- Mar 17, 2004
-
-
Geoff Thorpe authored
porting efforts. Also, add Richard's name to the prior change.
-
- Mar 15, 2004
-
-
Richard Levitte authored
functions and macros. This change has associated tags: LEVITTE_before_const and LEVITTE_after_const. Those will be removed when this change has been properly reviewed.
-
- Mar 13, 2004
-
-
Geoff Thorpe authored
Remove certain redundant BN_zero() initialisations, because BN_CTX_get(), BN_init(), [etc] already initialise to zero. Correct error checking in bn_sqr.c, and be less wishy-wash about how/why the result's 'top' value is set (note also, 'max' is always > 0 at this point).
-
Geoff Thorpe authored
change to work properly; BN_zero() should set 'neg' to zero as well as 'top' to match the behaviour of BN_new().
-
- Mar 08, 2004
-
-
Dr. Stephen Henson authored
-
- Mar 05, 2004
-
-
Dr. Stephen Henson authored
when X509_V_FLAG_X509_STRICT is set. Check for CRLSign in CRL issuer certificates. Reject CRLs with unhandled (any) critical extensions.
-
- Feb 19, 2004
-
-
Dr. Stephen Henson authored
The old raw format can't be handled by some implementations and updates to RFC2560 will make this mandatory.
-
- Feb 01, 2004
-
-
Dr. Stephen Henson authored
memory allocate when calling EVP_MD_CTX_copy_ex(). Without this HMAC is several times slower than < 0.9.7.
-
- Nov 10, 2003
-
-
Dr. Stephen Henson authored
-
- Nov 04, 2003
-
-
Geoff Thorpe authored
is itself experimental, and in addition may cause execution to break on existing openssl "bugs" that previously were harmless or at least invisible.
-
- Oct 29, 2003
-
-
Geoff Thorpe authored
except internally to the allocator BN_CTX_new(), as such this deprecates the use of BN_CTX_init() in the API. Moreover, the structure definition of BN_CTX is taken out of bn_lcl.h and moved into bn_ctx.c itself. NDEBUG should probably only be "forced" in the top-level configuration, but until it is I will avoid removing it from bn_ctx.c which might surprise people with massive slow-downs in their keygens. So I've left it in bn_ctx.c but tidied up the preprocessor logic a touch and made it more tolerant of debugging efforts.
-
Geoff Thorpe authored
choice but to have to cast away "const" qualifiers from their prototypes. This does not remove constification restrictions from hash/compare callbacks, but allows destructor commands to be run over a tables' elements without bad casts.
-
Geoff Thorpe authored
linux system (namely mine) chokes on our definitions and uses of the "HZ" symbol in crypto/tmdiff.[ch] and apps/speed.c as a "bad function cast" (when in fact there is no function casting involved at all). In both cases, it is easily worked around by not defining a cast into the macro and jiggling the expressions slightly. In addition - this highlights some cruft in openssl that needs sorting out. The tmdiff.h header is exported as part of the openssl API despite the fact that it is ugly as the driven sludge and not used anywhere in the library, applications, or utilities. More weird still, almost identical code exists in apps/speed.c though it looks to be slightly tweaked - so either tmdiff should be updated and used by speed.c, or it should be dumped because it's obviously not useful enough. Rather than removing it for now, I've changed the API for tmdiff to at least make sense. This involves taking the object type (MS_TM) from the implementation and using it in the header rather than using "char *" in the API and casting mercilessly in the code (ugh). If someone doesn't like "MS_TM" and the "ms_time_***" naming, by all means change it. This should be a harmless improvement, because the existing API is clearly not very useful (eg. we reimplement it rather than using it in our own utils). However, someone still needs to take a hack at consolidating speed.c and tmdiff.[ch] somehow.
-
Geoff Thorpe authored
and links with OPENSSL_NO_DEPRECATED defined.
-
Geoff Thorpe authored
be) precompiled out in the API headers. This change is to ensure that if it is defined when compiling openssl, the deprecated functions aren't implemented either.
-
- Oct 11, 2003
-
-
Dr. Stephen Henson authored
-
- Oct 10, 2003
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
type is "other".
-
- Sep 30, 2003
-
-
Dr. Stephen Henson authored
-
- Sep 25, 2003
-
-
Ralf S. Engelschall authored
sure the loop does correctly stop and breaking ("division by zero") modulus operations are not performed. The (pre-generated) prime table crypto/bn/bn_prime.h was already correct, but it could not be re-generated on some platforms because of the "division by zero" situation in the script.
-
- Sep 04, 2003
-
-
Bodo Möller authored
0.9.6h forked into 0.9.6i and 0.9.7 ...
-
- Sep 03, 2003
-
-
Dr. Stephen Henson authored
exiting on the first error in a request.
-
Dr. Stephen Henson authored
one, as required by SSL/TLS specs.
-
- Jul 22, 2003
-
-
Bodo Möller authored
Submitted by: Douglas Stebila Reviewed by: Bodo Moeller
-
Bodo Möller authored
add code for kP+lQ timings Submitted by: Douglas Stebila <douglas.stebila@sun.com> Reviewed by: Bodo Moeller
-
- Jul 21, 2003
-
-
Bodo Möller authored
PR: 659
-
Bodo Möller authored
typo in 0.9.6k section
-
- Jun 19, 2003
-
-
Richard Levitte authored
PR: 587
-
Richard Levitte authored
-
Richard Levitte authored
-
- Jun 11, 2003
-
-
Richard Levitte authored
-
Richard Levitte authored
-
- Jun 10, 2003
-
-
Richard Levitte authored
-
- Jun 03, 2003
-
-
Dr. Stephen Henson authored
-
- Jun 01, 2003
-
-
Dr. Stephen Henson authored
-
- May 01, 2003
-
-
Richard Levitte authored
-
Richard Levitte authored
crypto/store/README, crypto/store/store.h and crypto/store/str_locl.h.
-
Richard Levitte authored
-
- Apr 29, 2003
-
-
Richard Levitte authored
that uses them that I'll commit in a few days.
-
Richard Levitte authored
returns an index.
-