Dr. Stephen Henson [Tue, 20 May 2008 11:52:57 +0000 (11:52 +0000)]
Update from stable branch.
Dr. Stephen Henson [Tue, 20 May 2008 11:30:27 +0000 (11:30 +0000)]
Fix from stable branch.
Lutz Jänicke [Tue, 20 May 2008 08:10:48 +0000 (08:10 +0000)]
Correctly adjust location of comment
Submitted by: Ben Laurie <ben@links.org>
Dr. Stephen Henson [Mon, 19 May 2008 21:33:55 +0000 (21:33 +0000)]
Fix two invalid memory reads in RSA OAEP mode.
Submitted by: Ivan Nestlerode <inestlerode@us.ibm.com>
Reviewed by: steve
Bodo Möller [Mon, 19 May 2008 20:45:25 +0000 (20:45 +0000)]
Change use of CRYPTO_THREADID so that we always use both the ulong and
ptr members.
(So if the id_callback is bogus, we still have &errno.)
Bodo Möller [Mon, 19 May 2008 19:44:45 +0000 (19:44 +0000)]
Disable code that clearly doesn't currently serve any useful purpose.
(Buggy line reported by Matthias Koenig.)
Lutz Jänicke [Mon, 19 May 2008 07:52:15 +0000 (07:52 +0000)]
Document "openssl s_server" -crl_check* options
Submitted by: Daniel Black <daniel.subs@internode.on.net>
Lutz Jänicke [Mon, 19 May 2008 07:43:34 +0000 (07:43 +0000)]
Provide information about "openssl dgst" -hmac option.
Lutz Jänicke [Mon, 19 May 2008 06:21:05 +0000 (06:21 +0000)]
Typo. (From 0.9.8-stable/S. Henson)
PR: 1672
Lutz Jänicke [Fri, 16 May 2008 07:14:26 +0000 (07:14 +0000)]
Another occurance of possible valgrind/purify "uninitialized memory"
complaint related to the PRNG: with PURIFY policy don't feed uninitialized
memory into the PRNG.
Submitted by: Bodo Moeller <bmoeller@openssl.org> :-)
Dr. Stephen Henson [Mon, 12 May 2008 16:24:31 +0000 (16:24 +0000)]
Fix from stable branch.
Dr. Stephen Henson [Fri, 9 May 2008 23:16:24 +0000 (23:16 +0000)]
Add missing cast.
Andy Polyakov [Sat, 3 May 2008 18:34:59 +0000 (18:34 +0000)]
Depict future Win64/x64 development.
Bodo Möller [Fri, 2 May 2008 18:47:48 +0000 (18:47 +0000)]
Clarifying comment.
Dr. Stephen Henson [Fri, 2 May 2008 17:27:01 +0000 (17:27 +0000)]
New function CMS_add1_crl().
Dr. Stephen Henson [Fri, 2 May 2008 11:24:40 +0000 (11:24 +0000)]
Indicate support for digest init ctrl.
Dr. Stephen Henson [Thu, 1 May 2008 23:35:36 +0000 (23:35 +0000)]
Typo.
Dr. Stephen Henson [Thu, 1 May 2008 23:30:06 +0000 (23:30 +0000)]
Use "cont" consistently in cms-examples.pl
Add a -certsout option to output any certificates in a message.
Add test for example 4.11
Bodo Möller [Thu, 1 May 2008 18:48:20 +0000 (18:48 +0000)]
Montgomery-related minor cleanups/documentation
Dr. Stephen Henson [Wed, 30 Apr 2008 16:14:02 +0000 (16:14 +0000)]
Update from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 17:22:35 +0000 (17:22 +0000)]
Update from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 16:46:46 +0000 (16:46 +0000)]
Oops!
Dr. Stephen Henson [Tue, 29 Apr 2008 16:44:51 +0000 (16:44 +0000)]
Update from stable branch.
Dr. Stephen Henson [Tue, 29 Apr 2008 16:39:03 +0000 (16:39 +0000)]
Update from stable branch.
Geoff Thorpe [Mon, 28 Apr 2008 21:39:09 +0000 (21:39 +0000)]
Fix auto-discovery of ENGINEs. See the CHANGES entry for details (and/or
ticket #1668).
PR: 1668
Submitted by: Ian Lister
Reviewed by: Geoff Thorpe
Geoff Thorpe [Sun, 27 Apr 2008 18:41:23 +0000 (18:41 +0000)]
Paul Sheer optimised the OpenSSL to/from libGMP conversions for the case
where they both use the same limb size. I've tweaked his patch slightly, so
blame me if it breaks.
Submitted by: Paul Sheer
Reviewed by: Geoff Thorpe
Dr. Stephen Henson [Fri, 25 Apr 2008 16:27:04 +0000 (16:27 +0000)]
Don't send zero length session ID if stateless session resupmtion is
successful. Check be seeing if there is a cache hit.
Dr. Stephen Henson [Fri, 25 Apr 2008 11:33:32 +0000 (11:33 +0000)]
Disable debugging fprintf.
Andy Polyakov [Thu, 24 Apr 2008 10:04:26 +0000 (10:04 +0000)]
Add 64-bit support to BN_nist_mod_244 and engage BN_nist_mod_* on 64-bit
platforms.
Andy Polyakov [Thu, 24 Apr 2008 09:59:45 +0000 (09:59 +0000)]
Compensate inline assembler in sha512.c for gcc 2.7.2 compiler bug.
PR: 1667
Andy Polyakov [Wed, 23 Apr 2008 08:10:25 +0000 (08:10 +0000)]
Takanori Yanagisawa has shown how to correctly use pre-computed values.
So in a sense this commit reverts few latest ones fixing bugs in original
code and improving it, most notably adding 64-bit support [though not in
BN_nist_mod_224 yet].
PR: 1593
Andy Polyakov [Fri, 18 Apr 2008 15:47:30 +0000 (15:47 +0000)]
Resolve __DECC warning and keep disclaiming support for 16-bit platforms.
Andy Polyakov [Fri, 18 Apr 2008 15:40:57 +0000 (15:40 +0000)]
Fix remaining BN_nist_mod_*.
PR: 1593
Dr. Stephen Henson [Fri, 18 Apr 2008 11:18:20 +0000 (11:18 +0000)]
Make certs argument work in CMS_sign() add test case.
PR:1664
Lutz Jänicke [Fri, 18 Apr 2008 07:43:26 +0000 (07:43 +0000)]
Add missing 'extern "C" {' to some _err.h files in crypto/engines/
PR: 1609
Lutz Jänicke [Fri, 18 Apr 2008 06:35:55 +0000 (06:35 +0000)]
Another minor update from the mingw development
PR: 1552
Submitted by: Roumen Petrov <openssl@roumenpetrov.info>
Richard Levitte [Fri, 18 Apr 2008 06:04:03 +0000 (06:04 +0000)]
Synchronise with Unix.
Lutz Jänicke [Thu, 17 Apr 2008 14:15:27 +0000 (14:15 +0000)]
Fix incorrect return value in apps/apps.c:parse_yesno()
PR: 1607
Submitted by: "Christophe Macé" <mace.christophe@gmail.com>
Lutz Jänicke [Thu, 17 Apr 2008 13:36:13 +0000 (13:36 +0000)]
Correctly handle case of bad arguments supplied to rsautl
PR: 1659
Lutz Jänicke [Thu, 17 Apr 2008 10:19:16 +0000 (10:19 +0000)]
Apply mingw patches as supplied by Roumen Petrov an Alon Bar-Lev
PR: 1552
Submitted by: Roumen Petrov <openssl@roumenpetrov.info>, "Alon Bar-Lev" <alon.barlev@gmail.com>
Richard Levitte [Sat, 12 Apr 2008 08:41:05 +0000 (08:41 +0000)]
Further synchronisation with Unix build. I hadn't noticed pq_compat.h
was gone...
Richard Levitte [Sat, 12 Apr 2008 08:40:01 +0000 (08:40 +0000)]
Provide other forms for symbols that are too long or that clash with others
Dr. Stephen Henson [Fri, 11 Apr 2008 23:52:26 +0000 (23:52 +0000)]
Detached encrypt/decrypt example, fix decrypt sample.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:49:03 +0000 (23:49 +0000)]
Correct argument order for CMS_decrypt() in docs.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:45:52 +0000 (23:45 +0000)]
Fix prototype for CMS_decrypt(), don't free up detached content.
Dr. Stephen Henson [Fri, 11 Apr 2008 23:23:18 +0000 (23:23 +0000)]
Revert argument swap change... oops CMS_uncompress() was consistent...
Dr. Stephen Henson [Fri, 11 Apr 2008 17:50:20 +0000 (17:50 +0000)]
Fix comments.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:34:13 +0000 (17:34 +0000)]
Make CMS_uncompress() argument order consistent with other functions.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:33:29 +0000 (17:33 +0000)]
CMS compressed data examples.
Dr. Stephen Henson [Fri, 11 Apr 2008 17:07:01 +0000 (17:07 +0000)]
Fix for compression and updated CMS_final().
Dr. Stephen Henson [Fri, 11 Apr 2008 16:52:45 +0000 (16:52 +0000)]
PKCS#7 examples converted to CMS.
Richard Levitte [Fri, 11 Apr 2008 01:53:16 +0000 (01:53 +0000)]
Synchronise with Unix build
Dr. Stephen Henson [Thu, 10 Apr 2008 23:28:25 +0000 (23:28 +0000)]
Reformat, fix typos and clarify CMS API docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 15:59:40 +0000 (15:59 +0000)]
Correct HISTORY reference.
Dr. Stephen Henson [Thu, 10 Apr 2008 15:56:27 +0000 (15:56 +0000)]
Typo.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:55:57 +0000 (11:55 +0000)]
Add docs for CMS_final() and BIO_new_CMS().
Dr. Stephen Henson [Thu, 10 Apr 2008 11:22:14 +0000 (11:22 +0000)]
Add additional parameter to CMS_final() to handle detached content.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:12:42 +0000 (11:12 +0000)]
Ignore nonsensical flags for signed receipts.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:00:47 +0000 (11:00 +0000)]
Add CMS signed receipt genration and verification docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 10:46:11 +0000 (10:46 +0000)]
Spellcheck CMS docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 23:13:49 +0000 (23:13 +0000)]
Signed receipt request function documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 22:09:45 +0000 (22:09 +0000)]
Correct references to smime in cms app.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:59:45 +0000 (20:59 +0000)]
Update docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:55:55 +0000 (20:55 +0000)]
Add CMS_uncompress manual page.
Dr. Stephen Henson [Wed, 9 Apr 2008 17:04:36 +0000 (17:04 +0000)]
Add CMS_compress() docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 16:08:16 +0000 (16:08 +0000)]
More CMS API documentation.
Andy Polyakov [Wed, 9 Apr 2008 12:06:42 +0000 (12:06 +0000)]
Clarifying comment.
Andy Polyakov [Wed, 9 Apr 2008 11:36:04 +0000 (11:36 +0000)]
Do BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
will be revised too.
PR: 1593
Dr. Stephen Henson [Tue, 8 Apr 2008 22:44:56 +0000 (22:44 +0000)]
Fix various typos, update SMIMECapabilities description.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:35:32 +0000 (22:35 +0000)]
Correct d2i/i2d typos.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:27:10 +0000 (22:27 +0000)]
Initial CMS API documentation.
Dr. Stephen Henson [Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)]
Implement CMS_NOCRL.
Lutz Jänicke [Mon, 7 Apr 2008 06:37:05 +0000 (06:37 +0000)]
Fix URI of OpenSSL Request Tracker information
PR: 1661
Dr. Stephen Henson [Sun, 6 Apr 2008 16:29:47 +0000 (16:29 +0000)]
Set contentType attribute just before signing to allow encapsulated content
type to be set at any time in applications.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:53:29 +0000 (15:53 +0000)]
Fix typo and add header files to err library.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:41:25 +0000 (15:41 +0000)]
Give consistent return value and add error code for duplicate certificates.
Dr. Stephen Henson [Fri, 4 Apr 2008 00:06:43 +0000 (00:06 +0000)]
Delete nonexistant function from pkcs7.h header file. WIN32 build fix from
stable branch. Sync and update ordinals.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:29:15 +0000 (23:29 +0000)]
Make mk1mf.pl recognize no-cms.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:25:43 +0000 (23:25 +0000)]
Rename runex.pl to cms-examples.pl
Dr. Stephen Henson [Wed, 2 Apr 2008 11:44:00 +0000 (11:44 +0000)]
Update CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:24:22 +0000 (11:24 +0000)]
Update CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 10:48:34 +0000 (10:48 +0000)]
Since OID NIDs with 0.9.8.
Dr. Stephen Henson [Tue, 1 Apr 2008 16:29:42 +0000 (16:29 +0000)]
Avoid warnings.
Dr. Stephen Henson [Tue, 1 Apr 2008 15:16:15 +0000 (15:16 +0000)]
Add signed receipt tests.
Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.
Update cms-test.pl to support OpenSSL 0.9.8.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used. This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.