git.openssl.org Git - openssl.git/log

Dr. Stephen Henson [Wed, 1 Jul 2009 15:46:43 +0000 (15:46 +0000)]

PR: 1976
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Cleanup some compile time warnings/magic numbers.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 15:42:38 +0000 (15:42 +0000)]

PR: 1974(partial)
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Cryptodev digest support.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 15:36:55 +0000 (15:36 +0000)]

192, 256 bit AES and RC4 support for cryptodev.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 15:25:17 +0000 (15:25 +0000)]

PR: 1974(partial)
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Fix up RSA API compliance for rsa_nocrt_mod_exp method.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 14:55:59 +0000 (14:55 +0000)]

PR: 1974 (partial)
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

If -DHAVE_CRYPTODEV is set enable cryptodev support

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 11:43:57 +0000 (11:43 +0000)]

PR: 1972
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Add support for building with the uClinux-dist.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 11:39:59 +0000 (11:39 +0000)]

PR: 1970
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Reviewed by: steve@openssl.org

Fix unused variable "words" and uninitialised data "b".

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 11:35:46 +0000 (11:35 +0000)]

PR: 1965
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Make sure defines to remove SHA are correct.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 11:29:01 +0000 (11:29 +0000)]

PR: 1962
Submitted by: Daniel Mentz <daniel.m@sent.com>
Reviewed by: steve@openssl.org

Fix "for dtls1_get_record() returns a bad record in one edge case" bug.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 1 Jul 2009 11:23:07 +0000 (11:23 +0000)]

Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Reviewed by: steve@openssl.org

EVP_CTRL_PBE_PRF_NID suppot for Gost engine.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 22:26:28 +0000 (22:26 +0000)]

Update from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 20:55:55 +0000 (20:55 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 16:10:24 +0000 (16:10 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 15:21:48 +0000 (15:21 +0000)]

PR: 1969
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Don't use repeating key when testing algs.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 15:10:54 +0000 (15:10 +0000)]

PR: 1967
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Don't go past end of params array.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 15:08:38 +0000 (15:08 +0000)]

PR: 1966
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Reviewed by: steve@openssl.org

Make no-ocsp work properly.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 14:59:59 +0000 (14:59 +0000)]

PR: 1963
Submitted by: David McCullough <david_mccullough@securecomputing.com>
Approved by: steve@openssl.org

Make build fail if makedepend not present.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 11:57:24 +0000 (11:57 +0000)]

Add "missing" functions for setting all verify parameters for SSL_CTX and SSL
structures.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 11:41:35 +0000 (11:41 +0000)]

Redundant check: s->param is always non-NULL, it is set in SSL_new().

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 30 Jun 2009 11:21:00 +0000 (11:21 +0000)]

Inherit parameters properly in SSL contexts: any parameters set should
replace those in the current list.

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 29 Jun 2009 16:09:58 +0000 (16:09 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Sun, 28 Jun 2009 16:24:11 +0000 (16:24 +0000)]

Update from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 26 Jun 2009 23:14:11 +0000 (23:14 +0000)]

Fix from 0.9.8-stable

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 26 Jun 2009 15:04:22 +0000 (15:04 +0000)]

Update from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 26 Jun 2009 11:28:52 +0000 (11:28 +0000)]

Allow checking of self-signed certifictes if a flag is set.

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 25 Jun 2009 17:11:48 +0000 (17:11 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 25 Jun 2009 11:26:45 +0000 (11:26 +0000)]

PR: 1748

Fix nasty SSL BIO pop bug. Since this changes the behaviour of SSL BIOs and
will break applications that worked around the bug only included in 1.0.0 and
later.

commit | commitdiff | tree

Ben Laurie [Thu, 25 Jun 2009 10:15:06 +0000 (10:15 +0000)]

DEBUG_BN_CTX doesn't really debug anything (it is essentially verbosity) and
has made make test far too noisy.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 24 Jun 2009 13:30:07 +0000 (13:30 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 12:19:35 +0000 (12:19 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 12:05:51 +0000 (12:05 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 11:47:54 +0000 (11:47 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 11:38:26 +0000 (11:38 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 11:33:17 +0000 (11:33 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 17 Jun 2009 11:26:09 +0000 (11:26 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 16 Jun 2009 16:55:01 +0000 (16:55 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 16 Jun 2009 16:39:20 +0000 (16:39 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 15 Jun 2009 15:00:19 +0000 (15:00 +0000)]

Update from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 15 Jun 2009 11:23:33 +0000 (11:23 +0000)]

commit | commitdiff | tree

Ben Laurie [Sun, 14 Jun 2009 10:23:29 +0000 (10:23 +0000)]

Two digits is not wide enough.

commit | commitdiff | tree

Ben Laurie [Sun, 14 Jun 2009 02:37:22 +0000 (02:37 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 13 Jun 2009 20:47:09 +0000 (20:47 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 5 Jun 2009 14:57:10 +0000 (14:57 +0000)]

Stop gcc bracket warning.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 5 Jun 2009 14:56:48 +0000 (14:56 +0000)]

Stop warning if dtls disabled.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 5 Jun 2009 14:46:49 +0000 (14:46 +0000)]

PR: 1950
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve@openssl.org

DTLS fragment retransmission bug.

commit | commitdiff | tree

Ben Laurie [Fri, 5 Jun 2009 08:35:54 +0000 (08:35 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 2 Jun 2009 11:23:30 +0000 (11:23 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 2 Jun 2009 11:06:28 +0000 (11:06 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 1 Jun 2009 12:14:15 +0000 (12:14 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Sun, 31 May 2009 17:11:24 +0000 (17:11 +0000)]

PR: 1921
Submitted by: Michael Tuexen <tuexen@fh-muenster.de>
Reviewed by: steve@openssl.org

Add ECDHE and PSK support to DTLS.

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 30 May 2009 18:10:59 +0000 (18:10 +0000)]

Ensure canonical encodings of X509_NAME structures are valid.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 29 May 2009 18:58:59 +0000 (18:58 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 29 May 2009 14:02:30 +0000 (14:02 +0000)]

Update from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 28 May 2009 20:53:16 +0000 (20:53 +0000)]

Need definition of struct timeval for dtls1.h which broke WIN32 builds,
so include winsock.h. (might be a cleaner way to do this...)

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 28 May 2009 20:49:29 +0000 (20:49 +0000)]

Update ordinals and sync with 0.9.8

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 28 May 2009 20:45:26 +0000 (20:45 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 28 May 2009 18:10:47 +0000 (18:10 +0000)]

Submitted by: Artem Chuprina <ran@cryptocom.ru>
Reviewed by: steve@openssl.org

Fix to match latest GOST in TLS draft.

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 18 May 2009 17:37:13 +0000 (17:37 +0000)]

Add CHANGES entries from 0.9.8-stable.

commit | commitdiff | tree

Dr. Stephen Henson [Mon, 18 May 2009 16:11:58 +0000 (16:11 +0000)]

Delete line which should have gone with PR#1922.

commit | commitdiff | tree

Dr. Stephen Henson [Sun, 17 May 2009 16:04:21 +0000 (16:04 +0000)]

PR: 1929
Submitted by: Michael Tuexen <tuexen@fh-muenster.de>
Approved by: steve@openssl.org

Updated DTLS MTU bug fix.

commit | commitdiff | tree

Dr. Stephen Henson [Sun, 17 May 2009 15:57:51 +0000 (15:57 +0000)]

Revert previous MTU patch from PR#1929

commit | commitdiff | tree

Dr. Stephen Henson [Sun, 17 May 2009 14:48:02 +0000 (14:48 +0000)]

PR: 1599

Reformat PKCS12_parse manual page, document return values.

commit | commitdiff | tree

Richard Levitte [Sun, 17 May 2009 07:22:15 +0000 (07:22 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 16 May 2009 16:22:11 +0000 (16:22 +0000)]

PR: 1931
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Fix fragment handling memory leak.

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 16 May 2009 16:17:46 +0000 (16:17 +0000)]

PR: 1930
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Limit size of DTLS record buffer queue.

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 16 May 2009 11:16:15 +0000 (11:16 +0000)]

Disable ECDHE in DTLS in a cleaner way.

commit | commitdiff | tree

Dr. Stephen Henson [Sat, 16 May 2009 11:14:55 +0000 (11:14 +0000)]

Make the stuff compile again, fix missing prototype warnings.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 15 May 2009 23:07:41 +0000 (23:07 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 15 May 2009 22:58:13 +0000 (22:58 +0000)]

PR: 1922
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

DTLS Timer bug fix.

commit | commitdiff | tree

Dr. Stephen Henson [Fri, 15 May 2009 22:50:12 +0000 (22:50 +0000)]

PR: 1925
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org

VOS extended name support.

commit | commitdiff | tree

Richard Levitte [Fri, 15 May 2009 16:37:08 +0000 (16:37 +0000)]

Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
Thank you\!
(note: not tested for now, a few nightly builds should give indications though)

commit | commitdiff | tree

Richard Levitte [Fri, 15 May 2009 16:01:42 +0000 (16:01 +0000)]

Have mkdef.pl also handle VAX and Non-VAX differences for VMS

commit | commitdiff | tree

Richard Levitte [Fri, 15 May 2009 16:00:08 +0000 (16:00 +0000)]

Add a comment about libeay.num and ssleay.num

commit | commitdiff | tree

Andy Polyakov [Thu, 14 May 2009 18:25:29 +0000 (18:25 +0000)]

x86[_64]cpuid.pl: update from HEAD.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 13 May 2009 16:25:35 +0000 (16:25 +0000)]

PR: 1921
Submitted by: steve@openssl.org

Our DTLS implementation doesn't currently handle ECDHE so don't include
unsupported ciphers in client hello.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 13 May 2009 16:24:12 +0000 (16:24 +0000)]

Print out DTLS versions too.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 13 May 2009 11:51:30 +0000 (11:51 +0000)]

PR: 1923
Submitted by: Daniel Mentz <daniel.m@sent.com>, Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org

Don't access freed data structure.

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 13 May 2009 11:32:24 +0000 (11:32 +0000)]

PR: 1924
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org

Fix _POSIX_C_SOURCE usage.

commit | commitdiff | tree

Andy Polyakov [Tue, 12 May 2009 20:24:23 +0000 (20:24 +0000)]

e_padlock.c: update from HEAD.

commit | commitdiff | tree

Dr. Stephen Henson [Thu, 7 May 2009 16:26:44 +0000 (16:26 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 6 May 2009 16:58:27 +0000 (16:58 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 6 May 2009 16:54:25 +0000 (16:54 +0000)]

Add debug-VC-WIN32 target and let mk1mf.pl auto detect it, update docs.

commit | commitdiff | tree

Richard Levitte [Wed, 6 May 2009 14:03:24 +0000 (14:03 +0000)]

Select updates from HEAD

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 6 May 2009 10:23:39 +0000 (10:23 +0000)]

Don't use -D_CRT_NONSTDC_NO_DEPRECATE, fix bio_lcl.h instead.

commit | commitdiff | tree

Andy Polyakov [Tue, 5 May 2009 19:25:53 +0000 (19:25 +0000)]

Configure: update from HEAD (Camellia assembler in VC-WIN64A, CAPI engine
in mingw64).

commit | commitdiff | tree

Andy Polyakov [Tue, 5 May 2009 19:23:45 +0000 (19:23 +0000)]

ec_mult.c: update from HEAD (Win64 compile warnings).

commit | commitdiff | tree

Andy Polyakov [Tue, 5 May 2009 19:23:14 +0000 (19:23 +0000)]

cryptlib.c: update from HEAD.

commit | commitdiff | tree

Andy Polyakov [Tue, 5 May 2009 19:21:12 +0000 (19:21 +0000)]

perlasm: update from HEAD.

commit | commitdiff | tree

Andy Polyakov [Tue, 5 May 2009 19:17:00 +0000 (19:17 +0000)]

e_capi.c: update from HEAD.

commit | commitdiff | tree

Richard Levitte [Tue, 5 May 2009 08:46:30 +0000 (08:46 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Wed, 29 Apr 2009 14:12:54 +0000 (14:12 +0000)]

If an SSLv2 method is explicitly asked for use the SSLv2 cipher string:
assume an application *really* wants SSLv2 if they do that.

Otherwise stick with the default which excludes all SSLv2 cipher suites.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 28 Apr 2009 22:35:42 +0000 (22:35 +0000)]

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 28 Apr 2009 22:01:53 +0000 (22:01 +0000)]

PR: 1629
Submitted by: Kaspar Brand <ossl-rt@velox.ch>
Approved by: steve@openssl.org

Don't use extensions if using SSLv3: this chokes some broken servers.

commit | commitdiff | tree

Dr. Stephen Henson [Tue, 28 Apr 2009 21:56:04 +0000 (21:56 +0000)]

PR: 1914

Make safestack work with C++.

commit | commitdiff | tree

Richard Levitte [Tue, 28 Apr 2009 13:00:50 +0000 (13:00 +0000)]

commit | commitdiff | tree

Andy Polyakov [Mon, 27 Apr 2009 19:37:23 +0000 (19:37 +0000)]

v3_alt.c: otherName parsing fix from HEAD.

Submitted by: Love Hoernquist Aastrand

commit | commitdiff | tree

Andy Polyakov [Mon, 27 Apr 2009 19:32:13 +0000 (19:32 +0000)]

VC-32.pl: update from HEAD.

commit | commitdiff | tree