Andy Polyakov [Tue, 15 May 2007 20:51:48 +0000 (20:51 +0000)]
Throw in ppccpuid module.
Andy Polyakov [Tue, 15 May 2007 07:11:23 +0000 (07:11 +0000)]
Fix linking error after adding alphacpuid.s.
Andy Polyakov [Tue, 15 May 2007 06:36:17 +0000 (06:36 +0000)]
Add alphacpuid.s
Andy Polyakov [Mon, 14 May 2007 21:35:25 +0000 (21:35 +0000)]
Profiling revealed that OPENSSL_cleanse consumes *more* CPU time than
sha1_block_data_order when hashing short messages. Move OPENSSL_cleanse
to "cpuid" assembler module and gain 2x.
Andy Polyakov [Mon, 14 May 2007 15:57:19 +0000 (15:57 +0000)]
x86_64 assembler updates.
Andy Polyakov [Sun, 13 May 2007 15:16:44 +0000 (15:16 +0000)]
As all assembler modules are alignment neutral, allow C to pass unaligned
content.
Andy Polyakov [Sun, 13 May 2007 15:15:24 +0000 (15:15 +0000)]
Make sha*-ia64 modules alignment neutral.
Ben Laurie [Sun, 13 May 2007 15:14:38 +0000 (15:14 +0000)]
More IGE speedup.
Ben Laurie [Sun, 13 May 2007 12:57:59 +0000 (12:57 +0000)]
AES IGE mode speedup.
Dr. Stephen Henson [Fri, 11 May 2007 12:08:38 +0000 (12:08 +0000)]
Document streaming options.
Dr. Stephen Henson [Thu, 10 May 2007 17:37:15 +0000 (17:37 +0000)]
Improve error detection when streaming S/MIME.
Only use streaming when appropriate for detached data in smime utility.
Dr. Stephen Henson [Thu, 10 May 2007 17:35:37 +0000 (17:35 +0000)]
Tidy up docs, remove warning.
Dr. Stephen Henson [Thu, 10 May 2007 17:34:42 +0000 (17:34 +0000)]
More useful ASN1 macros for static allocation functions.
Andy Polyakov [Thu, 10 May 2007 07:34:50 +0000 (07:34 +0000)]
Mention Core2 in sha1-x86_64.
Andy Polyakov [Thu, 10 May 2007 06:48:28 +0000 (06:48 +0000)]
Commentary updates to SHA for sparcv9.
Andy Polyakov [Fri, 4 May 2007 13:04:17 +0000 (13:04 +0000)]
Detect UltraSPARC T1 in ./config.
Andy Polyakov [Fri, 4 May 2007 12:54:02 +0000 (12:54 +0000)]
Engage SHA for sparcv9.
Andy Polyakov [Fri, 4 May 2007 12:52:54 +0000 (12:52 +0000)]
SHA for sparcv9.
Andy Polyakov [Thu, 3 May 2007 09:12:47 +0000 (09:12 +0000)]
Fix bug introduced in cn#16195.
Andy Polyakov [Thu, 3 May 2007 07:26:27 +0000 (07:26 +0000)]
Fine reading of manual suggests that km can return non-normal completion code.
Andy Polyakov [Wed, 2 May 2007 11:44:02 +0000 (11:44 +0000)]
Fix s390x bugs and correct performance coefficients.
Richard Levitte [Tue, 1 May 2007 12:25:15 +0000 (12:25 +0000)]
Synchronise VMS with Unix.
Andy Polyakov [Mon, 30 Apr 2007 17:22:09 +0000 (17:22 +0000)]
Revert irrelevant changes from commit #16191.
Andy Polyakov [Mon, 30 Apr 2007 17:19:12 +0000 (17:19 +0000)]
rll does not seem to be available on legacy s390.
Andy Polyakov [Mon, 30 Apr 2007 15:55:00 +0000 (15:55 +0000)]
Typo in commit #16187.
Andy Polyakov [Mon, 30 Apr 2007 15:48:54 +0000 (15:48 +0000)]
Typo in s390x_asm.
Andy Polyakov [Mon, 30 Apr 2007 15:20:10 +0000 (15:20 +0000)]
Bug in apps/dgst.c.
Andy Polyakov [Mon, 30 Apr 2007 13:26:06 +0000 (13:26 +0000)]
s390x optimizations.
Andy Polyakov [Mon, 30 Apr 2007 09:22:27 +0000 (09:22 +0000)]
Engage s390x assembler modules.
Andy Polyakov [Mon, 30 Apr 2007 08:42:54 +0000 (08:42 +0000)]
s390x assembler pack.
Andy Polyakov [Thu, 26 Apr 2007 20:48:38 +0000 (20:48 +0000)]
Reimplement rc4-586.pl, relicense rc4-x86_64.pl.
Bodo Möller [Tue, 24 Apr 2007 01:06:19 +0000 (01:06 +0000)]
fix function codes for error
Bodo Möller [Tue, 24 Apr 2007 00:47:53 +0000 (00:47 +0000)]
remove leftover from editing ...
Bodo Möller [Tue, 24 Apr 2007 00:13:51 +0000 (00:13 +0000)]
All ciphersuites should have a strength designator.
Bodo Möller [Mon, 23 Apr 2007 23:48:59 +0000 (23:48 +0000)]
Add SEED encryption algorithm.
PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller
Bodo Möller [Thu, 19 Apr 2007 15:14:21 +0000 (15:14 +0000)]
fix error codes
Bodo Möller [Thu, 19 Apr 2007 14:45:57 +0000 (14:45 +0000)]
don't violate the bn_check_top assertion in BN_mod_inverse_no_branch()
Dr. Stephen Henson [Sat, 14 Apr 2007 17:53:55 +0000 (17:53 +0000)]
New function ASN1_STRING_copy() to copy to an already
alloacted ASN1_STRING structure.
Dr. Stephen Henson [Fri, 13 Apr 2007 20:41:42 +0000 (20:41 +0000)]
Sample text files for S/MIME test programs.
Dr. Stephen Henson [Fri, 13 Apr 2007 20:40:47 +0000 (20:40 +0000)]
Add a bunch of S/MIME sample programs and data.
Dr. Stephen Henson [Fri, 13 Apr 2007 18:00:45 +0000 (18:00 +0000)]
Flush b64 BIO.
Dr. Stephen Henson [Fri, 13 Apr 2007 16:41:52 +0000 (16:41 +0000)]
Don't finalize signerinfo if reuse and partial both set.
Dr. Stephen Henson [Fri, 13 Apr 2007 16:31:08 +0000 (16:31 +0000)]
PKCS7_sign_add_signer() docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 15:43:15 +0000 (15:43 +0000)]
More docs for streaming functions.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:23:31 +0000 (13:23 +0000)]
Typo.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:22:15 +0000 (13:22 +0000)]
d2i_PKCS7_bio_stream() docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 13:20:46 +0000 (13:20 +0000)]
Oops...
Dr. Stephen Henson [Fri, 13 Apr 2007 13:13:14 +0000 (13:13 +0000)]
Update docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 12:57:48 +0000 (12:57 +0000)]
Update docs.
Dr. Stephen Henson [Fri, 13 Apr 2007 01:06:41 +0000 (01:06 +0000)]
Update smime utility to support streaming for -encrypt and -sign -nodetach
options. Add new streaming i2d (though strictly speaking it is BER format
when streaming) and PEM functions.
These all process content on the fly without storing it all in memory.
Dr. Stephen Henson [Thu, 12 Apr 2007 13:02:31 +0000 (13:02 +0000)]
Copy update callback across when copying EVP_MD_CTX.
Remove unnecessary reference to EVP_MD_CTX in HMAC pkey method.
Dr. Stephen Henson [Wed, 11 Apr 2007 17:20:40 +0000 (17:20 +0000)]
New -mac and -macopt options to dgst utility. Reimplement -hmac option in
terms of new API.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:33:28 +0000 (12:33 +0000)]
Update CHANGES.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:33:06 +0000 (12:33 +0000)]
Experimental HMAC support via EVP_PKEY_METHOD.
Dr. Stephen Henson [Wed, 11 Apr 2007 12:26:53 +0000 (12:26 +0000)]
Constification.
Dr. Stephen Henson [Mon, 9 Apr 2007 11:45:54 +0000 (11:45 +0000)]
Don't ignore config_name parameter passed to OPENSSL_config(). Use
"openssl_conf" in config file if config_name variable is missing.
Dr. Stephen Henson [Sun, 8 Apr 2007 17:45:47 +0000 (17:45 +0000)]
Fix from stable branch.
Dr. Stephen Henson [Sun, 8 Apr 2007 16:53:50 +0000 (16:53 +0000)]
Fix digest signing so digest type is set after init.
Dr. Stephen Henson [Sun, 8 Apr 2007 13:03:26 +0000 (13:03 +0000)]
Preliminary support for signctx/verifyctx callbacks.
Dr. Stephen Henson [Sun, 8 Apr 2007 12:47:18 +0000 (12:47 +0000)]
New -sigopt option for dgst utility.
Ben Laurie [Sat, 7 Apr 2007 13:20:09 +0000 (13:20 +0000)]
Yet another resource leak. Coverity ID 123.
Ben Laurie [Thu, 5 Apr 2007 17:31:29 +0000 (17:31 +0000)]
If you're going to check for negative, use an signed integer! Coverity ID 122.
Ben Laurie [Thu, 5 Apr 2007 17:23:51 +0000 (17:23 +0000)]
Don't copy from a nonexistent next. Coverity ID 47.
Ben Laurie [Thu, 5 Apr 2007 17:09:43 +0000 (17:09 +0000)]
Fix duplicate error number.
Ben Laurie [Thu, 5 Apr 2007 17:03:09 +0000 (17:03 +0000)]
Errors should actually be errors.
Ben Laurie [Thu, 5 Apr 2007 16:58:39 +0000 (16:58 +0000)]
Don't dereference NULL argument. Coverity ID 52.
Ben Laurie [Thu, 5 Apr 2007 16:57:07 +0000 (16:57 +0000)]
Missing config file.
Ben Laurie [Thu, 5 Apr 2007 16:28:48 +0000 (16:28 +0000)]
Don't use a negative number as a length. Coverity ID 57.
Ben Laurie [Thu, 5 Apr 2007 15:45:58 +0000 (15:45 +0000)]
Avoid overrun. Coverity ID 60.
Ben Laurie [Thu, 5 Apr 2007 15:45:22 +0000 (15:45 +0000)]
Free memory. Coverity ID 62.
Nils Larsch [Wed, 4 Apr 2007 19:41:20 +0000 (19:41 +0000)]
check return value of ASN1_item_i2d(), Coverity ID 55
Ben Laurie [Wed, 4 Apr 2007 16:00:03 +0000 (16:00 +0000)]
Resource leak.
Ben Laurie [Wed, 4 Apr 2007 15:31:17 +0000 (15:31 +0000)]
Handle bad content type. Coverity ID 99.
Ben Laurie [Wed, 4 Apr 2007 15:13:31 +0000 (15:13 +0000)]
Fix buffer overrun. Coverity ID 106.
Ben Laurie [Wed, 4 Apr 2007 14:59:20 +0000 (14:59 +0000)]
Don't free a NULL. Coverity ID 112.
Ben Laurie [Wed, 4 Apr 2007 14:38:59 +0000 (14:38 +0000)]
Missing return on error. Coverity ID 115.
Ben Laurie [Wed, 4 Apr 2007 14:35:56 +0000 (14:35 +0000)]
Return an error if the serial number is badly formed. (Coverity ID 116).
Ben Laurie [Wed, 4 Apr 2007 13:41:33 +0000 (13:41 +0000)]
Die if serial number is invalid.
Ben Laurie [Wed, 4 Apr 2007 13:21:15 +0000 (13:21 +0000)]
Make sure we detect corruption.
Nils Larsch [Mon, 2 Apr 2007 20:29:40 +0000 (20:29 +0000)]
check correct pointer before freeing it (Coverity CID 79,86)
Nils Larsch [Mon, 2 Apr 2007 20:02:27 +0000 (20:02 +0000)]
check if pointer is != NULL before dereferencing it (Coverity CID 40)
Andy Polyakov [Mon, 2 Apr 2007 09:50:14 +0000 (09:50 +0000)]
RC4_set_key for x86_64 and Core2 optimization.
PR: 1447
Ben Laurie [Sun, 1 Apr 2007 18:00:52 +0000 (18:00 +0000)]
Don't die if the value is NULL (Coverity CID 98).
Ben Laurie [Sun, 1 Apr 2007 17:56:25 +0000 (17:56 +0000)]
Fix warning.
Andy Polyakov [Sun, 1 Apr 2007 17:28:08 +0000 (17:28 +0000)]
Update x86cpuid.pl to correctly detect shared cache and to support new
RC4_set_key.
Andy Polyakov [Sun, 1 Apr 2007 17:01:12 +0000 (17:01 +0000)]
Reserve for assembler implementation of RC4_set_key and implement x86 one.
Richard Levitte [Thu, 29 Mar 2007 18:34:57 +0000 (18:34 +0000)]
Apply a more modern way to get the definition of select(), except for VMS.
Submitted by Corinna Vinschen <vinschen@redhat.com>
Bodo Möller [Wed, 28 Mar 2007 18:41:23 +0000 (18:41 +0000)]
make BN_FLG_CONSTTIME semantics more fool-proof
Bodo Möller [Wed, 28 Mar 2007 00:15:28 +0000 (00:15 +0000)]
Change to mitigate branch prediction attacks
Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
Andy Polyakov [Sun, 25 Mar 2007 15:20:35 +0000 (15:20 +0000)]
Allow shared builds for aix[64]-gcc targets.
Andy Polyakov [Sun, 25 Mar 2007 15:13:51 +0000 (15:13 +0000)]
aix[64]-cc config lines update.
Dr. Stephen Henson [Fri, 23 Mar 2007 17:04:05 +0000 (17:04 +0000)]
Stage 1 GOST ciphersuite support.
Submitted by: ran@cryptocom.ru
Reviewed by: steve@openssl.org
Richard Levitte [Fri, 23 Mar 2007 09:36:33 +0000 (09:36 +0000)]
Synchronise the VMS build with recent movements in the Unix build.
Andy Polyakov [Thu, 22 Mar 2007 08:46:33 +0000 (08:46 +0000)]
Fixes for aix-shared rules.
Bodo Möller [Wed, 21 Mar 2007 14:33:16 +0000 (14:33 +0000)]
stricter session ID context matching
Bodo Möller [Wed, 21 Mar 2007 10:58:45 +0000 (10:58 +0000)]
clarification regarding libdes files
Andy Polyakov [Tue, 20 Mar 2007 09:37:06 +0000 (09:37 +0000)]
link warnings caused by nasm modules.
Andy Polyakov [Tue, 20 Mar 2007 09:13:07 +0000 (09:13 +0000)]
Two extra instructions in RC4 character loop give 80% performance
improvement on Core2. I still need to detect Core2 and choose this
path...
Andy Polyakov [Tue, 20 Mar 2007 09:07:19 +0000 (09:07 +0000)]
Remove obsolete comment.
Andy Polyakov [Tue, 20 Mar 2007 08:57:18 +0000 (08:57 +0000)]
Various PowerPC config updates.