oweals/openssl.git
17 years agoFix s390x bugs and correct performance coefficients.
Andy Polyakov [Wed, 2 May 2007 11:44:02 +0000 (11:44 +0000)]
Fix s390x bugs and correct performance coefficients.

17 years agoSynchronise VMS with Unix.
Richard Levitte [Tue, 1 May 2007 12:25:15 +0000 (12:25 +0000)]
Synchronise VMS with Unix.

17 years agoRevert irrelevant changes from commit #16191.
Andy Polyakov [Mon, 30 Apr 2007 17:22:09 +0000 (17:22 +0000)]
Revert irrelevant changes from commit #16191.

17 years agorll does not seem to be available on legacy s390.
Andy Polyakov [Mon, 30 Apr 2007 17:19:12 +0000 (17:19 +0000)]
rll does not seem to be available on legacy s390.

17 years agoTypo in commit #16187.
Andy Polyakov [Mon, 30 Apr 2007 15:55:00 +0000 (15:55 +0000)]
Typo in commit #16187.

17 years agoTypo in s390x_asm.
Andy Polyakov [Mon, 30 Apr 2007 15:48:54 +0000 (15:48 +0000)]
Typo in s390x_asm.

17 years agoBug in apps/dgst.c.
Andy Polyakov [Mon, 30 Apr 2007 15:20:10 +0000 (15:20 +0000)]
Bug in apps/dgst.c.

17 years agos390x optimizations.
Andy Polyakov [Mon, 30 Apr 2007 13:26:06 +0000 (13:26 +0000)]
s390x optimizations.

17 years agoEngage s390x assembler modules.
Andy Polyakov [Mon, 30 Apr 2007 09:22:27 +0000 (09:22 +0000)]
Engage s390x assembler modules.

17 years agos390x assembler pack.
Andy Polyakov [Mon, 30 Apr 2007 08:42:54 +0000 (08:42 +0000)]
s390x assembler pack.

17 years agoReimplement rc4-586.pl, relicense rc4-x86_64.pl.
Andy Polyakov [Thu, 26 Apr 2007 20:48:38 +0000 (20:48 +0000)]
Reimplement rc4-586.pl, relicense rc4-x86_64.pl.

17 years agofix function codes for error
Bodo Möller [Tue, 24 Apr 2007 01:06:19 +0000 (01:06 +0000)]
fix function codes for error

17 years agoremove leftover from editing ...
Bodo Möller [Tue, 24 Apr 2007 00:47:53 +0000 (00:47 +0000)]
remove leftover from editing ...

17 years agoAll ciphersuites should have a strength designator.
Bodo Möller [Tue, 24 Apr 2007 00:13:51 +0000 (00:13 +0000)]
All ciphersuites should have a strength designator.

17 years agoAdd SEED encryption algorithm.
Bodo Möller [Mon, 23 Apr 2007 23:48:59 +0000 (23:48 +0000)]
Add SEED encryption algorithm.

PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller

17 years agofix error codes
Bodo Möller [Thu, 19 Apr 2007 15:14:21 +0000 (15:14 +0000)]
fix error codes

17 years agodon't violate the bn_check_top assertion in BN_mod_inverse_no_branch()
Bodo Möller [Thu, 19 Apr 2007 14:45:57 +0000 (14:45 +0000)]
don't violate the bn_check_top assertion in BN_mod_inverse_no_branch()

17 years agoNew function ASN1_STRING_copy() to copy to an already
Dr. Stephen Henson [Sat, 14 Apr 2007 17:53:55 +0000 (17:53 +0000)]
New function ASN1_STRING_copy() to copy to an already
alloacted ASN1_STRING structure.

17 years agoSample text files for S/MIME test programs.
Dr. Stephen Henson [Fri, 13 Apr 2007 20:41:42 +0000 (20:41 +0000)]
Sample text files for S/MIME test programs.

17 years agoAdd a bunch of S/MIME sample programs and data.
Dr. Stephen Henson [Fri, 13 Apr 2007 20:40:47 +0000 (20:40 +0000)]
Add a bunch of S/MIME sample programs and data.

17 years agoFlush b64 BIO.
Dr. Stephen Henson [Fri, 13 Apr 2007 18:00:45 +0000 (18:00 +0000)]
Flush b64 BIO.

17 years agoDon't finalize signerinfo if reuse and partial both set.
Dr. Stephen Henson [Fri, 13 Apr 2007 16:41:52 +0000 (16:41 +0000)]
Don't finalize signerinfo if reuse and partial both set.

17 years agoPKCS7_sign_add_signer() docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 16:31:08 +0000 (16:31 +0000)]
PKCS7_sign_add_signer() docs.

17 years agoMore docs for streaming functions.
Dr. Stephen Henson [Fri, 13 Apr 2007 15:43:15 +0000 (15:43 +0000)]
More docs for streaming functions.

17 years agoTypo.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:23:31 +0000 (13:23 +0000)]
Typo.

17 years agod2i_PKCS7_bio_stream() docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:22:15 +0000 (13:22 +0000)]
d2i_PKCS7_bio_stream() docs.

17 years agoOops...
Dr. Stephen Henson [Fri, 13 Apr 2007 13:20:46 +0000 (13:20 +0000)]
Oops...

17 years agoUpdate docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:13:14 +0000 (13:13 +0000)]
Update docs.

17 years agoUpdate docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 12:57:48 +0000 (12:57 +0000)]
Update docs.

17 years agoUpdate smime utility to support streaming for -encrypt and -sign -nodetach
Dr. Stephen Henson [Fri, 13 Apr 2007 01:06:41 +0000 (01:06 +0000)]
Update smime utility to support streaming for -encrypt and -sign -nodetach
options. Add new streaming i2d (though strictly speaking it is BER format
when streaming) and PEM functions.

These all process content on the fly without storing it all in memory.

17 years agoCopy update callback across when copying EVP_MD_CTX.
Dr. Stephen Henson [Thu, 12 Apr 2007 13:02:31 +0000 (13:02 +0000)]
Copy update callback across when copying EVP_MD_CTX.

Remove unnecessary reference to EVP_MD_CTX in HMAC pkey method.

17 years agoNew -mac and -macopt options to dgst utility. Reimplement -hmac option in
Dr. Stephen Henson [Wed, 11 Apr 2007 17:20:40 +0000 (17:20 +0000)]
New -mac and -macopt options to dgst utility. Reimplement -hmac option in
terms of new API.

17 years agoUpdate CHANGES.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:33:28 +0000 (12:33 +0000)]
Update CHANGES.

17 years agoExperimental HMAC support via EVP_PKEY_METHOD.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:33:06 +0000 (12:33 +0000)]
Experimental HMAC support via EVP_PKEY_METHOD.

17 years agoConstification.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:26:53 +0000 (12:26 +0000)]
Constification.

17 years agoDon't ignore config_name parameter passed to OPENSSL_config(). Use
Dr. Stephen Henson [Mon, 9 Apr 2007 11:45:54 +0000 (11:45 +0000)]
Don't ignore config_name parameter passed to OPENSSL_config(). Use
"openssl_conf" in config file if config_name variable is missing.

17 years agoFix from stable branch.
Dr. Stephen Henson [Sun, 8 Apr 2007 17:45:47 +0000 (17:45 +0000)]
Fix from stable branch.

17 years agoFix digest signing so digest type is set after init.
Dr. Stephen Henson [Sun, 8 Apr 2007 16:53:50 +0000 (16:53 +0000)]
Fix digest signing so digest type is set after init.

17 years agoPreliminary support for signctx/verifyctx callbacks.
Dr. Stephen Henson [Sun, 8 Apr 2007 13:03:26 +0000 (13:03 +0000)]
Preliminary support for signctx/verifyctx callbacks.

17 years agoNew -sigopt option for dgst utility.
Dr. Stephen Henson [Sun, 8 Apr 2007 12:47:18 +0000 (12:47 +0000)]
New -sigopt option for dgst utility.

17 years agoYet another resource leak. Coverity ID 123.
Ben Laurie [Sat, 7 Apr 2007 13:20:09 +0000 (13:20 +0000)]
Yet another resource leak. Coverity ID 123.

17 years agoIf you're going to check for negative, use an signed integer! Coverity ID 122.
Ben Laurie [Thu, 5 Apr 2007 17:31:29 +0000 (17:31 +0000)]
If you're going to check for negative, use an signed integer! Coverity ID 122.

17 years agoDon't copy from a nonexistent next. Coverity ID 47.
Ben Laurie [Thu, 5 Apr 2007 17:23:51 +0000 (17:23 +0000)]
Don't copy from a nonexistent next. Coverity ID 47.

17 years agoFix duplicate error number.
Ben Laurie [Thu, 5 Apr 2007 17:09:43 +0000 (17:09 +0000)]
Fix duplicate error number.

17 years agoErrors should actually be errors.
Ben Laurie [Thu, 5 Apr 2007 17:03:09 +0000 (17:03 +0000)]
Errors should actually be errors.

17 years agoDon't dereference NULL argument. Coverity ID 52.
Ben Laurie [Thu, 5 Apr 2007 16:58:39 +0000 (16:58 +0000)]
Don't dereference NULL argument. Coverity ID 52.

17 years agoMissing config file.
Ben Laurie [Thu, 5 Apr 2007 16:57:07 +0000 (16:57 +0000)]
Missing config file.

17 years agoDon't use a negative number as a length. Coverity ID 57.
Ben Laurie [Thu, 5 Apr 2007 16:28:48 +0000 (16:28 +0000)]
Don't use a negative number as a length. Coverity ID 57.

17 years agoAvoid overrun. Coverity ID 60.
Ben Laurie [Thu, 5 Apr 2007 15:45:58 +0000 (15:45 +0000)]
Avoid overrun. Coverity ID 60.

17 years agoFree memory. Coverity ID 62.
Ben Laurie [Thu, 5 Apr 2007 15:45:22 +0000 (15:45 +0000)]
Free memory. Coverity ID 62.

17 years agocheck return value of ASN1_item_i2d(), Coverity ID 55
Nils Larsch [Wed, 4 Apr 2007 19:41:20 +0000 (19:41 +0000)]
check return value of ASN1_item_i2d(), Coverity ID 55

17 years agoResource leak.
Ben Laurie [Wed, 4 Apr 2007 16:00:03 +0000 (16:00 +0000)]
Resource leak.

17 years agoHandle bad content type. Coverity ID 99.
Ben Laurie [Wed, 4 Apr 2007 15:31:17 +0000 (15:31 +0000)]
Handle bad content type. Coverity ID 99.

17 years agoFix buffer overrun. Coverity ID 106.
Ben Laurie [Wed, 4 Apr 2007 15:13:31 +0000 (15:13 +0000)]
Fix buffer overrun. Coverity ID 106.

17 years agoDon't free a NULL. Coverity ID 112.
Ben Laurie [Wed, 4 Apr 2007 14:59:20 +0000 (14:59 +0000)]
Don't free a NULL. Coverity ID 112.

17 years agoMissing return on error. Coverity ID 115.
Ben Laurie [Wed, 4 Apr 2007 14:38:59 +0000 (14:38 +0000)]
Missing return on error. Coverity ID 115.

17 years agoReturn an error if the serial number is badly formed. (Coverity ID 116).
Ben Laurie [Wed, 4 Apr 2007 14:35:56 +0000 (14:35 +0000)]
Return an error if the serial number is badly formed. (Coverity ID 116).

17 years agoDie if serial number is invalid.
Ben Laurie [Wed, 4 Apr 2007 13:41:33 +0000 (13:41 +0000)]
Die if serial number is invalid.

17 years agoMake sure we detect corruption.
Ben Laurie [Wed, 4 Apr 2007 13:21:15 +0000 (13:21 +0000)]
Make sure we detect corruption.

17 years agocheck correct pointer before freeing it (Coverity CID 79,86)
Nils Larsch [Mon, 2 Apr 2007 20:29:40 +0000 (20:29 +0000)]
check correct pointer before freeing it (Coverity CID 79,86)

17 years agocheck if pointer is != NULL before dereferencing it (Coverity CID 40)
Nils Larsch [Mon, 2 Apr 2007 20:02:27 +0000 (20:02 +0000)]
check if pointer is != NULL before dereferencing it (Coverity CID 40)

17 years agoRC4_set_key for x86_64 and Core2 optimization.
Andy Polyakov [Mon, 2 Apr 2007 09:50:14 +0000 (09:50 +0000)]
RC4_set_key for x86_64 and Core2 optimization.
PR: 1447

17 years agoDon't die if the value is NULL (Coverity CID 98).
Ben Laurie [Sun, 1 Apr 2007 18:00:52 +0000 (18:00 +0000)]
Don't die if the value is NULL (Coverity CID 98).

17 years agoFix warning.
Ben Laurie [Sun, 1 Apr 2007 17:56:25 +0000 (17:56 +0000)]
Fix warning.

17 years agoUpdate x86cpuid.pl to correctly detect shared cache and to support new
Andy Polyakov [Sun, 1 Apr 2007 17:28:08 +0000 (17:28 +0000)]
Update x86cpuid.pl to correctly detect shared cache and to support new
RC4_set_key.

17 years agoReserve for assembler implementation of RC4_set_key and implement x86 one.
Andy Polyakov [Sun, 1 Apr 2007 17:01:12 +0000 (17:01 +0000)]
Reserve for assembler implementation of RC4_set_key and implement x86 one.

17 years agoApply a more modern way to get the definition of select(), except for VMS.
Richard Levitte [Thu, 29 Mar 2007 18:34:57 +0000 (18:34 +0000)]
Apply a more modern way to get the definition of select(), except for VMS.
Submitted by Corinna Vinschen <vinschen@redhat.com>

17 years agomake BN_FLG_CONSTTIME semantics more fool-proof
Bodo Möller [Wed, 28 Mar 2007 18:41:23 +0000 (18:41 +0000)]
make BN_FLG_CONSTTIME semantics more fool-proof

17 years agoChange to mitigate branch prediction attacks
Bodo Möller [Wed, 28 Mar 2007 00:15:28 +0000 (00:15 +0000)]
Change to mitigate branch prediction attacks

Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller

17 years agoAllow shared builds for aix[64]-gcc targets.
Andy Polyakov [Sun, 25 Mar 2007 15:20:35 +0000 (15:20 +0000)]
Allow shared builds for aix[64]-gcc targets.

17 years agoaix[64]-cc config lines update.
Andy Polyakov [Sun, 25 Mar 2007 15:13:51 +0000 (15:13 +0000)]
aix[64]-cc config lines update.

17 years agoStage 1 GOST ciphersuite support.
Dr. Stephen Henson [Fri, 23 Mar 2007 17:04:05 +0000 (17:04 +0000)]
Stage 1 GOST ciphersuite support.

Submitted by: ran@cryptocom.ru
Reviewed by: steve@openssl.org

17 years agoSynchronise the VMS build with recent movements in the Unix build.
Richard Levitte [Fri, 23 Mar 2007 09:36:33 +0000 (09:36 +0000)]
Synchronise the VMS build with recent movements in the Unix build.

17 years agoFixes for aix-shared rules.
Andy Polyakov [Thu, 22 Mar 2007 08:46:33 +0000 (08:46 +0000)]
Fixes for aix-shared rules.

17 years agostricter session ID context matching
Bodo Möller [Wed, 21 Mar 2007 14:33:16 +0000 (14:33 +0000)]
stricter session ID context matching

17 years agoclarification regarding libdes files
Bodo Möller [Wed, 21 Mar 2007 10:58:45 +0000 (10:58 +0000)]
clarification regarding libdes files

17 years agolink warnings caused by nasm modules.
Andy Polyakov [Tue, 20 Mar 2007 09:37:06 +0000 (09:37 +0000)]
link warnings caused by nasm modules.

17 years agoTwo extra instructions in RC4 character loop give 80% performance
Andy Polyakov [Tue, 20 Mar 2007 09:13:07 +0000 (09:13 +0000)]
Two extra instructions in RC4 character loop give 80% performance
improvement on Core2. I still need to detect Core2 and choose this
path...

17 years agoRemove obsolete comment.
Andy Polyakov [Tue, 20 Mar 2007 09:07:19 +0000 (09:07 +0000)]
Remove obsolete comment.

17 years agoVarious PowerPC config updates.
Andy Polyakov [Tue, 20 Mar 2007 08:57:18 +0000 (08:57 +0000)]
Various PowerPC config updates.

17 years agonasm fixes.
Andy Polyakov [Tue, 20 Mar 2007 08:55:58 +0000 (08:55 +0000)]
nasm fixes.

17 years agosparcv9a-mont was modified to handle 32-bit aligned input, but check
Andy Polyakov [Tue, 20 Mar 2007 08:54:51 +0000 (08:54 +0000)]
sparcv9a-mont was modified to handle 32-bit aligned input, but check
for 64-bit alignment was not removed.

17 years agoWin32 fixes. Add GOST algorithm to mkdef, update ordinals. Signed/unsigned fixes.
Dr. Stephen Henson [Fri, 16 Mar 2007 22:20:55 +0000 (22:20 +0000)]
Win32 fixes. Add GOST algorithm to mkdef, update ordinals. Signed/unsigned fixes.

17 years agoFix from stable branch.
Dr. Stephen Henson [Mon, 5 Mar 2007 00:09:08 +0000 (00:09 +0000)]
Fix from stable branch.

17 years agosize_t -> int
Nils Larsch [Fri, 2 Mar 2007 19:56:29 +0000 (19:56 +0000)]
size_t -> int

17 years agoremove unused file
Nils Larsch [Fri, 2 Mar 2007 19:42:16 +0000 (19:42 +0000)]
remove unused file

17 years agoInitialize "buf" to 0 to make valgrind happy :-)
Lutz Jänicke [Fri, 2 Mar 2007 17:54:51 +0000 (17:54 +0000)]
Initialize "buf" to 0 to make valgrind happy :-)
Note: the RAND_bytes() manual page says:
 RAND_bytes() puts num cryptographically strong pseudo-random bytes into buf.
It does not talk about using the previous contents of buf so we are working
as documented.

17 years agoDo not use uninitialized memory to seed the PRNG as it may confuse
Lutz Jänicke [Fri, 2 Mar 2007 17:46:25 +0000 (17:46 +0000)]
Do not use uninitialized memory to seed the PRNG as it may confuse
code checking tools.
PR: 1499

17 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 27 Feb 2007 18:43:42 +0000 (18:43 +0000)]
Update from stable branch.

17 years agosmall cosmetics: align title with the other similar manual page
Ralf S. Engelschall [Tue, 27 Feb 2007 07:41:54 +0000 (07:41 +0000)]
small cosmetics: align title with the other similar manual page

17 years agoallow EVP_PKEY_CTX_free(NULL)
Nils Larsch [Mon, 26 Feb 2007 18:32:53 +0000 (18:32 +0000)]
allow EVP_PKEY_CTX_free(NULL)

17 years agoremove dead code
Nils Larsch [Mon, 26 Feb 2007 18:21:19 +0000 (18:21 +0000)]
remove dead code

17 years agoinclude complete 0.9.7 history
Bodo Möller [Mon, 26 Feb 2007 10:49:59 +0000 (10:49 +0000)]
include complete 0.9.7 history
include release date of 0.9.8e

17 years agouse 2007 copyright for generated files
Bodo Möller [Mon, 26 Feb 2007 10:48:10 +0000 (10:48 +0000)]
use 2007 copyright for generated files

17 years agoUpdate FAQ,NEWS in HEAD.
Dr. Stephen Henson [Fri, 23 Feb 2007 13:16:38 +0000 (13:16 +0000)]
Update FAQ,NEWS in HEAD.

17 years agoFix incorrect substitution that happened during the recent ciphersuite
Bodo Möller [Thu, 22 Feb 2007 21:31:19 +0000 (21:31 +0000)]
Fix incorrect substitution that happened during the recent ciphersuite
selection remodeling

Submitted by: Victor Duchovni

17 years agoFix problem with multi line responses in -starttls by using a buffering
Lutz Jänicke [Thu, 22 Feb 2007 17:39:47 +0000 (17:39 +0000)]
Fix problem with multi line responses in -starttls by using a buffering
BIO and BIO_gets().

17 years agoExtend SMTP and IMAP protocol handling to perform the required
Lutz Jänicke [Wed, 21 Feb 2007 18:20:41 +0000 (18:20 +0000)]
Extend SMTP and IMAP protocol handling to perform the required
EHLO or CAPABILITY handshake before sending STARTTLS

Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>

17 years agoAdd automatic detection for Linux on SuperH
Lutz Jänicke [Wed, 21 Feb 2007 18:10:20 +0000 (18:10 +0000)]
Add automatic detection for Linux on SuperH
PR: 1152
Submitted by: Mike Frysinger <vapier@gentoo.org>

17 years agoAdd support for m68k linux
Lutz Jänicke [Wed, 21 Feb 2007 17:58:54 +0000 (17:58 +0000)]
Add support for m68k linux
PR: 1277
Submitted by: Mike Frysinger <vapier@gentoo.org>