- Jan 08, 2001
-
-
Dr. Stephen Henson authored
Add set of OCSP client functions. All experimental and subject to addition, modifcation or deletion. Add two OCSP nonce utility functions. Fix typo in status code name.
-
- Jan 07, 2001
-
-
Richard Levitte authored
-
- Jan 05, 2001
-
-
Dr. Stephen Henson authored
application needs. Add OCSP library name to error code.
-
- Jan 04, 2001
-
-
Dr. Stephen Henson authored
Set correct type in ASN1_STRING for INTEGER and ENUMERATED types. Make ASN1_INTEGER_get() and ASN1_ENUMERATED_get() return -1 for invalid type rather than 0 (which is often valid). -1 may also be valid but this is less likely. Load OCSP error strings in ERR_load_crypto_strings().
-
Dr. Stephen Henson authored
Remove extensions argument from various functions because it is not needed with the new extension code. New function OCSP_cert_to_id() to convert a pair of certificates into an OCSP_CERTID. New simple OCSP HTTP function. This is rather primitive but just about adequate to send OCSP requests and parse the response. Fix typo in CRL distribution points extension. Fix ASN1 code so it adds a final null to constructed strings.
-
- Dec 31, 2000
-
-
Dr. Stephen Henson authored
uses the new ASN1 code.
-
Richard Levitte authored
-
Richard Levitte authored
Make sure those are purged...
-
Richard Levitte authored
I've no idea were the KRB5 header files and libraries are placed on Win32. When there's better knowledge, we might be able to process the other KRB5-related arguments as well...
-
Richard Levitte authored
options. This is so mk1mf.pl can pick it up from Makefile.
-
Richard Levitte authored
is to have asn1.h include e_os.h and e_os2.h. Of course, this makes the unofficial "non-export" status of e_os.h a bit delicate...
-
Dr. Stephen Henson authored
Rewrite PKCS#12 code and remove some of the old horrible macros. Fix two evil ASN1 bugs. Attempt to use 'ctx' when NULL if input is indefinite length constructed in asn1_check_tlen() and invalid pointer to ASN1_TYPE when reusing existing structure (this took *ages* to find because the new PKCS#12 code triggered it).
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
objects) or OPENSSL_BUILD_SHLIBSSL (for files that end up as libssl objects) is defined, redefine OPENSSL_EXTERN to be OPENSSL_EXPORT. This is actually only important on Win32, and can safely be ignored in all other cases, at least for now.
-
Richard Levitte authored
default value OPENSSL_IMPORT. Explain the use of all those macros.
-
Richard Levitte authored
Add the C macros OPENSSL_BUILD_SHLIBCRYPTO and OPENSSL_BUILD_SHLIBSSL to the build of the object files as appropriate for each library.
-
Richard Levitte authored
-
- Dec 30, 2000
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
most of the old wrappers. A few of the old versions remain because they are non standard and the corresponding ASN1 code has not been reimplemented yet.
-
- Dec 29, 2000
-
-
Dr. Stephen Henson authored
zap some evil function pointers casts along the way...
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
* detect "unknown" algorithms (any C macro starting with NO_ that is not explicitely mentioned in mkdef.pl as a known algorithm) and report. * add a number of algorithms that can be deselected. * look in ssl/kssl.h as well. * accept multiple whitespace (not just one SPC) in preprocessor lines.
-
- Dec 28, 2000
-
-
Dr. Stephen Henson authored
something more efficient later...
-
Richard Levitte authored
-
Dr. Stephen Henson authored
currently OpenSSL itself wont compile with this set because some old style stuff remains. Change old functions X509_sign(), X509_verify() etc to use new item based functions. Replace OCSP function declarations with DECLARE macros.
-
Dr. Stephen Henson authored
The old function pointer versions will eventually go away.
-
Dr. Stephen Henson authored
-
- Dec 27, 2000
-
-
Bodo Möller authored
-
Dr. Stephen Henson authored
functions and signed/unsigned mismatch. This will of course change if some of the unused functions suddenly get used...
-
Dr. Stephen Henson authored
STACK_OF(X509_EXTENSION) so it should be passed STACK_OF(X509_EXTENSION) ** in the first argument. Modify wrappers appropriately.
-
- Dec 26, 2000
-
-
Bodo Möller authored
-
- Dec 25, 2000
-
-
Bodo Möller authored
-
- Dec 24, 2000
-
-
Dr. Stephen Henson authored
encoding, replacing and deleting extensions. Fix X509V3_get_d2i() so it uses takes note of new critical behaviour.
-
- Dec 21, 2000
-
-
Geoff Thorpe authored
disabling different SSL/TLS protocol versions.
-
Dr. Stephen Henson authored
Win32 but it is getting there... Update mkdef.pl to handle ASN1_ANY and fix headers. Stop various VC++ warnings. Include some fixes from "Peter 'Luna' Runestig" <peter@runestig.com> Remove external declaration for des_set_weak_key_flag: it doesn't exist.
-
- Dec 20, 2000
-
-
Geoff Thorpe authored
will not support EDH cipher suites). The parameters can either be loaded from a file (via "-dh_file"), generated by the application on start-up ("-dh_special generate"), or be standard DH parameters (as used in s_server, etc).
-
Geoff Thorpe authored
* Seal off some buffer functions so that only the higher-level IO functions are exposed. * Using the above change to buffer, add support to tunala for displaying traffic totals when a tunnel closes. Useful in debugging and analysis - you get to see the total encrypted traffic versus the total tunneled traffic. This shows not only how much expansion your data suffers from SSL (a lot if you send/receive a few bytes at a time), but also the overhead of SSL handshaking relative to the payload sent through the tunnel. This is controlled by the "-out_totals" switch to tunala. * Fix and tweak some bits in the README. Eg. sample output of "-out_totals" from a tunnel client when tunneling a brief "telnet" session. Tunnel closing, traffic stats follow SSL (network) traffic to/from server; 7305 bytes in, 3475 bytes out tunnelled data to/from server; 4295 bytes in, 186 bytes out
-