1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
|
Mon, 14 Jun 2004 20:02:55 +0000 2004 -- Technorama <oss-ruby@technorama.net>
* ossl_cipher.c: add .key_len=
* ossl_cipher.c: fix check for EVP_CIPHER_CTX_set_padding
Wed, 25 Feb 2004 05:38:36 +0000 -- Technorama <oss-ruby@technorama.net>
* fix compiling on MacOS/X
* fix compiling with older openssl versions
* fix compiling with older gcc versions
* fix compiling with ruby versions
* ossl_cipher.c: new method .pkcs5_v15_password
Thu, 14 Aug 2003 19:04:23 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Released 1.0.1
Thu, 14 Aug 2003 18:54:17 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Backported Ruby's OpenSSL ext sources
Wed, 25 Jul 2003 23:51:45 +0200 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/crlstore.rb: Run even if http-access2 is not installed.
* examples/certstore.rb: CSR support.
* examples/cert_store_view.rb: Remove trustCA option. Follow OpenSSL
varidating style.
Wed, 23 Jul 2003 20:15:45 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Cut check_openssl() -- It's not needed...
Wed, 23 Jul 2003 19:20:52 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Make output more pretty (just to keep official Ruby version in sync...)
Wed, 23 Jul 2003 19:20:09 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* OpenSSL was imported to Ruby src tree (by Gotou)
Tue, 22 Jul 2003 11:05:00 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_pkey_rsa.c: Remove not-used code
* ossl_x509name.c: ditto.
Tue, 22 Jul 2003 17:32:54 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: get rid of unused function:
ossl_pkcs7_data_verify(), ossl_pkcs7_data_decode()
* ossl_version.h: version is 1.0.0
Tue, 22 Jul 2003 08:59:21 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* config.c: Copy filename to local buf, report correct error when file not found
Tue, 22 Jul 2003 08:33:41 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Indenting
Tue, 22 Jul 2003 06:08:05 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* lib/**/*.rb: adjust indent.
* lib/openssl/ssl.rb: new methods addr, peeraddr, closed?.
Tue, 22 Jul 2003 04:37:58 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* further OpenSSL 0.9.6 compatibility
Tue, 22 Jul 2003 02:56:54 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/gen.sh: print OPENSSL_VERSION
* exapmles/ossl_x509store.rb: unuse Store#set_flags is <= 0x00907000
* ossl_x509store.c: fix version spec.
Mon, 21 Jul 2003 23:14:27 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/ossl_ocsp.rb: typo fixed.
Mon, 21 Jul 2003 13:23:30 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* further OpenSSL 0.9.6 compatibility
Mon, 21 Jul 2003 12:33:14 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Added OpenSSL 0.9.6 compatibility
Mon, 21 Jul 2003 08:53:55 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.c: Redo compatibility with original Ruby's digests
* pkey.c: Redo #to_der to be more straight going
* examples/*.rb: Fix parenthenses, File.open().read() -> File.read(), make some samples to work again
Tue, 15 Jul 2003 05:27:57 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* extconf.rb: should make depend under $srcdir.
* ossl.h: ossl_raise is a NORETURN.
* ossl_ocsp.h: must use GetOCSPBasicRes (osssl_ocspbres_add_nonce).
* ruby_missing.h: should check HAVE_RB_OBJ_INIT_COPY.
(all of above changes were suggested by nobu. thanks.)
* ossl_x509store.c: refine ossl_x509stctx_free.
Mon, 14 Jul 2003 18:56:06 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509store.c: add second argument of X509::Store#verify
to pass the untrusted certificate chain.
Sat, 12 Jul 2003 01:52:45 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* OSSL 0.2.0-pre3 released
Fri, 11 Jul 2003 03:44:28 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/gen.sh: follows the changs of gen_*.rb.
Thu, 11 Jul 2003 02:33:59 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* ossl_x509req.c: Add Request#signature_algorithm.
* ossl_x509crl.c: eX509CertError -> eX509CRLError.
Thu, 11 Jul 2003 02:30:55 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/gen_csr.rb: Add 'key' option to specify keypair file.
We need this feature for creating cross certificate.
* examples/c_rehash.rb, certstore.rb, cert_store_view.rb: Add Request
support.
* examples/cert2text.rb: Instead of `openssl x509|req|crl -text`.
Thu, 11 Jul 2003 02:23:04 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/ca/init_sub_ca.rb: Add a command line option for CN.
* examples/ca/gen_crl.rb: CRL issuer was wrong! Oops.
* examples/ca/gen_cert.rb: Changed keyUsage bits of each cert type.
Thu, 10 Jul 2003 12:32:56 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_ossl.c: Prototype for sk2ary
* ossl_ocsp.c: Typo in ossl_ocspbres_add_status (sk_X509_pop_free -> sk_X509_EXTENSION_pop_free)
* ossl_pkcs7.c: Added missed handling of flags in ossl_pkcs7_s_encrypt
* ossl_x509cert.c: try to use obj2bio and bio2obj funcs
Thu, 10 Jul 2003 04:56:38 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: PKCS7#encrypt(): use EVP_rc2_40_cbc() by default.
Wed, 09 Jul 2003 21:09:10 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: PKCS7#write_smime(): should add PKCS7_DETACHED to
flags if the PKCS7 is detached and @data is given.
Wed, 09 Jul 2003 12:41:14 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Start checking for OpenSSL' missing functions...
Wed, 09 Jul 2003 12:38:38 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* *.c: When no message is passed, call ossl_raise with NULL
Sun, 09 Jul 2003 01:50:45 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/cert_store_view.rb: Support trust anchor.
Sun, 09 Jul 2003 01:20:56 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/ca/gen_cert.rb: Add some options. --noakid is an option
worthy to mention. For cross certification, with OpenSSL, akid seems
to block to find a cross-cert path. --noakid is for removing
authorityKeyIdentifier extension. RFC2510 defines this field as a
'MUST' field so use this option carefully.
* examples/ca/init_sub_ca.rb: Added.
* examples/ca/init_ca.rb: Add an option to specify CN.
Sun, 09 Jul 2003 01:05:55 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* ossl_x509cert.c, ossl_x509crl.c: Add
(Certificate|CRL)#signature_algorithm.
Sun, 06 Jul 2003 14:15:36 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ocsp.c: should not assign NULL to revtime (revtime is a VALUE).
Sun, 06 Jul 2003 13:20:04 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509store.c:
- ossl_x509store_add_cert(): should not duplicate added cert.
- ossl_x509store_add_crl(): should not duplicate added crl.
Fri, 05 Jul 2003 12:45:24 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/gen_csr.rb: DN parsing bug fix.
* examples/ca/gen_cert.rb:
- Check key length and DN of PKCS#10.
- Remove nsCertType extension.
Fri, 04 Jul 2003 23:56:09 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/c_rehash.rb: Run as a manager of cert store directory.
* examples/gen_ca_cert.rb: Pass DN as a command line parameter.
Fri, 04 Jul 2003 23:51:52 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/cert_store.rb: Renamed to cert_store_view.rb.
* examples/cert_store_view.rb: Added.
* examples/certstore.rb: Certification store implementation.
* examples/crlstore.rb: CRL store implementation.
* examples/gen_cert.rb: Typo fixed.
Fri, 04 Jul 2003 23:43:14 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/ca/: Added gen_cert.rb and gen_crl.rb.
Fri, 04 Jul 2003 04:00:13 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509name.c: use CLASS_OF() instead of TYPE().
* test/tc_x509name.rb: add test_eql?
Thu, 03 Jul 2003 20:04:01 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/gen_cert.rb: added --type option.
* examples/ossl_ocsp.rb: check the signature in the response.
* examples/ossl_ca_cert.rb: del pathlen in basicConstraints.
Thu, 03 Jul 2003 12:04:33 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ocsp.c: OCSP::Respopnse#basic returns nil if no OCSP_BASICRESP given.
* ossl_x509name.c: X509::Name#eql?: should check type of other.
* ossl_x509crl.[ch]: add ossl_x509crl_new();
* ossl_x509store.c:
- add X509::StoreContext#current_crl
- del X509::Store#add_crl_file (use #add_file instead.)
* lib/net/https.rb: fix attrs.
* examples/ossl_x509store.rb: revised.
Thu, 03 Jul 2003 02:52:47 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: added ossl_sslctx_free() as a workaround.
Thu, 03 Jul 2003 01:37:28 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509name.c: add X509::Name::eql? (ossl_x509name_eql).
Wed, 03 Jul 2003 00:42:15 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/c_rehash.rb: Illegal symlink.
Wed, 02 Jul 2003 06:04:45 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509ext.c: add X509::Extension#to_der (ossl_x509ext_to_der).
Wed, 02 Jul 2003 02:34:21 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* lib/net/https.rb: revised. (tested on Ruby-1.8.0-previre3)
* lib/net/protocols.rb: ditto
Tue, 02 Jul 2003 00:37:58 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/c_rehash.rb: c_rehash written in pure ruby.
Tue, 01 Jul 2003 17:28:29 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: PKCS7#singner renamed to PKCS7#signers.
Tue, 01 Jul 2003 17:11:40 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509ext.c: X509::Extension#oid,value,critical? is builtin.
* lib/openssl/x509.rb: X509::Extension#to_a is implented by Ruby.
* examples/gen_csr.rb: 2nd argument is CSR filename.
* examples/gen_cert.rb: --csrout and --keyout options are added.
* README: revised.
Tue, 01 Jul 2003 13:08:11 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* ossl_x509crl.c: Add OpenSSL::X509::CRL#to_der (ossl_x509crl_to_der).
Mon, 30 Jun 2003 04:32:40 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: @ca_cert is renamed to @client_ca;
and an Array can be specified to this.
Mon, 30 Jun 2003 01:24:27 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/ssl/wget.rb: follows current SSLSocket.
* examples/ssl/example.rb: callback should print isser and subject instead of PEM.
Sun, 29 Jun 2003 23:07:25 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: SSL_CTX_set_default_verify_paths is no longer called.
Sun, 29 Jun 2003 20:14:00 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/ca/gen_clientee_from_csr.rb: Typo fixed.
* examples/ca/gen_clientee_from_scratch.rb: Ditto.
Sun, 29 Jun 2003 19:14:44 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/cert_store.rb: Show BN in hex format.
Show valid time in 'from ... to ...' format.
Sun, 29 Jun 2003 19:07:01 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* exapmles/ca: CA maintenance scripts examples.
* examples/ca/ca_config.rb: configuration.
* examples/ca/init_ca.rb: initialize CA. requires some directory
scheme. see ca_config.rb for more detail (no document).
* examples/ca/gen_clientee_from_csr.rb: generate client EE from CSR.
you can generate CSR with examples/gen_csr.rb.
* examples/ca/gen_clientee_from_scratch.rb: generate client EE from
scratch. generates keypair for a client, too.
Sun, 29 Jun 2003 18:56:08 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* examples/gen_csr.rb: new sample to generate CSR.
Sun, 29 Jun 2003 17:31:15 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ocsp.[ch]: OpenSSL::OCSP.
* expmples/ossl_ocsp.rb: new sample.
Sun, 29 Jun 2003 12:56:03 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: the 3rd argument of rb_protect should be cleared.
* ossl.c: ditto.
Sun, 29 Jun 2003 04:02:01 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: SMIME_read_PKCS7 returns content only if the envelope is detached.
Sun, 29 Jun 2003 03:24:13 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/ossl_pkcs7.rb: new sample
Sun, 29 Jun 2003 02:57:57 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509ext.c: typo fixed.
Sat, 28 Jun 2003 01:04:40 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509ext.[ch]: rename ossl_x509ext_get_X509_EXTENSION to DupX509ExtPtr, and use where needed.
* ossl_pkcs7.c: use sk_X509_pop_free() instead of sk_X509_free().
* ossl.c: typo fixed.
Fri, 27 Jun 2003 16:22:35 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* avoid warning of mismatched prototypes.
Thu, 26 Jun 2003 20:35:16 +0900 -- NAKAMURA, Hiroshi <nahi@ruby-lang.org>
* ossl_pkcs7.c: Typo cleanup.
Thu, 26 Jun 2003 19:58:49 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_pkcs7.c: PKCS7#verify sets the content to @data.
Thu, 26 Jun 2003 06:20:58 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* examples/ossl_pkcs7.rb: follows new APIs.
* examples/pkcs7.rb: ditto.
* examples/cert_store.rb: cert-store browsing GUI (commited by NaHi)
Thu, 26 Jun 2003 06:16:21 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* cipher.h: replace ossl_cipher_get_EVP_CIPHER into GetCipherPtr
* cipher.c: ditto.
* ossl_pkey_rsa.c: use GetCipherPtr.
* ossl_pkey_dsa.c: use GetCipherPtr.
* ossl_ssl.c: SSLContext#initialize allows a Symbol as SSL type.
* ossl_x509store.c: set verify callback on ex_data.
* ossl_pkcs7.c: added some(many) features.
- PKCS7::read_smime as a wrapper of SMIME_write_PKCS7
- PKCS7::write_smime as a wrapper of SMIME_write_PKCS7
- PKCS7::sign as a wrapper of PKCS7_sign
- PKCS7::encrypt as a wrapper of PKCS7_ecnrypt
- PKCS7::PKCS7#initialized disallow PKCS#7 type as argument.
- PKCS7::PKCS7#type= to set PKCS#7 type.
(NID_pkcs7_* can be specified by Symbol.)
- PKCS7::PKCS7#type to get PKCS#7 type.
- PKCS7::PKCS7#detached= to set detached.
- PKCS7::PKCS7#detached? to query if the envelop is detached.
- PKCS7::PKCS7#verify is as a wrapper of PKCS7_verify
- PKCS7::PKCS7#decrypt is as a wrapper of PKCS7_decypt
- PKCS7::PKCS7#data= is an alias of PKCS7::PKCS7#add_data
- PKCS7::PKCS7#verify_data is temporarily disabled.
- PKCS7::PKCS7#decode_data is temporarily disabled.
- PKCS7_* constants are introduced.
Thu, 26 Jun 2003 05:48:07 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* openssl_missing.c: addded X509_STORE_{set,get}_ex_data().
* extconf.rb: checks X509_STORE_set_ex_data().
* ossl.h: added data conversion utilities.
* ossl.c: ditto.
Thu, 19 Jun 2003 20:13:29 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* example/gen_*.rb: Store plain keys more secure (with 0600 (rw- --- ---))
Thu, 19 Jun 2003 20:58:01 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* example/gen_*.rb: passwd_cb improved.
Thu, 19 Jun 2003 20:16:11 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl.c: should protect allback Proc not to jump over the library's stack ftame.
Thu, 19 Jun 2003 12:00:00 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* examples/gen_crl.rb: Allow to publish empty CRL
Wed, 18 Jun 2003 19:15:41 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl.c: added verify callback functions.
* ossl_ssl.c: re-implement verify callback.
* ossl_x509.c: added X509 constants.
* ossl_x509store.c:
- added X509::Store::purpose=, X509::Store::trusted=,
- added X509::StoreContext#verify.
- re-implement verify callback.
Tue, 17 Jun 2003 16:54:14 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_x509store.c: Allow to call #verify with block (Has bigger priority than assigned callback)
Mon, 16 Jun 2003 15:10:22 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* removed *.pem from examples
Sat, 14 Jun 2003 17:12:52 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509store.c: added DupX509StorePtr().
* ossl_ssl.c: added SSLContext#store_ctx. Thanks NaHi.
Sat, 14 Jun 2003 13:31:10 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: disable password callback.
Sat, 14 Jun 2003 12:14:26 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509cert.c: X509::Certificate#inspect.
Sat, 14 Jun 2003 02:11:13 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: support password callback.
* ossl_x509store.c:
- split X509StoreContext from X509Store.
- new module X509::V_ERR and X509::V_FLAG
* examples/ossl_x509store.c: improved.
Fri, 13 Jun 2003 21:13:42 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* examples/gen_*.rb: Cleaned a bit a adapt to a new callbacks
Fri, 13 Jun 2003 21:12:47 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: Added OSSL's default PEM callback.
* ossl_pkey_*.c: Use this callback
Tue, 10 Jun 2003 19:59:01 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* examples/gen_crl.rb: added example (based on NaHi's)
Tue, 10 Jun 2003 19:24:10 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_x509store.c: Unwrap X509::Store
Tue, 10 Jun 2003 18:33:11 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* MANIFEST: added as blank for a start (Requested by Hynek Rostinsky <hynek.rostinsky@foresta.cz>)
Tue, 10 Jun 2003 14:11:14 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_pkey_dh.c: Added #params_ok?, #generate_key!, and #compute_key (Contributed by Dave Symonds <ds@seul.org>)
Sun, 08 Jun 2003 21:15:36 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_x509ext.c: fix to_a - should not raise exceptions even if
unknown oid appeared in extension.
Sun, 08 Jun 2003 10:26:18 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: new method SSL::Context#options added by NaHi.
* lib/openssl/buffering.rb: avoid warnings for uninitialized ivars.
Fri, 06 Jun 2003 08:13:09 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl_pkey_dh.c: fix #initialize - pointed out by Dave Symonds <ds@seul.org>
Tue, 03 Jun 2003 15:46:01 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* examples/ssl/svr.rb: CTX fixes by Stef Telford <stef@chronozon.artofdns.com> (Thanks!)
Mon, 02 Jun 2003 21:41:38 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* examples/gen_cert.rb: fixes by NaHi
Mon, 02 Jun 2003 09:40:13 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: remove strptime (caused problems on Cygwin/Linux boxes). Done by NaHi <nahi@keynauts.com> (Thanks!)
Wed, 28 May 2003 13:41:35 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* Added FTPTLS to lib/net - done by Blaz Grilc
Fri, 23 May 2003 15:57:46 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* OSSL 0.2.0-pre2 released
Wed, 21 May 2003 21:14:28 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* fix-up copy_dup_framework for latest Ruby source
Sun, 18 May 2003 19:56:20 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* OSSL 0.2.0-pre1 released
Sun, 18 May 2003 16:27:39 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ssl.c: Unwrap SSL_CTX and SSL
* x509store.c: Use {get|set}_ex instead of my DB for CallBacks
Wed, 23 Apr 2003 22:19:14 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_pkey.c: Is #to_der broken?
Sun, 20 Apr 2003 22:26:56 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_pkcs7.c: Added #copy_object for Ruby1.8 dup© framework
Sat, 19 Apr 2003 22:06:02 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_cipher.c: Unwrap ossl struct - use pure EVP_CIPHER_CTX
* ossl_cipher.c: Fix #copy_object
Sat, 19 Apr 2003 10:51:47 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_hmac.c: Fix subclassing...
Mon, 14 Apr 2003 11:53:54 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_pkey_{rsa|dsa|dh}.c: method #params for inspection of private and public numbers
Wed, 09 Apr 2003 08:06:46 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_x509{crl|req}.c: Allow to initialize with DER
Wed, 09 Apr 2003 00:00:32 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_x509cert.c: Allow initializing with DER.
Mon, 07 Apr 2003 23:20:57 +0200 -- Michal Rokos <michal@rokos.homeip.net>
* ossl_pkey_{dsa|rsa}.c: Make pubkey loading work with OpenSSL 0.9.7 "BEGIN PUBLIC KEY" header.
Mon, 24 Feb 2003 17:21:18 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* ossl.c: Use Time::utc for time conversion
Mon, 24 Feb 2003 08:47:40 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* Released as 0.2.0-pre0
Mon, 24 Feb 2003 08:46:33 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* Brought Ruby1.6 compatibility layer (see ruby_missing.h). Currently #dup, #copy is known to be broken
Fri, 21 Feb 2003 19:30:31 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* x509name.c: added new method #hash to behave as openssl [name.hash.to_s(16)]
Thu, 20 Feb 2003 20:41:44 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* ossl.h: Make it compilable under Win32
Sat, 01 Feb 2003 17:51:56 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* ossl.h: respect new func rb_obj_classname()
Sat, 25 Jan 2003 22:15:12 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* extconf.rb: add "dep" file to distclean target
Sun, 19 Jan 2003 16:48:48 +0100 -- Michal Rokos <michal@rokos.homeip.net>
* extconf.rb: Use /usr/include by default when checking OpenSSL version
Mon, 06 Jan 2003 12:52:20 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509req.c: Port to Ruby1.8 object_copy framework
Mon, 06 Jan 2003 12:43:56 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509crl.c: convert to Ruby1.8 dup framework
Mon, 06 Jan 2003 12:40:36 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Fix test-link target
Sun, 05 Jan 2003 17:22:04 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Add checks for Ruby >= 1.8.0 and OpenSSL >= 0.9.7
Thu, 02 Jan 2003 21:03:46 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Check for Ruby >= 1.8
Tue, 31 Dec 2002 09:45:36 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* test/tc_*.rb: Port to Test::Unit 1.6
Sun, 29 Dec 2002 22:54:54 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* *.c: Port to Ruby1.8 allocation framework
* bn.c, cipher.c, digest.c, hmac.c, x509cert.c: Port to Ruby1.8 copy framework
* test/tc_*.rb: Make it work with Test::Unit 1.5
Mon, 23 Dec 08:30:52 2002 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* pkey_*.c: make alias to_s to export.
* ssl.c: the following methods are deprecated:
SSLContext#cert_file=/cert_file, SSLContext#key_file=/key_file
SSLContext#ssl_method=/ssl_method, SSLContext#setup
* ssl.c: the underlying SSLContext is frozen in SSLSocket#initialize.
* example/ssl/{svr.rb,cli.rb}: improved.
Mon, 23 Dec 2002 05:35:41 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl.c: add SSL_load_error_strings().
Tue, 17 Dec 2002 18:59:08 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* all files: Indent by 4 spaces, 1 tab has the width of 8 spaces.
Mon, 9 Dec 2002 20:27:28 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ssl.c: the return value of SSL_read/SSL_write is int (not size_t).
Sun, 10 Nov 2002 23:30:56 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: enhance BN so you can pass as parameter Ruby's numbers
Sun, 10 Nov 2002 19:19:32 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509cert.c: Fix #serial, #serial= to support big numbers.
* x509req.c: ditto.
* pkcs7.c: ditto.
* bn.c: implemented #to_int, #coerce to act with Ruby's numbers (so you
can: eg. 10 + BN.new("200")
* extconf.rb: fix it (again) to work with latest OpenSSL 0.9.7
Thu, 7 Nov 2002 14:02:35 +0900
* ossl_ssl.c: memory leak has been in ossl_sslctx_free().
Mon, 28 Oct 2002 11:19:30 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Make it work under Ruby1.7.3
Fri, 25 Oct 2002 03:37:42 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: ossl_ssl_verify_callback was refined.
Tue, 15 Oct 2002 18:10:17 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: all ssl_xxx symbols were replaced as ossl_ssl_xxx.
Tue, 15 Oct 2002 17:27:26 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: pass the verify callback Proc through the SSL
extention data.
Sun, 13 Oct 2002 01:46:20 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl_ssl.c: fixed around verify callback invocation.
* net/protocols.rb: improved for new version.
* net/https.rb: ditto.
Fri, 27 Sep 2002 09:40:43 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* config.c: added alias to Config#section as Config[]
Fri, 06 Sep 2002 12:29:37 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Add some more targets when --*-debug and GCC
Thu, 05 Sep 2002 13:07:18 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: added #become method for Ruby 1.7.3 dup, clone interface
* cipher.c: ditto.
Thu, 05 Sep 2002 12:16:10 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: clear OpenSSL error in ossl_raise
Wed, 04 Sep 2002 11:20:11 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: drop type checking functions, and
* ossl.h: rewrite them as macros to ossl.h
* x509cert.c: implement Certificate#become method to support Ruby1.7.3 dup, clone interface
* BUG (in OpenSSL): Cannot do X509_dup(X509_new())!!!
Wed, 07 Aug 2002 16:22:02 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ssl.c: fixes to make it compile (Who screwed it? Me?)
Wed, 07 Aug 2002 15:41:59 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: Drop not needed NT timeval struct
* ssl.c: Check_Type => OSSL_Check_Kind fixes
Mon, 29 Jul 2002 06:31:50 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* lib/openssl/buffering.rb: typo fixed (sent by Hiroshi Nakamura)
* lib/openssl/openssl.rb: fixed for new implementation.
* ossl_ssl.c: change the license (from BSDL to Ruby's).
* ossl_ssl.c: new class SSLContext:
ciphers, cert, cert_file, key, key_file, ca_cert, ca_file,
timeout, verify_mode, verify_depth and verify_callback
were moved from SSLSocket.
* ossl_ssl.c: change the spec of arguments of SSLSocket.new.
sample:
ctx = SSL::SSLContext.new
ssl = SSL::SSLSocket.new(ctx)
ssl.io = TCPSocket.new(host, port)
...
Wed, 24 Jul 2002 13:10:28 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: FIX that enables OSSL module compile on *BSD (sent by Akinori MUSHA)
Wed, 24 Jul 2002 12:35:00 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* config.c: changed #value so: value("AAA"), means value(nil, "AAA")
Tue, 23 Jul 2002 15:46:17 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
bn.c: FIX potencial mem leak when using NUM2INT
Tue, 23 Jul 2002 15:10:46 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
x509name.c: FIX mem leak in #to_s
Wed, 10 Jul 2002 17:36:28 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509crl.c: GetX509CRLPtr and DupX509CRLPtr macros introduced and subst for ossl_x509crl_get_X509_CRL
Wed, 10 Jul 2002 17:02:00 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Use OSSL_Warning and OSSL_Debug instead rb_warning where appropriate
* x509store.c: Fix lookup CRLs during #verify when CRL is added
Tue, 09 Jul 2002 17:17:43 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Some minor cleanups (bring back RSTRING macro (instead of StringValuePtr) where tested by StringValue)
Mon, 1 Jul 2002 15:36:28 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* tc_x509name.rb: NEW (TestCase)
* tc_x509req.rb: NEW (TestCase)
Mon, 1 Jul 2002 14:04:35 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* tc_x509revoked.rb: NEW (TestCase)
Mon, 1 Jul 2002 13:34:38 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509crl.c: #next_update=, #set_revoked, #add_revoked fixes
* tc_x509crl.rb: NEW (TestCase)
Wed, 26 Jun 2002 16:14:42 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509name.c: added method #cmp (aka <=>)
Wed, 26 Jun 2002 15:28:03 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509name.c: port to new Ruby interface, dropped 'self dipathing' (Only allowed param is Array or nil), fixed the reason why TC failed
* x509.rb: dropped 'self dispatching'
* tc_x509cert.rb: more tests enabled (X509::Name fixed)
Tue, 18 Jun 2002 22:43:23 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: fix UTC -> local time conversion
* x509cert.c: use X509_time_adj
* x509crl.c: ditto.
* x509revoked.c: ditto.
* x509name.c: hash iterator cleanup
* tc_x509cert.rb: NEW (TestCase for X509::Certificate)
Fri, 14 Jun 2002 10:32:46 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509cert.c: minor cleanups
* x509revoked.c: ditto.
Thu, 13 Jun 2002 15:15:58 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.h: Dropped OSSL_Check_Type macro; update related files
Thu, 13 Jun 2002 12:33:16 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* config.c: fix build for Windows
Thu, 13 Jun 2002 00:05:46 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509crl.c: Fix check for X509_CRL_verify retval
* x509store.c: Fix mem leak in add_trusted, fix check for X509_verify_cert retval
Wed, 12 Jun 2002 22:58:53 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509name.c: drop ossl_x509name_get_X509_NAME
* x509name.c: introduce GetX509NamePtr; and use it instead ossl_x509name_get_X509_NAME
Wed, 12 Jun 2002 22:41:38 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.c: fix mem. bug in new_from_file
Wed, 12 Jun 2002 20:45:32 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* openssl_missing.c: fixup HMAC_CTX_copy
* tc_hmac.rb: NEW (TestCase for HMAC)
Wed, 12 Jun 2002 20:25:16 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.[ch]: rename ossl_digest_get_EVP_MD to GetDigestPtr; and use where needed
Wed, 12 Jun 2002 20:12:13 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* tc_config.rb: NEW (TestCase for Config)
Wed, 12 Jun 2002 19:52:20 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* config.c: ported to OpenSSL 0.9.7 interface
Wed, 12 Jun 2002 19:05:21 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
ALL FILES: change all rb_raise and OSSL_Raise to ossl_raise
* ossl.h: drop define OSSL_Raise
* cipher.c: disable to call Cipher#final without preceding Cipher#(en|de)crypt
Wed, 12 Jun 2002 18:20:57 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.h: really fixed OSSL_Debug macro
* ossl.c: implement part of OSSL_Debug for Windows
Wed, 12 Jun 2002 14:12:36 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* tc_cipher.rb: NEW (TestCase for Cipher)
* tc_digest.rb: NEW (TestCase for Digest)
* digest.c: fix equal when comparing with other kind of Digest
Wed, 12 Jun 2002 13:15:40 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.rb: included Comparable module
* bn.c: changed # of args for #rand, #pseudo_rand (some are default now)
* ossl.h: fixed OSSL_Debug macro
Wed, 12 Jun 2002 10:28:55 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: fix # of args for mod_* funcs (TestCase is GoodThing(TM) :-))
Wed, 12 Jun 2002 00:45:17 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: Fixed buf in #to_s (problem with \0 in bin repr.)
* tc_bn.rb: NEW (TestCase for BN)
Tue, 11 Jun 2002 16:56:40 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* hmac.c: Fixed bug in #initialize that caused wrong results
Tue, 11 Jun 2002 14:10:58 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* hmac.c: Added class methods #digest, #hexdigest
Tue, 11 Jun 2002 13:56:24 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: Added #name, #iv_len, #key_len getters
Tue, 11 Jun 2002 13:39:45 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.c: Added #size method (return len is in BYTEs)
Tue, 11 Jun 2002 15:46:20 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl.h: remove <openssl/bn_lcl.h>.
Tue, 11 Jun 2002 02:58:24 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.c: don't segfault when signing with public key - check added
Tue, 11 Jun 2002 02:42:25 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* extconf.rb: Check for unistd.h
* ssl.c: include <unistd.h> is avaible (needed for read(), write())
* ossl.c: drop RTESTs
* bn.c: ditto.
* pkey.c: ditto.
* ossl.c: new debug interface that can be enabled/disabled from Ruby-space via OpenSSL::debug= method
* ossl.c: implemented new ossl_raise (for C-space)
* ossl.h: implemented new OSSL_Debug (for C-space)
Mon, 10 Jun 2002 10:35:56 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.c: implemented #sign and #verify for PKey
* pkey.rb: deleted (funcs implemented in C-space (pkey.c))
* pkey_dsa.c: #sign_digest and #verify_digest renamed to #syssign #sysverify
* pkey_rsa.c: implemented RSA_sign, RSA_verify, but commented out until a good way of specifiing digest type will be found
Sun, 9 Jun 2002 22:17:13 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509store.c: really port to Ruby 1.8 interface :-)
* x509store.c: #protect method dropped (useless)
Sat, 8 Jun 2002 14:07:27 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: Fix GetCipher - condition (!ciphp || !ciphp->cipher) was too tight for initialize
Sat, 8 Jun 2002 13:48:37 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509.h: dropped ossl_x509_get_X509(obj)
* x509.h: introduced GetX509CertPtr(obj), DupX509CertPtr(obj) with the same semantics as explained for *PKeyPtr
* pkcs7.c: use these new funcs
* ssl.c: ditto.
* x509ext.c: ditto.
* x509store.c: ditto.
* x509ext.c: fix memory leaking in ExtFactory after GC
Sat, 8 Jun 2002 11:54:13 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.h: dropped ossl_pkey_get_EVP_PKEY, ossl_pkey_get_private_EVP_PKEY
* pkey.h: added GetPKeyPtr, GetPrivPKeyPtr, DupPrivPKeyPtr
GetPKeyPtr(obj) - gives directly EVP_PKEY* from obj (Doesn't dup it!)
GetPrivPKeyPtr(obj) - checkes if obj is is private the rest is the same as for GetPKeyPtr
DupPrivPKeyPtr(obj) - like GetPrivPKeyPtr, and adds an reference to make it GCsafe
* pkey.c: ossl_pkey_new(EVP_PKEY*) doesn't dup EVP_PKEY* any more, because nobody needed it
* pkey_dh.c: ossl_dh_new(EVP_PKEY*) doesn't dup EVP_PKEY*
* pkey_dsa.c: ossl_dsa_new(EVP_PKEY*) doesn't dup EVP_PKEY*
* pkey_rsa.c: ossl_rsa_new(EVP_PKEY*) doesn't dup EVP_PKEY*
* ns_spki.c: move to these new funcs. The benefit is: no malloc and free cycles.
* pkcs7.c: ditto.
* ssl.c: ditto.
* x509cert.c: ditto.
* x509crl.c: ditto.
* x509req.c: ditto.
Fri, 7 Jun 2002 16:59:10 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.c: new helper func: ossl_pkey_get_private_EVP_PKEY
* ns_spki.c: use new helper func
* pkcs7.c: ditto.
* x509cert.c: ditto.
* x509crl.c: ditto.
* x509req.c: ditto.
Fri, 7 Jun 2002 14:06:48 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: Checks around GetCipher
* digest.c: Use Make_Struct instead of Wrap_Struct and OPENSSL_malloc
* hmac.c: ditto.
* bn.c: Fixed creating new classes from subclasses (WrapXXX(klass,...))
* config.c: ditto.
* ns_spki.c: ditto.
* pkcs7.c: ditto.
* x509.h: C-level class rename: new are cX509Attr, cX509Cert, cX509Ext, cX509ExtFactory, cX509Req and Errors are renamed too.
* x509attr.c: ported to Ruby 1.8 interface and fixed new classes creation
* x509cert.c: ditto.
* x509crl.c: ditto.
* x509ext.c: ditto.
* x509name.c: ditto.
* x509req.c: ditto.
* x509revoked.c: ditto.
* x509store.c: ditto.
Thu, 6 Jun 2002 09:42:00 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkey.c: Hopefully corrected nasty GC bug (ossl_pkey_get_EVP_PKEY)
Thu, 6 Jun 2002 02:28:25 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ssl.h: NEW (bits from ossl.h)
* ossl.h: is now tidy
* pkey*.[ch]: big internal rewrite and cleanup for (DH|DSA|RSA) as well as for PKey (EVP_PKEY is now wrapped - so no extra structs!) NEEDS TO BE TESTED!!!
Wed, 5 Jun 2002 12:17:18 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* rand.h: NEW (bits from ossl.h)
* rand.c: port & cleanup
Wed, 5 Jun 2002 11:56:53 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* pkcs7.h: NEW (bits from ossl.h)
* pkcs7.c: cleanup & port to Ruby 1.8
Wed, 5 Jun 2002 10:46:17 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ns_spki.h: NEW (bits from ossl.h)
* ns_spki.c: cleanup & port to Ruby 1.8 interface
Wed, 5 Jun 2002 10:14:54 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* hmac.h: NEW (bits from ossl.h)
* ossl.c: helper function 'string2hex'
* hmac.c: use 'string2hex'
* digest.c: ditto.
* hmac.c: cleanup
* hmac.c: renamed #hmac to #digest and #hexhmac to #hexdigest
Tue, 4 Jun 2002 23:26:07 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: cleanup (remove oddly initialized vars)
* config.c: ditto.
* cipher.c: ditto.
* digest.c: ditto.
Tue, 4 Jun 2002 21:49:06 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.c: test Qtrue/Qfalse with RTEST
* bn.c: use StringValue instead of rb_String
* cipher.c: ditto.
* config.c: ditto.
* bn.h: remove added MACROs until somebody wants them
* cipher.h: ditto.
* digest.h: ditto.
* config.c: renamed #get_value to #value, and #get_section to #section
* config.h: NEW (moved bits from ossl.h)
Tue, 4 Jun 2002 20:10:00 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: HACK: not to coredump when calling #update without preceding #(en|de)crypt
Tue, 4 Jun 2002 19:17:55 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: use factory style (as for Digest), adapted to Ruby 1.8 interface
* cipher.c: Method name 'cipher' changed to 'final'
* cipher.rb: NEW (added predefined Cipher classes there)
Tue, 4 Jun 2002 17:00:36 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* README: Make a note that it's not up-to-date
* ossl.h: Corrected order of headers to detect Ruby < 1.7.2 and OpenSSL < 0.9.7 correctly
Tue, 4 Jun 2002 15:51:57 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.[ch]: dropped public func: get_NID (because nobody needed this)
* digest.[ch]: ditto.
Tue, 4 Jun 2002 14:20:38 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.rb: fix singletons (hex)digest (Don't call super, call Digest::(hex)digest directly)
Tue, 4 Jun 2002 08:53:59 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.c: Wierd class name ('ANY') renamed to Cipher
* digest.c: Rename ANY -> Digest
* pkey.c: Rename ANY -> PKey
* pkey.rb: Use Digest instead of ANY
Tue, 4 Jun 2002 08:48:05 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* OSSL2 commited to CVS
Mon, 3 Jun 2002 21:14:34 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.c: new methods added to have the same protocol as Ruby's classes
Digest::digest(name, data)
Digest::hexdigest(name, data)
d.clone()
d.==(other)
* digest.rb: rewritten to eval
Mon, 3 Jun 2002 17:23:10 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.rb: NEW (holds predefined Digest classes)
* digest.c: redesigned (introduced runtime loading Digest algs from OpenSSL)
* digest.c: ported to Ruby 1.8 interface
* openssl.rb: added require for digest.rb
Mon, 3 Jun 2002 13:19:34 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* x509.c renamed to x509cert.c
* x509.h: NEW (moved all bits related to x509 there)
* x509.c: NEW (moved init from ossl.c for all x509 related classes there)
Mon, 3 Jun 2002 13:03:08 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Moved all Error classes under eOSSLError
Mon, 3 Jun 2002 12:50:57 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* cipher.h: NEW (moved bits from ossl.h)
* cipher.h: new MACROs:
OSSLCipherValue
OSSLCipherValuePtr
Mon, 3 Jun 2002 11:27:46 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* digest.h: NEW (moved bits from ossl.h there)
* digest.h: new MACROs:
OSSLWrapDigest
OSSLGetDigest
OSSLDigestValue
Mon, 3 Jun 2002 10:55:44 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: added methods mod_add, mod_sub, mod_sqr
Mon, 3 Jun 2002 10:46:03 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.c: ported to Ruby 1.8 interface (allocate, enable_super)
Mon, 3 Jun 2002 10:22:17 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* moved from #ifdef, #ifndef to #if defined()
* renamed all Init_[^o] to Init_ossl_
Mon, 3 Jun 2002 09:46:43 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.h: NEW (all .c will have it's .h to lower ossl.h size and increase modularity)
* bn.h: new MACROs introduced:
OSSLWrapBN - creates instance of BN (DOESN'T DUP THE ARG)
OSSLGetBN - gets BIGNUM with check (DOESN'T DUP THE BIGNUM FROM OBJ)
OSSLBNValue - alias to OSSL_Check_Instance(obj, cBN)
OSSLBNValuePtr - alias to ossl_bn_get_BIGNUM (DUPS THE BIGNUM FROM OBJ)
Mon, 3 Jun 2002 01:17:07 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* dsa.c: removed MS_CALLBACK
* dh.c: ditto.
* rsa.c: ditto.
* ssl.c: ditto.
* ossl.c: introduced generic error-class: OpenSSLError
* bn.c: initialize moved from Ruby-space to C-space
* bn.c: reordered method defs by 'man bn'
* bn.c: speed up math. ops by 1 global BN_CTX (dropped all local BN_CTXes and BN_CTX_inits)
Sat, 1 Jun 2002 13:38:03 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* ossl.h: OSSL2 cannot be compiled if Ruby < 1.7.2 and OpenSSL < 0.9.7
Sat, 1 Jun 2002 11:49:40 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Dropped all #if !defined(NO_*) dependences (stayed just OPENSSL_NO_*)
* Dropped all checks for OPENSSL_VERSION_NUMBER
Sat, 1 Jun 2002 11:25:32 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* bn.rb: NEW
* pkey.rb: NEW
* ssl.rb: NEW
* x509.rb: NEW
* openssl.rb: splitted to openssl/bn.rb, openssl/pkey.rb, openssl/ssl.rb, and openssl/x509.rb
* lib/*: added proped descriptions
* bn.rb: simplified BN#initialize (TODO: move it to C-space)
Sat, 1 Jun 2002 00:40:59 +0200 -- Michal Rokos <m.rokos@sh.cvut.cz>
* Started work on OSSL2 (Starting version = CVS 2002/04/07)
OSSL2 will support only upcomming Ruby 1.8 and OpenSSL 0.9.7.
|
