. Stephen Henson
e84240d422
New functions sk_set, sk_value and sk_num to replace existing macros: this is
...
to minimise the effects on existing code.
1999-05-19 12:45:16 +00:00
Dr. Stephen Henson
1b266dabf5
Fix various less obvious bugs in PKCS#7 handling: such as not zeroing
...
the secret key before we've encrypted it and using the right NID for RC2-64.
Add various arguments to the experimental programs 'dec' and 'enc' to make
testing less painful.
This stuff has now been tested against Netscape Messenger and it can encrypt
and decrypt S/MIME messages with RC2 (128, 64 and 40 bit) DES and triple DES.
Its still experimental though...
1999-05-16 17:32:32 +00:00
Bodo Möller
f43c814917
Typo.
1999-05-16 14:20:17 +00:00
Bodo Möller
55519bbb2d
DES changes.
1999-05-16 12:29:28 +00:00
Dr. Stephen Henson
84fa704c6f
Fix some obvious bugs in the PKCS#7 library handling. It didn't try to
...
find the right RecipientInfo based on the recipient certificate (so would
fail a lot of the time) and fixup cipher structures to correctly (maybe)
modify the AlgorithmIdentifiers. Largely untested at present... this will be
fixed in due course. Well the stuff was broken to begin with so if its broken
now then you haven't lost anything :-)
1999-05-16 00:25:36 +00:00
Ben Laurie
62bad77124
Add actual testing to bntest...
1999-05-15 15:59:28 +00:00
Dr. Stephen Henson
1ad2ecb66f
The encoding of negative ASN1 INTEGERs and the conversion of BNs to negative
...
integers was completely broken. Also added a NEG_PUBKEY_BUG compilation option
to compensate for public keys improperly encoded as negative integers.
1999-05-14 18:21:21 +00:00
Bodo Möller
1b24cca969
Add release dates to the "CHANGES" file, because that's an obvious
...
place to look for them.
1999-05-13 21:17:03 +00:00
Bodo Möller
b56bce4fc7
New structure type SESS_CERT used instead of CERT inside SSL_SESSION.
...
While modifying the sources, I found some inconsistencies on the use of
s->cert vs. s->session->sess_cert; I don't know if those could
really have caused problems, but possibly this is a proper bug-fix
and not just a clean-up.
1999-05-13 15:09:38 +00:00
Ulf Möller
bd3576d2dd
Reorganize and speed up MD5.
...
Submitted by: Andy Polyakov <appro@fy.chalmers.se>
1999-05-13 13:16:42 +00:00
Ulf Möller
7d7d2cbcb0
VMS support.
...
Submitted by: Richard Levitte <richard@levitte.org>
1999-05-13 11:37:32 +00:00
Dr. Stephen Henson
f5eac85edc
Add new -out option to asn1parse to allow the parsed data to be output.
...
Fixed -strparse option: it didn't work if used more than once (this was due
to the d2i_ASN1_TYPE call parsing a freed buffer). On Win32 the file wincrypt.h
#define's X509_NAME and PKCS7_SIGNER_INFO causing clashes so these are #undef'ed
1999-05-12 01:56:27 +00:00
Bodo Möller
b31b04d951
Make SSL library a little more fool-proof by not requiring any longer
...
that SSL_set_{accept,connect}_state be called before
SSL_{accept,connect} may be used.
Submitted by:
Reviewed by:
PR:
1999-05-11 07:43:16 +00:00
Ulf Möller
d5a2ea4b73
Move openssl.cnf out of lib/.
1999-05-10 23:59:28 +00:00