aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Don't access non-existing element buf[256], use buf[255] instead.Bodo Möller2000-12-201-1/+1
| | | | Submitted by: draslar <draslar@elray.ch>
* Split a CHANGES entry so that one of the halves matches theBodo Möller2000-12-201-3/+3
| | | | corresponding new entry in the OpenSSL_0_9_6-stable branch.
* Fixes to OCSP print code.Dr. Stephen Henson2000-12-205-19/+28
| | | | | | | | | | | | | | Don't try to print request certificates if signature is not present. Remove unnecessary test for certificates being NULL. Fix typos in printed output. Tidy up output. Fix for typo in OCSP_SERVICELOC ASN1 template. Also give a bit more info in CHANGES about the ASN1 revision.
* fix indentationBodo Möller2000-12-191-1/+1
|
* Don't hold CRYPTO_LOCK_RSA during time-consuming operations.Bodo Möller2000-12-192-61/+70
|
* Add a comment (intended change)Bodo Möller2000-12-181-1/+1
|
* Import s2_pkt.c wbuf fixes from OpenSSL_0_9_6-stable branch.Bodo Möller2000-12-184-8/+36
|
* Comment correction.Bodo Möller2000-12-181-2/+4
|
* Obtain lock CRYPTO_LOCK_RSA before creating BN_MONT_CTXBodo Möller2000-12-182-12/+79
| | | | | | structures and setting rsa->_method_mod_{n,p,q}. Submitted by: "Reddie, Steven" <Steven.Reddie@ca.com>
* undo previous change: '-prexit' is already available in current versions of ↵Bodo Möller2000-12-181-1/+0
| | | | s_client
* Redo OCSP response printing. Remove duplicate orDr. Stephen Henson2000-12-179-942/+178
| | | | obsolete code. Delete some redundant files.
* When mentioning features that don't exist in current releases ofBodo Möller2000-12-171-1/+2
| | | | | | OpenSSL (such as the new undocumented '-prexit' option to s_client), the FAQ should point out that they don't: The FAQ is not just part of the release, it's current version is also published on the web.
* Simplify preprocessor statements.Bodo Möller2000-12-171-6/+4
|
* Add OCSP service locator extension.Dr. Stephen Henson2000-12-163-6/+38
|
* Do not poll DEVRANDOM if weäre building without an file pointer API.Richard Levitte2000-12-161-0/+6
| | | | Spotted by "David Schwartz" <davids@webmaster.com>.
* Make sure each FAQ item has an index entry.Richard Levitte2000-12-161-0/+1
|
* Add support for the noCheck OCSP extension. This isDr. Stephen Henson2000-12-165-4/+28
| | | | just a NULL and appears in a certificate.
* Make mkdef.pl parse some ASN1 IMPLEMENT macros.Dr. Stephen Henson2000-12-162-3/+22
| | | | Initial support for variables in DEF files.
* Add a couple of FAQs.Dr. Stephen Henson2000-12-161-0/+32
|
* "Andrew W. Gray" <agray@iconsinc.com> says /GD is no longer a validUlf Möller2000-12-151-1/+1
| | | | compiler switch.
* If CONF_get_string returns NULL and we want to tolerate thisBodo Möller2000-12-154-20/+112
| | | | (e.g., use a default), we have to call ERR_clear_error().
* Locking issues.Bodo Möller2000-12-158-19/+315
|
* Implement some standard OCSP extensions in the v3 code. TheseDr. Stephen Henson2000-12-156-66/+131
| | | | are all raw print only extensions at present.
* The C version of bn_sub_part_words is needed not onlyBodo Möller2000-12-151-1/+1
| | | | in NO_ASM configurations
* Very few in the "README" is up-to-dateBodo Möller2000-12-151-0/+4
|
* Add OCSP nonce extension to supported extensions.Dr. Stephen Henson2000-12-145-2/+140
| | | | | | This is a little unusual because it can contain no structure i.e. the extension OCTET STRING content octets do not contain a DER encoded structure.
* Make a note of the new engine.Geoff Thorpe2000-12-141-0/+3
|
* This is an engine contributed by Broadcom - it is meant to support theGeoff Thorpe2000-12-147-2/+837
| | | | | | | | | | BCM5805 and BCM5820 units. So far I've merely taken a skim over the code and changed a few things from their original contributed source (de-shadowing variables, removing variables from the header, and re-constifying some functions to remove warnings). If this gives compilation problems on any system, please let me know. We will hopefully know for sure whether this actually functions on a system with the relevant hardware in a day or two. :-)
* New function X509V3_extensions_print() this removes extension duplicationDr. Stephen Henson2000-12-1411-136/+271
| | | | | | | | | from the print routines. Reorganisation of OCSP code: initial print routines in ocsp_prn.c. Doesn't work fully because OCSP extensions aren't reimplemented yet. Implement some ASN1 functions needed to compile OCSP code.
* typoBodo Möller2000-12-141-1/+1
|
* The BN_mul bug test apparently is no longer neededBodo Möller2000-12-141-37/+0
|
* First step towards SSL_peek fix.Bodo Möller2000-12-148-55/+206
|
* Update.Bodo Möller2000-12-141-2/+23
|
* New function X509_signature_print() to remove some duplicateDr. Stephen Henson2000-12-145-48/+31
| | | | code from certificate, CRL and request printing routines.
* Change the PKCS7 structure to use SEQUENCE OF for theDr. Stephen Henson2000-12-134-2/+32
| | | | | | | | | authenticated attributes: this is used to retain the original encoding and not break signatures. Support for a SET OF which reorders the STACK when encoding a structure. This will be used with the PKCS7 code.
* c&p error spotted by Martin ForssenUlf Möller2000-12-131-2/+2
|
* Replace the old style OCSP ASN1 module.Dr. Stephen Henson2000-12-1310-1024/+173
|
* Constification of the data of a hash table. This means the callbackRichard Levitte2000-12-1313-87/+92
| | | | | | | functions need to be constified, and therefore meant a number of easy changes a little everywhere. Now, if someone could explain to me why OBJ_dup() cheats...
* Problem: bn_mul_normal() misbehaves if the size of b is 0.Richard Levitte2000-12-131-1/+7
| | | | Solution: multiply a with 0, putting the result in r, and return.
* In bn_mul_recursive(), make sure the comba routines are only calledRichard Levitte2000-12-131-4/+7
| | | | | when both a and b are of the exact right size. This may change to something better later.
* When using -pedantic, it's a good thing to define PEDANTIC as well.Richard Levitte2000-12-131-2/+3
| | | | Also, define a second debugging configuration without assembler.
* Stop extension creation code core dumping.Dr. Stephen Henson2000-12-131-0/+1
| | | | | | This was caused by no initialising the buffer to NULL when using the auto allocating version if i2d.
* Rewrite the extension code to use an ASN1_ITEM structureDr. Stephen Henson2000-12-1319-119/+99
| | | | | | | | for its ASN1 operations as well as the old style function pointers (i2d, d2i, new, free). Change standard extensions to support this. Fix a warning in BN_mul(), bn_mul.c about uninitialised 'j'.
* Add description of SSL_[CTX_]_check_private_key().Lutz Jänicke2000-12-121-1/+12
|
* SSL_new() may potentially add a certfificate. Therefore, wenRichard Levitte2000-12-121-0/+4
| | | | | | duplicating the certificate that is in the original SSL, remove the one that SSL_new() provided, if any. Spotted by: Mike Zeoli <zeoli@roguewave.com>
* Change/add commentsBodo Möller2000-12-111-1/+4
|
* Stop on bntest error.Ulf Möller2000-12-101-1/+1
|
* *** empty log message ***Ulf Möller2000-12-101-4/+12
|
* Make TYPE_RSA the default type instead of just setting it when -new isRichard Levitte2000-12-091-2/+1
| | | | | given. That also allows the arguments to come in any order (-new last, for example).
* Use continuation lines in test/bctest as far as it is possibleBodo Möller2000-12-091-2/+16
| | | | | to dermine what the expression should look like. Apparently CVS does not like lines longer than about 2^10 characters.
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-19 23:45:17 +0000