- Feb 08, 2001
-
-
Bodo Möller authored
Bleichenbacher's DSA attack. With this implementation, the expected number of iterations never exceeds 2. New semantics for BN_rand_range(): BN_rand_range(r, min, range) now generates r such that min <= r < min+range. (Previously, BN_rand_range(r, min, max) generated r such that min <= r < max. It is more convenient to have the range; also the previous prototype was misleading because max was larger than the actual maximum.)
-
- Feb 07, 2001
-
-
Ulf Möller authored
-
Dr. Stephen Henson authored
Fix AES code. Update Rijndael source to v3.0 Add AES OIDs. Change most references of Rijndael to AES. Add new draft AES ciphersuites.
-
- Feb 06, 2001
-
-
Bodo Möller authored
-
Ulf Möller authored
-
- Feb 05, 2001
-
-
Dr. Stephen Henson authored
request to response.
-
- Feb 03, 2001
-
-
Dr. Stephen Henson authored
Various OCSP responder utility functions. Delete obsolete OCSP functions. Largely untested at present...
-
- Feb 02, 2001
-
-
Dr. Stephen Henson authored
-
- Feb 01, 2001
-
-
Dr. Stephen Henson authored
certificates. One is a valid CA which has no basicConstraints but does have certSign keyUsage. Other is S/MIME signer with nonRepudiation but no digitalSignature.
-
- Jan 30, 2001
-
-
Richard Levitte authored
-
- Jan 28, 2001
-
-
Dr. Stephen Henson authored
-
- Jan 26, 2001
-
-
Dr. Stephen Henson authored
-
- Jan 25, 2001
-
-
Dr. Stephen Henson authored
ciphersuites.
-
- Jan 24, 2001
-
-
Dr. Stephen Henson authored
Fix PKCS7 and PKCS12 memory leaks. Initialise encapsulated content type properly.
-
- Jan 23, 2001
-
-
Bodo Möller authored
-
Ulf Möller authored
-
- Jan 21, 2001
-
-
Ulf Möller authored
-
- Jan 20, 2001
-
-
Dr. Stephen Henson authored
-
- Jan 19, 2001
-
-
Dr. Stephen Henson authored
Enhance s2i_ASN1_INTEGER().
-
Bodo Möller authored
-
Dr. Stephen Henson authored
of status info. Check nonce values. Option to disable verify. Update usage message. Rename status to string functions and make them global.
-
- Jan 18, 2001
-
-
Dr. Stephen Henson authored
accordance with RFC2560.
-
- Jan 17, 2001
-
-
Richard Levitte authored
-
Dr. Stephen Henson authored
Initial OCSP certificate verify. Not complete, it just supports a "trusted OCSP global root CA".
-
- Jan 15, 2001
-
-
Bodo Möller authored
This allows keeping extensions in a separate configuration file. Submitted by: Massimiliano Pala <madwolf@comune.modena.it>
-
- Jan 14, 2001
-
-
Dr. Stephen Henson authored
non null terminated passwords.
-
- Jan 13, 2001
-
-
Dr. Stephen Henson authored
New OCSP utility. This can generate, parse and print OCSP requests. It can also query reponders and parse or print out responses. Still needs some more work: OCSP response checks and of course documentation.
-
- Jan 12, 2001
-
-
Bodo Möller authored
commands. Submitted by: Massimiliano Pala <madwolf@comune.modena.it>
-
- Jan 11, 2001
-
-
Bodo Möller authored
Submitted by: Damien Miller <djm@mindrot.org>
-
Richard Levitte authored
-
Dr. Stephen Henson authored
OCSP basic response verify. Very incomplete but will verify the signatures on a response and locate the signers certifcate. Still needs to implement a proper OCSP certificate verify. Fix warning in RAND_egd().
-
- Jan 10, 2001
-
-
Bodo Möller authored
allocation callbacks so that it is no longer visible to applications that these live at a different call level than conventional memory allocation callbacks.
-
Bodo Möller authored
Add '-d' option for 'openssl version' (included in '-a').
-
Bodo Möller authored
-
Richard Levitte authored
handling routines that need file name and line number information, I've added a call level to our memory handling routines to allow that kind of hooking.
-
Dr. Stephen Henson authored
unicode strings. Certain PKCS#12 files contain these in BMPStrings and it used to crash on them.
-
- Jan 09, 2001
-
-
Lutz Jänicke authored
only queried when the /dev/[u]random devices did not return enough entropy. Only the amount of entropy missing to reach the required minimum is queried, as EGD may be drained. Queried locations are: /etc/entropy, /var/run/egd-pool
-
Geoff Thorpe authored
on details. :-)
-
Geoff Thorpe authored
"doall" functions to using type-safe wrappers. As and where required, this can be replaced by redeclaring the underlying callbacks to use the underlying "void"-based prototypes (eg. if performance suffers from an extra level of function invocation).
-
- Jan 08, 2001
-
-
Richard Levitte authored
them for a short period of time (actually, poll them with select(), then read() whatever is there), which is about 10ms (hard-coded value) each. Separate Windows and Unixly code, and start on a VMS variant that currently just returns 0.
-