Andy Polyakov [Tue, 19 Jul 2005 22:33:03 +0000 (22:33 +0000)]
This update gets endianness-neutrality right and adds second required
entry point, md5_block_asm_data_order.
Andy Polyakov [Tue, 19 Jul 2005 22:27:02 +0000 (22:27 +0000)]
MD5 IA-64 assembler implementation. Original copy for reference purposes.
Submitted by: David Mosberger
Obtained from: http://www.hpl.hp.com/research/linux/crypto/
Andy Polyakov [Mon, 18 Jul 2005 18:59:21 +0000 (18:59 +0000)]
Retire original rc4-ia64.S.
Andy Polyakov [Mon, 18 Jul 2005 18:56:16 +0000 (18:56 +0000)]
Switch to new RC4 IA-64 module.
Andy Polyakov [Mon, 18 Jul 2005 17:11:13 +0000 (17:11 +0000)]
This update implements following improvements.
1. Original submission required minor modification to RC4_set_key, which
we don't want to tolerate and therefore we fix assembler instead.
2. Eliminate remaining byte-order dependence [look for RC4_BIG_ENDIAN].
3. Eliminate logical error [when key->x is referred prior key is verified].
4. HP-UX assembler puked on MODSCHED_RC4 macro with "syntax error,"
macro has to be splitted in two.
5. Deploy parallel compare in function prologue.
6. Eliminate redundant instuctions and nops.
7. Eliminate assembler warnings.
Andy Polyakov [Mon, 18 Jul 2005 16:55:52 +0000 (16:55 +0000)]
Unrolled RC4 IA-64 loop gives 40% improvement over current assembler
implementation [as predicted].
Submitted by: David Mosberger
Obtained from: http://www.hpl.hp.com/research/linux/crypto/
Andy Polyakov [Mon, 18 Jul 2005 09:54:14 +0000 (09:54 +0000)]
Fix unwind directives in IA-64 assembler modules. This helps symbolic
debugging and doesn't affect functionality.
Submitted by: David Mosberger
Obtained from: http://www.hpl.hp.com/research/linux/crypto/
Andy Polyakov [Mon, 18 Jul 2005 09:15:04 +0000 (09:15 +0000)]
~15% better AES x86_64 assembler.
Nils Larsch [Sun, 17 Jul 2005 21:04:19 +0000 (21:04 +0000)]
fix typo
Nils Larsch [Sun, 17 Jul 2005 16:09:09 +0000 (16:09 +0000)]
bugfix: 0 - w (w != 0) is actually negative
Nils Larsch [Sat, 16 Jul 2005 12:37:36 +0000 (12:37 +0000)]
make
./configure no-deprecated [no-dsa] [no-dh] [no-ec] [no-rsa]
make depend all test
work again
PR: 1159
Nils Larsch [Fri, 15 Jul 2005 09:49:03 +0000 (09:49 +0000)]
add missing entries for "-multivalue-rdn" and "-utf8" in ca.pod and req.pod
PR: 1158
Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de>
Andy Polyakov [Thu, 14 Jul 2005 13:16:31 +0000 (13:16 +0000)]
Commentary section update.
Nils Larsch [Wed, 13 Jul 2005 22:01:33 +0000 (22:01 +0000)]
the second argument of d2i_X509, d2i_X509_CRL and d2i_X509_REQ is const
PR: 1156
Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de>
Andy Polyakov [Tue, 12 Jul 2005 22:11:22 +0000 (22:11 +0000)]
complementary x86_64-xlate.pl update.
Andy Polyakov [Tue, 12 Jul 2005 15:44:58 +0000 (15:44 +0000)]
AES x86_64 assembler implementation.
Andy Polyakov [Fri, 8 Jul 2005 16:46:22 +0000 (16:46 +0000)]
Latest Intel compiler means every word in "if copying [with memcpy] takes
place between objects that overlap, the behavior is undefined." It's hard
to comprehend, but it reportedly manages to be case.
Richard Levitte [Fri, 8 Jul 2005 10:13:22 +0000 (10:13 +0000)]
On case insensitive systems, 'install' gets mixed up with the existing file
'INSTALL', so we need to put some force into installing
Richard Levitte [Tue, 5 Jul 2005 19:16:24 +0000 (19:16 +0000)]
Changes from the 0.9.8 branch.
Richard Levitte [Tue, 5 Jul 2005 18:36:42 +0000 (18:36 +0000)]
Changes from the 0.9.8 branch.
Andy Polyakov [Tue, 5 Jul 2005 11:48:38 +0000 (11:48 +0000)]
CHANGES and TABLE sync with 0.9.8.
Andy Polyakov [Tue, 5 Jul 2005 11:44:45 +0000 (11:44 +0000)]
Pull up Win64 support from 0.9.8.
Richard Levitte [Tue, 5 Jul 2005 05:14:17 +0000 (05:14 +0000)]
Add libcrypto.pc and libssl.pc, and install them along with openssl.pc.
PR: 1143
Dr. Stephen Henson [Mon, 4 Jul 2005 23:12:04 +0000 (23:12 +0000)]
Update from stable branch.
Richard Levitte [Mon, 4 Jul 2005 21:44:16 +0000 (21:44 +0000)]
The private key should never have ended up in newreq.pem.
Now, it ends up in newkey.pem instead.
Andy Polyakov [Sun, 3 Jul 2005 13:10:45 +0000 (13:10 +0000)]
Fix bugs in bug-fix to x509/by_dir.c.
PR: 1131
Andy Polyakov [Sun, 3 Jul 2005 09:17:50 +0000 (09:17 +0000)]
Trap condition should be 64-bit when it's due.
Andy Polyakov [Sat, 2 Jul 2005 08:58:55 +0000 (08:58 +0000)]
More elegant solution to "sparse decimal printout on PPC" problem.
Andy Polyakov [Fri, 1 Jul 2005 17:49:47 +0000 (17:49 +0000)]
Decimal printout of a BN is wrong on PPC, it's sparse with very few
significant digits. As soon it verifies elsewhere it goes to 0.9.8 and
0.9.7.
Nils Larsch [Fri, 1 Jul 2005 16:08:14 +0000 (16:08 +0000)]
initialize newly allocated data
PR: 1145
Andy Polyakov [Fri, 1 Jul 2005 10:13:30 +0000 (10:13 +0000)]
Pedantic polish to aes-586.pl:-)
Andy Polyakov [Thu, 30 Jun 2005 22:09:03 +0000 (22:09 +0000)]
Typos in commentary section.
Andy Polyakov [Thu, 30 Jun 2005 22:06:35 +0000 (22:06 +0000)]
AES_cbc_encrypt to allow end-user to retain small blocks performance by
aligning the key schedule in a specific manner.
Dr. Stephen Henson [Thu, 30 Jun 2005 11:34:58 +0000 (11:34 +0000)]
Check PKCS7 structures in PKCS#12 files are of type data.
Richard Levitte [Wed, 29 Jun 2005 18:48:08 +0000 (18:48 +0000)]
Actually, the 64bit format specifier differs between SIXTY_FOUR_BIT and
SIXTY_FOUR_BIT_LONG
Ben Laurie [Wed, 29 Jun 2005 11:02:15 +0000 (11:02 +0000)]
Brought forward from 0.9.8 - 64 bit warning fixes and fussy compiler fixes.
Ben Laurie [Wed, 29 Jun 2005 10:25:06 +0000 (10:25 +0000)]
Fix warnings.
Richard Levitte [Tue, 28 Jun 2005 15:44:11 +0000 (15:44 +0000)]
asn1parse doesn't support any TXT format, so let's stop pretending
it does.
Nils Larsch [Tue, 28 Jun 2005 15:05:02 +0000 (15:05 +0000)]
remove OPENSSL_NO_ASM dependency
Andy Polyakov [Tue, 28 Jun 2005 11:50:50 +0000 (11:50 +0000)]
Replace _int64 with __int64, which is more widely accepted among Win32
compiler vendors.
Andy Polyakov [Tue, 28 Jun 2005 11:28:43 +0000 (11:28 +0000)]
A report suggests that there're nasm version, which defaults to 16-bit
segmenting...
Andy Polyakov [Tue, 28 Jun 2005 09:57:04 +0000 (09:57 +0000)]
Mention hpux64-ia64-cc blowfish failure in PROBLEMS.
Richard Levitte [Tue, 28 Jun 2005 05:55:22 +0000 (05:55 +0000)]
There are a few showstoppers. Unfortunately, I only remember one. Please fill this in.
Andy Polyakov [Mon, 27 Jun 2005 21:27:23 +0000 (21:27 +0000)]
Eliminate dependency on UNICODE macro.
Andy Polyakov [Mon, 27 Jun 2005 15:56:53 +0000 (15:56 +0000)]
Fix typos in apps/apps.c
Dr. Stephen Henson [Mon, 27 Jun 2005 00:45:38 +0000 (00:45 +0000)]
Sync libeay.num
Andy Polyakov [Sun, 26 Jun 2005 18:06:38 +0000 (18:06 +0000)]
Unify some SCO targets.
Andy Polyakov [Sun, 26 Jun 2005 17:47:44 +0000 (17:47 +0000)]
Minor (final?) Makefiles polish.
Andy Polyakov [Sun, 26 Jun 2005 17:17:11 +0000 (17:17 +0000)]
Minimum requirement for Solaris x86 was always Pentium. Reflect this in
Configure line. TABLE update accomodates other recent ./Configure changes...
Andy Polyakov [Sun, 26 Jun 2005 16:09:29 +0000 (16:09 +0000)]
Omit padding in RC4_KEY on IA-64. The idea behind padding was to reserve
room for aligning of the key schedule itself [specific alignment is
required for future performance improvements], but OpenSSH "abuses"
our API by making copies and restoring RC4_KEY, thus ruining the
alignment and making it impossible to recover the key schedule.
PR: 1114
Richard Levitte [Fri, 24 Jun 2005 22:27:57 +0000 (22:27 +0000)]
Updated status from 0.9.8-stable.
Andy Polyakov [Fri, 24 Jun 2005 16:32:10 +0000 (16:32 +0000)]
Replace emms with finit in x86cpuid.
Dr. Stephen Henson [Fri, 24 Jun 2005 11:07:13 +0000 (11:07 +0000)]
Add Argen root CAs.
Richard Levitte [Fri, 24 Jun 2005 05:13:08 +0000 (05:13 +0000)]
Someone did some cutting and pasting and didn't quite finish the job :-).
Notified by Steffen Pankratz <kratz00@gmx.de>
Richard Levitte [Thu, 23 Jun 2005 22:08:47 +0000 (22:08 +0000)]
Wrap the inclusion of openssl/engine.h with a protective check for
the absence of OPENSSL_NO_ENGINE.
Richard Levitte [Thu, 23 Jun 2005 21:57:40 +0000 (21:57 +0000)]
Wrap the inclusion of openssl/engine.h with a protective check for
the absence of OPENSSL_NO_ENGINE.
PR: 1123
Richard Levitte [Thu, 23 Jun 2005 21:53:56 +0000 (21:53 +0000)]
Do not defined des_crypt(), since it clashes with Solaris crypt.h.
PR: 1125
Richard Levitte [Thu, 23 Jun 2005 21:49:21 +0000 (21:49 +0000)]
Initialise dir to avoid a compiler warning.
Richard Levitte [Thu, 23 Jun 2005 21:45:37 +0000 (21:45 +0000)]
The NAME section of a man page is required to have a dash followed by a
short description, at least according to pod2man.
PR: 1127
Richard Levitte [Thu, 23 Jun 2005 21:35:25 +0000 (21:35 +0000)]
DCC doesn't like argument names in returned function pointers.
PR: 1122
Richard Levitte [Thu, 23 Jun 2005 21:27:21 +0000 (21:27 +0000)]
Update for Stratus VOS.
PR: 1130
Richard Levitte [Thu, 23 Jun 2005 21:21:45 +0000 (21:21 +0000)]
Configure update for Stratus VOS.
PR: 1129
Richard Levitte [Thu, 23 Jun 2005 21:14:15 +0000 (21:14 +0000)]
Change dir_ctrl to check for the environment variable before using the default
directory instead of the other way around.
PR: 1131
Richard Levitte [Thu, 23 Jun 2005 20:55:38 +0000 (20:55 +0000)]
Strip the engine shared libraries as well.
Submitted by Corinna Vinschen <vinschen@redhat.com>
Andy Polyakov [Thu, 23 Jun 2005 20:44:27 +0000 (20:44 +0000)]
Darwin specific update for Configure and Makefile.shared.
Andy Polyakov [Thu, 23 Jun 2005 20:37:29 +0000 (20:37 +0000)]
Missed -c in IRIX rules.
Andy Polyakov [Thu, 23 Jun 2005 16:24:51 +0000 (16:24 +0000)]
Typo in bn-mips3 rule.
Andy Polyakov [Thu, 23 Jun 2005 16:23:06 +0000 (16:23 +0000)]
Rename mips3.o to bn-mips3.o [it's better in long run] and adjust the
rule to accomodate gcc4, which no longer support SGI as.
Andy Polyakov [Thu, 23 Jun 2005 15:36:15 +0000 (15:36 +0000)]
HP-UX specific updates to Makefile.org and Makefile.shared.
Andy Polyakov [Thu, 23 Jun 2005 00:03:26 +0000 (00:03 +0000)]
Jumbo Makfiles update.
- eliminate ambiguities between GNU-ish and SysV-ish make flavors;
- switch [back] to -e;
- fold/unify rules;
This is follow-up to the patch introducing common BUILDENV. Idea is
to collect as much parameters in $(TOP) as possible and "strip" lower
Makefiles for most variables [and thus makes them more readable].
Andy Polyakov [Wed, 22 Jun 2005 23:44:44 +0000 (23:44 +0000)]
no-asm didn't prevent make from compiling assembler modules.
Andy Polyakov [Wed, 22 Jun 2005 23:43:12 +0000 (23:43 +0000)]
TABLE was out-of-sync.
Andy Polyakov [Wed, 22 Jun 2005 23:42:34 +0000 (23:42 +0000)]
Solaris-specific Makefile.shared update from 098.
Dr. Stephen Henson [Wed, 22 Jun 2005 18:54:54 +0000 (18:54 +0000)]
Typo.
Dr. Stephen Henson [Wed, 22 Jun 2005 13:26:23 +0000 (13:26 +0000)]
Fix extension ordering.
Richard Levitte [Mon, 20 Jun 2005 22:11:14 +0000 (22:11 +0000)]
Do no try to pretend we're at the end of anything unless we're at the end
of a 4-character block.
Richard Levitte [Mon, 20 Jun 2005 20:48:21 +0000 (20:48 +0000)]
Check for 'usage' and 'Usage'.
Submitted by Tim Rice <tim@multitalents.net>. His comment is:
I noticed "make report" didn't show the cc version on most of
my System V platforms. This patch corrects this.
Andy Polyakov [Mon, 20 Jun 2005 19:36:34 +0000 (19:36 +0000)]
Fix typo in ssl/d1_pkt.c.
Andy Polyakov [Mon, 20 Jun 2005 17:39:10 +0000 (17:39 +0000)]
Refine ELF detection on BSD platforms.
Andy Polyakov [Mon, 20 Jun 2005 14:56:48 +0000 (14:56 +0000)]
Solaris x86_64 /usr/ccs/bin/as support.
Andy Polyakov [Mon, 20 Jun 2005 12:40:37 +0000 (12:40 +0000)]
Handle wrap-arounds and revive missing assignment.
Richard Levitte [Mon, 20 Jun 2005 04:29:50 +0000 (04:29 +0000)]
Add crypto/bn/bn_prime.h to the collection of generated files. In the
update target, place the dependency on depend last, so all necessary files
are generated *before* the dependencies are figured out.
PR: 1121
Richard Levitte [Sun, 19 Jun 2005 20:31:15 +0000 (20:31 +0000)]
With DJGPP, it seems like the return code from grep, even when in the
middle of a pipe, is noted. Counter that by forcing a true return code
when the return code has no importance.
PR: 1085
Richard Levitte [Sun, 19 Jun 2005 20:20:24 +0000 (20:20 +0000)]
Undefine DECRANDOM before redefining it.
PR: 1110
Richard Levitte [Sat, 18 Jun 2005 05:52:16 +0000 (05:52 +0000)]
Add better documentation on how id_function() should be defined and what
issues there are.
PR: 1096
Richard Levitte [Sat, 18 Jun 2005 04:42:24 +0000 (04:42 +0000)]
Move the definition of DEVRANDOM for DJGPP from Configure to e_os.h.
That should solve the issues with propagating it through the Makefiles.
PR: 1110
Richard Levitte [Sat, 18 Jun 2005 04:32:12 +0000 (04:32 +0000)]
Only define ZLIB_SHARED if it hasn't already been defined (on the command
line, for example).
PR: 1112
Richard Levitte [Sat, 18 Jun 2005 04:27:06 +0000 (04:27 +0000)]
Have pod2man.pl accept '=for comment ...' before the '=head1 NAME' line.
PR: 1113
Nils Larsch [Fri, 17 Jun 2005 21:26:36 +0000 (21:26 +0000)]
clear dso pointer in case of an error
PR: 816
Nils Larsch [Fri, 17 Jun 2005 20:27:41 +0000 (20:27 +0000)]
update for the cswift engine:
- fix the problem described in bug report 825
- fix a segfault when the engine fails to initialize
- let the engine switch to software when keysize > 2048
PR: 825, 826
Submitted by: Frédéric Giudicelli
Richard Levitte [Thu, 16 Jun 2005 22:20:55 +0000 (22:20 +0000)]
Do not undefine _XOPEN_SOURCE. This is currently experimental, and
will be firmed up as soon as it's been verified not to break anything.
Richard Levitte [Tue, 14 Jun 2005 05:42:52 +0000 (05:42 +0000)]
0.9.8-beta5 works on Gentoo/arml but not /armb, and works on Linux AMD64
Richard Levitte [Mon, 13 Jun 2005 17:10:03 +0000 (17:10 +0000)]
Data about which Cygwin versions 0.9.8-beta5 work on
Richard Levitte [Mon, 13 Jun 2005 17:03:13 +0000 (17:03 +0000)]
0.9.8-beta5 works on SuSE 9.3
Richard Levitte [Mon, 13 Jun 2005 17:00:18 +0000 (17:00 +0000)]
0.9.8-beta5 works on Cygwin
Nils Larsch [Mon, 13 Jun 2005 08:38:02 +0000 (08:38 +0000)]
update FAQ
Richard Levitte [Mon, 13 Jun 2005 04:17:12 +0000 (04:17 +0000)]
0.9.8-beta5 works on VMS/Alpha
Richard Levitte [Mon, 13 Jun 2005 03:36:58 +0000 (03:36 +0000)]
Status update
Richard Levitte [Mon, 13 Jun 2005 03:23:50 +0000 (03:23 +0000)]
Netware patch submitted by Verdon Walker" <VWalker@novell.com> in PR
1107. He says:
This is a followup to the NetWare patch that was applied to beta3. It
does the following:
- Fixes a problem in the CLib build with undefined symbols.
- Adds the ability to use BSD sockets as the default for the OpenSSL
socket BIO. NetWare supports 2 flavors of sockets and our Apache
developers need BSD sockets as a configurable option when building
OpenSSL. This adds that for them.
- Updates to the INSTALL.NW file to explain new options.
I have tried very hard to make sure all the changes are in NetWare
specific files or guarded carefully to make sure they only impact
NetWare builds. I have tested the Windows build to make sure it does
not break that since we have made changes to mk1mf.pl.
We are still working the gcc cross compile for NetWare issue and hope
to have a patch for that before beta 6 is released.
Richard Levitte [Mon, 13 Jun 2005 02:39:05 +0000 (02:39 +0000)]
Show what the offending target was.
PR: 1108