Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2004-03-09 | Minimise the amount of code dependent on BN_DEBUG_RAND. In particular, | Geoff Thorpe | 3 | -23/+5 | |
redefine bn_clear_top2max() to be a NOP in the non-debugging case, and remove some unnecessary usages in bn_nist.c. Submitted by: Nils Larsch Reviewed by: Geoff Thorpe, Ulf Möller | |||||
2004-03-09 | More changes coming out of the bignum auditing. BN_CTX_get() should ideally | Geoff Thorpe | 1 | -12/+6 | |
return a "zero" bignum as BN_new() does - so reset 'top'. During BN_CTX_end(), released bignums should be consistent so enforce this in debug builds. Also, reduce the number of wasted BN_clear_free() calls from BN_CTX_end() (typically by 75% or so). Submitted by: Nils Larsch Reviewed by: Geoff Thorpe, Ulf Möller | |||||
2004-03-08 | Fix policy constraints syntax. | Dr. Stephen Henson | 1 | -2/+2 | |
2004-03-08 | Support for inhibitAnyPolicy extension. | Dr. Stephen Henson | 7 | -14/+45 | |
2004-03-06 | typo | Ulf Möller | 1 | -1/+1 | |
2004-03-05 | Cleanup ASN1 OID module when it exits. | Dr. Stephen Henson | 1 | -2/+7 | |
2004-03-05 | Call autoconfig code in pkcs7 utility. | Dr. Stephen Henson | 1 | -0/+3 | |
2004-03-05 | Memory leak fix. | Dr. Stephen Henson | 1 | -2/+5 | |
2004-03-05 | Various X509 fixes. Disable broken certificate workarounds | Dr. Stephen Henson | 5 | -14/+79 | |
when X509_V_FLAG_X509_STRICT is set. Check for CRLSign in CRL issuer certificates. Reject CRLs with unhandled (any) critical extensions. | |||||
2004-03-04 | Typos. | Dr. Stephen Henson | 1 | -3/+3 | |
Reported by: Jose Castejon-Amenedo <Jose.Castejon-Amenedo@hp.com> | |||||
2004-03-04 | Make our page with pointers to binary distributions visible in the FAQ | Richard Levitte | 1 | -1/+4 | |
2004-03-02 | Indent some of the code examples. | Dr. Stephen Henson | 1 | -11/+11 | |
2004-03-02 | Config docs. | Dr. Stephen Henson | 4 | -4/+167 | |
2004-03-02 | Documentation of the KISS autoconfig functions. | Dr. Stephen Henson | 1 | -0/+77 | |
2004-03-01 | More autoconfig docs. | Dr. Stephen Henson | 1 | -3/+78 | |
2004-03-01 | Avoid a memory leak in OCSP_parse_url(). | Richard Levitte | 1 | -0/+1 | |
Notified by Paul Siegel <psiegel@corestreet.com> | |||||
2004-03-01 | Initial docs for the OpenSSL library configuration via openssl.cnf | Dr. Stephen Henson | 1 | -3/+62 | |
2004-02-27 | Add ECDSA documentation. | Geoff Thorpe | 1 | -0/+232 | |
Submitted by: Nils Larsch | |||||
2004-02-27 | AES is spelled AES, not ASE. Oops... | Richard Levitte | 1 | -3/+3 | |
2004-02-26 | Make sure the given EVP_PKEY is updated in the PEM_STRING_PKCS8INF case also. | Richard Levitte | 1 | -0/+4 | |
PR: 833 | |||||
2004-02-26 | Document the AES options for 'openssl smime'. | Richard Levitte | 1 | -4/+7 | |
PR: 834 | |||||
2004-02-22 | A cleanup of the ecs_ossl.c code and some (doxygen) comments for ecdsa.h | Geoff Thorpe | 2 | -149/+254 | |
Submitted by: Nils Larsch Reviewed by: Geoff Thorpe | |||||
2004-02-22 | When adding positive elements, we can use BN_uadd() instead of BN_add(). | Geoff Thorpe | 1 | -1/+1 | |
Submitted by: Nils Larsch Reviewed by: Geoff Thorpe | |||||
2004-02-19 | Use an OCTET STRING for the encoding of an OCSP nonce value. | Dr. Stephen Henson | 2 | -7/+24 | |
The old raw format can't be handled by some implementations and updates to RFC2560 will make this mandatory. | |||||
2004-02-10 | minor signed/unsigned warning fixes | Geoff Thorpe | 3 | -5/+5 | |
2004-02-08 | Fix handling of -offset and -length in asn1parse tool. | Dr. Stephen Henson | 1 | -1/+9 | |
If -offset exceeds -length of data available exit with an error. Don't read past end of total data available when -offset supplied. If -length exceeds total available truncate it. | |||||
2004-02-07 | Typo in crypto/bn/asm/x86_64.c, bn_div_words(). | Andy Polyakov | 1 | -1/+1 | |
PR: 821 | |||||
2004-02-01 | Add flag to avoid continuous | Dr. Stephen Henson | 3 | -3/+20 | |
memory allocate when calling EVP_MD_CTX_copy_ex(). Without this HMAC is several times slower than < 0.9.7. | |||||
2004-01-30 | Typo in PA-RISC 2 rules in crypto/bn/Makefile.ssl | Andy Polyakov | 1 | -2/+2 | |
2004-01-29 | HP/UX PA-RISC 2 targets update. | Andy Polyakov | 4 | -25/+102 | |
2004-01-29 | Remove typos | Richard Levitte | 1 | -2/+2 | |
2004-01-29 | -Wtraditional was a little too much... | Richard Levitte | 1 | -4/+4 | |
2004-01-29 | Typo | Richard Levitte | 1 | -2/+2 | |
2004-01-29 | In the development branch, it feels quite all right to warn on a lot | Richard Levitte | 1 | -4/+4 | |
more stuff. | |||||
2004-01-28 | make update | Richard Levitte | 1 | -3/+5 | |
2004-01-28 | Add the missing parts for DES CFB1 and CFB8. | Richard Levitte | 15 | -33/+335 | |
Add the corresponding AES parts while I'm at it. make update | |||||
2004-01-28 | make update | Richard Levitte | 3 | -208/+207 | |
2004-01-28 | Unsigned vs. signed problem removed | Richard Levitte | 1 | -2/+2 | |
2004-01-27 | #undef _POSIX_C_SOURCE in ui_openssl.c ruined IRIX builds. Comment on why | Andy Polyakov | 1 | -1/+5 | |
_POSIX_C_SOURCE needed in first place. | |||||
2004-01-27 | CFB DES sync-up with FIPS branch. | Andy Polyakov | 4 | -44/+235 | |
2004-01-27 | Avoid signed vs. unsigned warnings (which are treated like errors on | Richard Levitte | 2 | -2/+2 | |
Windows). | |||||
2004-01-26 | S_IFBLK and S_IFCHR may not exist in some places (like Windows), so | Richard Levitte | 1 | -0/+4 | |
let's check for those macros, and if they aren't defined, let's assume there aren't Unixly devices on this platform. | |||||
2004-01-25 | Even though C specification explicitly says that constant type "stretches" | Andy Polyakov | 2 | -14/+20 | |
automatically to accomodate the value, some compilers fail to do so. Most notably 0x0123456789ABCDEF should come out as long long in 32-bit context, but HP compiler truncates it to 32-bit value. Which in turn breaks GF(2^m) arithmetics in hpux-parisc2-cc build. Therefore this fix... | |||||
2004-01-24 | Fix declaration inconsistency in ecparam.c. | Andy Polyakov | 1 | -1/+1 | |
2004-01-24 | Get rid of bogus warning when compiling with Sun vendor compiler. | Andy Polyakov | 2 | -0/+13 | |
2004-01-24 | We're passed p, so let's use p instead of making assumptions. | Richard Levitte | 1 | -4/+4 | |
2004-01-22 | Typo... | Richard Levitte | 1 | -1/+1 | |
2004-01-21 | Replace expired certificate. | Dr. Stephen Henson | 2 | -14/+31 | |
2004-01-21 | SHA-1 assembler tune-up for Intel P4 | Andy Polyakov | 1 | -203/+88 | |
2004-01-10 | Adding a slash between the directoryt and the file is a problem with | Richard Levitte | 1 | -3/+32 | |
VMS. The C RTL can handle it well if the "directory" is a logical name with no colon, therefore ending being 'logname/file'. However, if the given logical names actually has a colon, or if you use a full VMS-syntax directory, you end up with 'logname:/file' or 'dev:[dir1.dir2]/file', and that isn't handled in any good way. So, on VMS, we need to check if the directory string ends with a separator (one of ':', ']' or '>' (< and > can be used instead [ and ])), and handle that by not inserting anything between the directory spec and the file name. In all other cases, it's assumed the directory spec is a logical name, so we need to place a colon between it and the file. Notified by Kevin Greaney <kevin.greaney@hp.com>. |