- Mar 11, 2003
-
-
Geoff Thorpe authored
dsa_mod_exp() and bn_mod_exp() handlers from dsa_do_verify() and dsa_sign_setup(). When another DSA_METHOD implementation does not define these lower-level handlers, it becomes impossible to do a fallback to software on errors using a simple DSA_OpenSSL()->fn(key). This change allows the default DSA_METHOD to function in such circumstances by only using dsa_mod_exp() and bn_mod_exp() handlers if they exist, otherwise using BIGNUM implementations directly (which is what those handlers did before this change). There should be no noticable difference for the software case, or indeed any custom case that didn't already segfault, except perhaps that there is now one less level of indirection in all cases. PR: 507
-
- Feb 28, 2003
-
-
Bodo Möller authored
- bugfix: in ECDH_compute_key, pad x coordinate with leading zeros if necessary
-
- Feb 27, 2003
-
-
Dr. Stephen Henson authored
-
- Feb 25, 2003
-
-
Dr. Stephen Henson authored
the buffer pointer. Rename PKCS7_PARTSIGN to PKCS7_STREAM. Guess what that's for :-)
-
- Feb 22, 2003
-
-
Ulf Möller authored
rearrange some of the other text for better readability.
-
Richard Levitte authored
-
Dr. Stephen Henson authored
when reading from a non blocking BIO. It would incorrectly interpret retries as EOF, incorrectly buffer initial data and have no buffering at all after initial data (data would be sent one byte at a time to EVP_DecodeUpdate).
-
- Feb 19, 2003
-
-
Richard Levitte authored
An advisory will be posted to the web. Expect a release within the hour.
-
- Feb 18, 2003
-
-
Richard Levitte authored
-
- Feb 15, 2003
-
-
Dr. Stephen Henson authored
-
- Feb 14, 2003
-
-
Richard Levitte authored
PR: 454
-
- Feb 13, 2003
-
-
Richard Levitte authored
applications, at least on the platforms where it's known how to do it. Note: this has only been tested on GNU-based platforms (Linux), and needs to be tested on all others. Additionally, it's not yet supported on the following platforms, for lack of information: Darwin (MacOS X) Cygwin OSF1/Alpha SVR3 ReliantUNIX Please help out with testing and the platforms we don't yet know well enough.
-
- Feb 12, 2003
-
-
Richard Levitte authored
mit_des_cbc_cksum(). The difference was first observed, then verified by looking at the MIT source.
-
Dr. Stephen Henson authored
-
- Feb 11, 2003
-
-
Bodo Möller authored
-
- Feb 06, 2003
-
-
Bodo Möller authored
-
Bodo Möller authored
Submitted by: Nils Larsch Reviewed by: Bodo Moeller
-
- Feb 05, 2003
-
-
Dr. Stephen Henson authored
-
- Jan 30, 2003
-
-
Richard Levitte authored
PR: 287
-
Geoff Thorpe authored
-
- Jan 24, 2003
-
-
Bodo Möller authored
-
Dr. Stephen Henson authored
where it fails in ASN1_TIME_set(). Edit asn1.h so the new error code is the same in 0.9.7 and 0.9.8, rebuild new error codes. Clear error queue in req.c if *_min or *_max is absent.
-
- Jan 15, 2003
-
-
Lutz Jänicke authored
Submitted by: Nils Larsch <nla@trustcenter.de> PR: 459
-
Lutz Jänicke authored
PR: 377
-
Geoff Thorpe authored
override key-generation implementations by placing handlers in the methods for DSA and DH. Also, parameter generation for DSA and DH is possible by another new handler for each method.
-
- Jan 13, 2003
-
-
Richard Levitte authored
-
Bodo Möller authored
-
- Jan 12, 2003
-
-
Richard Levitte authored
Add specific support for FreeBSD on sparc64. PR: 427
-
- Jan 10, 2003
-
-
Richard Levitte authored
Add instructions in INSTALL, for easy access. PR: 437
-
- Dec 31, 2002
-
-
Richard Levitte authored
It's even more silly to pretend we know which year 0.9.8 will be released.
-
Richard Levitte authored
-
- Dec 30, 2002
-
-
Richard Levitte authored
-
- Dec 29, 2002
-
-
Lutz Jänicke authored
PR: 377
-
- Dec 19, 2002
-
-
Richard Levitte authored
and then didn't support it very well. And that when there already is a useful variable for exactly this kind of thing; EX_LIBS...
-
- Dec 13, 2002
-
-
Richard Levitte authored
callbacks
-
- Dec 12, 2002
-
-
Richard Levitte authored
engine work properly even in bad situations.
-
- Dec 08, 2002
-
-
Richard Levitte authored
ZLIB a known compression method, with the identity 1.
-
Geoff Thorpe authored
key-generation and prime-checking functions. Rather than explicitly passing callback functions and caller-defined context data for the callbacks, a new structure BN_GENCB is defined that encapsulates this; a pointer to the structure is passed to all such functions instead. This wrapper structure allows the encapsulation of "old" and "new" style callbacks - "new" callbacks return a boolean result on the understanding that returning FALSE should terminate keygen/primality processing. The BN_GENCB abstraction will allow future callback modifications without needing to break binary compatibility nor change the API function prototypes. The new API functions have been given names ending in "_ex" and the old functions are implemented as wrappers to the new ones. The OPENSSL_NO_DEPRECATED symbol has been introduced so that, if defined, declaration of the older functions will be skipped. NB: Some openssl-internal code will stick with the older callbacks for now, so appropriate "#undef" logic will be put in place - this is in case the user is *building* openssl (rather than *including* its headers) with this symbol defined. There is another change in the new _ex functions; the key-generation functions do not return key structures but operate on structures passed by the caller, the return value is a boolean. This will allow for a smoother transition to having key-generation as "virtual function" in the various ***_METHOD tables.
-
- Dec 05, 2002
-
-
Richard Levitte authored
-
- Dec 03, 2002
-
-
Dr. Stephen Henson authored
return the requested number of bytes when reading content.
-