tolerated in certificates.

between SSLeay 0.8.1b and 0.9.0b with no apparent reason).
If we *want* an error when DEVRANDOM is not defined (it always is with
the current e_os.h) we should use #error.

ultimately lead to certificate chain verification. It is
VERY EXPERIMENTAL at present though.

Fix a bug in the X509_get_d2i() functions which didn't check if crit was NULL.

platforms. See crypto/rc4/rc4_enc.c for further details.

platforms. See crypto/rc4/rc4_enc.c for further details.

explicitly. Previously it couldn't be changed because it was hard coded as
"server.pem".

new DSA public key functions that were missing.

Also beginning of a cache for X509_EXTENSION structures: this will allow them
to be accessed more quickly for things like certificate chain verification...

Fix for d2i_ASN1_bytes and stop PKCS#7 routines crashing is signed message
contains no certificates.

Also fix typo in RANLIB changes.

rsaref needs ist.

Submitted by: Will Day

Modify the 'speed' application so it now uses RSA_sign and RSA_verify
instead of RSA_private_encrypt and RSA_public_decrypt

Contributed by: Peter Huang <PETER_HUANG@HP-Cupertino-om8.om.hp.com>

See comments in the code (after #if defined(RC4_CHUNK)) for more details.

Submitted by: Alan Batie

buffer (which leads to truncation of client cipher list).

broken bc's around.

(Are there any others that have been submitted but not yet reviewed/integrated?)

an improvement on not working at all.

warnings :-(

and verify rather than direct encrypt/decrypt.