Mon, 14 Jun 2004 20:02:55 +0000 2004 -- Technorama * ossl_cipher.c: add .key_len= * ossl_cipher.c: fix check for EVP_CIPHER_CTX_set_padding Wed, 25 Feb 2004 05:38:36 +0000 -- Technorama * fix compiling on MacOS/X * fix compiling with older openssl versions * fix compiling with older gcc versions * fix compiling with ruby versions * ossl_cipher.c: new method .pkcs5_v15_password Thu, 14 Aug 2003 19:04:23 +0200 -- Michal Rokos * Released 1.0.1 Thu, 14 Aug 2003 18:54:17 +0200 -- Michal Rokos * Backported Ruby's OpenSSL ext sources Wed, 25 Jul 2003 23:51:45 +0200 -- NAKAMURA, Hiroshi * examples/crlstore.rb: Run even if http-access2 is not installed. * examples/certstore.rb: CSR support. * examples/cert_store_view.rb: Remove trustCA option. Follow OpenSSL varidating style. Wed, 23 Jul 2003 20:15:45 +0200 -- Michal Rokos * extconf.rb: Cut check_openssl() -- It's not needed... Wed, 23 Jul 2003 19:20:52 +0200 -- Michal Rokos * extconf.rb: Make output more pretty (just to keep official Ruby version in sync...) Wed, 23 Jul 2003 19:20:09 +0200 -- Michal Rokos * OpenSSL was imported to Ruby src tree (by Gotou) Tue, 22 Jul 2003 11:05:00 +0200 -- Michal Rokos * ossl_pkey_rsa.c: Remove not-used code * ossl_x509name.c: ditto. Tue, 22 Jul 2003 17:32:54 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: get rid of unused function: ossl_pkcs7_data_verify(), ossl_pkcs7_data_decode() * ossl_version.h: version is 1.0.0 Tue, 22 Jul 2003 08:59:21 +0200 -- Michal Rokos * config.c: Copy filename to local buf, report correct error when file not found Tue, 22 Jul 2003 08:33:41 +0200 -- Michal Rokos * Indenting Tue, 22 Jul 2003 06:08:05 +0900 -- GOTOU Yuuzou * lib/**/*.rb: adjust indent. * lib/openssl/ssl.rb: new methods addr, peeraddr, closed?. Tue, 22 Jul 2003 04:37:58 +0900 -- GOTOU Yuuzou * further OpenSSL 0.9.6 compatibility Tue, 22 Jul 2003 02:56:54 +0900 -- GOTOU Yuuzou * examples/gen.sh: print OPENSSL_VERSION * exapmles/ossl_x509store.rb: unuse Store#set_flags is <= 0x00907000 * ossl_x509store.c: fix version spec. Mon, 21 Jul 2003 23:14:27 +0900 -- GOTOU Yuuzou * examples/ossl_ocsp.rb: typo fixed. Mon, 21 Jul 2003 13:23:30 +0200 -- Michal Rokos * further OpenSSL 0.9.6 compatibility Mon, 21 Jul 2003 12:33:14 +0200 -- Michal Rokos * Added OpenSSL 0.9.6 compatibility Mon, 21 Jul 2003 08:53:55 +0200 -- Michal Rokos * digest.c: Redo compatibility with original Ruby's digests * pkey.c: Redo #to_der to be more straight going * examples/*.rb: Fix parenthenses, File.open().read() -> File.read(), make some samples to work again Tue, 15 Jul 2003 05:27:57 +0900 -- GOTOU Yuuzou * extconf.rb: should make depend under $srcdir. * ossl.h: ossl_raise is a NORETURN. * ossl_ocsp.h: must use GetOCSPBasicRes (osssl_ocspbres_add_nonce). * ruby_missing.h: should check HAVE_RB_OBJ_INIT_COPY. (all of above changes were suggested by nobu. thanks.) * ossl_x509store.c: refine ossl_x509stctx_free. Mon, 14 Jul 2003 18:56:06 +0900 -- GOTOU Yuuzou * ossl_x509store.c: add second argument of X509::Store#verify to pass the untrusted certificate chain. Sat, 12 Jul 2003 01:52:45 +0900 -- GOTOU Yuuzou * OSSL 0.2.0-pre3 released Fri, 11 Jul 2003 03:44:28 +0900 -- GOTOU Yuuzou * examples/gen.sh: follows the changs of gen_*.rb. Thu, 11 Jul 2003 02:33:59 +0900 -- NAKAMURA, Hiroshi * ossl_x509req.c: Add Request#signature_algorithm. * ossl_x509crl.c: eX509CertError -> eX509CRLError. Thu, 11 Jul 2003 02:30:55 +0900 -- NAKAMURA, Hiroshi * examples/gen_csr.rb: Add 'key' option to specify keypair file. We need this feature for creating cross certificate. * examples/c_rehash.rb, certstore.rb, cert_store_view.rb: Add Request support. * examples/cert2text.rb: Instead of `openssl x509|req|crl -text`. Thu, 11 Jul 2003 02:23:04 +0900 -- NAKAMURA, Hiroshi * examples/ca/init_sub_ca.rb: Add a command line option for CN. * examples/ca/gen_crl.rb: CRL issuer was wrong! Oops. * examples/ca/gen_cert.rb: Changed keyUsage bits of each cert type. Thu, 10 Jul 2003 12:32:56 +0200 -- Michal Rokos * ossl_ossl.c: Prototype for sk2ary * ossl_ocsp.c: Typo in ossl_ocspbres_add_status (sk_X509_pop_free -> sk_X509_EXTENSION_pop_free) * ossl_pkcs7.c: Added missed handling of flags in ossl_pkcs7_s_encrypt * ossl_x509cert.c: try to use obj2bio and bio2obj funcs Thu, 10 Jul 2003 04:56:38 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: PKCS7#encrypt(): use EVP_rc2_40_cbc() by default. Wed, 09 Jul 2003 21:09:10 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: PKCS7#write_smime(): should add PKCS7_DETACHED to flags if the PKCS7 is detached and @data is given. Wed, 09 Jul 2003 12:41:14 +0200 -- Michal Rokos * extconf.rb: Start checking for OpenSSL' missing functions... Wed, 09 Jul 2003 12:38:38 +0200 -- Michal Rokos * *.c: When no message is passed, call ossl_raise with NULL Sun, 09 Jul 2003 01:50:45 +0900 -- NAKAMURA, Hiroshi * examples/cert_store_view.rb: Support trust anchor. Sun, 09 Jul 2003 01:20:56 +0900 -- NAKAMURA, Hiroshi * examples/ca/gen_cert.rb: Add some options. --noakid is an option worthy to mention. For cross certification, with OpenSSL, akid seems to block to find a cross-cert path. --noakid is for removing authorityKeyIdentifier extension. RFC2510 defines this field as a 'MUST' field so use this option carefully. * examples/ca/init_sub_ca.rb: Added. * examples/ca/init_ca.rb: Add an option to specify CN. Sun, 09 Jul 2003 01:05:55 +0900 -- NAKAMURA, Hiroshi * ossl_x509cert.c, ossl_x509crl.c: Add (Certificate|CRL)#signature_algorithm. Sun, 06 Jul 2003 14:15:36 +0900 -- GOTOU Yuuzou * ossl_ocsp.c: should not assign NULL to revtime (revtime is a VALUE). Sun, 06 Jul 2003 13:20:04 +0900 -- GOTOU Yuuzou * ossl_x509store.c: - ossl_x509store_add_cert(): should not duplicate added cert. - ossl_x509store_add_crl(): should not duplicate added crl. Fri, 05 Jul 2003 12:45:24 +0900 -- NAKAMURA, Hiroshi * examples/gen_csr.rb: DN parsing bug fix. * examples/ca/gen_cert.rb: - Check key length and DN of PKCS#10. - Remove nsCertType extension. Fri, 04 Jul 2003 23:56:09 +0900 -- NAKAMURA, Hiroshi * examples/c_rehash.rb: Run as a manager of cert store directory. * examples/gen_ca_cert.rb: Pass DN as a command line parameter. Fri, 04 Jul 2003 23:51:52 +0900 -- NAKAMURA, Hiroshi * examples/cert_store.rb: Renamed to cert_store_view.rb. * examples/cert_store_view.rb: Added. * examples/certstore.rb: Certification store implementation. * examples/crlstore.rb: CRL store implementation. * examples/gen_cert.rb: Typo fixed. Fri, 04 Jul 2003 23:43:14 +0900 -- NAKAMURA, Hiroshi * examples/ca/: Added gen_cert.rb and gen_crl.rb. Fri, 04 Jul 2003 04:00:13 +0900 -- GOTOU Yuuzou * ossl_x509name.c: use CLASS_OF() instead of TYPE(). * test/tc_x509name.rb: add test_eql? Thu, 03 Jul 2003 20:04:01 +0900 -- GOTOU Yuuzou * examples/gen_cert.rb: added --type option. * examples/ossl_ocsp.rb: check the signature in the response. * examples/ossl_ca_cert.rb: del pathlen in basicConstraints. Thu, 03 Jul 2003 12:04:33 +0900 -- GOTOU Yuuzou * ossl_ocsp.c: OCSP::Respopnse#basic returns nil if no OCSP_BASICRESP given. * ossl_x509name.c: X509::Name#eql?: should check type of other. * ossl_x509crl.[ch]: add ossl_x509crl_new(); * ossl_x509store.c: - add X509::StoreContext#current_crl - del X509::Store#add_crl_file (use #add_file instead.) * lib/net/https.rb: fix attrs. * examples/ossl_x509store.rb: revised. Thu, 03 Jul 2003 02:52:47 +0900 -- GOTOU Yuuzou * ossl_ssl.c: added ossl_sslctx_free() as a workaround. Thu, 03 Jul 2003 01:37:28 +0900 -- GOTOU Yuuzou * ossl_x509name.c: add X509::Name::eql? (ossl_x509name_eql). Wed, 03 Jul 2003 00:42:15 +0900 -- NAKAMURA, Hiroshi * examples/c_rehash.rb: Illegal symlink. Wed, 02 Jul 2003 06:04:45 +0900 -- GOTOU Yuuzou * ossl_x509ext.c: add X509::Extension#to_der (ossl_x509ext_to_der). Wed, 02 Jul 2003 02:34:21 +0900 -- GOTOU Yuuzou * lib/net/https.rb: revised. (tested on Ruby-1.8.0-previre3) * lib/net/protocols.rb: ditto Tue, 02 Jul 2003 00:37:58 +0900 -- NAKAMURA, Hiroshi * examples/c_rehash.rb: c_rehash written in pure ruby. Tue, 01 Jul 2003 17:28:29 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: PKCS7#singner renamed to PKCS7#signers. Tue, 01 Jul 2003 17:11:40 +0900 -- GOTOU Yuuzou * ossl_x509ext.c: X509::Extension#oid,value,critical? is builtin. * lib/openssl/x509.rb: X509::Extension#to_a is implented by Ruby. * examples/gen_csr.rb: 2nd argument is CSR filename. * examples/gen_cert.rb: --csrout and --keyout options are added. * README: revised. Tue, 01 Jul 2003 13:08:11 +0900 -- NAKAMURA, Hiroshi * ossl_x509crl.c: Add OpenSSL::X509::CRL#to_der (ossl_x509crl_to_der). Mon, 30 Jun 2003 04:32:40 +0900 -- GOTOU Yuuzou * ossl_ssl.c: @ca_cert is renamed to @client_ca; and an Array can be specified to this. Mon, 30 Jun 2003 01:24:27 +0900 -- GOTOU Yuuzou * examples/ssl/wget.rb: follows current SSLSocket. * examples/ssl/example.rb: callback should print isser and subject instead of PEM. Sun, 29 Jun 2003 23:07:25 +0900 -- GOTOU Yuuzou * ossl_ssl.c: SSL_CTX_set_default_verify_paths is no longer called. Sun, 29 Jun 2003 20:14:00 +0900 -- NAKAMURA, Hiroshi * examples/ca/gen_clientee_from_csr.rb: Typo fixed. * examples/ca/gen_clientee_from_scratch.rb: Ditto. Sun, 29 Jun 2003 19:14:44 +0900 -- NAKAMURA, Hiroshi * examples/cert_store.rb: Show BN in hex format. Show valid time in 'from ... to ...' format. Sun, 29 Jun 2003 19:07:01 +0900 -- NAKAMURA, Hiroshi * exapmles/ca: CA maintenance scripts examples. * examples/ca/ca_config.rb: configuration. * examples/ca/init_ca.rb: initialize CA. requires some directory scheme. see ca_config.rb for more detail (no document). * examples/ca/gen_clientee_from_csr.rb: generate client EE from CSR. you can generate CSR with examples/gen_csr.rb. * examples/ca/gen_clientee_from_scratch.rb: generate client EE from scratch. generates keypair for a client, too. Sun, 29 Jun 2003 18:56:08 +0900 -- NAKAMURA, Hiroshi * examples/gen_csr.rb: new sample to generate CSR. Sun, 29 Jun 2003 17:31:15 +0900 -- GOTOU Yuuzou * ossl_ocsp.[ch]: OpenSSL::OCSP. * expmples/ossl_ocsp.rb: new sample. Sun, 29 Jun 2003 12:56:03 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: the 3rd argument of rb_protect should be cleared. * ossl.c: ditto. Sun, 29 Jun 2003 04:02:01 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: SMIME_read_PKCS7 returns content only if the envelope is detached. Sun, 29 Jun 2003 03:24:13 +0900 -- GOTOU Yuuzou * examples/ossl_pkcs7.rb: new sample Sun, 29 Jun 2003 02:57:57 +0900 -- GOTOU Yuuzou * ossl_x509ext.c: typo fixed. Sat, 28 Jun 2003 01:04:40 +0900 -- GOTOU Yuuzou * ossl_x509ext.[ch]: rename ossl_x509ext_get_X509_EXTENSION to DupX509ExtPtr, and use where needed. * ossl_pkcs7.c: use sk_X509_pop_free() instead of sk_X509_free(). * ossl.c: typo fixed. Fri, 27 Jun 2003 16:22:35 +0900 -- GOTOU Yuuzou * avoid warning of mismatched prototypes. Thu, 26 Jun 2003 20:35:16 +0900 -- NAKAMURA, Hiroshi * ossl_pkcs7.c: Typo cleanup. Thu, 26 Jun 2003 19:58:49 +0900 -- GOTOU Yuuzou * ossl_pkcs7.c: PKCS7#verify sets the content to @data. Thu, 26 Jun 2003 06:20:58 +0900 -- GOTOU Yuuzou * examples/ossl_pkcs7.rb: follows new APIs. * examples/pkcs7.rb: ditto. * examples/cert_store.rb: cert-store browsing GUI (commited by NaHi) Thu, 26 Jun 2003 06:16:21 +0900 -- GOTOU Yuuzou * cipher.h: replace ossl_cipher_get_EVP_CIPHER into GetCipherPtr * cipher.c: ditto. * ossl_pkey_rsa.c: use GetCipherPtr. * ossl_pkey_dsa.c: use GetCipherPtr. * ossl_ssl.c: SSLContext#initialize allows a Symbol as SSL type. * ossl_x509store.c: set verify callback on ex_data. * ossl_pkcs7.c: added some(many) features. - PKCS7::read_smime as a wrapper of SMIME_write_PKCS7 - PKCS7::write_smime as a wrapper of SMIME_write_PKCS7 - PKCS7::sign as a wrapper of PKCS7_sign - PKCS7::encrypt as a wrapper of PKCS7_ecnrypt - PKCS7::PKCS7#initialized disallow PKCS#7 type as argument. - PKCS7::PKCS7#type= to set PKCS#7 type. (NID_pkcs7_* can be specified by Symbol.) - PKCS7::PKCS7#type to get PKCS#7 type. - PKCS7::PKCS7#detached= to set detached. - PKCS7::PKCS7#detached? to query if the envelop is detached. - PKCS7::PKCS7#verify is as a wrapper of PKCS7_verify - PKCS7::PKCS7#decrypt is as a wrapper of PKCS7_decypt - PKCS7::PKCS7#data= is an alias of PKCS7::PKCS7#add_data - PKCS7::PKCS7#verify_data is temporarily disabled. - PKCS7::PKCS7#decode_data is temporarily disabled. - PKCS7_* constants are introduced. Thu, 26 Jun 2003 05:48:07 +0900 -- GOTOU Yuuzou * openssl_missing.c: addded X509_STORE_{set,get}_ex_data(). * extconf.rb: checks X509_STORE_set_ex_data(). * ossl.h: added data conversion utilities. * ossl.c: ditto. Thu, 19 Jun 2003 20:13:29 +0200 -- Michal Rokos * example/gen_*.rb: Store plain keys more secure (with 0600 (rw- --- ---)) Thu, 19 Jun 2003 20:58:01 +0900 -- GOTOU Yuuzou * example/gen_*.rb: passwd_cb improved. Thu, 19 Jun 2003 20:16:11 +0900 -- GOTOU Yuuzou * ossl.c: should protect allback Proc not to jump over the library's stack ftame. Thu, 19 Jun 2003 12:00:00 +0200 -- Michal Rokos * examples/gen_crl.rb: Allow to publish empty CRL Wed, 18 Jun 2003 19:15:41 +0900 -- GOTOU Yuuzou * ossl.c: added verify callback functions. * ossl_ssl.c: re-implement verify callback. * ossl_x509.c: added X509 constants. * ossl_x509store.c: - added X509::Store::purpose=, X509::Store::trusted=, - added X509::StoreContext#verify. - re-implement verify callback. Tue, 17 Jun 2003 16:54:14 +0200 -- Michal Rokos * ossl_x509store.c: Allow to call #verify with block (Has bigger priority than assigned callback) Mon, 16 Jun 2003 15:10:22 +0200 -- Michal Rokos * removed *.pem from examples Sat, 14 Jun 2003 17:12:52 +0900 -- GOTOU Yuuzou * ossl_x509store.c: added DupX509StorePtr(). * ossl_ssl.c: added SSLContext#store_ctx. Thanks NaHi. Sat, 14 Jun 2003 13:31:10 +0900 -- GOTOU Yuuzou * ossl_ssl.c: disable password callback. Sat, 14 Jun 2003 12:14:26 +0900 -- GOTOU Yuuzou * ossl_x509cert.c: X509::Certificate#inspect. Sat, 14 Jun 2003 02:11:13 +0900 -- GOTOU Yuuzou * ossl_ssl.c: support password callback. * ossl_x509store.c: - split X509StoreContext from X509Store. - new module X509::V_ERR and X509::V_FLAG * examples/ossl_x509store.c: improved. Fri, 13 Jun 2003 21:13:42 +0200 -- Michal Rokos * examples/gen_*.rb: Cleaned a bit a adapt to a new callbacks Fri, 13 Jun 2003 21:12:47 +0200 -- Michal Rokos * ossl.c: Added OSSL's default PEM callback. * ossl_pkey_*.c: Use this callback Tue, 10 Jun 2003 19:59:01 +0200 -- Michal Rokos * examples/gen_crl.rb: added example (based on NaHi's) Tue, 10 Jun 2003 19:24:10 +0200 -- Michal Rokos * ossl_x509store.c: Unwrap X509::Store Tue, 10 Jun 2003 18:33:11 +0200 -- Michal Rokos * MANIFEST: added as blank for a start (Requested by Hynek Rostinsky ) Tue, 10 Jun 2003 14:11:14 +0200 -- Michal Rokos * ossl_pkey_dh.c: Added #params_ok?, #generate_key!, and #compute_key (Contributed by Dave Symonds ) Sun, 08 Jun 2003 21:15:36 +0900 -- GOTOU Yuuzou * ossl_x509ext.c: fix to_a - should not raise exceptions even if unknown oid appeared in extension. Sun, 08 Jun 2003 10:26:18 +0900 -- GOTOU Yuuzou * ossl_ssl.c: new method SSL::Context#options added by NaHi. * lib/openssl/buffering.rb: avoid warnings for uninitialized ivars. Fri, 06 Jun 2003 08:13:09 +0200 -- Michal Rokos * ossl_pkey_dh.c: fix #initialize - pointed out by Dave Symonds Tue, 03 Jun 2003 15:46:01 +0200 -- Michal Rokos * examples/ssl/svr.rb: CTX fixes by Stef Telford (Thanks!) Mon, 02 Jun 2003 21:41:38 +0200 -- Michal Rokos * examples/gen_cert.rb: fixes by NaHi Mon, 02 Jun 2003 09:40:13 +0200 -- Michal Rokos * ossl.c: remove strptime (caused problems on Cygwin/Linux boxes). Done by NaHi (Thanks!) Wed, 28 May 2003 13:41:35 +0200 -- Michal Rokos * Added FTPTLS to lib/net - done by Blaz Grilc Fri, 23 May 2003 15:57:46 +0200 -- Michal Rokos * OSSL 0.2.0-pre2 released Wed, 21 May 2003 21:14:28 +0200 -- Michal Rokos * fix-up copy_dup_framework for latest Ruby source Sun, 18 May 2003 19:56:20 +0200 -- Michal Rokos * OSSL 0.2.0-pre1 released Sun, 18 May 2003 16:27:39 +0200 -- Michal Rokos * ssl.c: Unwrap SSL_CTX and SSL * x509store.c: Use {get|set}_ex instead of my DB for CallBacks Wed, 23 Apr 2003 22:19:14 +0200 -- Michal Rokos * ossl_pkey.c: Is #to_der broken? Sun, 20 Apr 2003 22:26:56 +0200 -- Michal Rokos * ossl_pkcs7.c: Added #copy_object for Ruby1.8 dup© framework Sat, 19 Apr 2003 22:06:02 +0200 -- Michal Rokos * ossl_cipher.c: Unwrap ossl struct - use pure EVP_CIPHER_CTX * ossl_cipher.c: Fix #copy_object Sat, 19 Apr 2003 10:51:47 +0200 -- Michal Rokos * ossl_hmac.c: Fix subclassing... Mon, 14 Apr 2003 11:53:54 +0200 -- Michal Rokos * ossl_pkey_{rsa|dsa|dh}.c: method #params for inspection of private and public numbers Wed, 09 Apr 2003 08:06:46 +0200 -- Michal Rokos * ossl_x509{crl|req}.c: Allow to initialize with DER Wed, 09 Apr 2003 00:00:32 +0200 -- Michal Rokos * ossl_x509cert.c: Allow initializing with DER. Mon, 07 Apr 2003 23:20:57 +0200 -- Michal Rokos * ossl_pkey_{dsa|rsa}.c: Make pubkey loading work with OpenSSL 0.9.7 "BEGIN PUBLIC KEY" header. Mon, 24 Feb 2003 17:21:18 +0100 -- Michal Rokos * ossl.c: Use Time::utc for time conversion Mon, 24 Feb 2003 08:47:40 +0100 -- Michal Rokos * Released as 0.2.0-pre0 Mon, 24 Feb 2003 08:46:33 +0100 -- Michal Rokos * Brought Ruby1.6 compatibility layer (see ruby_missing.h). Currently #dup, #copy is known to be broken Fri, 21 Feb 2003 19:30:31 +0100 -- Michal Rokos * x509name.c: added new method #hash to behave as openssl [name.hash.to_s(16)] Thu, 20 Feb 2003 20:41:44 +0100 -- Michal Rokos * ossl.h: Make it compilable under Win32 Sat, 01 Feb 2003 17:51:56 +0100 -- Michal Rokos * ossl.h: respect new func rb_obj_classname() Sat, 25 Jan 2003 22:15:12 +0100 -- Michal Rokos * extconf.rb: add "dep" file to distclean target Sun, 19 Jan 2003 16:48:48 +0100 -- Michal Rokos * extconf.rb: Use /usr/include by default when checking OpenSSL version Mon, 06 Jan 2003 12:52:20 +0100 -- Michal Rokos * x509req.c: Port to Ruby1.8 object_copy framework Mon, 06 Jan 2003 12:43:56 +0100 -- Michal Rokos * x509crl.c: convert to Ruby1.8 dup framework Mon, 06 Jan 2003 12:40:36 +0100 -- Michal Rokos * extconf.rb: Fix test-link target Sun, 05 Jan 2003 17:22:04 +0100 -- Michal Rokos * extconf.rb: Add checks for Ruby >= 1.8.0 and OpenSSL >= 0.9.7 Thu, 02 Jan 2003 21:03:46 +0100 -- Michal Rokos * extconf.rb: Check for Ruby >= 1.8 Tue, 31 Dec 2002 09:45:36 +0100 -- Michal Rokos * test/tc_*.rb: Port to Test::Unit 1.6 Sun, 29 Dec 2002 22:54:54 +0100 -- Michal Rokos * *.c: Port to Ruby1.8 allocation framework * bn.c, cipher.c, digest.c, hmac.c, x509cert.c: Port to Ruby1.8 copy framework * test/tc_*.rb: Make it work with Test::Unit 1.5 Mon, 23 Dec 08:30:52 2002 -0900 -- GOTOU Yuuzou * pkey_*.c: make alias to_s to export. * ssl.c: the following methods are deprecated: SSLContext#cert_file=/cert_file, SSLContext#key_file=/key_file SSLContext#ssl_method=/ssl_method, SSLContext#setup * ssl.c: the underlying SSLContext is frozen in SSLSocket#initialize. * example/ssl/{svr.rb,cli.rb}: improved. Mon, 23 Dec 2002 05:35:41 -0900 -- GOTOU Yuuzou * ossl.c: add SSL_load_error_strings(). Tue, 17 Dec 2002 18:59:08 -0900 -- GOTOU Yuuzou * all files: Indent by 4 spaces, 1 tab has the width of 8 spaces. Mon, 9 Dec 2002 20:27:28 -0900 -- GOTOU Yuuzou * ssl.c: the return value of SSL_read/SSL_write is int (not size_t). Sun, 10 Nov 2002 23:30:56 +0100 -- Michal Rokos * bn.c: enhance BN so you can pass as parameter Ruby's numbers Sun, 10 Nov 2002 19:19:32 +0100 -- Michal Rokos * x509cert.c: Fix #serial, #serial= to support big numbers. * x509req.c: ditto. * pkcs7.c: ditto. * bn.c: implemented #to_int, #coerce to act with Ruby's numbers (so you can: eg. 10 + BN.new("200") * extconf.rb: fix it (again) to work with latest OpenSSL 0.9.7 Thu, 7 Nov 2002 14:02:35 +0900 * ossl_ssl.c: memory leak has been in ossl_sslctx_free(). Mon, 28 Oct 2002 11:19:30 +0100 -- Michal Rokos * extconf.rb: Make it work under Ruby1.7.3 Fri, 25 Oct 2002 03:37:42 +0900 -- GOTOU Yuuzou * ossl_ssl.c: ossl_ssl_verify_callback was refined. Tue, 15 Oct 2002 18:10:17 +0900 -- GOTOU Yuuzou * ossl_ssl.c: all ssl_xxx symbols were replaced as ossl_ssl_xxx. Tue, 15 Oct 2002 17:27:26 +0900 -- GOTOU Yuuzou * ossl_ssl.c: pass the verify callback Proc through the SSL extention data. Sun, 13 Oct 2002 01:46:20 +0900 -- GOTOU Yuuzou * ossl_ssl.c: fixed around verify callback invocation. * net/protocols.rb: improved for new version. * net/https.rb: ditto. Fri, 27 Sep 2002 09:40:43 +0200 -- Michal Rokos * config.c: added alias to Config#section as Config[] Fri, 06 Sep 2002 12:29:37 +0100 -- Michal Rokos * extconf.rb: Add some more targets when --*-debug and GCC Thu, 05 Sep 2002 13:07:18 +0100 -- Michal Rokos * bn.c: added #become method for Ruby 1.7.3 dup, clone interface * cipher.c: ditto. Thu, 05 Sep 2002 12:16:10 +0100 -- Michal Rokos * ossl.c: clear OpenSSL error in ossl_raise Wed, 04 Sep 2002 11:20:11 +0100 -- Michal Rokos * ossl.c: drop type checking functions, and * ossl.h: rewrite them as macros to ossl.h * x509cert.c: implement Certificate#become method to support Ruby1.7.3 dup, clone interface * BUG (in OpenSSL): Cannot do X509_dup(X509_new())!!! Wed, 07 Aug 2002 16:22:02 +0100 -- Michal Rokos * ssl.c: fixes to make it compile (Who screwed it? Me?) Wed, 07 Aug 2002 15:41:59 +0100 -- Michal Rokos * ossl.c: Drop not needed NT timeval struct * ssl.c: Check_Type => OSSL_Check_Kind fixes Mon, 29 Jul 2002 06:31:50 +0900 -- GOTOU Yuuzou * lib/openssl/buffering.rb: typo fixed (sent by Hiroshi Nakamura) * lib/openssl/openssl.rb: fixed for new implementation. * ossl_ssl.c: change the license (from BSDL to Ruby's). * ossl_ssl.c: new class SSLContext: ciphers, cert, cert_file, key, key_file, ca_cert, ca_file, timeout, verify_mode, verify_depth and verify_callback were moved from SSLSocket. * ossl_ssl.c: change the spec of arguments of SSLSocket.new. sample: ctx = SSL::SSLContext.new ssl = SSL::SSLSocket.new(ctx) ssl.io = TCPSocket.new(host, port) ... Wed, 24 Jul 2002 13:10:28 +0100 -- Michal Rokos * ossl.c: FIX that enables OSSL module compile on *BSD (sent by Akinori MUSHA) Wed, 24 Jul 2002 12:35:00 +0100 -- Michal Rokos * config.c: changed #value so: value("AAA"), means value(nil, "AAA") Tue, 23 Jul 2002 15:46:17 +0100 -- Michal Rokos bn.c: FIX potencial mem leak when using NUM2INT Tue, 23 Jul 2002 15:10:46 +0100 -- Michal Rokos x509name.c: FIX mem leak in #to_s Wed, 10 Jul 2002 17:36:28 +0100 -- Michal Rokos * x509crl.c: GetX509CRLPtr and DupX509CRLPtr macros introduced and subst for ossl_x509crl_get_X509_CRL Wed, 10 Jul 2002 17:02:00 +0100 -- Michal Rokos * Use OSSL_Warning and OSSL_Debug instead rb_warning where appropriate * x509store.c: Fix lookup CRLs during #verify when CRL is added Tue, 09 Jul 2002 17:17:43 +0100 -- Michal Rokos * Some minor cleanups (bring back RSTRING macro (instead of StringValuePtr) where tested by StringValue) Mon, 1 Jul 2002 15:36:28 +0100 -- Michal Rokos * tc_x509name.rb: NEW (TestCase) * tc_x509req.rb: NEW (TestCase) Mon, 1 Jul 2002 14:04:35 +0100 -- Michal Rokos * tc_x509revoked.rb: NEW (TestCase) Mon, 1 Jul 2002 13:34:38 +0100 -- Michal Rokos * x509crl.c: #next_update=, #set_revoked, #add_revoked fixes * tc_x509crl.rb: NEW (TestCase) Wed, 26 Jun 2002 16:14:42 +0100 -- Michal Rokos * x509name.c: added method #cmp (aka <=>) Wed, 26 Jun 2002 15:28:03 +0100 -- Michal Rokos * x509name.c: port to new Ruby interface, dropped 'self dipathing' (Only allowed param is Array or nil), fixed the reason why TC failed * x509.rb: dropped 'self dispatching' * tc_x509cert.rb: more tests enabled (X509::Name fixed) Tue, 18 Jun 2002 22:43:23 +0200 -- Michal Rokos * ossl.c: fix UTC -> local time conversion * x509cert.c: use X509_time_adj * x509crl.c: ditto. * x509revoked.c: ditto. * x509name.c: hash iterator cleanup * tc_x509cert.rb: NEW (TestCase for X509::Certificate) Fri, 14 Jun 2002 10:32:46 +0200 -- Michal Rokos * x509cert.c: minor cleanups * x509revoked.c: ditto. Thu, 13 Jun 2002 15:15:58 +0200 -- Michal Rokos * ossl.h: Dropped OSSL_Check_Type macro; update related files Thu, 13 Jun 2002 12:33:16 +0200 -- Michal Rokos * config.c: fix build for Windows Thu, 13 Jun 2002 00:05:46 +0200 -- Michal Rokos * x509crl.c: Fix check for X509_CRL_verify retval * x509store.c: Fix mem leak in add_trusted, fix check for X509_verify_cert retval Wed, 12 Jun 2002 22:58:53 +0200 -- Michal Rokos * x509name.c: drop ossl_x509name_get_X509_NAME * x509name.c: introduce GetX509NamePtr; and use it instead ossl_x509name_get_X509_NAME Wed, 12 Jun 2002 22:41:38 +0200 -- Michal Rokos * pkey.c: fix mem. bug in new_from_file Wed, 12 Jun 2002 20:45:32 +0200 -- Michal Rokos * openssl_missing.c: fixup HMAC_CTX_copy * tc_hmac.rb: NEW (TestCase for HMAC) Wed, 12 Jun 2002 20:25:16 +0200 -- Michal Rokos * digest.[ch]: rename ossl_digest_get_EVP_MD to GetDigestPtr; and use where needed Wed, 12 Jun 2002 20:12:13 +0200 -- Michal Rokos * tc_config.rb: NEW (TestCase for Config) Wed, 12 Jun 2002 19:52:20 +0200 -- Michal Rokos * config.c: ported to OpenSSL 0.9.7 interface Wed, 12 Jun 2002 19:05:21 +0200 -- Michal Rokos ALL FILES: change all rb_raise and OSSL_Raise to ossl_raise * ossl.h: drop define OSSL_Raise * cipher.c: disable to call Cipher#final without preceding Cipher#(en|de)crypt Wed, 12 Jun 2002 18:20:57 +0200 -- Michal Rokos * ossl.h: really fixed OSSL_Debug macro * ossl.c: implement part of OSSL_Debug for Windows Wed, 12 Jun 2002 14:12:36 +0200 -- Michal Rokos * tc_cipher.rb: NEW (TestCase for Cipher) * tc_digest.rb: NEW (TestCase for Digest) * digest.c: fix equal when comparing with other kind of Digest Wed, 12 Jun 2002 13:15:40 +0200 -- Michal Rokos * bn.rb: included Comparable module * bn.c: changed # of args for #rand, #pseudo_rand (some are default now) * ossl.h: fixed OSSL_Debug macro Wed, 12 Jun 2002 10:28:55 +0200 -- Michal Rokos * bn.c: fix # of args for mod_* funcs (TestCase is GoodThing(TM) :-)) Wed, 12 Jun 2002 00:45:17 +0200 -- Michal Rokos * bn.c: Fixed buf in #to_s (problem with \0 in bin repr.) * tc_bn.rb: NEW (TestCase for BN) Tue, 11 Jun 2002 16:56:40 +0200 -- Michal Rokos * hmac.c: Fixed bug in #initialize that caused wrong results Tue, 11 Jun 2002 14:10:58 +0200 -- Michal Rokos * hmac.c: Added class methods #digest, #hexdigest Tue, 11 Jun 2002 13:56:24 +0200 -- Michal Rokos * cipher.c: Added #name, #iv_len, #key_len getters Tue, 11 Jun 2002 13:39:45 +0200 -- Michal Rokos * digest.c: Added #size method (return len is in BYTEs) Tue, 11 Jun 2002 15:46:20 +0900 -- GOTOU Yuuzou * ossl.h: remove . Tue, 11 Jun 2002 02:58:24 +0200 -- Michal Rokos * pkey.c: don't segfault when signing with public key - check added Tue, 11 Jun 2002 02:42:25 +0200 -- Michal Rokos * extconf.rb: Check for unistd.h * ssl.c: include is avaible (needed for read(), write()) * ossl.c: drop RTESTs * bn.c: ditto. * pkey.c: ditto. * ossl.c: new debug interface that can be enabled/disabled from Ruby-space via OpenSSL::debug= method * ossl.c: implemented new ossl_raise (for C-space) * ossl.h: implemented new OSSL_Debug (for C-space) Mon, 10 Jun 2002 10:35:56 +0200 -- Michal Rokos * pkey.c: implemented #sign and #verify for PKey * pkey.rb: deleted (funcs implemented in C-space (pkey.c)) * pkey_dsa.c: #sign_digest and #verify_digest renamed to #syssign #sysverify * pkey_rsa.c: implemented RSA_sign, RSA_verify, but commented out until a good way of specifiing digest type will be found Sun, 9 Jun 2002 22:17:13 +0200 -- Michal Rokos * x509store.c: really port to Ruby 1.8 interface :-) * x509store.c: #protect method dropped (useless) Sat, 8 Jun 2002 14:07:27 +0200 -- Michal Rokos * cipher.c: Fix GetCipher - condition (!ciphp || !ciphp->cipher) was too tight for initialize Sat, 8 Jun 2002 13:48:37 +0200 -- Michal Rokos * x509.h: dropped ossl_x509_get_X509(obj) * x509.h: introduced GetX509CertPtr(obj), DupX509CertPtr(obj) with the same semantics as explained for *PKeyPtr * pkcs7.c: use these new funcs * ssl.c: ditto. * x509ext.c: ditto. * x509store.c: ditto. * x509ext.c: fix memory leaking in ExtFactory after GC Sat, 8 Jun 2002 11:54:13 +0200 -- Michal Rokos * pkey.h: dropped ossl_pkey_get_EVP_PKEY, ossl_pkey_get_private_EVP_PKEY * pkey.h: added GetPKeyPtr, GetPrivPKeyPtr, DupPrivPKeyPtr GetPKeyPtr(obj) - gives directly EVP_PKEY* from obj (Doesn't dup it!) GetPrivPKeyPtr(obj) - checkes if obj is is private the rest is the same as for GetPKeyPtr DupPrivPKeyPtr(obj) - like GetPrivPKeyPtr, and adds an reference to make it GCsafe * pkey.c: ossl_pkey_new(EVP_PKEY*) doesn't dup EVP_PKEY* any more, because nobody needed it * pkey_dh.c: ossl_dh_new(EVP_PKEY*) doesn't dup EVP_PKEY* * pkey_dsa.c: ossl_dsa_new(EVP_PKEY*) doesn't dup EVP_PKEY* * pkey_rsa.c: ossl_rsa_new(EVP_PKEY*) doesn't dup EVP_PKEY* * ns_spki.c: move to these new funcs. The benefit is: no malloc and free cycles. * pkcs7.c: ditto. * ssl.c: ditto. * x509cert.c: ditto. * x509crl.c: ditto. * x509req.c: ditto. Fri, 7 Jun 2002 16:59:10 +0200 -- Michal Rokos * pkey.c: new helper func: ossl_pkey_get_private_EVP_PKEY * ns_spki.c: use new helper func * pkcs7.c: ditto. * x509cert.c: ditto. * x509crl.c: ditto. * x509req.c: ditto. Fri, 7 Jun 2002 14:06:48 +0200 -- Michal Rokos * cipher.c: Checks around GetCipher * digest.c: Use Make_Struct instead of Wrap_Struct and OPENSSL_malloc * hmac.c: ditto. * bn.c: Fixed creating new classes from subclasses (WrapXXX(klass,...)) * config.c: ditto. * ns_spki.c: ditto. * pkcs7.c: ditto. * x509.h: C-level class rename: new are cX509Attr, cX509Cert, cX509Ext, cX509ExtFactory, cX509Req and Errors are renamed too. * x509attr.c: ported to Ruby 1.8 interface and fixed new classes creation * x509cert.c: ditto. * x509crl.c: ditto. * x509ext.c: ditto. * x509name.c: ditto. * x509req.c: ditto. * x509revoked.c: ditto. * x509store.c: ditto. Thu, 6 Jun 2002 09:42:00 +0200 -- Michal Rokos * pkey.c: Hopefully corrected nasty GC bug (ossl_pkey_get_EVP_PKEY) Thu, 6 Jun 2002 02:28:25 +0200 -- Michal Rokos * ssl.h: NEW (bits from ossl.h) * ossl.h: is now tidy * pkey*.[ch]: big internal rewrite and cleanup for (DH|DSA|RSA) as well as for PKey (EVP_PKEY is now wrapped - so no extra structs!) NEEDS TO BE TESTED!!! Wed, 5 Jun 2002 12:17:18 +0200 -- Michal Rokos * rand.h: NEW (bits from ossl.h) * rand.c: port & cleanup Wed, 5 Jun 2002 11:56:53 +0200 -- Michal Rokos * pkcs7.h: NEW (bits from ossl.h) * pkcs7.c: cleanup & port to Ruby 1.8 Wed, 5 Jun 2002 10:46:17 +0200 -- Michal Rokos * ns_spki.h: NEW (bits from ossl.h) * ns_spki.c: cleanup & port to Ruby 1.8 interface Wed, 5 Jun 2002 10:14:54 +0200 -- Michal Rokos * hmac.h: NEW (bits from ossl.h) * ossl.c: helper function 'string2hex' * hmac.c: use 'string2hex' * digest.c: ditto. * hmac.c: cleanup * hmac.c: renamed #hmac to #digest and #hexhmac to #hexdigest Tue, 4 Jun 2002 23:26:07 +0200 -- Michal Rokos * bn.c: cleanup (remove oddly initialized vars) * config.c: ditto. * cipher.c: ditto. * digest.c: ditto. Tue, 4 Jun 2002 21:49:06 +0200 -- Michal Rokos * ossl.c: test Qtrue/Qfalse with RTEST * bn.c: use StringValue instead of rb_String * cipher.c: ditto. * config.c: ditto. * bn.h: remove added MACROs until somebody wants them * cipher.h: ditto. * digest.h: ditto. * config.c: renamed #get_value to #value, and #get_section to #section * config.h: NEW (moved bits from ossl.h) Tue, 4 Jun 2002 20:10:00 +0200 -- Michal Rokos * cipher.c: HACK: not to coredump when calling #update without preceding #(en|de)crypt Tue, 4 Jun 2002 19:17:55 +0200 -- Michal Rokos * cipher.c: use factory style (as for Digest), adapted to Ruby 1.8 interface * cipher.c: Method name 'cipher' changed to 'final' * cipher.rb: NEW (added predefined Cipher classes there) Tue, 4 Jun 2002 17:00:36 +0200 -- Michal Rokos * README: Make a note that it's not up-to-date * ossl.h: Corrected order of headers to detect Ruby < 1.7.2 and OpenSSL < 0.9.7 correctly Tue, 4 Jun 2002 15:51:57 +0200 -- Michal Rokos * cipher.[ch]: dropped public func: get_NID (because nobody needed this) * digest.[ch]: ditto. Tue, 4 Jun 2002 14:20:38 +0200 -- Michal Rokos * digest.rb: fix singletons (hex)digest (Don't call super, call Digest::(hex)digest directly) Tue, 4 Jun 2002 08:53:59 +0200 -- Michal Rokos * cipher.c: Wierd class name ('ANY') renamed to Cipher * digest.c: Rename ANY -> Digest * pkey.c: Rename ANY -> PKey * pkey.rb: Use Digest instead of ANY Tue, 4 Jun 2002 08:48:05 +0200 -- Michal Rokos * OSSL2 commited to CVS Mon, 3 Jun 2002 21:14:34 +0200 -- Michal Rokos * digest.c: new methods added to have the same protocol as Ruby's classes Digest::digest(name, data) Digest::hexdigest(name, data) d.clone() d.==(other) * digest.rb: rewritten to eval Mon, 3 Jun 2002 17:23:10 +0200 -- Michal Rokos * digest.rb: NEW (holds predefined Digest classes) * digest.c: redesigned (introduced runtime loading Digest algs from OpenSSL) * digest.c: ported to Ruby 1.8 interface * openssl.rb: added require for digest.rb Mon, 3 Jun 2002 13:19:34 +0200 -- Michal Rokos * x509.c renamed to x509cert.c * x509.h: NEW (moved all bits related to x509 there) * x509.c: NEW (moved init from ossl.c for all x509 related classes there) Mon, 3 Jun 2002 13:03:08 +0200 -- Michal Rokos * Moved all Error classes under eOSSLError Mon, 3 Jun 2002 12:50:57 +0200 -- Michal Rokos * cipher.h: NEW (moved bits from ossl.h) * cipher.h: new MACROs: OSSLCipherValue OSSLCipherValuePtr Mon, 3 Jun 2002 11:27:46 +0200 -- Michal Rokos * digest.h: NEW (moved bits from ossl.h there) * digest.h: new MACROs: OSSLWrapDigest OSSLGetDigest OSSLDigestValue Mon, 3 Jun 2002 10:55:44 +0200 -- Michal Rokos * bn.c: added methods mod_add, mod_sub, mod_sqr Mon, 3 Jun 2002 10:46:03 +0200 -- Michal Rokos * bn.c: ported to Ruby 1.8 interface (allocate, enable_super) Mon, 3 Jun 2002 10:22:17 +0200 -- Michal Rokos * moved from #ifdef, #ifndef to #if defined() * renamed all Init_[^o] to Init_ossl_ Mon, 3 Jun 2002 09:46:43 +0200 -- Michal Rokos * bn.h: NEW (all .c will have it's .h to lower ossl.h size and increase modularity) * bn.h: new MACROs introduced: OSSLWrapBN - creates instance of BN (DOESN'T DUP THE ARG) OSSLGetBN - gets BIGNUM with check (DOESN'T DUP THE BIGNUM FROM OBJ) OSSLBNValue - alias to OSSL_Check_Instance(obj, cBN) OSSLBNValuePtr - alias to ossl_bn_get_BIGNUM (DUPS THE BIGNUM FROM OBJ) Mon, 3 Jun 2002 01:17:07 +0200 -- Michal Rokos * dsa.c: removed MS_CALLBACK * dh.c: ditto. * rsa.c: ditto. * ssl.c: ditto. * ossl.c: introduced generic error-class: OpenSSLError * bn.c: initialize moved from Ruby-space to C-space * bn.c: reordered method defs by 'man bn' * bn.c: speed up math. ops by 1 global BN_CTX (dropped all local BN_CTXes and BN_CTX_inits) Sat, 1 Jun 2002 13:38:03 +0200 -- Michal Rokos * ossl.h: OSSL2 cannot be compiled if Ruby < 1.7.2 and OpenSSL < 0.9.7 Sat, 1 Jun 2002 11:49:40 +0200 -- Michal Rokos * Dropped all #if !defined(NO_*) dependences (stayed just OPENSSL_NO_*) * Dropped all checks for OPENSSL_VERSION_NUMBER Sat, 1 Jun 2002 11:25:32 +0200 -- Michal Rokos * bn.rb: NEW * pkey.rb: NEW * ssl.rb: NEW * x509.rb: NEW * openssl.rb: splitted to openssl/bn.rb, openssl/pkey.rb, openssl/ssl.rb, and openssl/x509.rb * lib/*: added proped descriptions * bn.rb: simplified BN#initialize (TODO: move it to C-space) Sat, 1 Jun 2002 00:40:59 +0200 -- Michal Rokos * Started work on OSSL2 (Starting version = CVS 2002/04/07) OSSL2 will support only upcomming Ruby 1.8 and OpenSSL 0.9.7.