Skip to content
  1. May 14, 2015
  2. May 13, 2015
  3. May 12, 2015
  4. May 11, 2015
  5. May 08, 2015
  6. May 07, 2015
  7. May 06, 2015
    • Dr. Stephen Henson's avatar
      Digest cached records if not sending a certificate. · dab18ab5
      Dr. Stephen Henson authored
      
      
      If server requests a certificate, but the client doesn't send one, cache
      digested records. This is an optimisation and ensures the correct finished
      mac is used when extended master secret is used with client authentication.
      
      Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
      dab18ab5
    • Rich Salz's avatar
      Make sig_app, sigx_app static · 45ebd731
      Rich Salz authored
      
      
      Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
      45ebd731
    • Richard Levitte's avatar
      Make -CAserial a type 's' option · 5c4e3a4e
      Richard Levitte authored
      
      
      The file name given to -CAserial might not exist yet.  The
      -CAcreateserial option decides if this is ok or not.
      
      Previous to this change, -CAserial was a type '<' option, and in that
      case, the existence of the file given as argument is tested quite
      early, and is a failure if it doesn't.  With the type 's' option, the
      argument is just a string that the application can do whatever it
      wants with.
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      5c4e3a4e
    • Richard Levitte's avatar
      Add a -CAserial argument for signing the user cert request · 2455eaf4
      Richard Levitte authored
      
      
      This is just to make sure that option is tested on a Unix build.  This
      option is already present in ms/testss.bat, so it's an easy steal.
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      2455eaf4
    • Dr. Stephen Henson's avatar
      SSL_CONF table reorganisation. · 656b2605
      Dr. Stephen Henson authored
      
      
      Add command line switch entries to table and return SSL_CONF_TYPE_NONE for
      them in SSL_CONF_cmd_value_type.
      
      Update docs.
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      656b2605
    • Gunnar Kudrjavets's avatar
      Initialize potentially uninitialized local variables · 4c9b0a03
      Gunnar Kudrjavets authored
      
      
      Compiling OpenSSL code with MSVC and /W4 results in a number of warnings.
      One category of warnings is particularly interesting - C4701 (potentially
      uninitialized local variable 'name' used). This warning pretty much means
      that there's a code path which results in uninitialized variables being used
      or returned. Depending on compiler, its options, OS, values in registers
      and/or stack, the results can be nondeterministic. Cases like this are very
      hard to debug so it's rational to fix these issues.
      
      This patch contains a set of trivial fixes for all the C4701 warnings (just
      initializing variables to 0 or NULL or appropriate error code) to make sure
      that deterministic values will be returned from all the execution paths.
      
      RT#3835
      
      Signed-off-by: default avatarMatt Caswell <matt@openssl.org>
      
      Matt's note: All of these appear to be bogus warnings, i.e. there isn't
      actually a code path where an unitialised variable could be used - its just
      that the compiler hasn't been able to figure that out from the logic. So
      this commit is just about silencing spurious warnings.
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      4c9b0a03