e352a9e | Richard Levitte | 10 April 2003, 20:30:41 UTC | I forgot to change the status bits to release. This file will be retagged. | 10 April 2003, 20:30:41 UTC |
51c4754 | Richard Levitte | 10 April 2003, 20:21:28 UTC | Time to release 0.9.6j. The ticket will be OpenSSL_0_9_6j. | 10 April 2003, 20:21:28 UTC |
335340a | Richard Levitte | 10 April 2003, 20:11:28 UTC | make update | 10 April 2003, 20:11:28 UTC |
d373ca9 | Richard Levitte | 10 April 2003, 20:07:51 UTC | Add the change from HEAD that allows us to parse multi-line comments. | 10 April 2003, 20:07:51 UTC |
1db625b | Richard Levitte | 10 April 2003, 19:33:23 UTC | new NEWS | 10 April 2003, 19:33:23 UTC |
86d79b3 | Richard Levitte | 09 April 2003, 06:49:01 UTC | Make the same changes for svr5 shared library building as in 0.9.7-stable. | 09 April 2003, 06:49:01 UTC |
e45b2a6 | Richard Levitte | 09 April 2003, 06:48:19 UTC | Some ld implementations use LD_LIBRARY_PATH to find libraries, and what's worse, they seem to use LD_LIBRARY_PATH as the first directories to look into. This is documented in the manual page for ld on OpenUNIX 8. Therefore, we need to hack LD_LIBRARY_PATH to include the directory where the newly built libcrypto and libssl are. | 09 April 2003, 06:48:19 UTC |
5d4bf96 | Richard Levitte | 08 April 2003, 11:07:09 UTC | Include rand.h, so RAND_status() and friends get properly declared. | 08 April 2003, 11:07:09 UTC |
223c80e | Bodo Möller | 02 April 2003, 09:50:17 UTC | make RSA blinding thread-safe | 02 April 2003, 09:50:17 UTC |
60511b8 | Richard Levitte | 27 March 2003, 12:25:12 UTC | Fix the problem with missing definition of THREADS on VMS. Also produce a better configuration header file. PR: 548 | 27 March 2003, 12:25:12 UTC |
20fda79 | Bodo Möller | 20 March 2003, 17:24:54 UTC | PR:make sure RSA blinding works when the PRNG is not properly seeded; enable it automatically only for the built-in engine | 20 March 2003, 17:24:54 UTC |
66e1081 | Ben Laurie | 20 March 2003, 16:00:18 UTC | Blinding fix. | 20 March 2003, 16:00:18 UTC |
ef42d6a | Bodo Möller | 19 March 2003, 19:20:30 UTC | countermeasure against new Klima-Pokorny-Rosa atack | 19 March 2003, 19:20:30 UTC |
00223b9 | Bodo Möller | 18 March 2003, 12:50:07 UTC | fix formatting | 18 March 2003, 12:50:07 UTC |
3d1120f | Bodo Möller | 24 February 2003, 17:46:46 UTC | year 2003 | 24 February 2003, 17:46:46 UTC |
fc68e4a | Richard Levitte | 19 February 2003, 12:56:04 UTC | Release of 0.9.6i is tagged, let's pretend to move on to 0.9.6j. | 19 February 2003, 12:56:04 UTC |
84c1d09 | Richard Levitte | 19 February 2003, 12:34:21 UTC | Time to release 0.9.6i. The tag will be OpenSSL_0_9_6i. | 19 February 2003, 12:34:21 UTC |
39c06a8 | Richard Levitte | 19 February 2003, 12:04:07 UTC | Security fix: Vaudenay timing attack on CBC. An advisory will be posted to the web. Expect a release within the hour. | 19 February 2003, 12:04:07 UTC |
c0a48f4 | Richard Levitte | 19 February 2003, 11:54:53 UTC | Make sure the memory allocation routines check for negative sizes | 19 February 2003, 11:54:53 UTC |
1254766 | Richard Levitte | 14 February 2003, 05:20:32 UTC | Change no_rmd160 to no_ripemd for consistency. PR: 500 | 14 February 2003, 05:20:32 UTC |
b73de73 | Bodo Möller | 12 February 2003, 14:17:33 UTC | comments | 12 February 2003, 14:17:33 UTC |
a71f9ee | Bodo Möller | 05 February 2003, 16:52:37 UTC | typo in WIN16 section Submitted by: Toni Andjelkovic <toni@soth.at> | 05 February 2003, 16:52:37 UTC |
d76434f | Bodo Möller | 04 February 2003, 12:57:51 UTC | typo | 04 February 2003, 12:57:51 UTC |
ac3b89d | Bodo Möller | 04 February 2003, 12:26:30 UTC | Update PRNG entry: - OpenSSL version differences - Sun /dev/urandom patch information | 04 February 2003, 12:26:30 UTC |
e591994 | Richard Levitte | 14 January 2003, 13:56:44 UTC | Correct an example that has a few typos. PR: 458 | 14 January 2003, 13:56:44 UTC |
90f6da7 | Bodo Möller | 13 January 2003, 13:23:08 UTC | fix release date (CHANGES as released with OpenSSL 0.9.6h on 2002-12-05 said '[21 Dec 2002]') | 13 January 2003, 13:23:08 UTC |
ad48759 | Bodo Möller | 13 January 2003, 13:16:49 UTC | typo | 13 January 2003, 13:16:49 UTC |
b2359d5 | Richard Levitte | 28 December 2002, 01:47:11 UTC | A function returning int should really return an int, even if it exits first... | 28 December 2002, 01:47:11 UTC |
84d964a | Richard Levitte | 28 December 2002, 01:46:21 UTC | Make sure OPENSSL_cleanse is declared properly. | 28 December 2002, 01:46:21 UTC |
6c8aa1e | Richard Levitte | 21 December 2002, 23:54:23 UTC | Merge from HEAD... | 21 December 2002, 23:54:23 UTC |
6d62e85 | Richard Levitte | 12 December 2002, 18:43:29 UTC | Skip DH-specific tests when no-dh has been configured. PR: 353 | 12 December 2002, 18:43:29 UTC |
a01461d | Richard Levitte | 11 December 2002, 08:56:38 UTC | In CRYPTO_lock(), check that the application cares about locking (provided callbacks) before attempting to lock. | 11 December 2002, 08:56:38 UTC |
9576c15 | Richard Levitte | 11 December 2002, 08:33:34 UTC | sk_*_push() returns the number of items on the stack, not the index of the pushed item. The index is the number of items - 1. And if a NULL item was found, actually use it. Finally, provide a little bit of safety in CRYPTO_lock() by asserting the a requested dynamic lock really must exist, instead of just being silent about it | 11 December 2002, 08:33:34 UTC |
56f940e | Richard Levitte | 10 December 2002, 08:28:16 UTC | A memset() too many got converted into a OPENSSL_cleanse(). PR: 393 | 10 December 2002, 08:28:16 UTC |
aa61140 | Lutz Jänicke | 09 December 2002, 08:49:03 UTC | Fix wrong URI. Submitted by: assar@kth.se Reviewed by: PR: 390 | 09 December 2002, 08:49:03 UTC |
8ca0db5 | Richard Levitte | 05 December 2002, 22:53:30 UTC | Update version to 0.9.6i, even if that's never going to be released. | 05 December 2002, 22:53:30 UTC |
631cdb9 | Richard Levitte | 05 December 2002, 22:44:12 UTC | Small fault corrected | 05 December 2002, 22:44:12 UTC |
e98b0d6 | Richard Levitte | 05 December 2002, 21:51:02 UTC | make update | 05 December 2002, 21:51:02 UTC |
f94e1dd | Richard Levitte | 05 December 2002, 21:40:48 UTC | Time to release OpenSSL 0.9.6h. The tag will be OpenSSL_0_9_6h. | 05 December 2002, 21:40:48 UTC |
3124dd9 | Richard Levitte | 05 December 2002, 01:20:53 UTC | Make sure using SSL_CERT_FILE actually works, and has priority over system defaults. PR: 376 | 05 December 2002, 01:20:53 UTC |
e504037 | Richard Levitte | 04 December 2002, 23:13:07 UTC | Fixes for VxWorks. Are these needed for 0.9.7 and up as well? PR: 374 | 04 December 2002, 23:13:07 UTC |
0b74973 | Dr. Stephen Henson | 04 December 2002, 23:08:08 UTC | Include crypto.h to pull in definition of OPENSSL_cleanse in various places. | 04 December 2002, 23:08:08 UTC |
98c3ecc | Lutz Jänicke | 04 December 2002, 13:30:16 UTC | Missing ")" Submitted by: Christian Hohnstaedt <chohnstaedt@innominate.com> Reviewed by: PR: | 04 December 2002, 13:30:16 UTC |
7000fd8 | Richard Levitte | 04 December 2002, 08:24:23 UTC | A gcc 3.0 bug is triggered by our code. Add a section about it in PROBLEMS. PR: 375 | 04 December 2002, 08:24:23 UTC |
811cd99 | Richard Levitte | 03 December 2002, 16:51:51 UTC | EXIT() may mean return(). That's confusing, so let's have it really mean exit() in whatever way works for the intended platform, and define OPENSSL_EXIT() to have the old meaning (the name is of course because it's only used in the openssl program) | 03 December 2002, 16:51:51 UTC |
29a0f95 | Richard Levitte | 03 December 2002, 16:06:52 UTC | Make CRYPTO_cleanse() independent of endianness. | 03 December 2002, 16:06:52 UTC |
5a6a896 | Richard Levitte | 01 December 2002, 01:23:13 UTC | EXIT() needs to be in a function that returns int. | 01 December 2002, 01:23:13 UTC |
b760880 | Richard Levitte | 29 November 2002, 14:21:58 UTC | Correct some names. | 29 November 2002, 14:21:58 UTC |
6bad9d0 | Richard Levitte | 29 November 2002, 11:31:18 UTC | A few more memset()s converted to OPENSSL_cleanse(). I *think* I got them all covered by now, bu please, if you find any more, tell me and I'll correct it. PR: 343 | 29 November 2002, 11:31:18 UTC |
dd54633 | Richard Levitte | 28 November 2002, 18:56:18 UTC | Have all tests use EXIT() to exit rather than exit(), since the latter doesn't always give the expected result on some platforms. | 28 November 2002, 18:56:18 UTC |
6a99f54 | Richard Levitte | 28 November 2002, 18:52:18 UTC | Make sure EXIT() can always be used as one statement. | 28 November 2002, 18:52:18 UTC |
920b700 | Richard Levitte | 28 November 2002, 08:06:36 UTC | Cleanse memory using the new OPENSSL_cleanse() function. I've covered all the memset()s I felt safe modifying, but may have missed some. | 28 November 2002, 08:06:36 UTC |
615ee04 | Richard Levitte | 27 November 2002, 13:45:38 UTC | make update | 27 November 2002, 13:45:38 UTC |
9a7a36d | Richard Levitte | 27 November 2002, 12:24:54 UTC | Add OPENSSL_cleanse() to help cleanse memory and avoid certain compiler and linker optimizations. PR: 343 | 27 November 2002, 12:24:54 UTC |
60b5a28 | cvs2svn | 27 November 2002, 12:24:09 UTC | This commit was manufactured by cvs2svn to create branch 'OpenSSL_0_9_6-stable'. | 27 November 2002, 12:24:09 UTC |
df29cc8 | Richard Levitte | 27 November 2002, 12:24:05 UTC | Add OPENSSL_cleanse() to help cleanse memory and avoid certain compiler and linker optimizations. PR: 343 | 27 November 2002, 12:24:05 UTC |
ec71641 | Richard Levitte | 26 November 2002, 15:27:05 UTC | I forgot that @ in strings must be escaped in Perl | 26 November 2002, 15:27:05 UTC |
1c4d82a | Richard Levitte | 26 November 2002, 11:14:38 UTC | The logic in the main signing and verifying functions to check lengths was incorrect. Fortunately, there is a second check that's correct, when adding the pads. PR: 355 | 26 November 2002, 11:14:38 UTC |
ba8ad07 | Richard Levitte | 26 November 2002, 11:14:32 UTC | The logic in the main signing and verifying functions to check lengths was incorrect. Fortunately, there is a second check that's correct, when adding the pads. PR: 355 | 26 November 2002, 11:14:32 UTC |
17582cc | Richard Levitte | 26 November 2002, 10:11:58 UTC | Heimdal isn't really supported right now. Say so, and offer a possibility to force the use of Heimdal, and warn if that's used. PR: 346 | 26 November 2002, 10:11:58 UTC |
31be2da | Richard Levitte | 26 November 2002, 10:09:36 UTC | Small bugfixes to the KSSL implementation. PR: 349 | 26 November 2002, 10:09:36 UTC |
de868e0 | Richard Levitte | 26 November 2002, 09:19:17 UTC | Heimdal isn't really supported right now. Say so, and offer a possibility to force the use of Heimdal, and warn if that's used. PR: 346 | 26 November 2002, 09:19:17 UTC |
15994b0 | Bodo Möller | 23 November 2002, 18:16:09 UTC | rename some functions to improve consistency Submitted by: Sheueling Chang | 23 November 2002, 18:16:09 UTC |
922fa76 | Bodo Möller | 22 November 2002, 09:25:35 UTC | add a comment | 22 November 2002, 09:25:35 UTC |
19aa370 | Richard Levitte | 22 November 2002, 08:45:20 UTC | Disable this module if OPENSSL_NO_SOCK is defined. | 22 November 2002, 08:45:20 UTC |
d020e70 | Richard Levitte | 22 November 2002, 08:40:34 UTC | Typo. OPENSSL_NO_ECDH, not NO_OPENSSL_ECDH | 22 November 2002, 08:40:34 UTC |
54f70a1 | Richard Levitte | 21 November 2002, 22:39:16 UTC | Mention a current showstopper | 21 November 2002, 22:39:16 UTC |
364ff36 | Richard Levitte | 21 November 2002, 22:39:08 UTC | Mention a current showstopper | 21 November 2002, 22:39:08 UTC |
8a09b38 | Bodo Möller | 20 November 2002, 10:55:27 UTC | avoid uninitialized memory read Submitted by: Nils Larsch | 20 November 2002, 10:55:27 UTC |
1374451 | Bodo Möller | 20 November 2002, 10:53:33 UTC | Make ec_GFp_simple_point_get_affine_coordinates() faster for Montgomery representations. Submitted by: Sheueling Chang, Bodo Moeller | 20 November 2002, 10:53:33 UTC |
6a8afe2 | Lutz Jänicke | 20 November 2002, 10:48:58 UTC | Fix bug introduced by the attempt to fix client side external session caching (#288): now internal caching failed (#351): Make sure, that cipher_id is set before comparing. Submitted by: Reviewed by: PR: 288 (and 351) | 20 November 2002, 10:48:58 UTC |
e824df3 | Lutz Jänicke | 20 November 2002, 10:48:05 UTC | Fix bug introduced by the attempt to fix client side external session caching (#288): now internal caching failed (#351): Make sure, that cipher_id is set before comparing. Submitted by: Reviewed by: PR: 288 (and 351) | 20 November 2002, 10:48:05 UTC |
3d2fd99 | Bodo Möller | 19 November 2002, 12:10:08 UTC | allocate bio_err before memory debugging is enabled to avoid memory leaks (we can't release it before the CRYPTO_mem_leaks() call!) Submitted by: Nils Larsch | 19 November 2002, 12:10:08 UTC |
1e3a9b6 | Bodo Möller | 19 November 2002, 11:56:05 UTC | allocate bio_err before memory debugging is enabled to avoid memory leaks (we can't release it before the CRYPTO_mem_leaks() call!) Submitted by: Nils Larsch | 19 November 2002, 11:56:05 UTC |
229dc0e | Richard Levitte | 19 November 2002, 11:52:24 UTC | It works on my laptop :-). | 19 November 2002, 11:52:24 UTC |
fcc7646 | Richard Levitte | 19 November 2002, 11:40:14 UTC | make update | 19 November 2002, 11:40:14 UTC |
821385a | Richard Levitte | 19 November 2002, 11:28:28 UTC | Fix an unsigned/signed mismatch. | 19 November 2002, 11:28:28 UTC |
25ff76d | Richard Levitte | 19 November 2002, 09:34:34 UTC | Update STATUS | 19 November 2002, 09:34:34 UTC |
9801fb6 | Richard Levitte | 18 November 2002, 23:58:24 UTC | Add news items for 0.9.6h and expand on the 0.9.7 news as well. | 18 November 2002, 23:58:24 UTC |
adee13d | Richard Levitte | 18 November 2002, 23:57:31 UTC | Add news items for 0.9.6h | 18 November 2002, 23:57:31 UTC |
20199ca | Richard Levitte | 18 November 2002, 23:56:15 UTC | Document the addition of certificate pairs. | 18 November 2002, 23:56:15 UTC |
711f1a3 | Richard Levitte | 18 November 2002, 23:54:27 UTC | Add the ASN.1 structures and functions for CertificatePair, which is defined as follows (according to X.509_4thEditionDraftV6.pdf): CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- } The only thing I'm not sure about is if it's implicit or explicit tags that I should count on. For now, I'm thinking explicit, but will gladly stand corrected. Also implement the PEM functions to read and write certificate pairs, and defined the PEM tag as "CERTIFICATE PAIR". This needed to be defined, mostly for the sake of the LDAP attribute crossCertificatePair, but may prove useful elsewhere as well. | 18 November 2002, 23:54:27 UTC |
a1d8530 | Richard Levitte | 18 November 2002, 23:06:36 UTC | Determine HZ exactly as in apps/speed.c. | 18 November 2002, 23:06:36 UTC |
450cee5 | Richard Levitte | 18 November 2002, 23:05:39 UTC | Make sure sysconf exists (it doesn't in the VMS C RTL lesser than version 7). | 18 November 2002, 23:05:39 UTC |
a2dbcf3 | Bodo Möller | 18 November 2002, 14:37:35 UTC | remove redundant functions | 18 November 2002, 14:37:35 UTC |
4663355 | Bodo Möller | 18 November 2002, 14:33:39 UTC | use consistent order of function definitions | 18 November 2002, 14:33:39 UTC |
9e69a30 | Bodo Möller | 18 November 2002, 14:02:20 UTC | fix memory leak in memory debuggin code ... Submitted by: Nils Larsch | 18 November 2002, 14:02:20 UTC |
9dc6104 | Bodo Möller | 18 November 2002, 14:00:42 UTC | fix memory leak in memory debuggin code ... Submitted by: Nils Larsch | 18 November 2002, 14:00:42 UTC |
055076c | Bodo Möller | 18 November 2002, 13:37:40 UTC | allocate bio_err before memory debugging is enabled to avoid memory leaks (we can't release it before the CRYPTO_mem_leaks() call!) Submitted by: Nils Larsch | 18 November 2002, 13:37:40 UTC |
0f27758 | Richard Levitte | 18 November 2002, 13:04:54 UTC | A variable of type time_t is supposed to be a time measurement starting at Epoch. offset isn't such a measurement, so let's stop pretend it is. | 18 November 2002, 13:04:54 UTC |
527497a | Richard Levitte | 18 November 2002, 13:04:08 UTC | A variable of type time_t is supposed to be a time measurement starting at Epoch. offset isn't such a measurement, so let's stop pretend it is. | 18 November 2002, 13:04:08 UTC |
32d21c1 | Lutz Jänicke | 18 November 2002, 08:15:45 UTC | Better workaround to the "=head1 NAME OPTIONS" pod2latex problem: NAME OPTIONS are a subset of OPTIONS, so just make it =head2! Submitted by: Reviewed by: PR: 333 | 18 November 2002, 08:15:45 UTC |
629b58b | Richard Levitte | 17 November 2002, 19:48:19 UTC | Make it possible to build for more than one CPU. Clarify what the CE tests do. | 17 November 2002, 19:48:19 UTC |
7fa2a81 | Richard Levitte | 17 November 2002, 08:07:08 UTC | Ignore openssl.pc. This way, there's no risk that I'll add it again :-). | 17 November 2002, 08:07:08 UTC |
7f66ab4 | Richard Levitte | 17 November 2002, 08:05:38 UTC | Adding openssl.pc to the repository was a mistake, since it's generated. | 17 November 2002, 08:05:38 UTC |
9518938 | Richard Levitte | 17 November 2002, 08:03:24 UTC | Add the file openssl.pc that I forgot a while ago. | 17 November 2002, 08:03:24 UTC |
b4b82ab | Richard Levitte | 16 November 2002, 10:10:39 UTC | I forgot this is compiled in test/, not crypto/ec/... | 16 November 2002, 10:10:39 UTC |
89618e7 | Richard Levitte | 16 November 2002, 09:42:04 UTC | We don't want TARGETCPU expanded here. | 16 November 2002, 09:42:04 UTC |
b87e257 | Richard Levitte | 15 November 2002, 22:54:13 UTC | Mention ActiveState Perl much earlier in INSTALL.WCE. | 15 November 2002, 22:54:13 UTC |
0bf23d9 | Richard Levitte | 15 November 2002, 22:37:18 UTC | WinCE patches | 15 November 2002, 22:37:18 UTC |