aboutsummaryrefslogtreecommitdiffstats
path: root/ssl
Commit message (Collapse)AuthorAgeFilesLines
* From 0.9.8-stable:Richard Levitte2005-06-041-1/+1
| | | | handshake_write_seq is an unsigned short, so treat it like one
* clear error queue on success and return NULL if no cert could be readNils Larsch2005-06-011-3/+13
| | | | PR: 1088
* Synchronise more with the Unix build.Richard Levitte2005-05-312-1/+3
|
* pqueue and dtls uses 64-bit values. Unfortunately, OpenSSL doesn'tRichard Levitte2005-05-306-75/+169
| | | | | | | have a uniform representation for those over all architectures, so a little bit of hackery is needed. Contributed by nagendra modadugu <nagendra@cs.stanford.edu>
* We have some source with \r\n as line ends. DEC C informs about that,Richard Levitte2005-05-291-1/+1
| | | | and I really can't be bothered...
* When _XOPEN_SOURCE is defined, make sure it's defined to 500. Required inRichard Levitte2005-05-212-2/+2
| | | | | | http://www.opengroup.org/onlinepubs/007908799/xsh/compilation.html. Notified by David Wolfe <dwolfe5272@yahoo.com>
* Further BUILDENV refinement, further fool-proofing of Makefiles andAndy Polyakov2005-05-161-3/+5
| | | | | [most importantly] put back dependencies accidentaly eliminated in check-in #13342.
* ecc api cleanup; summary:Nils Larsch2005-05-163-89/+105
| | | | | | | | | | - hide the EC_KEY structure definition in ec_lcl.c + add some functions to use/access the EC_KEY fields - change the way how method specific data (ecdsa/ecdh) is attached to a EC_KEY - add ECDSA_sign_ex and ECDSA_do_sign_ex functions with additional parameters for pre-computed values - rebuild libeay.num from 0.9.7
* Fool-proofing MakefilesAndy Polyakov2005-05-151-4/+1
|
* Fix from stable branch.Dr. Stephen Henson2005-05-121-1/+1
|
* fix msg_callback() arguments for SSL 2.0 compatible client helloBodo Möller2005-05-121-1/+1
| | | | (previous revision got this wrong)
* Don't use the SSL 2.0 Client Hello format if SSL 2.0 is disabledBodo Möller2005-05-117-64/+174
| | | | with the SSL_OP_NO_SSLv2 option.
* use 'p' as conversion specifier for printf to avoid truncation ofNils Larsch2005-05-101-2/+2
| | | | | | | pointers on 64 bit platforms. Patch supplied by Daniel Gryniewicz via Mike Frysinger <vapier@gentoo.org>. PR: 1064
* give EC_GROUP_new_by_nid a more meanigful name:Nils Larsch2005-05-102-3/+3
| | | | EC_GROUP_new_by_nid -> EC_GROUP_new_by_curve_name
* Update util/ck_errf.pl script, and have it run automaticallyBodo Möller2005-05-091-1/+1
| | | | | | | | during "make errors" and thus during "make update". Fix lots of bugs that util/ck_errf.pl can detect automatically. Various others of these are still left to fix; that's why "make update" will complain loudly when run now.
* give EC_GROUP_*_nid functions a more meaningful nameNils Larsch2005-05-081-1/+1
| | | | | EC_GROUP_get_nid -> EC_GROUP_get_curve_name EC_GROUP_set_nid -> EC_GROUP_set_curve_name
* backport fix from the stable branchNils Larsch2005-05-032-0/+24
|
* check return value of RAND_pseudo_bytes; backport from the stable branchNils Larsch2005-04-296-11/+24
|
* Lots of Win32 fixes for DTLS.Dr. Stephen Henson2005-04-276-48/+48
| | | | | | | | 1. "unsigned long long" isn't portable changed: to BN_ULLONG. 2. The LL prefix isn't allowed in VC++ but it isn't needed where it is used. 2. Avoid lots of compiler warnings about signed/unsigned mismatches. 3. Include new library directory pqueue in mk1mf build system. 4. Update symbols.
* Fix various incorrect error function codes.Bodo Möller2005-04-267-10/+11
| | | | ("perl util/ck_errf.pl */*.c */*/*.c" still reports many more.)
* remove some functions from exported headersBodo Möller2005-04-263-57/+27
|
* make updateBodo Möller2005-04-261-299/+471
|
* fix SSLerr stuff for DTLS1 code;Bodo Möller2005-04-2610-159/+221
| | | | | move some functions from exported header <openssl/dtl1.h> into "ssl_locl.h"; fix silly indentation (a TAB is *not* always 4 spaces)
* Fixes for signed/unsigned warnings and shadows.Dr. Stephen Henson2005-04-262-9/+9
|
* Add DTLS support.Ben Laurie2005-04-2625-90/+6409
|
* change prototype of the ecdh KDF: make input parameter const and the outlen ↵Nils Larsch2005-04-232-4/+8
| | | | argument more flexible
* Make kerberos ciphersuite code compile again.Dr. Stephen Henson2005-04-203-10/+11
| | | | Avoid more shadow warnings.
* More cover-ups, removing OPENSSL_GLOBAL/EXTERNS. We can remove more...Andy Polyakov2005-04-132-2/+2
|
* Rebuild error codes.Dr. Stephen Henson2005-04-121-383/+387
|
* Add emacs cache files to .cvsignore.Richard Levitte2005-04-111-0/+2
|
* Make kerberos ciphersuite code work with newer header filesDr. Stephen Henson2005-04-093-8/+20
|
* Added restrictions on the use of proxy certificates, as they may poseRichard Levitte2005-04-091-1/+16
| | | | a security threat on unexpecting applications. Document and test.
* add support for DER encoded private keys to SSL_CTX_use_PrivateKey_file()Nils Larsch2005-04-081-0/+10
| | | | | | | | and SSL_use_PrivateKey_file() PR: 1035 Submitted by: Walter Goulet Reviewed by: Nils Larsch
* get rid of very buggy and very imcomplete DH cert supportNils Larsch2005-04-072-93/+19
| | | | Reviewed by: Bodo Moeller
* really clear the error queue hereNils Larsch2005-04-011-1/+1
| | | | PR: 860
* use SSL3_VERSION_MAJOR instead of SSL3_VERSION etc.Nils Larsch2005-04-011-3/+3
| | | | PR: 658
* Give everything prototypes (well, everything that's actually used).Ben Laurie2005-03-3110-48/+52
|
* Blow away Makefile.ssl.Ben Laurie2005-03-301-4/+3
|
* Constification.Ben Laurie2005-03-3012-120/+130
|
* Ensure (SSL_RANDOM_BYTES - 4) of pseudo random data is used for server andDr. Stephen Henson2005-03-222-2/+2
| | | | client random values.
* some const fixesNils Larsch2005-03-202-5/+5
|
* Apparently, at least with my VMS C environment, defining _XOPEN_SOURCERichard Levitte2005-01-191-3/+4
| | | | | | gets _POSIX_C_SOURC and _ANSI_C_SOURCE defined, which stops u_int from being defined, and that breaks havock into the rest of the standard headers... *sigh*
* Small thing. It seems like we have to defined _XOPEN_SOURCE to getRichard Levitte2005-01-181-0/+2
| | | | isascii() on DEC/Compaq/HP C for VMS.
* Changes concering RFC 3820 (proxy certificates) integration:Richard Levitte2005-01-171-21/+468
| | | | | | | | | | | | | | | | | - Enforce that there should be no policy settings when the language is one of id-ppl-independent or id-ppl-inheritAll. - Add functionality to ssltest.c so that it can process proxy rights and check that they are set correctly. Rights consist of ASCII letters, and the condition is a boolean expression that includes letters, parenthesis, &, | and ^. - Change the proxy certificate configurations so they get proxy rights that are understood by ssltest.c. - Add a script that tests proxy certificates with SSL operations. Other changes: - Change the copyright end year in mkerr.pl. - make update.
* Small typo, `mask' got the same value ORed to it twice instead ofRichard Levitte2005-01-121-1/+1
| | | | | | `mask' and `emask' getting that operation done once each. Patch supplied by Nils Larsch <nils.larsch@cybertrust.com>
* Don't use $(EXHEADER) directly in for loops, as most shells will breakRichard Levitte2004-11-021-1/+1
| | | | | | if $(EXHEADER) is empty. Notified by many, solution suggested by Carson Gaspar <carson@taltos.org>
* Fix race condition when SSL ciphers are initialized.Dr. Stephen Henson2004-10-251-1/+1
|
* New X509_VERIFY_PARAM structure and associated functionality.Dr. Stephen Henson2004-09-063-18/+47
| | | | | | | | | | This tidies up verify parameters and adds support for integrated policy checking. Add support for policy related command line options. Currently only in smime application. WARNING: experimental code subject to change.
* make updateRichard Levitte2004-07-101-20/+20
|
* Use the new directory reading functions.Richard Levitte2004-07-101-109/+18
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-10 08:07:59 +0000