oweals/openssl.git
16 years agoNew function CMS_add1_crl().
Dr. Stephen Henson [Fri, 2 May 2008 17:27:01 +0000 (17:27 +0000)]
New function CMS_add1_crl().

16 years agoIndicate support for digest init ctrl.
Dr. Stephen Henson [Fri, 2 May 2008 11:24:40 +0000 (11:24 +0000)]
Indicate support for digest init ctrl.

16 years agoTypo.
Dr. Stephen Henson [Thu, 1 May 2008 23:35:36 +0000 (23:35 +0000)]
Typo.

16 years agoUse "cont" consistently in cms-examples.pl
Dr. Stephen Henson [Thu, 1 May 2008 23:30:06 +0000 (23:30 +0000)]
Use "cont" consistently in cms-examples.pl

Add a -certsout option to output any certificates in a message.

Add test for example 4.11

16 years agoMontgomery-related minor cleanups/documentation
Bodo Möller [Thu, 1 May 2008 18:48:20 +0000 (18:48 +0000)]
Montgomery-related minor cleanups/documentation

16 years agoUpdate from stable branch.
Dr. Stephen Henson [Wed, 30 Apr 2008 16:14:02 +0000 (16:14 +0000)]
Update from stable branch.

16 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 17:22:35 +0000 (17:22 +0000)]
Update from stable branch.

16 years agoOops!
Dr. Stephen Henson [Tue, 29 Apr 2008 16:46:46 +0000 (16:46 +0000)]
Oops!

16 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 16:44:51 +0000 (16:44 +0000)]
Update from stable branch.

16 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 16:39:03 +0000 (16:39 +0000)]
Update from stable branch.

16 years agoFix auto-discovery of ENGINEs. See the CHANGES entry for details (and/or
Geoff Thorpe [Mon, 28 Apr 2008 21:39:09 +0000 (21:39 +0000)]
Fix auto-discovery of ENGINEs. See the CHANGES entry for details (and/or
ticket #1668).

PR: 1668
Submitted by: Ian Lister
Reviewed by: Geoff Thorpe

16 years agoPaul Sheer optimised the OpenSSL to/from libGMP conversions for the case
Geoff Thorpe [Sun, 27 Apr 2008 18:41:23 +0000 (18:41 +0000)]
Paul Sheer optimised the OpenSSL to/from libGMP conversions for the case
where they both use the same limb size. I've tweaked his patch slightly, so
blame me if it breaks.

Submitted by: Paul Sheer
Reviewed by: Geoff Thorpe

16 years agoDon't send zero length session ID if stateless session resupmtion is
Dr. Stephen Henson [Fri, 25 Apr 2008 16:27:04 +0000 (16:27 +0000)]
Don't send zero length session ID if stateless session resupmtion is
successful. Check be seeing if there is a cache hit.

16 years agoDisable debugging fprintf.
Dr. Stephen Henson [Fri, 25 Apr 2008 11:33:32 +0000 (11:33 +0000)]
Disable debugging fprintf.

16 years agoAdd 64-bit support to BN_nist_mod_244 and engage BN_nist_mod_* on 64-bit
Andy Polyakov [Thu, 24 Apr 2008 10:04:26 +0000 (10:04 +0000)]
Add 64-bit support to BN_nist_mod_244 and engage BN_nist_mod_* on 64-bit
platforms.

16 years agoCompensate inline assembler in sha512.c for gcc 2.7.2 compiler bug.
Andy Polyakov [Thu, 24 Apr 2008 09:59:45 +0000 (09:59 +0000)]
Compensate inline assembler in sha512.c for gcc 2.7.2 compiler bug.
PR: 1667

16 years agoTakanori Yanagisawa has shown how to correctly use pre-computed values.
Andy Polyakov [Wed, 23 Apr 2008 08:10:25 +0000 (08:10 +0000)]
Takanori Yanagisawa has shown how to correctly use pre-computed values.
So in a sense this commit reverts few latest ones fixing bugs in original
code and improving it, most notably adding 64-bit support [though not in
BN_nist_mod_224 yet].
PR: 1593

16 years agoResolve __DECC warning and keep disclaiming support for 16-bit platforms.
Andy Polyakov [Fri, 18 Apr 2008 15:47:30 +0000 (15:47 +0000)]
Resolve __DECC warning and keep disclaiming support for 16-bit platforms.

16 years agoFix remaining BN_nist_mod_*.
Andy Polyakov [Fri, 18 Apr 2008 15:40:57 +0000 (15:40 +0000)]
Fix remaining BN_nist_mod_*.
PR: 1593

16 years agoMake certs argument work in CMS_sign() add test case.
Dr. Stephen Henson [Fri, 18 Apr 2008 11:18:20 +0000 (11:18 +0000)]
Make certs argument work in CMS_sign() add test case.
PR:1664

16 years agoAdd missing 'extern "C" {' to some _err.h files in crypto/engines/
Lutz Jänicke [Fri, 18 Apr 2008 07:43:26 +0000 (07:43 +0000)]
Add missing 'extern "C" {' to some _err.h files in crypto/engines/
PR: 1609

16 years agoAnother minor update from the mingw development
Lutz Jänicke [Fri, 18 Apr 2008 06:35:55 +0000 (06:35 +0000)]
Another minor update from the mingw development
PR: 1552
Submitted by: Roumen Petrov <openssl@roumenpetrov.info>

16 years agoSynchronise with Unix.
Richard Levitte [Fri, 18 Apr 2008 06:04:03 +0000 (06:04 +0000)]
Synchronise with Unix.

16 years agoFix incorrect return value in apps/apps.c:parse_yesno()
Lutz Jänicke [Thu, 17 Apr 2008 14:15:27 +0000 (14:15 +0000)]
Fix incorrect return value in apps/apps.c:parse_yesno()
PR: 1607
Submitted by: "Christophe Macé" <mace.christophe@gmail.com>

16 years agoCorrectly handle case of bad arguments supplied to rsautl
Lutz Jänicke [Thu, 17 Apr 2008 13:36:13 +0000 (13:36 +0000)]
Correctly handle case of bad arguments supplied to rsautl
PR: 1659

16 years agoApply mingw patches as supplied by Roumen Petrov an Alon Bar-Lev
Lutz Jänicke [Thu, 17 Apr 2008 10:19:16 +0000 (10:19 +0000)]
Apply mingw patches as supplied by Roumen Petrov an Alon Bar-Lev
PR: 1552
Submitted by: Roumen Petrov <openssl@roumenpetrov.info>, "Alon Bar-Lev" <alon.barlev@gmail.com>

16 years agoFurther synchronisation with Unix build. I hadn't noticed pq_compat.h
Richard Levitte [Sat, 12 Apr 2008 08:41:05 +0000 (08:41 +0000)]
Further synchronisation with Unix build.  I hadn't noticed pq_compat.h
was gone...

16 years agoProvide other forms for symbols that are too long or that clash with others
Richard Levitte [Sat, 12 Apr 2008 08:40:01 +0000 (08:40 +0000)]
Provide other forms for symbols that are too long or that clash with others

16 years agoDetached encrypt/decrypt example, fix decrypt sample.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:52:26 +0000 (23:52 +0000)]
Detached encrypt/decrypt example, fix decrypt sample.

16 years agoCorrect argument order for CMS_decrypt() in docs.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:49:03 +0000 (23:49 +0000)]
Correct argument order for CMS_decrypt() in docs.

16 years agoFix prototype for CMS_decrypt(), don't free up detached content.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:45:52 +0000 (23:45 +0000)]
Fix prototype for CMS_decrypt(), don't free up detached content.

16 years agoRevert argument swap change... oops CMS_uncompress() was consistent...
Dr. Stephen Henson [Fri, 11 Apr 2008 23:23:18 +0000 (23:23 +0000)]
Revert argument swap change... oops CMS_uncompress() was consistent...

16 years agoFix comments.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:50:20 +0000 (17:50 +0000)]
Fix comments.

16 years agoMake CMS_uncompress() argument order consistent with other functions.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:34:13 +0000 (17:34 +0000)]
Make CMS_uncompress() argument order consistent with other functions.

16 years agoCMS compressed data examples.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:33:29 +0000 (17:33 +0000)]
CMS compressed data examples.

16 years agoFix for compression and updated CMS_final().
Dr. Stephen Henson [Fri, 11 Apr 2008 17:07:01 +0000 (17:07 +0000)]
Fix for compression and updated CMS_final().

16 years agoPKCS#7 examples converted to CMS.
Dr. Stephen Henson [Fri, 11 Apr 2008 16:52:45 +0000 (16:52 +0000)]
PKCS#7 examples converted to CMS.

16 years agoSynchronise with Unix build
Richard Levitte [Fri, 11 Apr 2008 01:53:16 +0000 (01:53 +0000)]
Synchronise with Unix build

16 years agoReformat, fix typos and clarify CMS API docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 23:28:25 +0000 (23:28 +0000)]
Reformat, fix typos and clarify CMS API docs.

16 years agoCorrect HISTORY reference.
Dr. Stephen Henson [Thu, 10 Apr 2008 15:59:40 +0000 (15:59 +0000)]
Correct HISTORY reference.

16 years agoTypo.
Dr. Stephen Henson [Thu, 10 Apr 2008 15:56:27 +0000 (15:56 +0000)]
Typo.

16 years agoAdd docs for CMS_final() and BIO_new_CMS().
Dr. Stephen Henson [Thu, 10 Apr 2008 11:55:57 +0000 (11:55 +0000)]
Add docs for CMS_final() and BIO_new_CMS().

16 years agoAdd additional parameter to CMS_final() to handle detached content.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:22:14 +0000 (11:22 +0000)]
Add additional parameter to CMS_final() to handle detached content.

16 years agoIgnore nonsensical flags for signed receipts.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:12:42 +0000 (11:12 +0000)]
Ignore nonsensical flags for signed receipts.

16 years agoAdd CMS signed receipt genration and verification docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:00:47 +0000 (11:00 +0000)]
Add CMS signed receipt genration and verification docs.

16 years agoSpellcheck CMS docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 10:46:11 +0000 (10:46 +0000)]
Spellcheck CMS docs.

16 years agoSigned receipt request function documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 23:13:49 +0000 (23:13 +0000)]
Signed receipt request function documentation.

16 years agoCorrect references to smime in cms app.
Dr. Stephen Henson [Wed, 9 Apr 2008 22:09:45 +0000 (22:09 +0000)]
Correct references to smime in cms app.

16 years agoUpdate docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:59:45 +0000 (20:59 +0000)]
Update docs.

16 years agoAdd CMS_uncompress manual page.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:55:55 +0000 (20:55 +0000)]
Add CMS_uncompress manual page.

16 years agoAdd CMS_compress() docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 17:04:36 +0000 (17:04 +0000)]
Add CMS_compress() docs.

16 years agoMore CMS API documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 16:08:16 +0000 (16:08 +0000)]
More CMS API documentation.

16 years agoClarifying comment.
Andy Polyakov [Wed, 9 Apr 2008 12:06:42 +0000 (12:06 +0000)]
Clarifying comment.

16 years agoDo BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
Andy Polyakov [Wed, 9 Apr 2008 11:36:04 +0000 (11:36 +0000)]
Do BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
will be revised too.
PR: 1593

16 years agoFix various typos, update SMIMECapabilities description.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:44:56 +0000 (22:44 +0000)]
Fix various typos, update SMIMECapabilities description.

16 years agoCorrect d2i/i2d typos.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:35:32 +0000 (22:35 +0000)]
Correct d2i/i2d typos.

16 years agoInitial CMS API documentation.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:27:10 +0000 (22:27 +0000)]
Initial CMS API documentation.

16 years agoImplement CMS_NOCRL.
Dr. Stephen Henson [Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)]
Implement CMS_NOCRL.

16 years agoFix URI of OpenSSL Request Tracker information
Lutz Jänicke [Mon, 7 Apr 2008 06:37:05 +0000 (06:37 +0000)]
Fix URI of OpenSSL Request Tracker information
PR: 1661

16 years agoSet contentType attribute just before signing to allow encapsulated content
Dr. Stephen Henson [Sun, 6 Apr 2008 16:29:47 +0000 (16:29 +0000)]
Set contentType attribute just before signing to allow encapsulated content
type to be set at any time in applications.

16 years agoFix typo and add header files to err library.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:53:29 +0000 (15:53 +0000)]
Fix typo and add header files to err library.

16 years agoGive consistent return value and add error code for duplicate certificates.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:41:25 +0000 (15:41 +0000)]
Give consistent return value and add error code for duplicate certificates.

16 years agoDelete nonexistant function from pkcs7.h header file. WIN32 build fix from
Dr. Stephen Henson [Fri, 4 Apr 2008 00:06:43 +0000 (00:06 +0000)]
Delete nonexistant function from pkcs7.h header file. WIN32 build fix from
stable branch. Sync and update ordinals.

16 years agoMake mk1mf.pl recognize no-cms.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:29:15 +0000 (23:29 +0000)]
Make mk1mf.pl recognize no-cms.

16 years agoRename runex.pl to cms-examples.pl
Dr. Stephen Henson [Thu, 3 Apr 2008 23:25:43 +0000 (23:25 +0000)]
Rename runex.pl to cms-examples.pl

16 years agoUpdate CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:44:00 +0000 (11:44 +0000)]
Update CHANGES.

16 years agoUpdate CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:24:22 +0000 (11:24 +0000)]
Update CHANGES.

16 years agoSince OID NIDs with 0.9.8.
Dr. Stephen Henson [Wed, 2 Apr 2008 10:48:34 +0000 (10:48 +0000)]
Since OID NIDs with 0.9.8.

16 years agoAvoid warnings.
Dr. Stephen Henson [Tue, 1 Apr 2008 16:29:42 +0000 (16:29 +0000)]
Avoid warnings.

16 years agoAdd signed receipt tests.
Dr. Stephen Henson [Tue, 1 Apr 2008 15:16:15 +0000 (15:16 +0000)]
Add signed receipt tests.

16 years agoFix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593

16 years agoFix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....

16 years agoFix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.

16 years agoUse correct headers for signed receipts. Use consistent naming.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.

Update cms-test.pl to support OpenSSL 0.9.8.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.

16 years agoRemove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.

16 years agoUpdate docs.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.

16 years agoSigned receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.

16 years agoSupport for verification of signed receipts.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.

16 years agoThere was a need to support thread ID types that couldn't be reliably cast
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used.  This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.

16 years agoUpdate tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).

16 years agoAdd support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.

16 years agoSigned Receipt Request utility functions and option on CMS utility to
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.

16 years agoAdd signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.

16 years agoAdd support for CMS structure printing in cms utility.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.

16 years agoFix duplicate asn1 ctrl values.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 22 Mar 2008 18:52:03 +0000 (18:52 +0000)]
Update dependencies.

16 years agoPreliminary documentation for CMS utility.
Dr. Stephen Henson [Fri, 21 Mar 2008 13:09:26 +0000 (13:09 +0000)]
Preliminary documentation for CMS utility.

16 years agoComment out a (currently) unused CMS function. (Sorry Steve, but I need
Geoff Thorpe [Wed, 19 Mar 2008 23:08:20 +0000 (23:08 +0000)]
Comment out a (currently) unused CMS function. (Sorry Steve, but I need
-Werror right now to help me code-by-domino :-)

16 years agoFork my debug configuration into 32-bit and 64-bit versions.
Geoff Thorpe [Wed, 19 Mar 2008 23:05:48 +0000 (23:05 +0000)]
Fork my debug configuration into 32-bit and 64-bit versions.

16 years agoAllow alternate eContentType oids to be set in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 19:34:30 +0000 (19:34 +0000)]
Allow alternate eContentType oids to be set in cms utility.

Add id-ct-asciiTextWithCRLF OID.

Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.

16 years agoRebuild CMS error codes.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:42:02 +0000 (18:42 +0000)]
Rebuild CMS error codes.

16 years agoAdd support for KEK decrypt in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:39:51 +0000 (18:39 +0000)]
Add support for KEK decrypt in cms utility.

16 years agoProduce meaningful error if sanity check fails.
Dr. Stephen Henson [Wed, 19 Mar 2008 17:01:12 +0000 (17:01 +0000)]
Produce meaningful error if sanity check fails.

Delete trailing whitespace from objects.txt

Delete duplicate NIDs.

16 years agoAdditional sanity check.
Dr. Stephen Henson [Wed, 19 Mar 2008 14:18:36 +0000 (14:18 +0000)]
Additional sanity check.

16 years agoAdd support for KEKRecipientInfo in cms application.
Dr. Stephen Henson [Wed, 19 Mar 2008 13:53:52 +0000 (13:53 +0000)]
Add support for KEKRecipientInfo in cms application.

16 years agoMake 3DES default cipher in cms utility.
Dr. Stephen Henson [Tue, 18 Mar 2008 19:03:03 +0000 (19:03 +0000)]
Make 3DES default cipher in cms utility.

16 years agoDelete standard out and err temp files too.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:53:12 +0000 (18:53 +0000)]
Delete standard out and err temp files too.

16 years agoDelete tmp files, silence openssl commands, compare extracted content.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:51:44 +0000 (18:51 +0000)]
Delete tmp files, silence openssl commands, compare extracted content.

16 years agoAdd enveloped data keyid test.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:29:54 +0000 (18:29 +0000)]
Add enveloped data keyid test.