Check-in [ea64ff013f]
Overview
Comment:see changes
Downloads: Tarball | ZIP archive | SQL archive
Timelines: family | ancestors | descendants | both | trunk | tls-1-4-1
Files: files | file ages | folders
SHA1: ea64ff013f048351c30cb08414d00b8be998820a
User & Date: hobbs on 2001-06-21 23:34:20
Other Links: manifest | tags
Context
2002-02-04
22:45
updated to load tls from build dir check-in: 0efce5e54e user: hobbs tags: trunk
2001-06-21
23:34
see changes check-in: ea64ff013f user: hobbs tags: trunk, tls-1-4-1
23:34
moved to patchlevel 1.4.1 check-in: 55d3a9dbda user: hobbs tags: trunk
Changes
Modified ChangeLog from [9d7c1d4605] to [d1a7a7f0bf].



























1
2
3
4
5
6
7
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+







2001-06-21  Jeff Hobbs  <jeffh@ActiveState.com>

	* configure: added configure to CVS
	* configure.in: moved to patchlevel 1.4.1

	* Makefile.in: corrected 'dist' target

	* tests/certs/file.srl:
	* tests/certs/ca.pem:
	* tests/certs/client.key:
	* tests/certs/client.pem:
	* tests/certs/client.req:
	* tests/certs/privkey.pem:
	* tests/certs/server.key:
	* tests/certs/server.pem:
	* tests/certs/server.req:
	* tests/certs/cacert.pem: replaced by new ca.pem
	* tests/certs/skey.pem: replaced by new server.key
	* tests/certs/ckey.pem: replaced by new client.key
	* tests/certs/README.txt: new set of test certificates with some
	README info on their generation.

	* tests/ciphers.test: updated ciphers expected with default
	openssl build.

	* tests/tclIO.test: updated to use new names for certs/keys.

2001-03-14  Jeff Hobbs  <jeffh@gimlet.activestate.com>

	* tls.c (Tls_Init): add do/while for random number initialization
	to work around some OSes quirks.  (Ralph.Billes@teltech.com.au)

2000-09-07  Jeff Hobbs  <hobbs@scriptics.com>

1
2

3
4

5
6
7
8
9
10
11
12
13
14
15
16
17
18


19
20
21
22
23
24
25
1

2
3

4
5
6
7
8
9
10
11
12
13
14
15
16
17

18
19
20
21
22
23
24
25
26

-
+

-
+













-
+
+







Copyright (C) 1997-2000 Matt Newman <matt@novadigm.com>
TLS 1.4 Copyright (C) 2000 Ajuba Solutions
TLS 1.4.1 Copyright (C) 2000 Ajuba Solutions

$Header: /home/rkeene/tmp/cvs2fossil/../tcltls/tls/tls/README.txt,v 1.2 2000/08/15 18:49:07 hobbs Exp $
$Header: /home/rkeene/tmp/cvs2fossil/../tcltls/tls/tls/README.txt,v 1.3 2001/06/21 23:34:20 hobbs Exp $

TLS (aka SSL) Channel - can be layered on any bi-directional Tcl_Channel.

Both client and server-side sockets are possible, and this code should work
on any platform as it uses a generic mechanism for layering on SSL and Tcl.

The TLS 1.4 release requires Tcl 8.2.0+, with 8.3.2+ preferred.  The
stacked channel implementation in Tcl was originally introduced in 8.2.0
(previously the Trf patch) and rewritten for 8.3.2+ due to inherent
limitations in the earlier implementation.  TLS 1.4 should compile with
any stubs-capable Tcl interpreter, but will require 8.2+ when loaded.
There are known limitations in the 8.2.0-8.3.1 stacked channel
implementation, so it is encouraged that people use TLS 1.4+ with an
8.3.2+ Tcl interpreter.
8.3.2+ Tcl interpreter.  These modifications are by Jeff Hobbs
<jeff@hobbs.org>.

Full filevent sematics should also be intact - see tests directory for
blocking and non-blocking examples.

This was built (almost) from scratch based upon observation of OpenSSL 0.9.2B

Addition credit is due for Andreas Kupries (a.kupries@westend.com), for