Commits · 0b352c58db9f8d081c3abff6112e3b0c63a2b7b9 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Nov 28, 2003

Make a number of changes to the OS/2 build. Submitter's comment below. · 0b352c58

Richard Levitte authored Nov 28, 2003

PR: 732
Submitted by: Ilya Zakharevich <nospam-abuse@ilyaz.org>

Submitter's comment:

This patch:

a) Introduces a new file os2/backwardify.pl.

b) Introduces a new mk1mf.pl variable $preamble.  As you can see, it may
   be used also to move some OS-specific code to VC-CE too (the the
   first chunk of the patch);

c) The DESCRIPTION specifier of the .def file is made more informative:
   now it contains the version number too.  On OS/2 it is made conformant
   to OS/2 conventions; in particular, when one runs the standard command
	BLDLEVEL this.DLL
   one can see:

   Vendor:      www.openssl.org/
   Revision:    0.9.7c
   Description: OpenSSL: implementation of Secure Socket Layer; DLL for library crypto.  Build for EMX -Zmtd

   [I did not make Win32 descriptions as informative as this - I'm afraid to
    break something.  Be welcome to fix this.]

d) On OS/2 the generated DLL was hardly usable (it had a shared initialized
   data...

0b352c58

Move another common functionality (reproduced so far with cut'n'paste) · 03ddbdd9
Richard Levitte authored Nov 28, 2003
```
to apps.c, and give it the hopefully descriptive name parse_yesno().
```
03ddbdd9
Let's use text/plain in the example instead of crapy HTML. · 5ebdb390
Richard Levitte authored Nov 28, 2003
```
PR: 777
Submitted by: Michael Shields <mshields@sunblocksystems.com>
```
5ebdb390
Forgot to change the declaration of do_subject() to one of parse_name()... · d45a0984
Richard Levitte authored Nov 28, 2003

d45a0984

Move do_subject() to apps.c and rename it to parse_name(). The · 6d5ffb59

Richard Levitte authored Nov 28, 2003

rationale behind the move is that it's use by several applications.
The rationale behind the name change is that it describes what the
function does a bit better.

6d5ffb59

Allow multi-valued rdns in subjects. This adds the -multivalue-rdn option · 7ce9e425

Richard Levitte authored Nov 28, 2003

to 'openssl req' and 'openssl ca'.

PR: 779
Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de>
Reviewed by: Richard Levitte

(there will be some follow-up changes)

7ce9e425

Netware-specific changes, · 4d8743f4

Richard Levitte authored Nov 28, 2003

PR: 780
Submitted by: Verdon Walker <VWalker@novell.com>
Reviewed by: Richard Levitte

4d8743f4

Change my debugging entries to do fierce BIGNUM debugging. · 4c8b4f9d
Richard Levitte authored Nov 28, 2003

4c8b4f9d

Nov 25, 2003

Due to recent debugging bursts, openssl should be more or less solid · 81ba5f67

Geoff Thorpe authored Nov 25, 2003

against inconsistent BIGNUMs coming out of any of its API functions. So
this change no longer "fixes" the bn_print.c functions, but it makes for
cleaner code. This patch was a part of ticket 697.

PR: 697
Submitted by: Otto Moerbeek
Reviewed by: Geoff Thorpe

81ba5f67

Fix some handling in bn_word. This also resolves the issues observed in · 6defae04

Geoff Thorpe authored Nov 25, 2003

ticket 697 (though uses a different solution than the proposed one). This
problem was initially raised by Otto Moerbeek.

PR: 697
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe

6defae04

Some changes for bn_gf2m.c: better error checking plus some minor · e1064adf
Geoff Thorpe authored Nov 25, 2003
```
optimizations.

Submitted by: Nils Larsch
```
e1064adf

Nov 24, 2003
- Free "engine" resource in case of failure to prevent memory leak · d7559f16
  Lutz Jänicke authored Nov 24, 2003
```
PR: #778
Submitted by: George Mitchell <george@m5p.com>
```
  d7559f16
Nov 22, 2003

BN_div() cleanup: replace the use of BN_sub and BN_add with bn_sub_words · 9e989810

Geoff Thorpe authored Nov 22, 2003

and bn_add_words to avoid using fake bignums to window other bignums that
can lead to corruption. This change allows all bignum tests to pass with
BN_DEBUG and BN_DEBUG_RAND debugging and valgrind. NB: This should be
tested on a few different architectures and configuration targets, as the
bignum code this deals with is quite preprocessor (and assembly) sensitive.

Submitted by: Nils Narsch
Reviewed by: Geoff Thorpe, Ulf Moeller

9e989810

Nov 21, 2003

Fix a small bug in str_copy: if more than one variable is replaced, make · ec2179cf

Geoff Thorpe authored Nov 21, 2003

sure the current length is used to calculate the new buffer length instead
of using the old length (prior to any variable substitution).

Submitted by: Nils Larsch

ec2179cf

Nov 20, 2003
- Give CRLDP its standard name. · a8287a90
  Dr. Stephen Henson authored Nov 20, 2003
```
Max req -x509 use V1 if extensions section absent.
```
  a8287a90
- hpux64-parisc2-gcc target added. Once it is verified, ./config should · ad5f0ed5
  Andy Polyakov authored Nov 20, 2003
```
be modified to choose it instead of hpux64-parisc-gcc, which should
then be removed. hpux64-parisc-cc is removed already now as redundant
[in case you wonder, 64-bit HP-UX ABI *implies* PA-RISC2.0].
```
  ad5f0ed5
- ./config failed to correctly detect if gcc uses 64-bit ABI on HP-UX. · 0a4c8baf
  Andy Polyakov authored Nov 20, 2003
```
PR: 772
```
  0a4c8baf
Nov 18, 2003
- Make sure to initialize AES counters to obtain proper results. · 95de3d20
  Lutz Jänicke authored Nov 18, 2003
```
Submitted by: Kirill Kochetkov <kochet@ixbt.com>

PR: #748
```
  95de3d20
Nov 16, 2003
- re-enable the test, keeping the original method for RAND_pseudo_bytes · 31182ad3
  Ulf Möller authored Nov 16, 2003
```
which is used by BN_DEBUG_RAND
Submitted by: Nils Larsch
```
  31182ad3
- Catch error condition to prevent NULL pointer dereference. · f35232e6
  Lutz Jänicke authored Nov 16, 2003
```
Submitted by: Goetz Babin-Ebell <babin-ebell@trustcenter.de>

PR: #766
```
  f35232e6
- Provide ASFLAGS in the subdirectories handling assembler code. · fda5e385
  Lutz Jänicke authored Nov 16, 2003
```
Submitted by: Tim Rice <tim@multitalents.net>

PR: #735, #765
```
  fda5e385
- The x9.62 tests replace the PRNG with specific numbers, · ac9c6e10
  Ulf Möller authored Nov 16, 2003
```
so don't run them if BN_DEBUG_RAND is defined.

Also, fix another small bug.

Submitted by: Nils Larsch
```
  ac9c6e10
Nov 15, 2003

BN_set_bit() etc should use "unsigned int". · 1a017330

Ulf Möller authored Nov 15, 2003

Keep it as is to avoid an API change, but check for negativ values.

Submitted by: Nils Larsch

1a017330

Nov 14, 2003
- Less restrictive debugging build. · d2cd4612
  Richard Levitte authored Nov 14, 2003
  
  d2cd4612
Nov 13, 2003

This rewrites two "for" loops in BN_rshift() - equality with zero is · 9dde17e8

Geoff Thorpe authored Nov 13, 2003

generally a more efficient comparison than comparing two integers, and the
first of these two loops was off-by-one (copying one too many values). This
change also removes a superfluous assignment that would set an unused word
to zero (and potentially allow an overrun in some cases).

Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe

9dde17e8

Nov 10, 2003
- General improvements to the ec_asn1.c code. This squashes at least one bug · 37af03d3
  Geoff Thorpe authored Nov 10, 2003
```
(where it was impossible to create an EC certificate with a compressed
public key), and has some style improvements based on some comments from
Steve Henson about use of the ASN1 macros.

Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
```
  37af03d3
- Avoid possible memory leaks in error-handling. · f7a397cc
  Geoff Thorpe authored Nov 10, 2003
```
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
```
  f7a397cc
- Print out GeneralizedTime and UTCTime in ASN1_STRING_print_ex(). · cd2e8a6f
  Dr. Stephen Henson authored Nov 10, 2003
  
  cd2e8a6f
Nov 07, 2003
- Geoff suggested a more succinct description for "top". · d18b993c
  Ulf Möller authored Nov 07, 2003
  
  d18b993c
- oops... the description of ->top was inaccurate (the example is correct though) · e6e81c58
  Ulf Möller authored Nov 07, 2003
  
  e6e81c58
Nov 06, 2003
- This extends the debugging macros to use "pollution" during · f75abcef
  Geoff Thorpe authored Nov 06, 2003
```
bn_correct_top(), previously only bn_check_top() did this.
```
  f75abcef
- Add debug-screening of input parameters to some functions I'd missed · 18f62d4b
  Geoff Thorpe authored Nov 06, 2003
```
before.
```
  18f62d4b
- Put more debug screening in BN_div() and correct a comment. · 5c0c2280
  Geoff Thorpe authored Nov 06, 2003
  
  5c0c2280
Nov 05, 2003
- This is a revert of my previous commit to "improve" the declaration of · 0ef85c7f
  Geoff Thorpe authored Nov 05, 2003
```
constant BIGNUMs. It turns out that this trips up different but equally
useful compiler warnings to -Wcast-qual, and so wasn't worth the ugliness
it created. (Thanks to Ulf for the forehead-slap.)
```
  0ef85c7f
- typo in comment · 078dd1a0
  Ulf Möller authored Nov 05, 2003
  
  078dd1a0
- cleanup as discussed with Geoff · 2b96c951
  Ulf Möller authored Nov 05, 2003
  
  2b96c951
- Cygwin debugging · c5f1c7b4
  Ulf Möller authored Nov 05, 2003
  
  c5f1c7b4
Nov 04, 2003

Put the first stage of my bignum debugging adventures into CVS. This code · d870740c

Geoff Thorpe authored Nov 04, 2003

is itself experimental, and in addition may cause execution to break on
existing openssl "bugs" that previously were harmless or at least
invisible.

d870740c

Avoid some shadowed variable names. · d8ec0dcf
Geoff Thorpe authored Nov 04, 2003
```
Submitted by: Nils Larsch
```
d8ec0dcf

This is the least unacceptable way I've found for declaring the bignum data · c465e794

Geoff Thorpe authored Nov 04, 2003

and structures as constant without having to cast away const at any point.
There is still plenty of other code that makes gcc's "-Wcast-qual" unhappy,
but crypto/bn/ is now ok. Purists are welcome to suggest alternatives.

c465e794