- 22 10月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
-
- 21 10月, 2001 6 次提交
-
-
由 Dr. Stephen Henson 提交于
Reject certificates with unhandled critical extensions.
-
由 Dr. Stephen Henson 提交于
Stop spurious "unable to load config info" errors in req
-
由 Bodo Möller 提交于
be called multiple times
-
由 Bodo Möller 提交于
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices.
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
-
- 18 10月, 2001 3 次提交
-
-
由 Bodo Möller 提交于
variable name occured just in a function *prototype* -- so rename it
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
it to NULL.
-
- 17 10月, 2001 3 次提交
-
-
由 Bodo Möller 提交于
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
to digests to retain compatibility.
-
- 16 10月, 2001 10 次提交
-
-
由 Lutz Jänicke 提交于
-
由 Bodo Möller 提交于
Both have per-SSL_CTX defaults. These new values can be set by calling SSL[_CTX]_[callback_]ctrl with codes SSL_CTRL_SET_MSG_CALLBACK and SSL_CTRL_SET_MSG_CALLBACK_ARG. So far, the callback is never actually called. Also rearrange some SSL_CTX struct members (some exist just in SSL_CTXs, others are defaults for SSLs and are either copied during SSL_new, or used if the value in the SSL is not set; these three classes of members were not in a logical order), and add some missing assignments to SSL_dup.
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Retain compatibility of EVP_DigestInit() and EVP_DigestFinal() with existing code. Modify library to use digest *_ex() functions.
-
由 Bodo Möller 提交于
SSL 2.0 client hellos added with the previous commit was totally wrong -- it must start with the message type, not the protocol version. (Not that this particular header is actually used anywhere ...)
-
由 Bodo Möller 提交于
(if s23_srvr.c faked the message, s->init_num is 0).
-
由 Bodo Möller 提交于
'Handshake' protocol structures are kept in memory, including 'msg_type' and 'length'. (This is in preparation of future support for callbacks that get to peek at handshake messages and the like.)
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
case of ssl3_accept
-
- 14 10月, 2001 1 次提交
-
-
由 Ulf Möller 提交于
Submitted by: Toomas Kiisk <vix@cyber.ee>
-
- 12 10月, 2001 2 次提交
-
-
由 Lutz Jänicke 提交于
From: "Chris D. Peterson" <cpeterson@aventail.com> Subject: Implementation Issues with OpenSSL To: openssl-users@openssl.org Date: Wed, 22 Aug 2001 16:13:17 -0700 The patch included in the original post may improve the internal session list handling (and is therefore worth a seperate investigation). No change to the list handling will however solve the problems of incorrect SSL_SESSION_free() calls. The session list is only one possible point of failure, dangling pointers would also occur for SSL object currently using the session. The correct solution is to only use SSL_SESSION_free() when applicable!
-
由 Richard Levitte 提交于
such cases, a flush should *not* attempt to finalise the encoding, as the EVP_ENCODE_CTX structure will only be filled with garbage. For the same reason, do the same check when a wpending is performed.
-
- 11 10月, 2001 2 次提交
-
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
-
- 10 10月, 2001 6 次提交
-
-
由 Richard Levitte 提交于
used or not, let's ask collect2 which ld it uses and choose to use the target do-gnu_shared if GNU ld is used. This solves the reported problems on Solaris systems where GNU cc is used but GNU ld isn't, and probably on other systems with similar setups.
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
specifically, a starting './' is removed. makedepend doesn't do this, resulting in another possible commit war, so let's fix that by doing a poor mans canonicalisation of file names that gives the same effect as doing dependencies through gcc.
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
depend on the environment, like the presence of the OpenBSD crypto device or of Kerberos, do not change the dependencies within OpenSSL.
-
由 Richard Levitte 提交于
-
- 09 10月, 2001 6 次提交
-
-
由 Richard Levitte 提交于
-
由 Geoff Thorpe 提交于
however for different reasons. This separation should prevent the win32 build from interpreting evptests.txt as source code.
-
由 Geoff Thorpe 提交于
name. The implementations already use this anyway.
-
由 Geoff Thorpe 提交于
not implemented. (Bug reported by Martin Szotkowski) This also changes the non-"_ex" versions to defer directly to EVP_CipherInit_ex() rather than EVP_CipherInit() to avoid an unecessary level of indirection.
-
由 Geoff Thorpe 提交于
it to be defined on all platforms whether or not it is of any practical use on them. This also resolves linker problems on "special" platforms, such as win32.
-
由 Geoff Thorpe 提交于
-