Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.
Update cms-test.pl to support OpenSSL 0.9.8.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used. This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.
Dr. Stephen Henson [Sat, 22 Mar 2008 18:52:03 +0000 (18:52 +0000)]
Update dependencies.
Dr. Stephen Henson [Fri, 21 Mar 2008 13:09:26 +0000 (13:09 +0000)]
Preliminary documentation for CMS utility.
Geoff Thorpe [Wed, 19 Mar 2008 23:08:20 +0000 (23:08 +0000)]
Comment out a (currently) unused CMS function. (Sorry Steve, but I need
-Werror right now to help me code-by-domino :-)
Geoff Thorpe [Wed, 19 Mar 2008 23:05:48 +0000 (23:05 +0000)]
Fork my debug configuration into 32-bit and 64-bit versions.
Dr. Stephen Henson [Wed, 19 Mar 2008 19:34:30 +0000 (19:34 +0000)]
Allow alternate eContentType oids to be set in cms utility.
Add id-ct-asciiTextWithCRLF OID.
Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:42:02 +0000 (18:42 +0000)]
Rebuild CMS error codes.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:39:51 +0000 (18:39 +0000)]
Add support for KEK decrypt in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 17:01:12 +0000 (17:01 +0000)]
Produce meaningful error if sanity check fails.
Delete trailing whitespace from objects.txt
Delete duplicate NIDs.
Dr. Stephen Henson [Wed, 19 Mar 2008 14:18:36 +0000 (14:18 +0000)]
Additional sanity check.
Dr. Stephen Henson [Wed, 19 Mar 2008 13:53:52 +0000 (13:53 +0000)]
Add support for KEKRecipientInfo in cms application.
Dr. Stephen Henson [Tue, 18 Mar 2008 19:03:03 +0000 (19:03 +0000)]
Make 3DES default cipher in cms utility.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:53:12 +0000 (18:53 +0000)]
Delete standard out and err temp files too.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:51:44 +0000 (18:51 +0000)]
Delete tmp files, silence openssl commands, compare extracted content.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:29:54 +0000 (18:29 +0000)]
Add enveloped data keyid test.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:18:25 +0000 (18:18 +0000)]
Uninitialized variable bug fix.
Dr. Stephen Henson [Tue, 18 Mar 2008 17:33:46 +0000 (17:33 +0000)]
Fixes for S/MIME consistency checker and flexibility enhancements.
Dr. Stephen Henson [Tue, 18 Mar 2008 14:37:59 +0000 (14:37 +0000)]
Add extensive PCKS7 and CMS consistency test script.
Dr. Stephen Henson [Tue, 18 Mar 2008 13:45:43 +0000 (13:45 +0000)]
Various tidies/fixes:
Make streaming support in cms cleaner.
Note errors in various S/MIME functions if CMS_final() fails.
Add streaming support for enveloped data.
Dr. Stephen Henson [Tue, 18 Mar 2008 01:00:38 +0000 (01:00 +0000)]
More support for KEK RecipientInfo.
Generalise RecipientInfo and enveloped data handling so applications can
add their own key lookup routines as well as using the standard ones.
Dr. Stephen Henson [Mon, 17 Mar 2008 18:11:27 +0000 (18:11 +0000)]
Partial support for KEKRecipientInfo type.
Dr. Stephen Henson [Mon, 17 Mar 2008 13:38:51 +0000 (13:38 +0000)]
Preliminary support for enveloped data content type creation.
Fix signed data creation so versions are only corrected if structure is
being created.
Geoff Thorpe [Sun, 16 Mar 2008 21:05:46 +0000 (21:05 +0000)]
Fix a variety of warnings generated by some elevated compiler-fascism,
OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...
Dr. Stephen Henson [Sun, 16 Mar 2008 20:59:10 +0000 (20:59 +0000)]
Fix some warnings.
Geoff Thorpe [Sun, 16 Mar 2008 20:57:12 +0000 (20:57 +0000)]
Fix a nasty cast issue that my compiler was choking on.
Geoff Thorpe [Sun, 16 Mar 2008 20:49:32 +0000 (20:49 +0000)]
Fix my debug-geoff configuration.
Dr. Stephen Henson [Sun, 16 Mar 2008 19:10:02 +0000 (19:10 +0000)]
Adapt to diffrent OpenSSL utility locations.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:41:20 +0000 (18:41 +0000)]
Remove deleted function from header file, update mkfiles.pl
Dr. Stephen Henson [Sun, 16 Mar 2008 18:31:18 +0000 (18:31 +0000)]
Don't need to check for examples directory any more.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:03:48 +0000 (18:03 +0000)]
Extend runex.pl to extract examples directly from RFC text.
Dr. Stephen Henson [Sun, 16 Mar 2008 13:05:03 +0000 (13:05 +0000)]
Add support for random key generation: this will be needed by enveloped data.
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:34 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can now be processed.
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:33 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can not be processed.
Dr. Stephen Henson [Sat, 15 Mar 2008 13:37:32 +0000 (13:37 +0000)]
Check for cipher BIO errors and set key length after parameter decode.
Dr. Stephen Henson [Sat, 15 Mar 2008 00:02:23 +0000 (00:02 +0000)]
Return error if no cipher set for encrypted data type.
Update CHANGES.
Dr. Stephen Henson [Fri, 14 Mar 2008 23:30:56 +0000 (23:30 +0000)]
Initial support for Encrypted Data type generation.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:40:40 +0000 (19:40 +0000)]
Delete temp files.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:38:44 +0000 (19:38 +0000)]
Typos.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:37:56 +0000 (19:37 +0000)]
Reorganise encrypted content info code to avoid duplication and be more
consistent with other content types.
Dr. Stephen Henson [Fri, 14 Mar 2008 13:21:48 +0000 (13:21 +0000)]
Encrypted Data type processing. Add options to cms utility and run section 7
tests in RFC4134.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:58:43 +0000 (00:58 +0000)]
New utility functions for encryptedData content type which will also be used
by envelopedData.
Use PRE and not POST when freeing up RecipientInfo.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:57:01 +0000 (00:57 +0000)]
Only call free once in CHOICE type.
Dr. Stephen Henson [Thu, 13 Mar 2008 01:04:47 +0000 (01:04 +0000)]
RFC4134 S/MIME examples test script.
Dr. Stephen Henson [Thu, 13 Mar 2008 00:50:02 +0000 (00:50 +0000)]
.cvignore file for cms
Dr. Stephen Henson [Thu, 13 Mar 2008 00:48:59 +0000 (00:48 +0000)]
Free up additional data in RecipientInfo structure
Dr. Stephen Henson [Wed, 12 Mar 2008 21:14:28 +0000 (21:14 +0000)]
And so it begins...
Initial support for CMS.
Add zlib compression BIO.
Add AES key wrap implementation.
Generalize S/MIME MIME code to support CMS and/or PKCS7.
Dr. Stephen Henson [Wed, 12 Mar 2008 13:05:07 +0000 (13:05 +0000)]
Update year.
Dr. Stephen Henson [Wed, 12 Mar 2008 00:37:31 +0000 (00:37 +0000)]
#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.
Dr. Stephen Henson [Fri, 29 Feb 2008 14:24:52 +0000 (14:24 +0000)]
We already have an object for "zlib compression" but it was a place
holder and its actual encoding never used.
Just as well because it's value looks like it was made up in the mists of
time...
Now there is a registered value for zlib compression (used in S/MIME
compressedData content type) use that instead.
Dr. Stephen Henson [Thu, 28 Feb 2008 14:05:01 +0000 (14:05 +0000)]
Avoid warnings.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:45:06 +0000 (13:45 +0000)]
Fix error code function name mismatches in GOST engine, rebuild errors.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:18:26 +0000 (13:18 +0000)]
Fix typo and avoid warning.
Andy Polyakov [Wed, 27 Feb 2008 20:09:28 +0000 (20:09 +0000)]
Make x86_64-mont.pl work with debug Win64 build.
Bodo Möller [Wed, 27 Feb 2008 06:01:28 +0000 (06:01 +0000)]
fix BIGNUM flag handling
Dr. Stephen Henson [Mon, 25 Feb 2008 18:11:47 +0000 (18:11 +0000)]
Clarification and fix typo.
Dr. Stephen Henson [Mon, 25 Feb 2008 13:14:06 +0000 (13:14 +0000)]
Use default value for $dir if it is empty.
Bodo Möller [Thu, 21 Feb 2008 07:24:12 +0000 (07:24 +0000)]
Make sure to set indent-tabs-mode so that we get tabs, not spaces.
Andy Polyakov [Wed, 13 Feb 2008 13:07:52 +0000 (13:07 +0000)]
Support for NASM>=2 in Win64/x64 build.
Dr. Stephen Henson [Tue, 12 Feb 2008 13:48:10 +0000 (13:48 +0000)]
Add OIDs for compressedData content type and zlib compression.
Dr. Stephen Henson [Tue, 12 Feb 2008 01:24:50 +0000 (01:24 +0000)]
Typo.
Dr. Stephen Henson [Mon, 11 Feb 2008 17:52:38 +0000 (17:52 +0000)]
Utility attribute function to retrieve attribute data from an expected
type. Useful for many attributes which are single valued and can only
have one type.
Dr. Stephen Henson [Mon, 11 Feb 2008 13:59:33 +0000 (13:59 +0000)]
Extend attribute setting routines to support non-string types.
Andy Polyakov [Mon, 11 Feb 2008 13:04:39 +0000 (13:04 +0000)]
Ad-hockery for Platform SDK ml64.
Dr. Stephen Henson [Fri, 8 Feb 2008 13:07:04 +0000 (13:07 +0000)]
Support custom primitive type printing routines and add one to LONG type.
Andy Polyakov [Wed, 6 Feb 2008 10:18:19 +0000 (10:18 +0000)]
Micro-profiling assisted "optimization" for Power6. Essentially it's so
to say educational commit. Reordering instructions doesn't improve
performance much, rather exhibits Power6 limitations.
Andy Polyakov [Tue, 5 Feb 2008 13:10:14 +0000 (13:10 +0000)]
ppc64-mont optimization.
Lutz Jänicke [Wed, 30 Jan 2008 08:26:59 +0000 (08:26 +0000)]
Add missing colon in manpage
Submitted by: Richard Hartmann <richih.mailinglist@gmail.com>
Dr. Stephen Henson [Sat, 26 Jan 2008 23:42:58 +0000 (23:42 +0000)]
Add Global Sign root CA.
Dr. Stephen Henson [Wed, 23 Jan 2008 19:21:00 +0000 (19:21 +0000)]
Clarify FAQ.
Dr. Stephen Henson [Wed, 23 Jan 2008 19:10:53 +0000 (19:10 +0000)]
Clarify BITLIST format and include an example.
Andy Polyakov [Thu, 17 Jan 2008 19:48:01 +0000 (19:48 +0000)]
rc5/asm/rc5-586.pl was erroneously omitted from last perlasm unification.
Andy Polyakov [Tue, 15 Jan 2008 11:27:06 +0000 (11:27 +0000)]
crypto/rc5/Makefile was erroneously omitted from last perlasm unification.
Also remove obsolete and now misleading comments.
Dr. Stephen Henson [Mon, 14 Jan 2008 18:10:55 +0000 (18:10 +0000)]
<strings.h> does not exist under WIN32.
Andy Polyakov [Sun, 13 Jan 2008 22:01:30 +0000 (22:01 +0000)]
Unify ppc assembler make rules.
Andy Polyakov [Sun, 13 Jan 2008 17:56:02 +0000 (17:56 +0000)]
Automate assembler support for Win64 targets (more work is needed).
Andy Polyakov [Sun, 13 Jan 2008 17:43:11 +0000 (17:43 +0000)]
Allow to specify filename on sha1-ia64.pl command line.
Andy Polyakov [Sun, 13 Jan 2008 17:42:04 +0000 (17:42 +0000)]
Make all x86_64 modules independent on current working directory.
Andy Polyakov [Sat, 12 Jan 2008 11:29:45 +0000 (11:29 +0000)]
rc4-x86_64 portability fix.
Ben Laurie [Sat, 12 Jan 2008 11:22:31 +0000 (11:22 +0000)]
Missing headers.
Andy Polyakov [Fri, 11 Jan 2008 13:15:11 +0000 (13:15 +0000)]
Unify x86 perlasm make rules.
Andy Polyakov [Fri, 11 Jan 2008 11:59:37 +0000 (11:59 +0000)]
Automate assembler support in mk1mf even further.
Dr. Stephen Henson [Sun, 6 Jan 2008 00:36:22 +0000 (00:36 +0000)]
Experimental support for import of more options from Configure
(via top level Makefile) into mk1mf builds. This avoids the need
to duplicate the CFLAG handling and can auto build assembly language
source files from perl scripts.
Extend VC-WIN32 Configure entry to include new options.
Dr. Stephen Henson [Sat, 5 Jan 2008 22:28:38 +0000 (22:28 +0000)]
Update perl asm scripts include paths for perlasm.
Andy Polyakov [Sat, 5 Jan 2008 21:35:34 +0000 (21:35 +0000)]
Fix unsigned/signed warnings in ssl.
Andy Polyakov [Sat, 5 Jan 2008 21:32:29 +0000 (21:32 +0000)]
Cygwin compatibility fix to apps/ocsp.c.