openssl.git
19 years agoCopy DH key (if available) in addition to the bare parameters
Bodo Möller [Mon, 13 Mar 2000 17:07:04 +0000 (17:07 +0000)]
Copy DH key (if available) in addition to the bare parameters
in SSL_new.
If SSL_OP_SINGLE_DH_USE is set, don't waste time in SSL_[CTX_]set_tmp_dh
on computing a DH key that will be ignored anyway.

ssltest -dhe1024dsa (w/ 160-bit sub-prime) had an unfair performance
advantage over -dhe1024 (safe prime): SSL_OP_SINGLE_DH_USE was
effectively always enabled because SSL_new ignored the DH key set in
the SSL_CTX.  Now -dhe1024 takes the server only about twice as long
as -dhe1024dsa instead of three times as long (for 1024 bit RSA
with 1024 bit DH).

19 years agoConnection timings (using ISO C function clock()).
Bodo Möller [Mon, 13 Mar 2000 15:06:54 +0000 (15:06 +0000)]
Connection timings (using ISO C function clock()).

19 years agoRemove Win32 assembler files. They are always rebuilt (with some
Bodo Möller [Mon, 13 Mar 2000 08:04:20 +0000 (08:04 +0000)]
Remove Win32 assembler files.  They are always rebuilt (with some
choice of parameters) when they are needed.

19 years agocleaning up a little
Bodo Möller [Sun, 12 Mar 2000 23:27:14 +0000 (23:27 +0000)]
cleaning up a little

19 years agoasm workaround for SuSE Linux
Ulf Möller [Sun, 12 Mar 2000 12:52:36 +0000 (12:52 +0000)]
asm workaround for SuSE Linux
proposed by Holger Reif

19 years agomake update
Ulf Möller [Sun, 12 Mar 2000 12:49:45 +0000 (12:49 +0000)]
make update

19 years agoWorkaround for Windoze weirdness.
Bodo Möller [Sat, 11 Mar 2000 01:29:26 +0000 (01:29 +0000)]
Workaround for Windoze weirdness.

19 years agoOn NeXT, ssize_t is int, not long (see <sys/types.h> -- the definition
Bodo Möller [Sat, 11 Mar 2000 01:29:14 +0000 (01:29 +0000)]
On NeXT, ssize_t is int, not long (see <sys/types.h> -- the definition
is activated only when _POSIX_SOURCE is defined).

19 years agoNO_SYSLOG is defined for MSDOS anyway. just don't include the Unix
Ulf Möller [Fri, 10 Mar 2000 23:45:51 +0000 (23:45 +0000)]
NO_SYSLOG is defined for MSDOS anyway. just don't include the Unix
header...

19 years agossize_t
Ulf Möller [Fri, 10 Mar 2000 23:45:28 +0000 (23:45 +0000)]
ssize_t

19 years agoUse signed types where necessary, and add missing functionality
Bodo Möller [Fri, 10 Mar 2000 21:44:38 +0000 (21:44 +0000)]
Use signed types where necessary, and add missing functionality
to make SSL_nread0 work.

19 years agoUse L for all constants.
Ulf Möller [Fri, 10 Mar 2000 17:43:05 +0000 (17:43 +0000)]
Use L for all constants.

19 years agoDon't generate asm files for no-asm.
Ulf Möller [Fri, 10 Mar 2000 17:02:12 +0000 (17:02 +0000)]
Don't generate asm files for no-asm.

19 years agoRepair bss_log.
Ulf Möller [Fri, 10 Mar 2000 17:01:23 +0000 (17:01 +0000)]
Repair bss_log.

Curiously enough, void functions don't return a value.

19 years agoMention -ign_eof.
Bodo Möller [Fri, 10 Mar 2000 13:49:02 +0000 (13:49 +0000)]
Mention -ign_eof.

19 years agoAlways use fixed DH parameters created with 'dhparam -C',
Bodo Möller [Fri, 10 Mar 2000 13:23:20 +0000 (13:23 +0000)]
Always use fixed DH parameters created with 'dhparam -C',
don't dynamically create them.  This allows using ssltest
for approximate performance comparisons:
   $ time ./ssltest -num 50 -tls1 -cert ../apps/server2.pem \
     [-no_dhe|-dhe1024dsa|-dhe1024]
(server2.pem contains a 1024 bit RSA key, the default has only
512 bits.) Note that these timings contain both the server's and
the client's computations, they are not a good indicator for
server workload in different configurations.

19 years agoAdd the possibility (with -ign_eof) to ignore end of file on input but
Richard Levitte [Fri, 10 Mar 2000 12:18:28 +0000 (12:18 +0000)]
Add the possibility (with -ign_eof) to ignore end of file on input but
still not be quiet.  Also make it clear that -quiet implicitely means
-ign_eof as well.

19 years agoChange to code generated by 'dhparam -C':
Bodo Möller [Fri, 10 Mar 2000 12:17:37 +0000 (12:17 +0000)]
Change to code generated by 'dhparam -C':

- Move DH parameter components inside the function.
- Automatically #include the required header file if it
  has not already been #included.

19 years agoanother typo
Bodo Möller [Fri, 10 Mar 2000 11:47:58 +0000 (11:47 +0000)]
another typo

19 years agotypo
Bodo Möller [Fri, 10 Mar 2000 11:43:45 +0000 (11:43 +0000)]
typo

19 years agoclarify.
Ulf Möller [Thu, 9 Mar 2000 17:07:55 +0000 (17:07 +0000)]
clarify.

19 years agobug fix.
Ulf Möller [Thu, 9 Mar 2000 17:07:19 +0000 (17:07 +0000)]
bug fix.
Submitted by: "Yoram Meroz" <yoram@mail.idrive.com>

19 years agoManual page installation did not work if INSTALL_PREFIX was a relative path.
Bodo Möller [Thu, 9 Mar 2000 15:04:27 +0000 (15:04 +0000)]
Manual page installation did not work if INSTALL_PREFIX was a relative path.

19 years agoDon't Free() password if it was read from config file.
Dr. Stephen Henson [Thu, 9 Mar 2000 01:03:44 +0000 (01:03 +0000)]
Don't Free() password if it was read from config file.

19 years agoClarification.
Bodo Möller [Wed, 8 Mar 2000 20:20:15 +0000 (20:20 +0000)]
Clarification.

19 years agoFix typo and make ca get the CA and request fields correct.
Dr. Stephen Henson [Wed, 8 Mar 2000 12:44:10 +0000 (12:44 +0000)]
Fix typo and make ca get the CA and request fields correct.

19 years agoManual pages for EVP_Open* and EVP_Seal*
Dr. Stephen Henson [Wed, 8 Mar 2000 01:48:12 +0000 (01:48 +0000)]
Manual pages for EVP_Open* and EVP_Seal*

19 years agoProtect variables from potential misinterpretations, for example a
Richard Levitte [Tue, 7 Mar 2000 23:17:48 +0000 (23:17 +0000)]
Protect variables from potential misinterpretations, for example a
colon which may bite the lesser knowleged...

19 years agoCheck that a password was actually passed, or the user will just get
Richard Levitte [Tue, 7 Mar 2000 22:35:27 +0000 (22:35 +0000)]
Check that a password was actually passed, or the user will just get
mysterious crashes.

19 years agoManual pages for EVP signing and verifying.
Dr. Stephen Henson [Tue, 7 Mar 2000 17:35:25 +0000 (17:35 +0000)]
Manual pages for EVP signing and verifying.

19 years agospelling
Bodo Möller [Tue, 7 Mar 2000 15:10:08 +0000 (15:10 +0000)]
spelling

19 years agoNew compatability trust and purpose settings.
Dr. Stephen Henson [Tue, 7 Mar 2000 14:04:29 +0000 (14:04 +0000)]
New compatability trust and purpose settings.

19 years ago{NEXT,OPEN}STEP don't have pid_t.
Bodo Möller [Tue, 7 Mar 2000 09:37:19 +0000 (09:37 +0000)]
{NEXT,OPEN}STEP don't have pid_t.

19 years agoFix the PKCS#8 DSA code so it works again. All the
Dr. Stephen Henson [Tue, 7 Mar 2000 01:03:33 +0000 (01:03 +0000)]
Fix the PKCS#8 DSA code so it works again. All the
broken formats worked but the valid didn't :-(

19 years agobug fix release planned
Ulf Möller [Mon, 6 Mar 2000 14:24:25 +0000 (14:24 +0000)]
bug fix release planned

19 years agoFix the indentation, and avoid a compiler warning.
Bodo Möller [Mon, 6 Mar 2000 10:21:57 +0000 (10:21 +0000)]
Fix the indentation, and avoid a compiler warning.

19 years agoLet's not lie to the people.
Richard Levitte [Mon, 6 Mar 2000 07:31:17 +0000 (07:31 +0000)]
Let's not lie to the people.

19 years agoAdd missing include (only MONOLITH builds were possible without it).
Bodo Möller [Sun, 5 Mar 2000 01:11:44 +0000 (01:11 +0000)]
Add missing include (only MONOLITH builds were possible without it).
Submitted by: Andrew W. Gray

19 years agoPreserve reason strings in automatically build tables.
Bodo Möller [Sun, 5 Mar 2000 00:19:36 +0000 (00:19 +0000)]
Preserve reason strings in automatically build tables.

19 years agoBeautifying. Sorry, but code that's slammed to the far left is not
Richard Levitte [Sat, 4 Mar 2000 21:31:52 +0000 (21:31 +0000)]
Beautifying.  Sorry, but code that's slammed to the far left is not
very readable in my opinion.

19 years agoLet's care about the compiler warnings for both cases, shall we?
Richard Levitte [Sat, 4 Mar 2000 20:19:57 +0000 (20:19 +0000)]
Let's care about the compiler warnings for both cases, shall we?

19 years agoThere is no reason to use downcase letters throughout in error reason
Bodo Möller [Sat, 4 Mar 2000 17:56:32 +0000 (17:56 +0000)]
There is no reason to use downcase letters throughout in error reason
strings, it's just the default because it's usually ok.

19 years agoRead complete seed files given in -rand options.
Bodo Möller [Sat, 4 Mar 2000 17:44:07 +0000 (17:44 +0000)]
Read complete seed files given in -rand options.

19 years agoGet definition of ssize_t.
Ben Laurie [Sat, 4 Mar 2000 11:42:40 +0000 (11:42 +0000)]
Get definition of ssize_t.

19 years agoChange output text (ar is not a linker).
Bodo Möller [Sat, 4 Mar 2000 02:06:04 +0000 (02:06 +0000)]
Change output text (ar is not a linker).

19 years agoGenerate correct error reasons strings for SYSerr.
Bodo Möller [Sat, 4 Mar 2000 01:36:53 +0000 (01:36 +0000)]
Generate correct error reasons strings for SYSerr.

19 years agoThe selftest sometimes lacked important information
Ulf Möller [Sat, 4 Mar 2000 00:22:56 +0000 (00:22 +0000)]
The selftest sometimes lacked important information

19 years agonew component
Ulf Möller [Sat, 4 Mar 2000 00:22:04 +0000 (00:22 +0000)]
new component

19 years agogcc warnings
Ulf Möller [Sat, 4 Mar 2000 00:21:45 +0000 (00:21 +0000)]
gcc warnings

19 years agoNote about PRNG error message for openssl command line tool.
Bodo Möller [Fri, 3 Mar 2000 23:28:35 +0000 (23:28 +0000)]
Note about PRNG error message for openssl command line tool.

19 years agoAdd an #include.
Bodo Möller [Fri, 3 Mar 2000 23:27:56 +0000 (23:27 +0000)]
Add an #include.

19 years agoUse signed type where -1 may be returned.
Bodo Möller [Fri, 3 Mar 2000 22:34:35 +0000 (22:34 +0000)]
Use signed type where -1 may be returned.

19 years agoAvoid potential memory leak in code generated by 'openssl dhparam -C'.
Bodo Möller [Fri, 3 Mar 2000 22:24:43 +0000 (22:24 +0000)]
Avoid potential memory leak in code generated by 'openssl dhparam -C'.

19 years agoNew '-dsaparam' option for 'openssl dhparam', and related fixes.
Bodo Möller [Fri, 3 Mar 2000 22:18:19 +0000 (22:18 +0000)]
New '-dsaparam' option for 'openssl dhparam', and related fixes.

19 years agoFix for previous patch: If RAND_pseudo_bytes returns 0, this is not an error.
Bodo Möller [Fri, 3 Mar 2000 07:51:25 +0000 (07:51 +0000)]
Fix for previous patch: If RAND_pseudo_bytes returns 0, this is not an error.

19 years agoMake name_funcs_stack static.
Dr. Stephen Henson [Fri, 3 Mar 2000 01:37:11 +0000 (01:37 +0000)]
Make name_funcs_stack static.

19 years agoMove the 'file scope' argument in set_label to
Dr. Stephen Henson [Fri, 3 Mar 2000 00:06:40 +0000 (00:06 +0000)]
Move the 'file scope' argument in set_label to
the third argument: the second was being used
already.

19 years agoSynchronise
Richard Levitte [Thu, 2 Mar 2000 23:32:47 +0000 (23:32 +0000)]
Synchronise

19 years agoUse RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.
Bodo Möller [Thu, 2 Mar 2000 22:44:55 +0000 (22:44 +0000)]
Use RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.

19 years agoUse RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.
Bodo Möller [Thu, 2 Mar 2000 22:29:38 +0000 (22:29 +0000)]
Use RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.

19 years agoUpdate comment.
Bodo Möller [Thu, 2 Mar 2000 22:08:30 +0000 (22:08 +0000)]
Update comment.

19 years agoAdd missing dependencies.
Bodo Möller [Thu, 2 Mar 2000 19:30:41 +0000 (19:30 +0000)]
Add missing dependencies.

19 years agoUse RAND_METHOD for implementing RAND_status.
Bodo Möller [Thu, 2 Mar 2000 14:34:58 +0000 (14:34 +0000)]
Use RAND_METHOD for implementing RAND_status.

19 years agoChange comment.
Bodo Möller [Thu, 2 Mar 2000 14:34:08 +0000 (14:34 +0000)]
Change comment.

19 years agoHack b_print.c to implement asprintf() functionality. Not enabled by
Richard Levitte [Thu, 2 Mar 2000 07:50:02 +0000 (07:50 +0000)]
Hack b_print.c to implement asprintf() functionality.  Not enabled by
default yet, I wanna play with it a bit more.

For those who don't know: asprintf() is an allocating sprintf.  The
first argument to it is a double indirection to char instead of a
single.

19 years agoMake bss_log.c a bit more readable, and implement it for VMS as well.
Richard Levitte [Thu, 2 Mar 2000 07:45:31 +0000 (07:45 +0000)]
Make bss_log.c a bit more readable, and implement it for VMS as well.

19 years agoIt started with finding a misplaced #endif. Then I wanted to see the
Richard Levitte [Thu, 2 Mar 2000 07:42:48 +0000 (07:42 +0000)]
It started with finding a misplaced #endif.  Then I wanted to see the
structure better.  I hope noone minds, and that it still works.  Steve?

19 years agoI'm experimenting with a hack in dopr() and friends b_printf.c to make
Richard Levitte [Thu, 2 Mar 2000 07:38:45 +0000 (07:38 +0000)]
I'm experimenting with a hack in dopr() and friends b_printf.c to make
it work like asprintf().

19 years agoFix bug which would free up a public key
Dr. Stephen Henson [Thu, 2 Mar 2000 00:37:53 +0000 (00:37 +0000)]
Fix bug which would free up a public key
twice if the verify callback tried to
continue after a signature failure.

19 years agoadd comment.
Ulf Möller [Wed, 1 Mar 2000 19:08:47 +0000 (19:08 +0000)]
add comment.

19 years agoBug fix.
Ulf Möller [Wed, 1 Mar 2000 19:08:27 +0000 (19:08 +0000)]
Bug fix.

19 years agoNote bug fix for the DSA infinite loop
Ulf Möller [Wed, 1 Mar 2000 19:07:58 +0000 (19:07 +0000)]
Note bug fix for the DSA infinite loop

19 years agopseudo-seed for the PRNG before testing DSA
Ulf Möller [Wed, 1 Mar 2000 17:42:06 +0000 (17:42 +0000)]
pseudo-seed for the PRNG before testing DSA

19 years agoadd RAND_status() to title
Ulf Möller [Wed, 1 Mar 2000 17:08:27 +0000 (17:08 +0000)]
add RAND_status() to title

19 years agochange info text (as on the web site)
Ulf Möller [Wed, 1 Mar 2000 17:05:14 +0000 (17:05 +0000)]
change info text (as on the web site)

19 years ago'rand'/'-rand' documentation.
Bodo Möller [Wed, 1 Mar 2000 11:45:53 +0000 (11:45 +0000)]
'rand'/'-rand' documentation.

19 years agoDocument the 'rand' application.
Bodo Möller [Wed, 1 Mar 2000 07:57:25 +0000 (07:57 +0000)]
Document the 'rand' application.

19 years agocheck for WIN32 (needed by Mingw32)
Ulf Möller [Wed, 1 Mar 2000 01:46:34 +0000 (01:46 +0000)]
check for WIN32 (needed by Mingw32)

19 years agoKeep the references to other INSTALL files short. These are the Unix
Ulf Möller [Wed, 1 Mar 2000 00:40:26 +0000 (00:40 +0000)]
Keep the references to other INSTALL files short. These are the Unix
instructions.

19 years ago'rand' application for creating pseudo-random files.
Bodo Möller [Tue, 29 Feb 2000 23:47:01 +0000 (23:47 +0000)]
'rand' application for creating pseudo-random files.

19 years agoCheck BN_rand return value.
Bodo Möller [Tue, 29 Feb 2000 22:37:27 +0000 (22:37 +0000)]
Check BN_rand return value.

"make update".

19 years agoPoint to INSTALL.MacOS for MacOS pre X.
Bodo Möller [Tue, 29 Feb 2000 19:07:39 +0000 (19:07 +0000)]
Point to INSTALL.MacOS for MacOS pre X.

19 years agosome people can't read :)
Ulf Möller [Tue, 29 Feb 2000 19:00:48 +0000 (19:00 +0000)]
some people can't read :)

19 years agochange wording
Ulf Möller [Tue, 29 Feb 2000 17:18:24 +0000 (17:18 +0000)]
change wording

19 years agohow to recognize assembler problems
Ulf Möller [Tue, 29 Feb 2000 15:33:35 +0000 (15:33 +0000)]
how to recognize assembler problems

19 years agoAdded configuration support for Linux/IA64
Ralf S. Engelschall [Tue, 29 Feb 2000 15:29:02 +0000 (15:29 +0000)]
Added configuration support for Linux/IA64

Submitted by: Rolf Haberrecker <rolf@suse.de>

19 years agoMacOS pseudo-random entropy collector.
Andy Polyakov [Tue, 29 Feb 2000 15:18:46 +0000 (15:18 +0000)]
MacOS pseudo-random entropy collector.

Submitted by: Yoram Meroz <yoram@mail.idrive.com>
Reviewed by: <appro>

19 years agoBug fix.
Ulf Möller [Tue, 29 Feb 2000 14:47:29 +0000 (14:47 +0000)]
Bug fix.

Pointed out by: Gisle Vanem <gvanem@eunet.no>

19 years agoForgot to check correctly for the new options
Richard Levitte [Mon, 28 Feb 2000 23:54:20 +0000 (23:54 +0000)]
Forgot to check correctly for the new options

19 years agoMingw32 can now use assembler.
Ulf Möller [Mon, 28 Feb 2000 21:04:10 +0000 (21:04 +0000)]
Mingw32 can now use assembler.

19 years agoSwitch for turning on the predictable "random" number generator.
Ulf Möller [Mon, 28 Feb 2000 20:19:39 +0000 (20:19 +0000)]
Switch for turning on the predictable "random" number generator.

19 years agoFix for non-monolithic build.
Ulf Möller [Mon, 28 Feb 2000 20:16:06 +0000 (20:16 +0000)]
Fix for non-monolithic build.

Submitted by: Andrew Gray <agray@iconsinc.com>

19 years agoSupport assembler for Mingw32.
Ulf Möller [Mon, 28 Feb 2000 19:16:41 +0000 (19:16 +0000)]
Support assembler for Mingw32.

19 years agoShared library support for Solaris and HPUX
Ulf Möller [Mon, 28 Feb 2000 19:14:46 +0000 (19:14 +0000)]
Shared library support for Solaris and HPUX
by Lutz Behnke and by Lutz Jaenicke.

Hopefully we'll have a unified way of handling shared libraries when
we move to autoconf...

19 years agoSwitch to 0.9.6, and finally remove the annoying message
Bodo Möller [Mon, 28 Feb 2000 18:03:16 +0000 (18:03 +0000)]
Switch to 0.9.6, and finally remove the annoying message
about renamed header files.

19 years agoOuch! PKCS7_encrypt() was heading MIME text headers twice
Dr. Stephen Henson [Mon, 28 Feb 2000 14:11:19 +0000 (14:11 +0000)]
Ouch! PKCS7_encrypt() was heading MIME text headers twice
because it added them manually and as part of SMIME_crlf_copy().
Removed the manual add.

19 years agoTagging has been done, time to switch to 0.9.6-dev.
Richard Levitte [Mon, 28 Feb 2000 12:11:39 +0000 (12:11 +0000)]
Tagging has been done, time to switch to 0.9.6-dev.

19 years agoTime for a release
Richard Levitte [Mon, 28 Feb 2000 11:59:02 +0000 (11:59 +0000)]
Time for a release

19 years agoA few more tests were reported.
Richard Levitte [Mon, 28 Feb 2000 11:32:42 +0000 (11:32 +0000)]
A few more tests were reported.

19 years agoTypo corrected.
Richard Levitte [Mon, 28 Feb 2000 11:30:31 +0000 (11:30 +0000)]
Typo corrected.