Skip to content
  1. Oct 21, 2000
  2. Oct 20, 2000
  3. Oct 14, 2000
  4. Oct 13, 2000
    • Richard Levitte's avatar
      Rework the system to generate shared libraries: · a22fb399
      Richard Levitte authored
        - Make note of the expected extension for the shared libraries and
          if there is a need for symbolic links from for example libcrypto.so.0
          to libcrypto.so.0.9.7.  There is extended info in Configure for
          that.
      
        - Make as few rebuilds of the shared libraries as possible.
      
        - Still avoid linking the OpenSSL programs with the shared libraries.
      
        - When installing, install the shared libraries separately from the
          static ones.
      a22fb399
  5. Oct 12, 2000
  6. Oct 06, 2000
  7. Oct 04, 2000
  8. Oct 01, 2000
  9. Sep 26, 2000
  10. Sep 25, 2000
  11. Sep 24, 2000
  12. Sep 23, 2000
  13. Sep 22, 2000
  14. Sep 21, 2000
  15. Sep 20, 2000
    • Richard Levitte's avatar
      On VMS, stdout may very well lead to a file that is written to in a · 645749ef
      Richard Levitte authored
      record-oriented fashion.  That means that every write() will write a
      separate record, which will be read separately by the programs trying
      to read from it.  This can be very confusing.
      
      The solution is to put a BIO filter in the way that will buffer text
      until a linefeed is reached, and then write everything a line at a
      time, so every record written will be an actual line, not chunks of
      lines and not (usually doesn't happen, but I've seen it once) several
      lines in one record.  Voila, BIO_f_linebuffer() is born.
      
      Since we're so close to release time, I'm making this VMS-only for
      now, just to make sure no code is needlessly broken by this.  After
      the release, this BIO method will be enabled on all other platforms as
      well.
      645749ef
  16. Sep 19, 2000
    • Bodo Möller's avatar
      Totally remove the supposedly 'faster' variant in · fe035197
      Bodo Möller authored
      BN_mod_mul_montgomery, which calls bn_sqr_recursive
      without much preparation.
      
      bn_sqr_recursive requires the length of its argument to be
      a power of 2, which is not always the case here.
      There's no reason for not using BN_sqr -- if a simpler
      approach to squaring made sense, then why not change
      BN_sqr?  (Using BN_sqr should also speed up DH where g is chosen
      such that it becomes small [e.g., 2] when converted
      to Montgomery representation.)
      
      Case closed :-)
      fe035197
    • Bodo Möller's avatar
      Clarification about Montgomery problem · cb1fbf8e
      Bodo Möller authored
      cb1fbf8e
    • Bodo Möller's avatar
      Document BN_mod_mul_montgomery bug; · a45bd295
      Bodo Möller authored
      make disabled code slightly more correct (this does not solve
      the problem though).
      a45bd295
  17. Sep 18, 2000
  18. Sep 17, 2000
  19. Sep 15, 2000
  20. Sep 14, 2000
  21. Sep 13, 2000
  22. Sep 12, 2000
  23. Sep 11, 2000
  24. Sep 10, 2000
  25. Sep 07, 2000
  26. Sep 05, 2000
    • Dr. Stephen Henson's avatar
      Fix typo in rsautl. · bbb72003
      Dr. Stephen Henson authored
      Add support for settable verify time in X509_verify_cert().
      
      Document rsautl utility.
      bbb72003
    • Dr. Stephen Henson's avatar
      *BIG* verify code reorganisation. · 2f043896
      Dr. Stephen Henson authored
      The old code was painfully primitive and couldn't handle
      distinct certificates using the same subject name.
      
      The new code performs several tests on a candidate issuer
      certificate based on certificate extensions.
      
      It also adds several callbacks to X509_VERIFY_CTX so its
      behaviour can be customised.
      
      Unfortunately some hackery was needed to persuade X509_STORE
      to tolerate this. This should go away when X509_STORE is
      replaced, sometime...
      
      This must have broken something though :-(
      2f043896
    • Dr. Stephen Henson's avatar
      Keep a not of original encoding in certificate requests. · 34216c04
      Dr. Stephen Henson authored
      Add new option to PKCS7_sign to exclude S/MIME capabilities.
      34216c04