- Aug 03, 2001
-
-
Lutz Jänicke authored
-
- Aug 01, 2001
-
-
Lutz Jänicke authored
-
Lutz Jänicke authored
It did not work, it was deactivated by #if 0/#endif anyway _and_ we now have the working SSL_OP_CIPHER_SERVER_PREFERENCE.
-
- Jul 31, 2001
-
-
Richard Levitte authored
-
Richard Levitte authored
the norm for 'gcc -M' but not for 'makedepend', and is merely introduced here to avoid commit wars.
-
Lutz Jänicke authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Lutz Jänicke authored
-
Richard Levitte authored
(Latin for "comments", anyone?)
-
Richard Levitte authored
-
Richard Levitte authored
and rename some local variables to avoid name shadowing.
-
Richard Levitte authored
-
Richard Levitte authored
His comments are: First, it corrects a problem introduced in the last patch where the kssl_map_enc() would intentionally return NULL for valid ENCTYPE values. This was done to prevent verification of the kerberos 5 authenticator from being performed when Derived Key ciphers were in use. Unfortunately, the authenticator verification routine was not the only place that function was used. And it caused core dumps. Second, it attempt to add to SSL_SESSION the Kerberos 5 Client Principal Name.
-
Ben Laurie authored
-
Richard Levitte authored
-
- Jul 30, 2001
-
-
Ben Laurie authored
-
Ben Laurie authored
DES's keyschedules. I know these two should be separate, and I'll back out the DES changes if they are deemed to be an error. Note that there is a memory leak lurking in SSL somewhere in this version.
-
Ben Laurie authored
-
Andy Polyakov authored
-
Andy Polyakov authored
HP-UX in common in ./config). Note that for the moment of this writing none of 64-bit platforms pass bntest. I'm committing this anyway as it's too frustrating to patch snapshots over and over while 0.9.6 is known to work.
-
Andy Polyakov authored
-
Ben Laurie authored
-
Andy Polyakov authored
-
Lutz Jänicke authored
-
Lutz Jänicke authored
-
Lutz Jänicke authored
-
- Jul 27, 2001
-
-
Bodo Möller authored
-
Bodo Möller authored
-
Lutz Jänicke authored
circumstances.
-
Richard Levitte authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
More linker bloat reorganisation: Split private key PEM and normal PEM handling. Private key handling needs to link in stuff like PKCS#8. Relocate the ASN1 *_dup() functions, to the relevant ASN1 modules using new macro IMPLEMENT_ASN1_DUP_FUNCTION. Previously these were all in crypto/x509/x_all.c along with every ASN1 BIO/fp function which linked in *every* ASN1 function if a single dup was used. Move the authority key id ASN1 structure to a separate file. This is used in the X509 routines and its previous location linked in all the v3 extension code. Also move ASN1_tag2bit to avoid linking in a_bytes.c which is now largely obsolete. So far under Linux stripped binary with single PEM_read_X509 is now 238K compared to 380K before these changes.
-
- Jul 26, 2001
-
-
Dr. Stephen Henson authored
First of several reorganisations to reduce linker bloat. For example the single line: PEM_read_X509() results in a binary of around 400K in Linux! This first step separates some of the PEM functions and avoids linking in some PKCS#7 and PKCS#12 code.
-
Lutz Jänicke authored
-
- Jul 25, 2001
-
-
Bodo Möller authored
or bogus DH parameters can be used for launching DOS attacks
-
Bodo Möller authored
-
Bodo Möller authored
-
Bodo Möller authored
-
Andy Polyakov authored
explicitely noted that 64-bit SPARCv9 ABI is not officially supported by GCC 3.0 (support is scheduled for 3.1 release), but it appears to work, at the very least 'make test' passes...
-