Skip to content
  1. Dec 08, 2002
    • Geoff Thorpe's avatar
      This is a first-cut at improving the callback mechanisms used in · e9224c71
      Geoff Thorpe authored
      key-generation and prime-checking functions. Rather than explicitly passing
      callback functions and caller-defined context data for the callbacks, a new
      structure BN_GENCB is defined that encapsulates this; a pointer to the
      structure is passed to all such functions instead.
      
      This wrapper structure allows the encapsulation of "old" and "new" style
      callbacks - "new" callbacks return a boolean result on the understanding
      that returning FALSE should terminate keygen/primality processing.  The
      BN_GENCB abstraction will allow future callback modifications without
      needing to break binary compatibility nor change the API function
      prototypes. The new API functions have been given names ending in "_ex" and
      the old functions are implemented as wrappers to the new ones.  The
      OPENSSL_NO_DEPRECATED symbol has been introduced so that, if defined,
      declaration of the older functions will be skipped. NB: Some
      openssl-internal code will stick with the older callbacks for now, so
      appropriate "#undef" logic will be put in place - this is in case the user
      is *building* openssl (rather than *including* its headers) with this
      symbol defined.
      
      There is another change in the new _ex functions; the key-generation
      functions do not return key structures but operate on structures passed by
      the caller, the return value is a boolean. This will allow for a smoother
      transition to having key-generation as "virtual function" in the various
      ***_METHOD tables.
      e9224c71
    • Geoff Thorpe's avatar
    • Richard Levitte's avatar
      Since it's defined in draft-ietf-tls-compression-04.txt, let's make · 7ba666fa
      Richard Levitte authored
      ZLIB a known compression method, with the identity 1.
      7ba666fa
    • Richard Levitte's avatar
      Implement a stateful variant if the ZLIB compression method. The old · 86a62cf1
      Richard Levitte authored
      stateless variant is kept, but isn't used anywhere.
      86a62cf1
  2. Dec 07, 2002
  3. Dec 06, 2002
  4. Dec 05, 2002
  5. Dec 04, 2002
  6. Dec 03, 2002
  7. Dec 02, 2002
    • Richard Levitte's avatar
      define USE_SOCKETS so sys/param.h gets included (and thusly, MAXHOSTNAMELEN · e7a28569
      Richard Levitte authored
      gets defined).
      PR: 371
      e7a28569
    • Richard Levitte's avatar
      I think I got it now. Apparently, the case of having to shift down · 6ab285bf
      Richard Levitte authored
      the divisor was a bit more complex than I first saw.  The lost bit
      can't just be discarded, as there are cases where it is important.
      For example, look at dividing 320000 with 80000 vs. 80001 (all
      decimals), the difference is crucial.  The trick here is to check if
      that lost bit was 1, and in that case, do the following:
      
      1. subtract the quotient from the remainder
      2. as long as the remainder is negative, add the divisor (the whole
         divisor, not the shofted down copy) to it, and decrease the
         quotient by one.
      
      There's probably a nice mathematical proof for this already, but I
      won't bother with that, unless someone requests it from me.
      6ab285bf