]>
granicus.if.org Git - openssl/log
Dr. Stephen Henson [Sat, 16 May 2009 16:17:46 +0000 (16:17 +0000)]
PR: 1930
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Limit size of DTLS record buffer queue.
Dr. Stephen Henson [Sat, 16 May 2009 11:16:15 +0000 (11:16 +0000)]
Disable ECDHE in DTLS in a cleaner way.
Dr. Stephen Henson [Sat, 16 May 2009 11:14:55 +0000 (11:14 +0000)]
Make the stuff compile again, fix missing prototype warnings.
Dr. Stephen Henson [Fri, 15 May 2009 23:07:41 +0000 (23:07 +0000)]
Update from HEAD.
Dr. Stephen Henson [Fri, 15 May 2009 22:58:13 +0000 (22:58 +0000)]
PR: 1922
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS Timer bug fix.
Dr. Stephen Henson [Fri, 15 May 2009 22:50:12 +0000 (22:50 +0000)]
PR: 1925
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org
VOS extended name support.
Richard Levitte [Fri, 15 May 2009 16:37:08 +0000 (16:37 +0000)]
Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
Thank you\!
(note: not tested for now, a few nightly builds should give indications though)
Richard Levitte [Fri, 15 May 2009 16:01:42 +0000 (16:01 +0000)]
Have mkdef.pl also handle VAX and Non-VAX differences for VMS
Richard Levitte [Fri, 15 May 2009 16:00:08 +0000 (16:00 +0000)]
Add a comment about libeay.num and ssleay.num
Andy Polyakov [Thu, 14 May 2009 18:25:29 +0000 (18:25 +0000)]
x86[_64]cpuid.pl: update from HEAD.
Dr. Stephen Henson [Wed, 13 May 2009 16:25:35 +0000 (16:25 +0000)]
PR: 1921
Submitted by: steve@openssl.org
Our DTLS implementation doesn't currently handle ECDHE so don't include
unsupported ciphers in client hello.
Dr. Stephen Henson [Wed, 13 May 2009 16:24:12 +0000 (16:24 +0000)]
Print out DTLS versions too.
Dr. Stephen Henson [Wed, 13 May 2009 11:51:30 +0000 (11:51 +0000)]
PR: 1923
Submitted by: Daniel Mentz <daniel.m@sent.com>, Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Don't access freed data structure.
Dr. Stephen Henson [Wed, 13 May 2009 11:32:24 +0000 (11:32 +0000)]
PR: 1924
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org
Fix _POSIX_C_SOURCE usage.
Andy Polyakov [Tue, 12 May 2009 20:24:23 +0000 (20:24 +0000)]
e_padlock.c: update from HEAD.
Dr. Stephen Henson [Thu, 7 May 2009 16:26:44 +0000 (16:26 +0000)]
Typo.
Dr. Stephen Henson [Wed, 6 May 2009 16:58:27 +0000 (16:58 +0000)]
Typo.
Dr. Stephen Henson [Wed, 6 May 2009 16:54:25 +0000 (16:54 +0000)]
Add debug-VC-WIN32 target and let mk1mf.pl auto detect it, update docs.
Richard Levitte [Wed, 6 May 2009 14:03:24 +0000 (14:03 +0000)]
Select updates from HEAD
Dr. Stephen Henson [Wed, 6 May 2009 10:23:39 +0000 (10:23 +0000)]
Don't use -D_CRT_NONSTDC_NO_DEPRECATE, fix bio_lcl.h instead.
Andy Polyakov [Tue, 5 May 2009 19:25:53 +0000 (19:25 +0000)]
Configure: update from HEAD (Camellia assembler in VC-WIN64A, CAPI engine
in mingw64).
Andy Polyakov [Tue, 5 May 2009 19:23:45 +0000 (19:23 +0000)]
ec_mult.c: update from HEAD (Win64 compile warnings).
Andy Polyakov [Tue, 5 May 2009 19:23:14 +0000 (19:23 +0000)]
cryptlib.c: update from HEAD.
Andy Polyakov [Tue, 5 May 2009 19:21:12 +0000 (19:21 +0000)]
perlasm: update from HEAD.
Andy Polyakov [Tue, 5 May 2009 19:17:00 +0000 (19:17 +0000)]
e_capi.c: update from HEAD.
Richard Levitte [Tue, 5 May 2009 08:46:30 +0000 (08:46 +0000)]
Update from HEAD
Dr. Stephen Henson [Wed, 29 Apr 2009 14:12:54 +0000 (14:12 +0000)]
If an SSLv2 method is explicitly asked for use the SSLv2 cipher string:
assume an application *really* wants SSLv2 if they do that.
Otherwise stick with the default which excludes all SSLv2 cipher suites.
Dr. Stephen Henson [Tue, 28 Apr 2009 22:35:42 +0000 (22:35 +0000)]
Typo.
Dr. Stephen Henson [Tue, 28 Apr 2009 22:01:53 +0000 (22:01 +0000)]
PR: 1629
Submitted by: Kaspar Brand <ossl-rt@velox.ch>
Approved by: steve@openssl.org
Don't use extensions if using SSLv3: this chokes some broken servers.
Dr. Stephen Henson [Tue, 28 Apr 2009 21:56:04 +0000 (21:56 +0000)]
PR: 1914
Make safestack work with C++.
Richard Levitte [Tue, 28 Apr 2009 13:00:50 +0000 (13:00 +0000)]
Update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:37:23 +0000 (19:37 +0000)]
v3_alt.c: otherName parsing fix from HEAD.
Submitted by: Love Hoernquist Aastrand
Andy Polyakov [Mon, 27 Apr 2009 19:32:13 +0000 (19:32 +0000)]
VC-32.pl: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:52 +0000 (19:31 +0000)]
test_padlock: update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:30 +0000 (19:31 +0000)]
sha*-s390x.pl: minor update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:31:04 +0000 (19:31 +0000)]
rc4-x86_64.pl: Win64 SEH update from HEAD.
Andy Polyakov [Mon, 27 Apr 2009 19:30:36 +0000 (19:30 +0000)]
b_sock.c: readability update from HEAD.
Richard Levitte [Mon, 27 Apr 2009 00:08:50 +0000 (00:08 +0000)]
Updates from HEAD
Dr. Stephen Henson [Sun, 26 Apr 2009 15:50:55 +0000 (15:50 +0000)]
Update docs: can use backslashes now.
Dr. Stephen Henson [Sun, 26 Apr 2009 15:04:06 +0000 (15:04 +0000)]
Prevent warning if WINCE not used.
Dr. Stephen Henson [Sun, 26 Apr 2009 14:54:23 +0000 (14:54 +0000)]
Add extra no deprecate flags in Configure.
Dr. Stephen Henson [Sun, 26 Apr 2009 14:53:58 +0000 (14:53 +0000)]
This at least break WIN32 which doesn't have sys/time.h might need to make
this a bit more generous later...
Richard Levitte [Sun, 26 Apr 2009 12:26:04 +0000 (12:26 +0000)]
Add local symbol hacks for OpenVMS
Richard Levitte [Sun, 26 Apr 2009 12:16:12 +0000 (12:16 +0000)]
Cast to avoid signedness confusion
Richard Levitte [Sun, 26 Apr 2009 11:35:58 +0000 (11:35 +0000)]
Updates from HEAD
Dr. Stephen Henson [Thu, 23 Apr 2009 17:16:40 +0000 (17:16 +0000)]
Make no-rsa, no-dsa and no-dh compile again.
Dr. Stephen Henson [Thu, 23 Apr 2009 16:25:00 +0000 (16:25 +0000)]
Make no-ec work
Dr. Stephen Henson [Thu, 23 Apr 2009 16:12:09 +0000 (16:12 +0000)]
Make no-gost work properly.
Dr. Stephen Henson [Thu, 23 Apr 2009 15:24:27 +0000 (15:24 +0000)]
Some no-ec fixes (not complete yet).
Dr. Stephen Henson [Wed, 22 Apr 2009 17:36:45 +0000 (17:36 +0000)]
CryptoAPI engine only exists on WIN32.
Dr. Stephen Henson [Wed, 22 Apr 2009 17:31:04 +0000 (17:31 +0000)]
PR: 1902
Add ecdsa/ecdh algorithms to default for speed utility.
Dr. Stephen Henson [Wed, 22 Apr 2009 16:50:42 +0000 (16:50 +0000)]
Find openssl utility if on the PATH.
Dr. Stephen Henson [Wed, 22 Apr 2009 16:21:20 +0000 (16:21 +0000)]
PR: 1903
Submitted by: "Paul Smedley" <pauldespam@despamsmedley.id.au>
Approved by: steve@openssl.org
OS/2 fixes (excludes Makefile.shared patch for now).
Dr. Stephen Henson [Wed, 22 Apr 2009 15:40:54 +0000 (15:40 +0000)]
Fix WIN32 warnings.
Dr. Stephen Henson [Wed, 22 Apr 2009 12:17:02 +0000 (12:17 +0000)]
Fix WIN32 warning.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:30:54 +0000 (22:30 +0000)]
Another kerberos fix.
Dr. Stephen Henson [Tue, 21 Apr 2009 22:27:41 +0000 (22:27 +0000)]
Change version to beta3-dev
Dr. Stephen Henson [Tue, 21 Apr 2009 22:20:12 +0000 (22:20 +0000)]
Some fixes for kerberos builds.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:42:01 +0000 (15:42 +0000)]
Fix RFC num.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:19:15 +0000 (15:19 +0000)]
Update STATUS.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:11:59 +0000 (15:11 +0000)]
Fix warning.
Dr. Stephen Henson [Tue, 21 Apr 2009 15:02:20 +0000 (15:02 +0000)]
make update.
Dr. Stephen Henson [Tue, 21 Apr 2009 14:58:57 +0000 (14:58 +0000)]
Beta 2 preparation.
Dr. Stephen Henson [Sun, 19 Apr 2009 18:03:13 +0000 (18:03 +0000)]
PR: 1751
Submitted by: David Woodhouse <dwmw2@infradead.org>
Approved by: steve@openssl.org
Compatibility patches for Cisco VPN client DTLS.
Dr. Stephen Henson [Sun, 19 Apr 2009 17:58:01 +0000 (17:58 +0000)]
Fix error header files and error files too.
Dr. Stephen Henson [Thu, 16 Apr 2009 17:22:51 +0000 (17:22 +0000)]
PR: 1894
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Fix various typos and stuff.
Dr. Stephen Henson [Thu, 16 Apr 2009 16:42:02 +0000 (16:42 +0000)]
PR: 1900
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Remove unnecessary included header file.
Dr. Stephen Henson [Wed, 15 Apr 2009 15:16:29 +0000 (15:16 +0000)]
PR: 1895
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Updates to mkerr.pl script.
Dr. Stephen Henson [Wed, 15 Apr 2009 15:07:09 +0000 (15:07 +0000)]
PR: 1899
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Check for <= 0 when verifying CRL issuers.
Dr. Stephen Henson [Wed, 15 Apr 2009 14:49:36 +0000 (14:49 +0000)]
PR: 1828
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Updated DTLS Rentransmission bug patch.
Dr. Stephen Henson [Tue, 14 Apr 2009 15:29:34 +0000 (15:29 +0000)]
PR #1828 reverted: state save/restore incompatible with 1.0.0-stable.
Dr. Stephen Henson [Tue, 14 Apr 2009 15:13:35 +0000 (15:13 +0000)]
Fix typo and stop WIN32 warnings.
Dr. Stephen Henson [Tue, 14 Apr 2009 14:33:12 +0000 (14:33 +0000)]
PR: 1829
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
DTLS Timer Bug fix.
Dr. Stephen Henson [Tue, 14 Apr 2009 14:22:26 +0000 (14:22 +0000)]
PR: 1647
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Update patch for PR#1647.
Dr. Stephen Henson [Tue, 14 Apr 2009 14:20:57 +0000 (14:20 +0000)]
PR: 1827
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Updated patch for PR #1827
Dr. Stephen Henson [Tue, 14 Apr 2009 14:19:46 +0000 (14:19 +0000)]
PR: 1828
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Update from 0.9.8-stable.
Dr. Stephen Henson [Tue, 14 Apr 2009 14:18:16 +0000 (14:18 +0000)]
PR: 1838
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Approved by: steve@openssl.org
Updated patch from 0.9.8-stable.
Dr. Stephen Henson [Mon, 13 Apr 2009 11:40:00 +0000 (11:40 +0000)]
Make update.
Dr. Stephen Henson [Mon, 13 Apr 2009 11:36:19 +0000 (11:36 +0000)]
PR: 1786
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Add missing IMPLEMENT.
Dr. Stephen Henson [Mon, 13 Apr 2009 11:31:22 +0000 (11:31 +0000)]
PR: 1785
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Properly handle malloc failure.
Dr. Stephen Henson [Mon, 13 Apr 2009 11:26:31 +0000 (11:26 +0000)]
PR: 1896
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Remove double sk_*_free() definition and add missing definition to mkstack.pl
Dr. Stephen Henson [Mon, 13 Apr 2009 11:22:55 +0000 (11:22 +0000)]
PR: 1898
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Include correct headers in selftest.pl generated code.
Dr. Stephen Henson [Fri, 10 Apr 2009 16:42:28 +0000 (16:42 +0000)]
PR: 1887
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org
Document/clarify use of some options and include details of GOST algorihthm
usage.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:35:31 +0000 (11:35 +0000)]
Typo.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:25:54 +0000 (11:25 +0000)]
PR: 1887 (part, modified)
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org
Use correct command names in -engine description and fix typo.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:07:35 +0000 (11:07 +0000)]
PR: 1887 (part)
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org
Added error codes for ccgost.
Dr. Stephen Henson [Fri, 10 Apr 2009 11:00:12 +0000 (11:00 +0000)]
Fix usage messages and lookup digests later in req command.
(part of PR #1887)
Dr. Stephen Henson [Fri, 10 Apr 2009 10:30:27 +0000 (10:30 +0000)]
Print out registered digest names in dgst utility instead of hard
coding them. Modify EVP_MD_do_all() to include registered digest name.
This is a modified version of part of PR#1887.
Dr. Stephen Henson [Wed, 8 Apr 2009 15:58:07 +0000 (15:58 +0000)]
PR: 1892
Fix memory leak when email:move option used.
Dr. Stephen Henson [Tue, 7 Apr 2009 17:01:07 +0000 (17:01 +0000)]
Disable SSLv2 cipher suites by default and avoid SSLv2 compatible client
hello if no SSLv2 cipher suites are included. This effectively disables
the broken SSLv2 use by default.
Dr. Stephen Henson [Tue, 7 Apr 2009 16:30:32 +0000 (16:30 +0000)]
Update from 0.9.8-stable.
Dr. Stephen Henson [Tue, 7 Apr 2009 12:10:59 +0000 (12:10 +0000)]
Update from 0.9.8-stable
Dr. Stephen Henson [Mon, 6 Apr 2009 21:42:11 +0000 (21:42 +0000)]
PR: 1677
Submitted by: Vennemann <rvennemann@cool.ms>
Approved by: steve@openssl.org
Call RSA_new() after ENGINE has been set up.
Dr. Stephen Henson [Mon, 6 Apr 2009 16:16:23 +0000 (16:16 +0000)]
Use basename of objxref.pl not whole path in generated header.
Dr. Stephen Henson [Mon, 6 Apr 2009 16:02:51 +0000 (16:02 +0000)]
Updates from HEAD.
Dr. Stephen Henson [Mon, 6 Apr 2009 15:16:41 +0000 (15:16 +0000)]
PR: 1626
Submitted by: Cerutti Pietro <pietro.cerutti@bfh.ch>
Fix manual page.
Dr. Stephen Henson [Mon, 6 Apr 2009 14:31:36 +0000 (14:31 +0000)]
PR: 1890
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Approved by: steve@openssl.org
Fixes to --with-zlib-include and --with-zlib-lib and init PRNG for VOS.
Dr. Stephen Henson [Mon, 6 Apr 2009 14:25:02 +0000 (14:25 +0000)]
PR: 1899
Submitted by: Doug Kaufman <dkaufman@rahul.net>
Approved by: steve@openssl.org
Mingw fixes.
Dr. Stephen Henson [Sun, 5 Apr 2009 11:54:34 +0000 (11:54 +0000)]
Fix error codes.
Dr. Stephen Henson [Sat, 4 Apr 2009 18:09:43 +0000 (18:09 +0000)]
Change default openssl.cnf to only use issuer+serial option in AKID if no
SKID.