Skip to content
  1. Dec 08, 2002
    • Geoff Thorpe's avatar
      Undefine OPENSSL_NO_DEPRECATED inside openssl application code if we are · 5daec7ea
      Geoff Thorpe authored
      being built with it defined - it is not a symbol to affect how openssl
      itself builds, but to alter the way openssl headers can be used from an API
      point of view. The "deprecated" function wrappers will always remain inside
      OpenSSL at least as long as they're still being used internally. :-)
      
      The exception is dsaparam which has been updated to the BN_GENCB-based
      functions to test the new functionality. If GENCB_TEST is defined, dsaparam
      will support a "-timebomb <n>" switch to cancel parameter-generation if it
      gets as far as 'n' seconds without completion.
      5daec7ea
    • Geoff Thorpe's avatar
      This is a first-cut at improving the callback mechanisms used in · e9224c71
      Geoff Thorpe authored
      key-generation and prime-checking functions. Rather than explicitly passing
      callback functions and caller-defined context data for the callbacks, a new
      structure BN_GENCB is defined that encapsulates this; a pointer to the
      structure is passed to all such functions instead.
      
      This wrapper structure allows the encapsulation of "old" and "new" style
      callbacks - "new" callbacks return a boolean result on the understanding
      that returning FALSE should terminate keygen/primality processing.  The
      BN_GENCB abstraction will allow future callback modifications without
      needing to break binary compatibility nor change the API function
      prototypes. The new API functions have been given names ending in "_ex" and
      the old functions are implemented as wrappers to the new ones.  The
      OPENSSL_NO_DEPRECATED symbol has been introduced so that, if defined,
      declaration of the older functions will be skipped. NB: Some
      openssl-internal code will stick with the older callbacks for now, so
      appropriate "#undef" logic will be put in place - this is in case the user
      is *building* openssl (rather than *including* its headers) with this
      symbol defined.
      
      There is another change in the new _ex functions; the key-generation
      functions do not return key structures but operate on structures passed by
      the caller, the return value is a boolean. This will allow for a smoother
      transition to having key-generation as "virtual function" in the various
      ***_METHOD tables.
      e9224c71
    • Geoff Thorpe's avatar
    • Richard Levitte's avatar
      Since it's defined in draft-ietf-tls-compression-04.txt, let's make · 7ba666fa
      Richard Levitte authored
      ZLIB a known compression method, with the identity 1.
      7ba666fa
    • Richard Levitte's avatar
      Implement a stateful variant if the ZLIB compression method. The old · 86a62cf1
      Richard Levitte authored
      stateless variant is kept, but isn't used anywhere.
      86a62cf1
  2. Dec 07, 2002
  3. Dec 06, 2002
  4. Dec 05, 2002
  5. Dec 04, 2002
  6. Dec 03, 2002
  7. Dec 02, 2002