oweals/openssl.git
18 years agoBecause all object files are now in a file, we don't need to mention
Richard Levitte [Thu, 1 Jun 2006 10:24:47 +0000 (10:24 +0000)]
Because all object files are now in a file, we don't need to mention
any of them on the linker command line.  Besides, OBJECT_FILE now
represents the last compiled file, and using it here only results in
getting warnings about multiple definitions of the symbols in that
file.

18 years agoNew pkey functions for keygen callbacks and retrieving operation type.
Dr. Stephen Henson [Wed, 31 May 2006 17:34:14 +0000 (17:34 +0000)]
New pkey functions for keygen callbacks and retrieving operation type.

18 years agoTune up AES CFB. Performance improvement varies from 10% to 50% from
Andy Polyakov [Tue, 30 May 2006 07:20:13 +0000 (07:20 +0000)]
Tune up AES CFB. Performance improvement varies from 10% to 50% from
platform to platform. Its absolute value is within few percents
marginal from that of ECB.

18 years agoUse a new signed int ii instead of j (which is unsigned) to handle the
Richard Levitte [Sun, 28 May 2006 19:44:27 +0000 (19:44 +0000)]
Use a new signed int ii instead of j (which is unsigned) to handle the
return value from sk_SSL_CIPHER_find().

18 years agoDeal with another name that's longer than 31 characters.
Richard Levitte [Sun, 28 May 2006 19:39:36 +0000 (19:39 +0000)]
Deal with another name that's longer than 31 characters.

18 years agorslen is unsigned, so it can never go below 0.
Richard Levitte [Sun, 28 May 2006 19:36:29 +0000 (19:36 +0000)]
rslen is unsigned, so it can never go below 0.

18 years agoInstall openssl.cnf to OPENSSLDIR in mk1mf.pl
Dr. Stephen Henson [Sun, 28 May 2006 00:49:49 +0000 (00:49 +0000)]
Install openssl.cnf to OPENSSLDIR in mk1mf.pl

18 years agoFlush p7bio when all data has been copied.
Dr. Stephen Henson [Fri, 26 May 2006 17:14:23 +0000 (17:14 +0000)]
Flush p7bio when all data has been copied.

18 years agoFix warnings.
Dr. Stephen Henson [Fri, 26 May 2006 13:27:58 +0000 (13:27 +0000)]
Fix warnings.

18 years agoUpdate pkeyutl to use size_t for pkey functions.
Dr. Stephen Henson [Fri, 26 May 2006 12:24:49 +0000 (12:24 +0000)]
Update pkeyutl to use size_t for pkey functions.

18 years agoSigned vs. unsigned conflict
Richard Levitte [Thu, 25 May 2006 23:40:04 +0000 (23:40 +0000)]
Signed vs. unsigned conflict

18 years agoThere was a problem with too long command lines, so I rebuilt to make
Richard Levitte [Thu, 25 May 2006 23:37:03 +0000 (23:37 +0000)]
There was a problem with too long command lines, so I rebuilt to make
it work better.

18 years agoAllow any supported cipher to be used with smime -encrypt.
Dr. Stephen Henson [Thu, 25 May 2006 16:53:52 +0000 (16:53 +0000)]
Allow any supported cipher to be used with smime -encrypt.

18 years agoAdd prototypes, update Win32 ordinals.
Dr. Stephen Henson [Thu, 25 May 2006 11:44:05 +0000 (11:44 +0000)]
Add prototypes, update Win32 ordinals.

18 years agoKeep in sync with Unix
Richard Levitte [Thu, 25 May 2006 10:40:01 +0000 (10:40 +0000)]
Keep in sync with Unix

18 years agoUpdate EVP_MD_CTX_copy_ex() to use EVP_PKEY_CTX_dup().
Dr. Stephen Henson [Thu, 25 May 2006 00:55:00 +0000 (00:55 +0000)]
Update EVP_MD_CTX_copy_ex() to use EVP_PKEY_CTX_dup().

18 years agoNew function to dup EVP_PKEY_CTX. This will be needed to make new signing
Dr. Stephen Henson [Wed, 24 May 2006 23:49:30 +0000 (23:49 +0000)]
New function to dup EVP_PKEY_CTX. This will be needed to make new signing
functions and EVP_MD_CTX_copy work properly.

18 years agoNew functions for enchanced digest sign/verify.
Dr. Stephen Henson [Wed, 24 May 2006 17:30:09 +0000 (17:30 +0000)]
New functions for enchanced digest sign/verify.

18 years agoFix warnings.
Dr. Stephen Henson [Wed, 24 May 2006 13:29:32 +0000 (13:29 +0000)]
Fix warnings.

18 years agoUse size_t for new crypto size parameters.
Dr. Stephen Henson [Wed, 24 May 2006 12:33:46 +0000 (12:33 +0000)]
Use size_t for new crypto size parameters.

18 years agoFix smime -pk7out.
Dr. Stephen Henson [Mon, 22 May 2006 13:37:16 +0000 (13:37 +0000)]
Fix smime -pk7out.

18 years agoAdd ctrl to EVP_MD and EVP_PKEY_CTX to EVP_MD_CTX. These will be used
Dr. Stephen Henson [Mon, 22 May 2006 13:01:01 +0000 (13:01 +0000)]
Add ctrl to EVP_MD and EVP_PKEY_CTX to EVP_MD_CTX. These will be used
for enhanced sign/verify operations.

18 years agoTiny up hpux targets.
Andy Polyakov [Sat, 20 May 2006 08:52:34 +0000 (08:52 +0000)]
Tiny up hpux targets.

18 years agoAdd -resign and -md options to smime command to support resigning an
Dr. Stephen Henson [Thu, 18 May 2006 23:44:44 +0000 (23:44 +0000)]
Add -resign and -md options to smime command to support resigning an
existing structure and using alternative digest for signing.

18 years agoCode tidy.
Dr. Stephen Henson [Thu, 18 May 2006 18:06:03 +0000 (18:06 +0000)]
Code tidy.

18 years agoTypo.
Dr. Stephen Henson [Thu, 18 May 2006 17:46:56 +0000 (17:46 +0000)]
Typo.

18 years agomake update
Dr. Stephen Henson [Thu, 18 May 2006 17:22:31 +0000 (17:22 +0000)]
make update

18 years agoMore S/MIME tidy. Place some common attribute operations in utility
Dr. Stephen Henson [Thu, 18 May 2006 17:20:23 +0000 (17:20 +0000)]
More S/MIME tidy. Place some common attribute operations in utility
functions.

18 years agoRemove old digest type hacks for non RSA keys.
Dr. Stephen Henson [Thu, 18 May 2006 13:05:20 +0000 (13:05 +0000)]
Remove old digest type hacks for non RSA keys.

18 years agoMultiple signer support in smime application.
Dr. Stephen Henson [Thu, 18 May 2006 12:41:28 +0000 (12:41 +0000)]
Multiple signer support in smime application.

18 years agoReformat smime.c utility.
Dr. Stephen Henson [Thu, 18 May 2006 11:54:16 +0000 (11:54 +0000)]
Reformat smime.c utility.

18 years agoNew option to pkcs12 utility to set alternative MAC digest algorithm.
Dr. Stephen Henson [Wed, 17 May 2006 18:46:22 +0000 (18:46 +0000)]
New option to pkcs12 utility to set alternative MAC digest algorithm.

18 years agoDon't try to print PBE information if it can't be decoded.
Dr. Stephen Henson [Wed, 17 May 2006 18:24:35 +0000 (18:24 +0000)]
Don't try to print PBE information if it can't be decoded.

18 years agoPKCS#12 mac key length should equal digest length.
Dr. Stephen Henson [Wed, 17 May 2006 18:19:51 +0000 (18:19 +0000)]
PKCS#12 mac key length should equal digest length.

18 years agoTidy up of S/MIME code and add new functions which will make is easier
Dr. Stephen Henson [Wed, 17 May 2006 17:17:01 +0000 (17:17 +0000)]
Tidy up of S/MIME code and add new functions which will make is easier
to create S/MIME signed data with multiple signers.

18 years agoExtended PBES2 function supporting application supplied IV and PRF NID.
Dr. Stephen Henson [Wed, 17 May 2006 12:47:17 +0000 (12:47 +0000)]
Extended PBES2 function supporting application supplied IV and PRF NID.

18 years agoOops...
Dr. Stephen Henson [Wed, 17 May 2006 12:29:16 +0000 (12:29 +0000)]
Oops...

18 years agoHMAC OIDs from RFC4231.
Dr. Stephen Henson [Wed, 17 May 2006 12:27:45 +0000 (12:27 +0000)]
HMAC OIDs from RFC4231.

18 years agoGather keygen options in req and only use them after all other options have
Dr. Stephen Henson [Tue, 16 May 2006 12:11:14 +0000 (12:11 +0000)]
Gather keygen options in req and only use them after all other options have
been processed. This allows any ENGINE changing operations to be processed
first (for example a config file).

18 years agoAdd PRF preference ctrl to ciphers.
Dr. Stephen Henson [Mon, 15 May 2006 18:35:13 +0000 (18:35 +0000)]
Add PRF preference ctrl to ciphers.

18 years agoChange builting PBE to use static table. Add entries for HMAC and MD5, GOST.
Dr. Stephen Henson [Mon, 15 May 2006 17:34:36 +0000 (17:34 +0000)]
Change builting PBE to use static table. Add entries for HMAC and MD5, GOST.

18 years agoUpdate old **EVIL** PEM_X509_INFO_read_bio() function to correctly assign
Dr. Stephen Henson [Mon, 15 May 2006 13:28:00 +0000 (13:28 +0000)]
Update old **EVIL** PEM_X509_INFO_read_bio() function to correctly assign
private keys.

FIXME: this function should really be rewritten because it is *horrible*.

18 years agoBugfix: the NONE string for PBE algorithms wasn't working.
Dr. Stephen Henson [Mon, 15 May 2006 13:23:15 +0000 (13:23 +0000)]
Bugfix: the NONE string for PBE algorithms wasn't working.

18 years agoCorrectly handle missing DSA parameters.
Dr. Stephen Henson [Mon, 15 May 2006 01:26:52 +0000 (01:26 +0000)]
Correctly handle missing DSA parameters.

18 years agoAdd feature to PKCS12_create() if the encryption NID corresponds to a
Dr. Stephen Henson [Mon, 15 May 2006 00:45:10 +0000 (00:45 +0000)]
Add feature to PKCS12_create() if the encryption NID corresponds to a
supported encryption algorithm instead of a PBE NID then use that
algorithm with PBES2.

18 years agoExtend PBE code to support non default PKCS#5 v2.0 PRFs.
Dr. Stephen Henson [Sun, 14 May 2006 18:40:53 +0000 (18:40 +0000)]
Extend PBE code to support non default PKCS#5 v2.0 PRFs.

18 years agoCheck for deprecated private key types before PKCS#8 types.
Dr. Stephen Henson [Sun, 14 May 2006 18:35:42 +0000 (18:35 +0000)]
Check for deprecated private key types before PKCS#8 types.

18 years agoTypo.
Dr. Stephen Henson [Sun, 14 May 2006 16:50:22 +0000 (16:50 +0000)]
Typo.

18 years agoAdd includes in synopsis.
Ulf Möller [Sun, 14 May 2006 11:28:00 +0000 (11:28 +0000)]
Add includes in synopsis.
Submitted by: Mike Frysinger <vapier@gentoo.org>

18 years agoIn interactive mode only config OpenSSL once.
Dr. Stephen Henson [Fri, 12 May 2006 17:11:58 +0000 (17:11 +0000)]
In interactive mode only config OpenSSL once.

18 years agoStop warnings about deprecated -mcpu option.
Dr. Stephen Henson [Fri, 12 May 2006 16:06:12 +0000 (16:06 +0000)]
Stop warnings about deprecated -mcpu option.

18 years agomake update
Richard Levitte [Fri, 12 May 2006 15:31:28 +0000 (15:31 +0000)]
make update

18 years agoSomeone made a mistake, and some function and reason codes got
Richard Levitte [Fri, 12 May 2006 15:27:52 +0000 (15:27 +0000)]
Someone made a mistake, and some function and reason codes got
duplicate numbers.  Renumbering.

18 years agoTypo.
Dr. Stephen Henson [Fri, 12 May 2006 00:27:39 +0000 (00:27 +0000)]
Typo.

18 years agoUpdate 'req' command to use new keygen API.
Dr. Stephen Henson [Thu, 11 May 2006 21:39:00 +0000 (21:39 +0000)]
Update 'req' command to use new keygen API.

18 years agoNew functions to get key types without dereferncing EVP_PKEY.
Dr. Stephen Henson [Thu, 11 May 2006 21:33:00 +0000 (21:33 +0000)]
New functions to get key types without dereferncing EVP_PKEY.

More error checking for RSA pmeth.

18 years agoUpdate PKCS#7 decrypt routines to use new API.
Dr. Stephen Henson [Mon, 8 May 2006 16:38:19 +0000 (16:38 +0000)]
Update PKCS#7 decrypt routines to use new API.

18 years agoUpdate PKCS#7 enveloped data to new API.
Dr. Stephen Henson [Mon, 8 May 2006 12:44:25 +0000 (12:44 +0000)]
Update PKCS#7 enveloped data to new API.

18 years agoUpdate S/MIME code to use default digest.
Dr. Stephen Henson [Sun, 7 May 2006 17:22:58 +0000 (17:22 +0000)]
Update S/MIME code to use default digest.

18 years agoAdd support for default public key digest type ctrl.
Dr. Stephen Henson [Sun, 7 May 2006 17:09:39 +0000 (17:09 +0000)]
Add support for default public key digest type ctrl.

18 years agoFix from stable branch.
Dr. Stephen Henson [Sun, 7 May 2006 12:30:37 +0000 (12:30 +0000)]
Fix from stable branch.

18 years agobug fix.
Ulf Möller [Sat, 6 May 2006 18:26:12 +0000 (18:26 +0000)]
bug fix.
PR: 1326
Submitted by: John Skodon

18 years agoFuther minor PPC assembler update.
Andy Polyakov [Thu, 4 May 2006 21:30:41 +0000 (21:30 +0000)]
Futher minor PPC assembler update.

18 years agoUpdate from stable branch.
Dr. Stephen Henson [Thu, 4 May 2006 16:32:31 +0000 (16:32 +0000)]
Update from stable branch.

18 years agoUpdate FAQ.
Dr. Stephen Henson [Thu, 4 May 2006 14:22:00 +0000 (14:22 +0000)]
Update FAQ.

18 years agoMinor PPC assembler updates.
Andy Polyakov [Wed, 3 May 2006 14:07:34 +0000 (14:07 +0000)]
Minor PPC assembler updates.

18 years agoPPC assembler distiller update.
Andy Polyakov [Wed, 3 May 2006 13:39:34 +0000 (13:39 +0000)]
PPC assembler distiller update.

18 years agoTypo in linux-ppc line.
Andy Polyakov [Wed, 3 May 2006 13:38:50 +0000 (13:38 +0000)]
Typo in linux-ppc line.

18 years agoUpdate from stable branch.
Dr. Stephen Henson [Wed, 3 May 2006 13:19:06 +0000 (13:19 +0000)]
Update from stable branch.

18 years agoBug fix.
Ulf Möller [Mon, 1 May 2006 18:49:26 +0000 (18:49 +0000)]
Bug fix.

PR: 1307
Submitted by: Oliver Tappe <zooey@hirschkaefer.de>

18 years agoSHA1 for PowerPC.
Andy Polyakov [Mon, 1 May 2006 13:35:03 +0000 (13:35 +0000)]
SHA1 for PowerPC.

18 years agoYet another "teaser" Montgomery multiplication module, for PowerPC.
Andy Polyakov [Sun, 30 Apr 2006 21:15:29 +0000 (21:15 +0000)]
Yet another "teaser" Montgomery multiplication module, for PowerPC.

18 years agoUpdate EVP_PKEY_cmp() and X509_check_private() to return sensible values and
Dr. Stephen Henson [Fri, 28 Apr 2006 12:27:37 +0000 (12:27 +0000)]
Update EVP_PKEY_cmp() and X509_check_private() to return sensible values and
handle unsupported key types.

18 years agoFix from stable branch.
Dr. Stephen Henson [Fri, 28 Apr 2006 00:30:49 +0000 (00:30 +0000)]
Fix from stable branch.

18 years agoReplace RSA specific PKCS7_RECIP_INFO set up with an public key algorithm
Dr. Stephen Henson [Thu, 27 Apr 2006 18:20:34 +0000 (18:20 +0000)]
Replace RSA specific PKCS7_RECIP_INFO set up with an public key algorithm
ctrl.

18 years agoCode tidy.
Dr. Stephen Henson [Thu, 27 Apr 2006 00:42:51 +0000 (00:42 +0000)]
Code tidy.

18 years agoNew function to extract AlgorithmIdentifier for PKCS7_RECIP_INFO.
Dr. Stephen Henson [Thu, 27 Apr 2006 00:29:50 +0000 (00:29 +0000)]
New function to extract AlgorithmIdentifier for PKCS7_RECIP_INFO.

18 years agoDon't free up parameter. The public key ASN1 method can do that if it needs
Dr. Stephen Henson [Thu, 27 Apr 2006 00:20:43 +0000 (00:20 +0000)]
Don't free up parameter. The public key ASN1 method can do that if it needs
to.

18 years agoFix usage message for pkeyutl.
Dr. Stephen Henson [Wed, 26 Apr 2006 15:42:29 +0000 (15:42 +0000)]
Fix usage message for pkeyutl.

18 years agoAdd prototypes and pkey accessor function for EVP_PKEY_CTX.
Dr. Stephen Henson [Wed, 26 Apr 2006 11:52:36 +0000 (11:52 +0000)]
Add prototypes and pkey accessor function for EVP_PKEY_CTX.

18 years agoCorrect copyright notice... this doesn't contain any SSLeay code.
Dr. Stephen Henson [Mon, 24 Apr 2006 00:07:26 +0000 (00:07 +0000)]
Correct copyright notice... this doesn't contain any SSLeay code.

18 years agoAdd 'flags' parameter to EVP_PKEY_asn1_meth_new() to set algorithm flags.
Dr. Stephen Henson [Fri, 21 Apr 2006 17:38:58 +0000 (17:38 +0000)]
Add 'flags' parameter to EVP_PKEY_asn1_meth_new() to set algorithm flags.

18 years agoundo accidental commit
Nils Larsch [Thu, 20 Apr 2006 13:54:34 +0000 (13:54 +0000)]
undo accidental commit

18 years agoas we encrypt every bit separately we need to loop through the number
Nils Larsch [Thu, 20 Apr 2006 13:11:52 +0000 (13:11 +0000)]
as we encrypt every bit separately we need to loop through the number
of bits; thanks to Michael McDougall <mmcdouga@saul.cis.upenn.edu>

PR: 1318

18 years agomake local function static
Nils Larsch [Thu, 20 Apr 2006 09:53:49 +0000 (09:53 +0000)]
make local function static

18 years agoRemove dss1 hack from S/MIME code.
Dr. Stephen Henson [Wed, 19 Apr 2006 17:47:15 +0000 (17:47 +0000)]
Remove dss1 hack from S/MIME code.

18 years agoRemove link between digests and signature algorithms.
Dr. Stephen Henson [Wed, 19 Apr 2006 17:05:59 +0000 (17:05 +0000)]
Remove link between digests and signature algorithms.

Use cross reference table in ASN1_item_sign(), ASN1_item_verify() to eliminate
the need for algorithm specific code.

18 years agoRemove comment from SSLeay days about EVP_PKEY_METHOD.
Dr. Stephen Henson [Wed, 19 Apr 2006 12:16:58 +0000 (12:16 +0000)]
Remove comment from SSLeay days about EVP_PKEY_METHOD.

18 years agoMake sure obj_xref.h is updated during a "make update"
Richard Levitte [Wed, 19 Apr 2006 06:45:06 +0000 (06:45 +0000)]
Make sure obj_xref.h is updated during a "make update"

18 years agoSynchronise with Unixly build.
Richard Levitte [Wed, 19 Apr 2006 06:44:07 +0000 (06:44 +0000)]
Synchronise with Unixly build.
(Geez, a lot is happening right now, eh? :-))

18 years agoAdd OID cross reference table.
Dr. Stephen Henson [Tue, 18 Apr 2006 23:36:07 +0000 (23:36 +0000)]
Add OID cross reference table.

Fix some typos in GOST OIDs.

Update dependencies.

18 years agoSynchronise
Richard Levitte [Mon, 17 Apr 2006 17:19:59 +0000 (17:19 +0000)]
Synchronise

18 years agoAllow public key ASN1 methods to set PKCS#7 SignerInfo structures.
Dr. Stephen Henson [Mon, 17 Apr 2006 17:12:23 +0000 (17:12 +0000)]
Allow public key ASN1 methods to set PKCS#7 SignerInfo structures.

18 years agoIf we include winsock2.h then FD_SET wants an unsigned type for an fd.
Dr. Stephen Henson [Mon, 17 Apr 2006 12:22:13 +0000 (12:22 +0000)]
If we include winsock2.h then FD_SET wants an unsigned type for an fd.

18 years agoFix (most) WIN32 warnings and errors.
Dr. Stephen Henson [Mon, 17 Apr 2006 12:08:22 +0000 (12:08 +0000)]
Fix (most) WIN32 warnings and errors.

18 years agoProvisional support for EC pkey method, supporting ECDH and ECDSA.
Dr. Stephen Henson [Sun, 16 Apr 2006 16:15:59 +0000 (16:15 +0000)]
Provisional support for EC pkey method, supporting ECDH and ECDSA.

18 years agoSHA-1 for x86_64.
Andy Polyakov [Sun, 16 Apr 2006 14:42:54 +0000 (14:42 +0000)]
SHA-1 for x86_64.

18 years agoUse more flexible method of determining output length, by setting &outlen
Dr. Stephen Henson [Sat, 15 Apr 2006 18:50:56 +0000 (18:50 +0000)]
Use more flexible method of determining output length, by setting &outlen
value of the passed output buffer is NULL.

The old method of using EVP_PKEY_size(pkey) isn't flexible enough to cover all
cases where the output length may depend on the operation or the parameters
associated with it.

18 years agoFix from 0.9.7-stable branch.
Dr. Stephen Henson [Sat, 15 Apr 2006 17:43:43 +0000 (17:43 +0000)]
Fix from 0.9.7-stable branch.

18 years agoRevert to original...
Dr. Stephen Henson [Sat, 15 Apr 2006 13:15:25 +0000 (13:15 +0000)]
Revert to original...