Dr. Stephen Henson [Sun, 12 Jun 2011 15:38:36 +0000 (15:38 +0000)]
Don't export functions marked as FIPSCAPABLE.
Dr. Stephen Henson [Sun, 12 Jun 2011 15:37:51 +0000 (15:37 +0000)]
Use FIPSCAPABLE for FIPS module functions used in FIPS capable OpenSSL.
Dr. Stephen Henson [Sun, 12 Jun 2011 15:02:53 +0000 (15:02 +0000)]
HMAC fips prototypes
Dr. Stephen Henson [Sun, 12 Jun 2011 14:11:57 +0000 (14:11 +0000)]
CMAC FIPS prototypes.
Dr. Stephen Henson [Fri, 10 Jun 2011 14:03:27 +0000 (14:03 +0000)]
#undef bn_div_words as it is defined for FIPS builds.
Dr. Stephen Henson [Fri, 10 Jun 2011 14:00:02 +0000 (14:00 +0000)]
Update dependencies for m_dss.c too.
Dr. Stephen Henson [Fri, 10 Jun 2011 13:52:44 +0000 (13:52 +0000)]
Remove x509.h from SHA1 clone digests, update dependencies.
Dr. Stephen Henson [Thu, 9 Jun 2011 21:52:44 +0000 (21:52 +0000)]
Install FIPS module in FIPSDIR if set.
Dr. Stephen Henson [Thu, 9 Jun 2011 15:18:55 +0000 (15:18 +0000)]
more prototypes in fips.h
Dr. Stephen Henson [Thu, 9 Jun 2011 13:50:53 +0000 (13:50 +0000)]
Add more prototypes.
Dr. Stephen Henson [Wed, 8 Jun 2011 15:55:43 +0000 (15:55 +0000)]
fix memory leak
Dr. Stephen Henson [Wed, 8 Jun 2011 15:53:08 +0000 (15:53 +0000)]
Add flags for DH FIPS method.
Update/fix prototypes in fips.h
Dr. Stephen Henson [Wed, 8 Jun 2011 13:52:36 +0000 (13:52 +0000)]
Set flags in ECDH and ECDSA methods for FIPS.
Andy Polyakov [Mon, 6 Jun 2011 20:02:26 +0000 (20:02 +0000)]
rc4_skey.c: remove dead/redundant code (it's never compiled) and
misleading/obsolete comment.
Dr. Stephen Henson [Mon, 6 Jun 2011 15:24:02 +0000 (15:24 +0000)]
Add prototypes for some FIPS EC functions.
Dr. Stephen Henson [Mon, 6 Jun 2011 14:14:41 +0000 (14:14 +0000)]
Set SSL_FIPS flag in ECC ciphersuites.
Dr. Stephen Henson [Mon, 6 Jun 2011 11:56:58 +0000 (11:56 +0000)]
Move function prototype to fips.h
Andy Polyakov [Mon, 6 Jun 2011 11:40:03 +0000 (11:40 +0000)]
e_aes.c: move AES-NI run-time switch and implement the switch for remaining modes.
Andy Polyakov [Sat, 4 Jun 2011 13:08:25 +0000 (13:08 +0000)]
x86_64cpuid.pl: fix typo.
Andy Polyakov [Sat, 4 Jun 2011 12:20:45 +0000 (12:20 +0000)]
x86[_64]cpuid.pl: add function accessing rdrand instruction.
Richard Levitte [Sat, 4 Jun 2011 09:00:59 +0000 (09:00 +0000)]
No spaces in assignements in a shell script...
Dr. Stephen Henson [Fri, 3 Jun 2011 18:50:24 +0000 (18:50 +0000)]
fix error discrepancy
Dr. Stephen Henson [Fri, 3 Jun 2011 17:56:17 +0000 (17:56 +0000)]
license correction, no EAY code included in this file
Dr. Stephen Henson [Fri, 3 Jun 2011 16:26:58 +0000 (16:26 +0000)]
Add "OPENSSL_FIPSCAPABLE" define for a version of OpenSSL which is
FIPS capable: i.e. FIPS module is supplied externally.
Dr. Stephen Henson [Fri, 3 Jun 2011 12:38:18 +0000 (12:38 +0000)]
Constify RSA signature buffer.
Dr. Stephen Henson [Thu, 2 Jun 2011 18:20:55 +0000 (18:20 +0000)]
Typo.
Dr. Stephen Henson [Thu, 2 Jun 2011 17:52:39 +0000 (17:52 +0000)]
Remove FIPS RSA functions from crypto/rsa.
Dr. Stephen Henson [Thu, 2 Jun 2011 17:30:22 +0000 (17:30 +0000)]
Move FIPS RSA function definitions to fips.h
New function to lookup digests by NID in module.
Minor optimisation: if supplied hash is NULL to FIPS RSA functions and
we are using PKCS padding get digest NID from otherwise unused saltlen
parameter instead.
Dr. Stephen Henson [Wed, 1 Jun 2011 18:36:49 +0000 (18:36 +0000)]
Simple automated certificate creation demo.
Dr. Stephen Henson [Wed, 1 Jun 2011 14:18:28 +0000 (14:18 +0000)]
Clone digest prototypes.
Dr. Stephen Henson [Wed, 1 Jun 2011 14:07:32 +0000 (14:07 +0000)]
Add DSA and ECDSA "clone digests" to module for compatibility with old
applications.
Dr. Stephen Henson [Wed, 1 Jun 2011 11:10:35 +0000 (11:10 +0000)]
typo
Dr. Stephen Henson [Tue, 31 May 2011 16:24:19 +0000 (16:24 +0000)]
set FIPS permitted flag before initalising digest
Dr. Stephen Henson [Tue, 31 May 2011 16:22:21 +0000 (16:22 +0000)]
Fake CPU caps so fips_standalone_sha1 compiles.
Initialise update function for bad digest inits.
Dr. Stephen Henson [Tue, 31 May 2011 10:34:43 +0000 (10:34 +0000)]
Don't round up partitioned premaster secret length if there is only one
digest in use: this caused the PRF to fail for an odd premaster secret
length.
Dr. Stephen Henson [Mon, 30 May 2011 17:58:13 +0000 (17:58 +0000)]
Output supported curves in preference order instead of numerically.
Andy Polyakov [Mon, 30 May 2011 10:13:42 +0000 (10:13 +0000)]
e_aes.c: fix typo.
Andy Polyakov [Mon, 30 May 2011 10:10:05 +0000 (10:10 +0000)]
e_aes.c: fix aes_cfb1_cipher.
Andy Polyakov [Mon, 30 May 2011 09:16:01 +0000 (09:16 +0000)]
e_aes.c: integrate AESNI directly into EVP.
Andy Polyakov [Mon, 30 May 2011 09:15:16 +0000 (09:15 +0000)]
aesni-x86[_64].pl: relax alignment requirement.
Dr. Stephen Henson [Sun, 29 May 2011 16:16:55 +0000 (16:16 +0000)]
Add more cipher prototypes.
Dr. Stephen Henson [Sun, 29 May 2011 15:56:23 +0000 (15:56 +0000)]
Prototypes for more FIPS functions for use in FIPS capable OpenSSL.
Andy Polyakov [Sun, 29 May 2011 13:51:14 +0000 (13:51 +0000)]
Various mingw64 fixes.
Andy Polyakov [Sun, 29 May 2011 13:48:57 +0000 (13:48 +0000)]
sha1-586|x86_64.pl: minor portability fix.
Andy Polyakov [Sun, 29 May 2011 12:50:02 +0000 (12:50 +0000)]
x86cpuid.pl: last commit broke platforms with perl with 64-bit integer.
Andy Polyakov [Sun, 29 May 2011 12:39:48 +0000 (12:39 +0000)]
sha1-586|x86_64.pl: add SSSE3 and AVX code paths.
Dr. Stephen Henson [Sat, 28 May 2011 23:02:23 +0000 (23:02 +0000)]
Add FIPS_digestinit prototype for FIPS capable OpenSSL.
Dr. Stephen Henson [Sat, 28 May 2011 21:03:31 +0000 (21:03 +0000)]
Add prototypes for FIPS EVP implementations: for use in FIPS capable
OpenSSL.
Andy Polyakov [Sat, 28 May 2011 09:41:36 +0000 (09:41 +0000)]
aes-ppc.pl: handle unaligned data on page boundaries.
Dr. Stephen Henson [Fri, 27 May 2011 21:11:54 +0000 (21:11 +0000)]
Rename many internal only module functions from FIPS_* to fips_*.
Andy Polyakov [Fri, 27 May 2011 18:58:37 +0000 (18:58 +0000)]
rc4-x86_64.pl: fix due credit.
Andy Polyakov [Fri, 27 May 2011 16:15:12 +0000 (16:15 +0000)]
rc4-x86_64.pl: RC4_options fix-up.
Andy Polyakov [Fri, 27 May 2011 15:32:43 +0000 (15:32 +0000)]
x86[_64]cpuid.pl: harmonize usage of reserved bits #20 and #30.
Andy Polyakov [Fri, 27 May 2011 13:32:34 +0000 (13:32 +0000)]
PPC assembler pack: adhere closer to ABI specs, add PowerOpen traceback data.
Andy Polyakov [Fri, 27 May 2011 09:51:09 +0000 (09:51 +0000)]
rc4-x86_64.pl: major optimization for contemporary Intel CPUs.
Andy Polyakov [Fri, 27 May 2011 09:46:19 +0000 (09:46 +0000)]
rc4-586.pl: optimize even further...
Dr. Stephen Henson [Thu, 26 May 2011 22:01:49 +0000 (22:01 +0000)]
Typo.
Dr. Stephen Henson [Thu, 26 May 2011 21:20:14 +0000 (21:20 +0000)]
Use FIPSLD_LIBCRYPTO for consistency with other env variables in fipsld.
Use current directory for fips_premain_dso
Dr. Stephen Henson [Thu, 26 May 2011 21:15:45 +0000 (21:15 +0000)]
In fipsld use FIPSLIBCRYPTO environment variable to specify an alternative
location for libcrypto.a, support shared library builds in different
source tree.
Dr. Stephen Henson [Thu, 26 May 2011 13:59:11 +0000 (13:59 +0000)]
Install fips_standalone_sha1 and make use of it in fipsld script.
Andy Polyakov [Thu, 26 May 2011 13:16:26 +0000 (13:16 +0000)]
x86_64cpuid.pl: get AVX masking right.
Dr. Stephen Henson [Thu, 26 May 2011 11:00:06 +0000 (11:00 +0000)]
Only install FIPS related files for fipscanisteronly build.
Dr. Stephen Henson [Wed, 25 May 2011 16:01:37 +0000 (16:01 +0000)]
More symbol renaming.
Dr. Stephen Henson [Wed, 25 May 2011 15:31:32 +0000 (15:31 +0000)]
Don't advertise or use MD5 for TLS v1.2 in FIPS mode
Dr. Stephen Henson [Wed, 25 May 2011 15:20:49 +0000 (15:20 +0000)]
PR: 2533
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve
Setting SSL_MODE_RELEASE_BUFFERS should be ignored for DTLS, but instead causes
the program to crash. This is due to missing version checks and is fixed with
this patch.
Dr. Stephen Henson [Wed, 25 May 2011 15:16:10 +0000 (15:16 +0000)]
PR: 2529
Submitted by: Marcus Meissner <meissner@suse.de>
Reviewed by: steve
Call ssl_new() to reallocate SSL BIO internals if we want to replace
the existing internal SSL structure.
Dr. Stephen Henson [Wed, 25 May 2011 15:05:39 +0000 (15:05 +0000)]
PR: 2527
Submitted by: Marcus Meissner <meissner@suse.de>
Reviewed by: steve
Set cnf to NULL to avoid possible double free.
Dr. Stephen Henson [Wed, 25 May 2011 14:52:21 +0000 (14:52 +0000)]
Fix the ECDSA timing attack mentioned in the paper at:
http://eprint.iacr.org/2011/232.pdf
Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for
bringing this to our attention.
Dr. Stephen Henson [Wed, 25 May 2011 14:41:56 +0000 (14:41 +0000)]
Fix the ECDSA timing attack mentioned in the paper at:
http://eprint.iacr.org/2011/232.pdf
Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for
bringing this to our attention.
Dr. Stephen Henson [Wed, 25 May 2011 14:31:47 +0000 (14:31 +0000)]
Some nextproto patches broke DTLS: fix
Dr. Stephen Henson [Wed, 25 May 2011 14:30:20 +0000 (14:30 +0000)]
Oops use up to date patch for PR#2506
Dr. Stephen Henson [Wed, 25 May 2011 12:37:07 +0000 (12:37 +0000)]
PR: 2512
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve
Fix BIO_accept so it can be bound to IPv4 or IPv6 sockets consistently.
Dr. Stephen Henson [Wed, 25 May 2011 12:28:06 +0000 (12:28 +0000)]
PR: 2506
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve
Fully implement SSL_clear for DTLS.
Dr. Stephen Henson [Wed, 25 May 2011 12:25:01 +0000 (12:25 +0000)]
PR: 2505
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve
Fix DTLS session resumption timer bug.
Dr. Stephen Henson [Wed, 25 May 2011 11:43:07 +0000 (11:43 +0000)]
use TLS1_get_version macro to check version so TLS v1.2 changes don't interfere with DTLS
Andy Polyakov [Wed, 25 May 2011 10:02:20 +0000 (10:02 +0000)]
e_padlock.c: fix typo.
Andy Polyakov [Wed, 25 May 2011 09:36:13 +0000 (09:36 +0000)]
rc4-586.pl: optimize unused code path.
Andy Polyakov [Tue, 24 May 2011 17:18:19 +0000 (17:18 +0000)]
e_padlock.c: last x86_64 commit didn't work with some optimizers.
Andy Polyakov [Tue, 24 May 2011 13:07:29 +0000 (13:07 +0000)]
rc4-586.pl: 50% improvement on Core2 and 80% on Westmere.
Dr. Stephen Henson [Mon, 23 May 2011 12:27:43 +0000 (12:27 +0000)]
PR: 2522
Submitted by: Henrik Grindal Bakken <henribak@cisco.com>
Don't compare past end of buffer.
Andy Polyakov [Mon, 23 May 2011 08:14:32 +0000 (08:14 +0000)]
spacrv9cap.c: addenum to recent EC optimizations.
Andy Polyakov [Sun, 22 May 2011 18:38:00 +0000 (18:38 +0000)]
aesni-x86[_64].pl: optimize for Sandy Bridge and add XTS mode.
Andy Polyakov [Sun, 22 May 2011 18:29:11 +0000 (18:29 +0000)]
x86_64-gf2m.pl: add Win64 SEH.
Andy Polyakov [Sat, 21 May 2011 10:17:02 +0000 (10:17 +0000)]
ppccap.c: addenum to recent EC optimizations.
Andy Polyakov [Sat, 21 May 2011 08:40:18 +0000 (08:40 +0000)]
ec_cvt.c: ARM comparison results were wrong, clarify the background.
Andy Polyakov [Fri, 20 May 2011 20:31:37 +0000 (20:31 +0000)]
ec_cvt.c: avoid EC_GFp_nist_method on platforms with bn_mul_mont [see
commentary for details].
Dr. Stephen Henson [Fri, 20 May 2011 14:56:29 +0000 (14:56 +0000)]
PR: 2295
Submitted by: Alexei Khlebnikov <alexei.khlebnikov@opera.com>
Reviewed by: steve
OOM checking. Leak in OOM fix. Fall-through comment. Duplicate code
elimination.
Dr. Stephen Henson [Thu, 19 May 2011 18:10:25 +0000 (18:10 +0000)]
Add CHANGES entry: add FIPS support to ssl
Dr. Stephen Henson [Thu, 19 May 2011 18:09:02 +0000 (18:09 +0000)]
Implement FIPS_mode and FIPS_mode_set
Dr. Stephen Henson [Thu, 19 May 2011 17:55:15 +0000 (17:55 +0000)]
oops
Dr. Stephen Henson [Thu, 19 May 2011 17:53:04 +0000 (17:53 +0000)]
update date
Dr. Stephen Henson [Thu, 19 May 2011 17:38:25 +0000 (17:38 +0000)]
inherit HMAC flags from MD_CTX
Dr. Stephen Henson [Thu, 19 May 2011 16:17:47 +0000 (16:17 +0000)]
set encodedPoint to NULL after freeing it
Andy Polyakov [Wed, 18 May 2011 17:05:24 +0000 (17:05 +0000)]
aesni-x86_64.pl: make it compile on MacOS X.
Andy Polyakov [Wed, 18 May 2011 16:28:53 +0000 (16:28 +0000)]
x86gas.pl: don't omit .comm OPENSSL_ia32cap_P on MacOS X.
Andy Polyakov [Wed, 18 May 2011 16:26:03 +0000 (16:26 +0000)]
x86_64-xlate.pl: add inter-register movq and make x86_64-gfm.s compile on
Solaris, MacOS X, elderly gas...
Andy Polyakov [Wed, 18 May 2011 16:24:19 +0000 (16:24 +0000)]
x86_64cpuid.pl: allow shared build to work without -Bsymbolic.
PR: 2466
Andy Polyakov [Wed, 18 May 2011 16:21:54 +0000 (16:21 +0000)]
e_padlock.c: make it compile on MacOS X.
Andy Polyakov [Mon, 16 May 2011 20:35:11 +0000 (20:35 +0000)]
x86[_64]cpuid.pl: handle new extensions.
Andy Polyakov [Mon, 16 May 2011 19:52:41 +0000 (19:52 +0000)]
ppc-xlate.pl: get linux64 declaration right.