Richard Levitte
d07e7c32c2
It's recommended to use req rather than x509 to create self-signed certificates
2003-04-03 22:12:50 +00:00
Richard Levitte
8f35294c1b
Typo correction
2003-04-03 21:55:57 +00:00
Richard Levitte
2bdcfbd7a3
Reset the version number of the issuer certificate? I believe this
...
hasn't been tested in a long while...
2003-04-03 18:50:48 +00:00
Bodo Möller
46b695d850
make RSA blinding thread-safe
2003-04-02 09:50:55 +00:00
Richard Levitte
6076f21f5e
It seems like gcc-drivven shared library building on OpenUnix 8 requires
...
-shared rather than -G.
2003-04-01 10:59:40 +00:00
Richard Levitte
be34231656
No need to test -setalias twice.
...
PR: 556
2003-03-31 13:56:55 +00:00
Richard Levitte
54e73364f1
Don't feil when indent is 0.
...
PR: 559
2003-03-31 13:24:04 +00:00
Richard Levitte
c6b220d933
Add usage string for -fingerprint.
...
PR: 560
2003-03-31 13:06:27 +00:00
Richard Levitte
d1c5c168b5
OpenUNIX 8 has some problems using -G with gcc. Maybe using gnu-shared works better (will be tested tonight).
2003-03-28 08:57:09 +00:00
Lutz Jänicke
931756b833
Add warning about unwanted side effect when calling SSL_CTX_free():
...
sessions in the external session cache might be removed.
Submitted by: "Nadav Har'El" <nyh@math.technion.ac.il>
PR: 547
2003-03-27 22:03:11 +00:00
Dr. Stephen Henson
39e76bc454
Update ocsp usage message and docs.
2003-03-26 00:47:07 +00:00
Richard Levitte
961b565690
Let's limit the extent of the definition of _XOPEN_SOURCE.
2003-03-25 21:17:31 +00:00
Richard Levitte
142cdf5ec9
Missed a few dollars.
...
PR: 528
2003-03-25 20:56:10 +00:00
Dr. Stephen Henson
1e2b14e9ca
Get X509_V_FLAG_CRL_CHECK_ALL logic the right way round.
...
PR:544
2003-03-24 16:58:01 +00:00
Dr. Stephen Henson
4fe70c7812
Get X509_V_FLAG_CRL_CHECK_ALL logic the right way round.
...
PR:544
2003-03-24 16:57:08 +00:00
Lutz Jänicke
21eb91c79e
Add SCO5 shared library scripts.
...
Upate SVR5 scripts for the upcoming 0.9.7b.
Submitted by: Boyd Lynn Gerber <gerberb@zenez.com>
2003-03-23 10:16:04 +00:00
Richard Levitte
9d80973ea1
Add documentation for -starttls (s_client) and -id_prefix (s_server).
...
PR: 542
2003-03-20 16:34:29 +00:00
Richard Levitte
e4fb312330
Some shells (ksh in this case) don't say 'command not found'.
...
PR: 540
2003-03-20 11:44:31 +00:00
Richard Levitte
1296e72d1d
Spelling errors.
...
PR: 538
2003-03-20 11:42:01 +00:00
Richard Levitte
f077cf68af
Make sure that all the library paths are modified in prepend mode, not
...
replace mode.
PR: 528
2003-03-20 11:37:55 +00:00
Richard Levitte
a69cc10af1
hinv may generate more than one line (1 line per CPU).
...
PR: 520
2003-03-20 11:15:16 +00:00
Richard Levitte
2dd060d94e
Shut up an ANSI compiler about uninitialised variables.
...
PR: 517
2003-03-20 10:57:12 +00:00
Richard Levitte
546490c00e
Add the target linux-ia64-ecc, suggested by Keith Thompson <kst@sdsc.edu>.
...
PR: 516
2003-03-20 10:50:40 +00:00
Bodo Möller
409a5de586
countermeasure against new Klima-Pokorny-Rosa atack
2003-03-19 19:19:58 +00:00
Bodo Möller
84b1e84af1
make sure RSA blinding works when the PRNG is not properly seeded;
...
enable it automatically only for the built-in engine
2003-03-19 18:58:55 +00:00
Dr. Stephen Henson
5250725ba5
Fix Certificate and CRL adding in X509_load_cert_crl_file:
...
an X509_INFO structure can contain more than one object,
for example a certififcate and a CRL.
2003-03-19 13:56:32 +00:00
Bodo Möller
84d5ad6181
fix formatting
2003-03-18 12:50:21 +00:00
Ben Laurie
96c15b8aad
Turn on RSA blinding by default.
2003-03-18 12:12:10 +00:00
Dr. Stephen Henson
4fc2bf07b5
Fix for no-ec on Windows.
2003-03-15 01:29:18 +00:00
Dr. Stephen Henson
2007fe63f8
Don't give an error if response reason absent in OCSP HTTP.
2003-03-14 23:37:17 +00:00
Dr. Stephen Henson
ee435c0d9c
Add entry for domainComponent so it is treated correctly.
...
Add table order test to end of a_strnid.c
2003-03-14 01:45:44 +00:00
Dr. Stephen Henson
3f691235da
Get the PEDANTIC stuff right this time...
2003-03-13 21:26:31 +00:00
Geoff Thorpe
86a925b27e
Fix a bone-head bug. This warrants a CHANGES entry because it could affect
...
applications if they were passing a bogus 'flags' parameter yet having
things work as they wanted anyway.
2003-03-13 20:23:19 +00:00
Dr. Stephen Henson
954d8e4f79
Return an error if gmtime returns NULL.
2003-03-13 14:10:11 +00:00
Dr. Stephen Henson
b575dff21a
Avoid warnings for no-engine and PEDANTIC
2003-03-12 02:38:35 +00:00
Dr. Stephen Henson
b35ca7b257
Fixes for EVP_DigestInit_ex() and OPENSSL_NO_ENGINE.
2003-03-12 02:31:12 +00:00
Bodo Möller
0102bb94cb
memset problem has been handled
...
PR: 343
2003-02-28 15:16:30 +00:00
Dr. Stephen Henson
57bc7769b7
Encryption BIOs misbehave when used with non blocking I/O.
...
Two fixes:
1. If BIO_write() fails inside enc_write() it should return the
total number of bytes successfully written.
2. If BIO_write() fails during BIO_flush() it should return immediately
with the error code: previously it would fall through to the final
encrypt, corrupting the buffer.
2003-02-27 14:08:44 +00:00
Dr. Stephen Henson
0461b8c90b
Typo.
2003-02-27 13:03:27 +00:00
Bodo Möller
bd8e228d60
year 2003
2003-02-24 17:16:32 +00:00
Ulf Möller
bad99f6a9d
get rid of a bad character
2003-02-22 23:13:55 +00:00
Ulf Möller
5600a9cba1
Add instructions for building the MinGW target in Cygwin, and
...
rearrange some of the other text for better readability.
2003-02-22 23:00:25 +00:00
Ulf Möller
607ae30be8
replace symlink with copy, as in head
2003-02-22 22:59:01 +00:00
Ulf Möller
37d9503a67
mingw related cleanups, as in head
2003-02-22 18:02:46 +00:00
Richard Levitte
a1033894d7
Remove duplication and have clean depend on libclean
2003-02-22 15:04:06 +00:00
Ulf Möller
0480574310
mingw related changes as in head
2003-02-22 01:25:37 +00:00
Richard Levitte
dab0aaa612
Let's move on to development of 0.9.7b.
2003-02-19 12:55:39 +00:00
Richard Levitte
6fcf1dbc50
Time to release 0.9.7a.
...
The tag will be OpenSSL_0_9_7a.
2003-02-19 12:33:55 +00:00
Richard Levitte
352df99302
Security fix: Vaudenay timing attack on CBC.
...
An advisory will be posted to the web. Expect a release within the hour.
2003-02-19 12:04:16 +00:00
Richard Levitte
a3063b37ef
Make sure the memory allocation routines check for negative sizes
2003-02-19 11:54:57 +00:00