Skip to content
  1. Jun 20, 2000
    • Dr. Stephen Henson's avatar
      · 7ef82068
      Dr. Stephen Henson authored
      Handle ASN1_SET_OF and PKCS12_STACK_OF using function
      casts in the same way as STACK_OF.
      7ef82068
  2. Jun 16, 2000
    • Dr. Stephen Henson's avatar
      Safe stack reorganisation in terms of function casts. · 3aceb94b
      Dr. Stephen Henson authored
      After some messing around this seems to work but needs
      a few more tests. Working out the syntax for sk_set_cmp_func()
      (cast it to a function that itself returns a function pointer)
      was painful :-(
      
      Needs some testing to see what other compilers think of this
      syntax.
      
      Also needs similar stuff for ASN1_SET_OF etc etc.
      3aceb94b
  3. Jun 15, 2000
  4. Jun 11, 2000
  5. Jun 10, 2000
  6. Jun 08, 2000
  7. Jun 07, 2000
  8. Jun 03, 2000
  9. Jun 01, 2000
    • Geoff Thorpe's avatar
      This change will cause builds (by default) to not use different STACK · e41c8d6a
      Geoff Thorpe authored
      structures and functions for each stack type. The previous behaviour
      can be enabled by configuring with the "-DDEBUG_SAFESTACK" option.
      This will also cause "make update" (mkdef.pl in particular) to
      update the libeay.num and ssleay.num symbol tables with the number of
      extra functions DEBUG_SAFESTACK creates.
      
      The way this change works is to accompany each DECLARE_STACK_OF()
      macro with a set of "#define"d versions of the sk_##type##_***
      functions that ensures all the existing "type-safe" stack calls are
      precompiled into the underlying stack calls. The presence or abscence
      of the DEBUG_SAFESTACK symbol controls whether this block of
      "#define"s or the DECLARE_STACK_OF() macro is taking effect. The
      block of "#define"s is in turn generated and maintained by a perl
      script (util/mkstack.pl) that encompasses the block with delimiting
      C comments. This works in a similar way to the auto-generated error
      codes and, like the other such maintenance utilities, is invoked
      by the "make update" target.
      
      A long (but mundane) commit will follow this with the results of
      "make update" - this will include all the "#define" blocks for
      each DECLARE_STACK_OF() statement, along with stripped down
      libeay.num and ssleay.num files.
      e41c8d6a
    • Geoff Thorpe's avatar
      The previous commit to crypto/stack/*.[ch] pulled the type-safety strings · ccd86b68
      Geoff Thorpe authored
      yet tighter, and also put some heat on the rest of the library by
      insisting (correctly) that compare callbacks used in stacks are prototyped
      with "const" parameters. This has led to a depth-first explosion of
      compiler warnings in the code where 1 constification has led to 3 or 4
      more. Fortunately these have all been resolved to completion and the code
      seems cleaner as a result - in particular many of the _cmp() functions
      should have been prototyped with "const"s, and now are. There was one
      little problem however;
      
      X509_cmp() should by rights compare "const X509 *" pointers, and it is now
      declared as such. However, it's internal workings can involve
      recalculating hash values and extensions if they have not already been
      setup. Someone with a more intricate understanding of the flow control of
      X509 might be able to tighten this up, but for now - this seemed the
      obvious place to stop the "depth-first" constification of the code by
      using an evil cast (they have migrated all the way here from safestack.h).
      
      Fortunately, this is the only place in the code where this was required
      to complete these type-safety changes, and it's reasonably clear and
      commented, and seemed the least unacceptable of the options. Trying to
      take the constification further ends up exploding out considerably, and
      indeed leads directly into generalised ASN functions which are not likely
      to cooperate well with this.
      ccd86b68
  10. May 30, 2000
    • Bodo Möller's avatar
      Improve PRNG robustness. · 361ee973
      Bodo Möller authored
      361ee973
    • Dr. Stephen Henson's avatar
      · 49528751
      Dr. Stephen Henson authored
      More EVP cipher revision.
      
      Change EVP_SealInit() and EVP_OpenInit() to
      handle cipher parameters.
      
      Make it possible to set RC2 and RC5 params.
      
      Make RC2 ASN1 code use the effective key bits
      and not the key length.
      
      TODO: document how new API works.
      49528751
    • Dr. Stephen Henson's avatar
      Fourth phase EVP revision. · 57ae2e24
      Dr. Stephen Henson authored
      Declare ciphers in terms of macros. This reduces
      the amount of code and places each block cipher EVP
      definition in a single file instead of being spread
      over 4 files.
      57ae2e24
  11. May 28, 2000
  12. May 27, 2000
  13. May 26, 2000
    • Dr. Stephen Henson's avatar
      · 7f060601
      Dr. Stephen Henson authored
      Beginnings of EVP cipher overhaul. This should eventually
      enhance and tidy up the EVP interface.
      
      This patch adds initial support for variable length ciphers
      and changes S/MIME code to use this.
      
      Some other library functions need modifying to support use
      of modified cipher parameters.
      
      Also need to change all the cipher functions that should
      return error codes, but currenly don't.
      
      And of course it needs extensive testing...
      7f060601
  14. May 25, 2000
  15. May 24, 2000
  16. May 18, 2000
  17. May 15, 2000
  18. May 04, 2000
  19. May 02, 2000
  20. Apr 29, 2000
  21. Apr 27, 2000
    • Ulf Möller's avatar
      · 3973628e
      Ulf Möller authored
      Submitted by:
      Reviewed by:
      PR:
      3973628e
  22. Apr 20, 2000
  23. Apr 19, 2000
    • Geoff Thorpe's avatar
      This change facilitates name translation for shared libraries. The · b9e63915
      Geoff Thorpe authored
      technique used is far from perfect and alternatives are welcome.
      Basically if the translation flag is set, the string is not too
      long, and there appears to be no path information in the string,
      then it is converted to whatever the standard should be for the
      DSO_METHOD in question, eg;
          blah --> libblah.so   on *nix, and
          blah --> blah.dll     on win32.
      
      This change also introduces the DSO_ctrl() function that is used
      by the name translation stuff.
      b9e63915
  24. Apr 14, 2000
  25. Apr 10, 2000
  26. Apr 06, 2000
  27. Apr 04, 2000
  28. Apr 01, 2000
  29. Mar 30, 2000