oweals/openssl.git
16 years agoFix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593

16 years agoFix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....

16 years agoFix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.

16 years agoUse correct headers for signed receipts. Use consistent naming.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.

Update cms-test.pl to support OpenSSL 0.9.8.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.

16 years agoRemove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.

16 years agoUpdate docs.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.

16 years agoSigned receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.

16 years agoSupport for verification of signed receipts.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.

16 years agoThere was a need to support thread ID types that couldn't be reliably cast
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used.  This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.

16 years agoUpdate tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).

16 years agoAdd support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.

16 years agoSigned Receipt Request utility functions and option on CMS utility to
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.

16 years agoAdd signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.

16 years agoAdd support for CMS structure printing in cms utility.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.

16 years agoFix duplicate asn1 ctrl values.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 22 Mar 2008 18:52:03 +0000 (18:52 +0000)]
Update dependencies.

16 years agoPreliminary documentation for CMS utility.
Dr. Stephen Henson [Fri, 21 Mar 2008 13:09:26 +0000 (13:09 +0000)]
Preliminary documentation for CMS utility.

16 years agoComment out a (currently) unused CMS function. (Sorry Steve, but I need
Geoff Thorpe [Wed, 19 Mar 2008 23:08:20 +0000 (23:08 +0000)]
Comment out a (currently) unused CMS function. (Sorry Steve, but I need
-Werror right now to help me code-by-domino :-)

16 years agoFork my debug configuration into 32-bit and 64-bit versions.
Geoff Thorpe [Wed, 19 Mar 2008 23:05:48 +0000 (23:05 +0000)]
Fork my debug configuration into 32-bit and 64-bit versions.

16 years agoAllow alternate eContentType oids to be set in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 19:34:30 +0000 (19:34 +0000)]
Allow alternate eContentType oids to be set in cms utility.

Add id-ct-asciiTextWithCRLF OID.

Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.

16 years agoRebuild CMS error codes.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:42:02 +0000 (18:42 +0000)]
Rebuild CMS error codes.

16 years agoAdd support for KEK decrypt in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:39:51 +0000 (18:39 +0000)]
Add support for KEK decrypt in cms utility.

16 years agoProduce meaningful error if sanity check fails.
Dr. Stephen Henson [Wed, 19 Mar 2008 17:01:12 +0000 (17:01 +0000)]
Produce meaningful error if sanity check fails.

Delete trailing whitespace from objects.txt

Delete duplicate NIDs.

16 years agoAdditional sanity check.
Dr. Stephen Henson [Wed, 19 Mar 2008 14:18:36 +0000 (14:18 +0000)]
Additional sanity check.

16 years agoAdd support for KEKRecipientInfo in cms application.
Dr. Stephen Henson [Wed, 19 Mar 2008 13:53:52 +0000 (13:53 +0000)]
Add support for KEKRecipientInfo in cms application.

16 years agoMake 3DES default cipher in cms utility.
Dr. Stephen Henson [Tue, 18 Mar 2008 19:03:03 +0000 (19:03 +0000)]
Make 3DES default cipher in cms utility.

16 years agoDelete standard out and err temp files too.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:53:12 +0000 (18:53 +0000)]
Delete standard out and err temp files too.

16 years agoDelete tmp files, silence openssl commands, compare extracted content.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:51:44 +0000 (18:51 +0000)]
Delete tmp files, silence openssl commands, compare extracted content.

16 years agoAdd enveloped data keyid test.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:29:54 +0000 (18:29 +0000)]
Add enveloped data keyid test.

16 years agoUninitialized variable bug fix.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:18:25 +0000 (18:18 +0000)]
Uninitialized variable bug fix.

16 years agoFixes for S/MIME consistency checker and flexibility enhancements.
Dr. Stephen Henson [Tue, 18 Mar 2008 17:33:46 +0000 (17:33 +0000)]
Fixes for S/MIME consistency checker and flexibility enhancements.

16 years agoAdd extensive PCKS7 and CMS consistency test script.
Dr. Stephen Henson [Tue, 18 Mar 2008 14:37:59 +0000 (14:37 +0000)]
Add extensive PCKS7 and CMS consistency test script.

16 years agoVarious tidies/fixes:
Dr. Stephen Henson [Tue, 18 Mar 2008 13:45:43 +0000 (13:45 +0000)]
Various tidies/fixes:

Make streaming support in cms cleaner.

Note errors in various S/MIME functions if CMS_final() fails.

Add streaming support for enveloped data.

16 years agoMore support for KEK RecipientInfo.
Dr. Stephen Henson [Tue, 18 Mar 2008 01:00:38 +0000 (01:00 +0000)]
More support for KEK RecipientInfo.

Generalise RecipientInfo and enveloped data handling so applications can
add their own key lookup routines as well as using the standard ones.

16 years agoPartial support for KEKRecipientInfo type.
Dr. Stephen Henson [Mon, 17 Mar 2008 18:11:27 +0000 (18:11 +0000)]
Partial support for KEKRecipientInfo type.

16 years agoPreliminary support for enveloped data content type creation.
Dr. Stephen Henson [Mon, 17 Mar 2008 13:38:51 +0000 (13:38 +0000)]
Preliminary support for enveloped data content type creation.

Fix signed data creation so versions are only corrected if structure is
being created.

16 years agoFix a variety of warnings generated by some elevated compiler-fascism,
Geoff Thorpe [Sun, 16 Mar 2008 21:05:46 +0000 (21:05 +0000)]
Fix a variety of warnings generated by some elevated compiler-fascism,
OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...

16 years agoFix some warnings.
Dr. Stephen Henson [Sun, 16 Mar 2008 20:59:10 +0000 (20:59 +0000)]
Fix some warnings.

16 years agoFix a nasty cast issue that my compiler was choking on.
Geoff Thorpe [Sun, 16 Mar 2008 20:57:12 +0000 (20:57 +0000)]
Fix a nasty cast issue that my compiler was choking on.

16 years agoFix my debug-geoff configuration.
Geoff Thorpe [Sun, 16 Mar 2008 20:49:32 +0000 (20:49 +0000)]
Fix my debug-geoff configuration.

16 years agoAdapt to diffrent OpenSSL utility locations.
Dr. Stephen Henson [Sun, 16 Mar 2008 19:10:02 +0000 (19:10 +0000)]
Adapt to diffrent OpenSSL utility locations.

16 years agoRemove deleted function from header file, update mkfiles.pl
Dr. Stephen Henson [Sun, 16 Mar 2008 18:41:20 +0000 (18:41 +0000)]
Remove deleted function from header file, update mkfiles.pl

16 years agoDon't need to check for examples directory any more.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:31:18 +0000 (18:31 +0000)]
Don't need to check for examples directory any more.

16 years agoExtend runex.pl to extract examples directly from RFC text.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:03:48 +0000 (18:03 +0000)]
Extend runex.pl to extract examples directly from RFC text.

16 years agoAdd support for random key generation: this will be needed by enveloped data.
Dr. Stephen Henson [Sun, 16 Mar 2008 13:05:03 +0000 (13:05 +0000)]
Add support for random key generation: this will be needed by enveloped data.

16 years agoInitial support for enveloped data decrypt. Extent runex.pl to cover these
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:34 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can now be processed.

16 years agoInitial support for enveloped data decrypt. Extent runex.pl to cover these
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:33 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can not be processed.

16 years agoCheck for cipher BIO errors and set key length after parameter decode.
Dr. Stephen Henson [Sat, 15 Mar 2008 13:37:32 +0000 (13:37 +0000)]
Check for cipher BIO errors and set key length after parameter decode.

16 years agoReturn error if no cipher set for encrypted data type.
Dr. Stephen Henson [Sat, 15 Mar 2008 00:02:23 +0000 (00:02 +0000)]
Return error if no cipher set for encrypted data type.

Update CHANGES.

16 years agoInitial support for Encrypted Data type generation.
Dr. Stephen Henson [Fri, 14 Mar 2008 23:30:56 +0000 (23:30 +0000)]
Initial support for Encrypted Data type generation.

16 years agoDelete temp files.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:40:40 +0000 (19:40 +0000)]
Delete temp files.

16 years agoTypos.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:38:44 +0000 (19:38 +0000)]
Typos.

16 years agoReorganise encrypted content info code to avoid duplication and be more
Dr. Stephen Henson [Fri, 14 Mar 2008 19:37:56 +0000 (19:37 +0000)]
Reorganise encrypted content info code to avoid duplication and be more
consistent with other content types.

16 years agoEncrypted Data type processing. Add options to cms utility and run section 7
Dr. Stephen Henson [Fri, 14 Mar 2008 13:21:48 +0000 (13:21 +0000)]
Encrypted Data type processing. Add options to cms utility and run section 7
tests in RFC4134.

16 years agoNew utility functions for encryptedData content type which will also be used
Dr. Stephen Henson [Fri, 14 Mar 2008 00:58:43 +0000 (00:58 +0000)]
New utility functions for encryptedData content type which will also be used
by envelopedData.

Use PRE and not POST when freeing up RecipientInfo.

16 years agoOnly call free once in CHOICE type.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:57:01 +0000 (00:57 +0000)]
Only call free once in CHOICE type.

16 years agoRFC4134 S/MIME examples test script.
Dr. Stephen Henson [Thu, 13 Mar 2008 01:04:47 +0000 (01:04 +0000)]
RFC4134 S/MIME examples test script.

16 years ago.cvignore file for cms
Dr. Stephen Henson [Thu, 13 Mar 2008 00:50:02 +0000 (00:50 +0000)]
.cvignore file for cms

16 years agoFree up additional data in RecipientInfo structure
Dr. Stephen Henson [Thu, 13 Mar 2008 00:48:59 +0000 (00:48 +0000)]
Free up additional data in RecipientInfo structure

16 years agoAnd so it begins...
Dr. Stephen Henson [Wed, 12 Mar 2008 21:14:28 +0000 (21:14 +0000)]
And so it begins...

Initial support for CMS.

Add zlib compression BIO.

Add AES key wrap implementation.

Generalize S/MIME MIME code to support CMS and/or PKCS7.

16 years agoUpdate year.
Dr. Stephen Henson [Wed, 12 Mar 2008 13:05:07 +0000 (13:05 +0000)]
Update year.

16 years ago#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.
Dr. Stephen Henson [Wed, 12 Mar 2008 00:37:31 +0000 (00:37 +0000)]
#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.

16 years agoWe already have an object for "zlib compression" but it was a place
Dr. Stephen Henson [Fri, 29 Feb 2008 14:24:52 +0000 (14:24 +0000)]
We already have an object for "zlib compression" but it was a place
holder and its actual encoding never used.

Just as well because it's value looks like it was made up in the mists of
time...

Now there is a registered value for zlib compression (used in S/MIME
compressedData content type) use that instead.

16 years agoAvoid warnings.
Dr. Stephen Henson [Thu, 28 Feb 2008 14:05:01 +0000 (14:05 +0000)]
Avoid warnings.

16 years agoFix error code function name mismatches in GOST engine, rebuild errors.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:45:06 +0000 (13:45 +0000)]
Fix error code function name mismatches in GOST engine, rebuild errors.

16 years agoFix typo and avoid warning.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:18:26 +0000 (13:18 +0000)]
Fix typo and avoid warning.

16 years agoMake x86_64-mont.pl work with debug Win64 build.
Andy Polyakov [Wed, 27 Feb 2008 20:09:28 +0000 (20:09 +0000)]
Make x86_64-mont.pl work with debug Win64 build.

16 years agofix BIGNUM flag handling
Bodo Möller [Wed, 27 Feb 2008 06:01:28 +0000 (06:01 +0000)]
fix BIGNUM flag handling

16 years agoClarification and fix typo.
Dr. Stephen Henson [Mon, 25 Feb 2008 18:11:47 +0000 (18:11 +0000)]
Clarification and fix typo.

16 years agoUse default value for $dir if it is empty.
Dr. Stephen Henson [Mon, 25 Feb 2008 13:14:06 +0000 (13:14 +0000)]
Use default value for $dir if it is empty.

16 years agoMake sure to set indent-tabs-mode so that we get tabs, not spaces.
Bodo Möller [Thu, 21 Feb 2008 07:24:12 +0000 (07:24 +0000)]
Make sure to set indent-tabs-mode so that we get tabs, not spaces.

16 years agoSupport for NASM>=2 in Win64/x64 build.
Andy Polyakov [Wed, 13 Feb 2008 13:07:52 +0000 (13:07 +0000)]
Support for NASM>=2 in Win64/x64 build.

16 years agoAdd OIDs for compressedData content type and zlib compression.
Dr. Stephen Henson [Tue, 12 Feb 2008 13:48:10 +0000 (13:48 +0000)]
Add OIDs for compressedData content type and zlib compression.

16 years agoTypo.
Dr. Stephen Henson [Tue, 12 Feb 2008 01:24:50 +0000 (01:24 +0000)]
Typo.

16 years agoUtility attribute function to retrieve attribute data from an expected
Dr. Stephen Henson [Mon, 11 Feb 2008 17:52:38 +0000 (17:52 +0000)]
Utility attribute function to retrieve attribute data from an expected
type. Useful for many attributes which are single valued and can only
have one type.

16 years agoExtend attribute setting routines to support non-string types.
Dr. Stephen Henson [Mon, 11 Feb 2008 13:59:33 +0000 (13:59 +0000)]
Extend attribute setting routines to support non-string types.

16 years agoAd-hockery for Platform SDK ml64.
Andy Polyakov [Mon, 11 Feb 2008 13:04:39 +0000 (13:04 +0000)]
Ad-hockery for Platform SDK ml64.

16 years agoSupport custom primitive type printing routines and add one to LONG type.
Dr. Stephen Henson [Fri, 8 Feb 2008 13:07:04 +0000 (13:07 +0000)]
Support custom primitive type printing routines and add one to LONG type.

16 years agoMicro-profiling assisted "optimization" for Power6. Essentially it's so
Andy Polyakov [Wed, 6 Feb 2008 10:18:19 +0000 (10:18 +0000)]
Micro-profiling assisted "optimization" for Power6. Essentially it's so
to say educational commit. Reordering instructions doesn't improve
performance much, rather exhibits Power6 limitations.

16 years agoppc64-mont optimization.
Andy Polyakov [Tue, 5 Feb 2008 13:10:14 +0000 (13:10 +0000)]
ppc64-mont optimization.

16 years agoAdd missing colon in manpage
Lutz Jänicke [Wed, 30 Jan 2008 08:26:59 +0000 (08:26 +0000)]
Add missing colon in manpage

Submitted by: Richard Hartmann <richih.mailinglist@gmail.com>

16 years agoAdd Global Sign root CA.
Dr. Stephen Henson [Sat, 26 Jan 2008 23:42:58 +0000 (23:42 +0000)]
Add Global Sign root CA.

16 years agoClarify FAQ.
Dr. Stephen Henson [Wed, 23 Jan 2008 19:21:00 +0000 (19:21 +0000)]
Clarify FAQ.

16 years agoClarify BITLIST format and include an example.
Dr. Stephen Henson [Wed, 23 Jan 2008 19:10:53 +0000 (19:10 +0000)]
Clarify BITLIST format and include an example.

16 years agorc5/asm/rc5-586.pl was erroneously omitted from last perlasm unification.
Andy Polyakov [Thu, 17 Jan 2008 19:48:01 +0000 (19:48 +0000)]
rc5/asm/rc5-586.pl was erroneously omitted from last perlasm unification.

16 years agocrypto/rc5/Makefile was erroneously omitted from last perlasm unification.
Andy Polyakov [Tue, 15 Jan 2008 11:27:06 +0000 (11:27 +0000)]
crypto/rc5/Makefile was erroneously omitted from last perlasm unification.
Also remove obsolete and now misleading comments.

16 years ago<strings.h> does not exist under WIN32.
Dr. Stephen Henson [Mon, 14 Jan 2008 18:10:55 +0000 (18:10 +0000)]
<strings.h> does not exist under WIN32.

16 years agoUnify ppc assembler make rules.
Andy Polyakov [Sun, 13 Jan 2008 22:01:30 +0000 (22:01 +0000)]
Unify ppc assembler make rules.

16 years agoAutomate assembler support for Win64 targets (more work is needed).
Andy Polyakov [Sun, 13 Jan 2008 17:56:02 +0000 (17:56 +0000)]
Automate assembler support for Win64 targets (more work is needed).

16 years agoAllow to specify filename on sha1-ia64.pl command line.
Andy Polyakov [Sun, 13 Jan 2008 17:43:11 +0000 (17:43 +0000)]
Allow to specify filename on sha1-ia64.pl command line.

16 years agoMake all x86_64 modules independent on current working directory.
Andy Polyakov [Sun, 13 Jan 2008 17:42:04 +0000 (17:42 +0000)]
Make all x86_64 modules independent on current working directory.

16 years agorc4-x86_64 portability fix.
Andy Polyakov [Sat, 12 Jan 2008 11:29:45 +0000 (11:29 +0000)]
rc4-x86_64 portability fix.

16 years agoMissing headers.
Ben Laurie [Sat, 12 Jan 2008 11:22:31 +0000 (11:22 +0000)]
Missing headers.

16 years agoUnify x86 perlasm make rules.
Andy Polyakov [Fri, 11 Jan 2008 13:15:11 +0000 (13:15 +0000)]
Unify x86 perlasm make rules.

16 years agoAutomate assembler support in mk1mf even further.
Andy Polyakov [Fri, 11 Jan 2008 11:59:37 +0000 (11:59 +0000)]
Automate assembler support in mk1mf even further.

16 years agoExperimental support for import of more options from Configure
Dr. Stephen Henson [Sun, 6 Jan 2008 00:36:22 +0000 (00:36 +0000)]
Experimental support for import of more options from Configure
(via top level Makefile) into mk1mf builds. This avoids the need
to duplicate the CFLAG handling and can auto build assembly language
source files from perl scripts.

Extend VC-WIN32 Configure entry to include new options.

16 years agoUpdate perl asm scripts include paths for perlasm.
Dr. Stephen Henson [Sat, 5 Jan 2008 22:28:38 +0000 (22:28 +0000)]
Update perl asm scripts include paths for perlasm.

16 years agoFix unsigned/signed warnings in ssl.
Andy Polyakov [Sat, 5 Jan 2008 21:35:34 +0000 (21:35 +0000)]
Fix unsigned/signed warnings in ssl.

16 years agoCygwin compatibility fix to apps/ocsp.c.
Andy Polyakov [Sat, 5 Jan 2008 21:32:29 +0000 (21:32 +0000)]
Cygwin compatibility fix to apps/ocsp.c.