- 23 7月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
-
- 21 7月, 2001 2 次提交
-
-
由 Richard Levitte 提交于
-
由 Ben Laurie 提交于
OpenBSD /dev/crypto (this will be revamped later when the appropriate machinery is available).
-
- 20 7月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
does not contain more bytes than the RSA modulus 'n' - it does not check that the input is strictly *less* than 'n'. Whether this should be the case or not is open to debate - however, due to security problems with returning miscalculated CRT results, the 'rsa_mod_exp' implementation in rsa_eay.c now performs a public-key exponentiation to verify the CRT result and in the event of an error will instead recalculate and return a non-CRT (more expensive) mod_exp calculation. As the mod_exp of 'I' is equivalent to the mod_exp of 'I mod n', and the verify result is automatically between 0 and n-1 inclusive, the verify only matches the input if 'I' was less than 'n', otherwise even a correct CRT calculation is only congruent to 'I' (ie. they differ by a multiple of 'n'). Rather than rejecting correct calculations and doing redundant and slower ones instead, this changes the equality check in the verification code to a congruence check.
-
- 12 7月, 2001 2 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
certificate so need to match its subject with the certificate IDs in the response.
-
- 11 7月, 2001 4 次提交
-
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
-
- 10 7月, 2001 7 次提交
-
-
由 Bodo Möller 提交于
the term "simultaneous multiplication" (which -- acording to the paper, at least -- applies only to certain methods which we don't use here)
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
由 Richard Levitte 提交于
SSL according to RFC 2712. His comment is: This is a patch to openssl-SNAP-20010702 to support Kerberized SSL authentication. I'm expecting to have the full kssl-0.5 kit up on sourceforge by the end of the week. The full kit includes patches for mod-ssl, apache, and a few text clients. The sourceforge URL is http://sourceforge.net/projects/kssl/ . Thanks to a note from Simon Wilkinson I've replaced my KRB5 AP_REQ message with a real KerberosWrapper struct. I think this is fully RFC 2712 compliant now, including support for the optional authenticator field. I also added openssl-style ASN.1 macros for a few Kerberos structs; see crypto/krb5/ if you're interested.
-
由 Ben Laurie 提交于
for encrypt?).
-
- 09 7月, 2001 2 次提交
-
-
由 Ben Laurie 提交于
Worth around 5% for encrypt. Slows down decrypt slightly, but I expect to regain that later.
-
由 Ben Laurie 提交于
-
- 08 7月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 07 7月, 2001 2 次提交
-
-
由 Ben Laurie 提交于
-
由 Ben Laurie 提交于
-
- 05 7月, 2001 3 次提交
-
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
-
由 Bodo Möller 提交于
-
- 04 7月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 03 7月, 2001 2 次提交
-
-
由 Richard Levitte 提交于
used.
-
由 Richard Levitte 提交于
Changes to have OpenSSL compile on OS/2. Contributed by "Brian Havard" <brianh@kheldar.apana.org.au>
-
- 02 7月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
Contributed by "Brian Havard" <brianh@kheldar.apana.org.au>
-
- 28 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Modify apps to use NCONF code instead of old CONF code. Add new extension functions which work with NCONF. Tidy up extension config routines and remove redundant code. Fix NCONF_get_number(). Todo: more testing of apps to see they still work...
-
- 26 6月, 2001 3 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
-
由 Bodo Möller 提交于
-
- 25 6月, 2001 2 次提交
-
-
由 Richard Levitte 提交于
at the same time a bit more accepting with host names.
-
由 Bodo Möller 提交于
-
- 24 6月, 2001 5 次提交
-
-
由 Richard Levitte 提交于
-
由 Dr. Stephen Henson 提交于
count of the ENGINE is x is not NULL since it will be freed in {RSA,DSA,DH}_free().
-
由 Richard Levitte 提交于
NOTE: Boolean input hasn't been very well tested yet, so this part may fail miserably.
-
由 Richard Levitte 提交于
_XOPEN_SOURCE_EXTENDED wasn't very smart...
-
由 Richard Levitte 提交于
-