oweals/openssl.git
17 years agoMacOS X update [from HEAD].
Andy Polyakov [Tue, 31 Jul 2007 20:03:26 +0000 (20:03 +0000)]
MacOS X update [from HEAD].

17 years agoRespect ISO aliasing rules [from HEAD].
Andy Polyakov [Fri, 27 Jul 2007 20:34:56 +0000 (20:34 +0000)]
Respect ISO aliasing rules [from HEAD].
PR: 1296

17 years agoAES for IA64 update [from HEAD].
Andy Polyakov [Fri, 27 Jul 2007 18:22:04 +0000 (18:22 +0000)]
AES for IA64 update [from HEAD].

17 years agoDon't set OPENSSL_IA32_SSE2 on x86_64.
Andy Polyakov [Tue, 24 Jul 2007 14:40:26 +0000 (14:40 +0000)]
Don't set OPENSSL_IA32_SSE2 on x86_64.

17 years agoSSE2 and AES assembly language support for VC++ build.
Dr. Stephen Henson [Thu, 19 Jul 2007 17:39:07 +0000 (17:39 +0000)]
SSE2 and AES assembly language support for VC++ build.

17 years agofile do_fips.bat was added on branch OpenSSL_0_9_8-stable on 2008-09-18 12:13:54...
Dr. Stephen Henson [Thu, 19 Jul 2007 16:11:20 +0000 (16:11 +0000)]
file do_fips.bat was added on branch OpenSSL_0_9_8-stable on 2008-09-18 12:13:54 +0000

17 years agoRelax ISA detection.
Andy Polyakov [Thu, 19 Jul 2007 10:45:03 +0000 (10:45 +0000)]
Relax ISA detection.

17 years agoFix masm type-casting problem in SSE2 code.
Andy Polyakov [Wed, 18 Jul 2007 20:25:17 +0000 (20:25 +0000)]
Fix masm type-casting problem in SSE2 code.

17 years agoshlib_wrap.sh update [from HEAD].
Andy Polyakov [Mon, 16 Jul 2007 14:02:12 +0000 (14:02 +0000)]
shlib_wrap.sh update [from HEAD].

17 years agoShut up memory debuggers complaining about AES x86 assembler module
Andy Polyakov [Sun, 8 Jul 2007 19:41:12 +0000 (19:41 +0000)]
Shut up memory debuggers complaining about AES x86 assembler module
[it was not a bug!].
PR: 1508,1320

17 years agoEVP_*_cfb1 was broken [from HEAD].
Andy Polyakov [Sun, 8 Jul 2007 19:18:15 +0000 (19:18 +0000)]
EVP_*_cfb1 was broken [from HEAD].
PR: 1318

17 years agobn_mul_recursive doesn't handle all cases correctly, which results in
Andy Polyakov [Sun, 8 Jul 2007 18:54:30 +0000 (18:54 +0000)]
bn_mul_recursive doesn't handle all cases correctly, which results in
BN_mul failures at certain key-length mixes [from HEAD].
PR: 1427

17 years agoTypo in str_lib [from HEAD].
Andy Polyakov [Sat, 7 Jul 2007 20:11:42 +0000 (20:11 +0000)]
Typo in str_lib [from HEAD].
PR: 1177

17 years agoFix more unused value warnings.
Dr. Stephen Henson [Wed, 4 Jul 2007 13:09:27 +0000 (13:09 +0000)]
Fix more unused value warnings.

17 years agoUpdate debug-steve
Dr. Stephen Henson [Wed, 4 Jul 2007 12:57:31 +0000 (12:57 +0000)]
Update debug-steve

17 years agoFix warnings: C++ comments and computed value not used.
Dr. Stephen Henson [Wed, 4 Jul 2007 12:56:33 +0000 (12:56 +0000)]
Fix warnings: C++ comments and computed value not used.

17 years agofile enc_min.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000
Dr. Stephen Henson [Sun, 1 Jul 2007 00:08:41 +0000 (00:08 +0000)]
file enc_min.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000

17 years agobn_mont.c fix [from HEAD].
Andy Polyakov [Fri, 29 Jun 2007 13:12:34 +0000 (13:12 +0000)]
bn_mont.c fix [from HEAD].

17 years agoFix warning.
Ben Laurie [Sat, 23 Jun 2007 19:07:54 +0000 (19:07 +0000)]
Fix warning.

17 years agoMention recent changes to bn_mont.c in CHANGES.
Andy Polyakov [Wed, 20 Jun 2007 17:44:43 +0000 (17:44 +0000)]
Mention recent changes to bn_mont.c in CHANGES.

17 years agoOptimize OPENSSL_cleanse [from HEAD].
Andy Polyakov [Wed, 20 Jun 2007 17:37:09 +0000 (17:37 +0000)]
Optimize OPENSSL_cleanse [from HEAD].

17 years agoUse -mcpu on alpha.
Dr. Stephen Henson [Tue, 19 Jun 2007 15:41:23 +0000 (15:41 +0000)]
Use -mcpu on alpha.

PR:1545

17 years agoPrivatize BN_*_no_branch [from HEAD].
Andy Polyakov [Mon, 11 Jun 2007 16:33:50 +0000 (16:33 +0000)]
Privatize BN_*_no_branch [from HEAD].

17 years agoEliminate conditional final subtraction in Montgomery multiplication
Andy Polyakov [Mon, 11 Jun 2007 16:15:10 +0000 (16:15 +0000)]
Eliminate conditional final subtraction in Montgomery multiplication
[from HEAD].

17 years agoUpdate from HEAD.
Dr. Stephen Henson [Thu, 7 Jun 2007 16:13:56 +0000 (16:13 +0000)]
Update from HEAD.

17 years agoUpdate from HEAD.
Dr. Stephen Henson [Tue, 22 May 2007 23:33:08 +0000 (23:33 +0000)]
Update from HEAD.

17 years agoFix crypto/ec/ec_mult.c to work properly with scalars of value 0
Bodo Möller [Tue, 22 May 2007 09:48:06 +0000 (09:48 +0000)]
Fix crypto/ec/ec_mult.c to work properly with scalars of value 0

17 years agoPadlock engine fails to compile with -O0 -fPIC [from HEAD].
Andy Polyakov [Sun, 20 May 2007 07:14:14 +0000 (07:14 +0000)]
Padlock engine fails to compile with -O0 -fPIC [from HEAD].

17 years agoType cast fixes in aes-586.pl.
Andy Polyakov [Sat, 19 May 2007 20:12:21 +0000 (20:12 +0000)]
Type cast fixes in aes-586.pl.

17 years agocygwin shared rules update [from HEAD].
Andy Polyakov [Sat, 19 May 2007 19:41:05 +0000 (19:41 +0000)]
cygwin shared rules update [from HEAD].
PR: 1517

17 years agoTypo in x509_txt.c [from HEAD].
Andy Polyakov [Sat, 19 May 2007 18:04:21 +0000 (18:04 +0000)]
Typo in x509_txt.c [from HEAD].

17 years agoMore IGE speedup.
Ben Laurie [Sun, 13 May 2007 15:04:16 +0000 (15:04 +0000)]
More IGE speedup.

17 years agoAES IGE mode speedup.
Ben Laurie [Sun, 13 May 2007 12:03:57 +0000 (12:03 +0000)]
AES IGE mode speedup.

17 years agoDetect UltraSPARC T1 in ./config [from HEAD].
Andy Polyakov [Fri, 4 May 2007 13:06:50 +0000 (13:06 +0000)]
Detect UltraSPARC T1 in ./config [from HEAD].

17 years agoFix s390x detection in ./config.
Andy Polyakov [Mon, 30 Apr 2007 09:26:05 +0000 (09:26 +0000)]
Fix s390x detection in ./config.

17 years agoEnsure that AES remains the preferred cipher at any given key length.
Bodo Möller [Wed, 25 Apr 2007 07:58:32 +0000 (07:58 +0000)]
Ensure that AES remains the preferred cipher at any given key length.
(This does not really require a special case for Camellia.)

17 years agoremove leftover from editing ...
Bodo Möller [Tue, 24 Apr 2007 00:46:48 +0000 (00:46 +0000)]
remove leftover from editing ...

17 years agoAdd SEED encryption algorithm.
Bodo Möller [Mon, 23 Apr 2007 23:50:26 +0000 (23:50 +0000)]
Add SEED encryption algorithm.

PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller

17 years agofix error codes
Bodo Möller [Thu, 19 Apr 2007 15:14:39 +0000 (15:14 +0000)]
fix error codes

17 years agodon't violate the bn_check_top assertion in BN_mod_inverse_no_branch()
Bodo Möller [Thu, 19 Apr 2007 14:45:27 +0000 (14:45 +0000)]
don't violate the bn_check_top assertion in BN_mod_inverse_no_branch()

17 years agoUpdate from HEAD.
Dr. Stephen Henson [Mon, 9 Apr 2007 11:46:36 +0000 (11:46 +0000)]
Update from HEAD.

17 years agofile evp_cnf.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000
Dr. Stephen Henson [Sun, 8 Apr 2007 17:51:00 +0000 (17:51 +0000)]
file evp_cnf.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000

17 years agoFix OID config module.
Dr. Stephen Henson [Sun, 8 Apr 2007 17:45:03 +0000 (17:45 +0000)]
Fix OID config module.

17 years agoMake sure we detect corruption.
Ben Laurie [Wed, 4 Apr 2007 12:50:13 +0000 (12:50 +0000)]
Make sure we detect corruption.

17 years agomake BN_FLG_CONSTTIME semantics more fool-proof
Bodo Möller [Wed, 28 Mar 2007 18:44:01 +0000 (18:44 +0000)]
make BN_FLG_CONSTTIME semantics more fool-proof

17 years agoChange to mitigate branch prediction attacks
Bodo Möller [Wed, 28 Mar 2007 00:14:25 +0000 (00:14 +0000)]
Change to mitigate branch prediction attacks

Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller

17 years agofile segrenam.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-18 11:20:08...
Dr. Stephen Henson [Tue, 27 Mar 2007 00:04:54 +0000 (00:04 +0000)]
file segrenam.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-18 11:20:08 +0000

17 years agoaix updates from HEAD.
Andy Polyakov [Sun, 25 Mar 2007 15:34:42 +0000 (15:34 +0000)]
aix updates from HEAD.

17 years agoaix-shared rules from HEAD.
Andy Polyakov [Thu, 22 Mar 2007 09:03:19 +0000 (09:03 +0000)]
aix-shared rules from HEAD.

17 years agofile arx.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-16 21:44:57 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:39:20 +0000 (00:39 +0000)]
file arx.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-16 21:44:57 +0000

17 years agofile rsa_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:26 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:35 +0000 (00:38 +0000)]
file rsa_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:26 +0000

17 years agofile rsa_x931g.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:54:29...
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:34 +0000 (00:38 +0000)]
file rsa_x931g.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:54:29 +0000

17 years agofile rand_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:52:33 ...
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:28 +0000 (00:38 +0000)]
file rand_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:52:33 +0000

17 years agofile dig_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:40 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:10 +0000 (00:38 +0000)]
file dig_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:40 +0000

17 years agofile err_def.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:09 +0000 (00:38 +0000)]
file err_def.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000

17 years agofile err_bio.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:08 +0000 (00:38 +0000)]
file err_bio.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000

17 years agofile dsa_utl.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:24 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:02 +0000 (00:38 +0000)]
file dsa_utl.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:24 +0000

17 years agofile des_lib.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:17:48 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:58 +0000 (00:37 +0000)]
file des_lib.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:17:48 +0000

17 years agofile buf_str.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 19:56:10 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:55 +0000 (00:37 +0000)]
file buf_str.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 19:56:10 +0000

17 years agofile bn_opt.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:08:24 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:53 +0000 (00:37 +0000)]
file bn_opt.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:08:24 +0000

17 years agofile o_init.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:48:18 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:48 +0000 (00:37 +0000)]
file o_init.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:48:18 +0000

17 years agofile dyn_lck.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 15:11:50 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:45 +0000 (00:37 +0000)]
file dyn_lck.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 15:11:50 +0000

17 years agostricter session ID context matching
Bodo Möller [Wed, 21 Mar 2007 14:33:01 +0000 (14:33 +0000)]
stricter session ID context matching

17 years agooops -- this should have been in 0.9.8e
Bodo Möller [Wed, 21 Mar 2007 14:18:27 +0000 (14:18 +0000)]
oops -- this should have been in 0.9.8e

17 years agoclarification regarding libdes files
Bodo Möller [Wed, 21 Mar 2007 10:58:32 +0000 (10:58 +0000)]
clarification regarding libdes files

17 years agoPowerPC config updates from HEAD.
Andy Polyakov [Tue, 20 Mar 2007 09:06:52 +0000 (09:06 +0000)]
PowerPC config updates from HEAD.

17 years agoFix kerberos ciphersuite bugs introduced with PR:1336.
Dr. Stephen Henson [Fri, 9 Mar 2007 14:06:34 +0000 (14:06 +0000)]
Fix kerberos ciphersuite bugs introduced with PR:1336.

17 years agoMake local function static.
Ben Laurie [Thu, 8 Mar 2007 15:52:04 +0000 (15:52 +0000)]
Make local function static.

17 years agoStop memory leak.
Dr. Stephen Henson [Mon, 5 Mar 2007 00:06:47 +0000 (00:06 +0000)]
Stop memory leak.

17 years agoInitialize "buf" to 0 to make valgrind happy :-)
Lutz Jänicke [Fri, 2 Mar 2007 17:54:31 +0000 (17:54 +0000)]
Initialize "buf" to 0 to make valgrind happy :-)
Note: the RAND_bytes() manual page says:
 RAND_bytes() puts num cryptographically strong pseudo-random bytes into buf.
It does not talk about using the previous contents of buf so we are working
as documented.

17 years agoDo not use uninitialized memory to seed the PRNG as it may confuse
Lutz Jänicke [Fri, 2 Mar 2007 17:44:55 +0000 (17:44 +0000)]
Do not use uninitialized memory to seed the PRNG as it may confuse
code checking tools.
PR: 1499

17 years agoEVP_CIPHER_CTX_key_length() should return the set key length in the
Dr. Stephen Henson [Tue, 27 Feb 2007 18:42:52 +0000 (18:42 +0000)]
EVP_CIPHER_CTX_key_length() should return the set key length in the
EVP_CIPHER_CTX structure which may not be the same as the underlying
cipher key length for variable length ciphers.

17 years agoMerge from HEAD
Lutz Jänicke [Tue, 27 Feb 2007 08:26:51 +0000 (08:26 +0000)]
Merge from HEAD

17 years agoinclude complete 0.9.7 history
Bodo Möller [Mon, 26 Feb 2007 10:48:56 +0000 (10:48 +0000)]
include complete 0.9.7 history

17 years agouse 2007 copyright for generated files
Bodo Möller [Mon, 26 Feb 2007 10:47:49 +0000 (10:47 +0000)]
use 2007 copyright for generated files

17 years agoPrepare for next version.
Dr. Stephen Henson [Fri, 23 Feb 2007 12:50:54 +0000 (12:50 +0000)]
Prepare for next version.

17 years agoAdd L to version number OpenSSL_0_9_8e
Dr. Stephen Henson [Fri, 23 Feb 2007 12:38:11 +0000 (12:38 +0000)]
Add L to version number

17 years agoPrepare for release.
Dr. Stephen Henson [Fri, 23 Feb 2007 12:12:28 +0000 (12:12 +0000)]
Prepare for release.

17 years agoMake update.
Dr. Stephen Henson [Fri, 23 Feb 2007 01:01:08 +0000 (01:01 +0000)]
Make update.

17 years agoFix problem with multi line responses in -starttls by using a buffering
Lutz Jänicke [Thu, 22 Feb 2007 17:39:50 +0000 (17:39 +0000)]
Fix problem with multi line responses in -starttls by using a buffering
BIO and BIO_gets().

17 years agoDon't use deprecated -mcpu option.
Dr. Stephen Henson [Thu, 22 Feb 2007 02:00:39 +0000 (02:00 +0000)]
Don't use deprecated -mcpu option.

17 years agoUpdate NEWS file.
Dr. Stephen Henson [Thu, 22 Feb 2007 01:35:24 +0000 (01:35 +0000)]
Update NEWS file.

17 years agoExtend SMTP and IMAP protocol handling to perform the required
Lutz Jänicke [Wed, 21 Feb 2007 18:20:33 +0000 (18:20 +0000)]
Extend SMTP and IMAP protocol handling to perform the required
EHLO or CAPABILITY handshake before sending STARTTLS

Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>

17 years agoAdd automatic detection for Linux on SuperH
Lutz Jänicke [Wed, 21 Feb 2007 18:10:19 +0000 (18:10 +0000)]
Add automatic detection for Linux on SuperH
PR: 1152
Submitted by: Mike Frysinger <vapier@gentoo.org>

17 years agoAdd support for m68 linux
Lutz Jänicke [Wed, 21 Feb 2007 17:58:51 +0000 (17:58 +0000)]
Add support for m68 linux
PR: 1277
Submitted by: Mike Frysinger <vapier@gentoo.org>

17 years agoFix incorrect handling of special characters
Lutz Jänicke [Wed, 21 Feb 2007 17:44:51 +0000 (17:44 +0000)]
Fix incorrect handling of special characters
PR: 1459
Submitted by: tnitschke@innominate.com
Reviewed by: steve@openssl.org

17 years agoUpdate from 0.9.7-stable.
Dr. Stephen Henson [Wed, 21 Feb 2007 13:48:49 +0000 (13:48 +0000)]
Update from 0.9.7-stable.

17 years agoInclude "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a
Bodo Möller [Mon, 19 Feb 2007 18:38:11 +0000 (18:38 +0000)]
Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a
ciphersuite string such as "DEFAULT:RSA" cannot enable
authentication-only ciphersuites.

17 years agoremove inconsistency between builds with and without Camellia enabled
Bodo Möller [Mon, 19 Feb 2007 17:55:07 +0000 (17:55 +0000)]
remove inconsistency between builds with and without Camellia enabled

17 years agofix incorrect strength bit values for certain Kerberos ciphersuites
Bodo Möller [Mon, 19 Feb 2007 14:47:21 +0000 (14:47 +0000)]
fix incorrect strength bit values for certain Kerberos ciphersuites

Submitted by: Victor Duchovni

17 years agoAvoid warning.
Dr. Stephen Henson [Sun, 18 Feb 2007 18:18:31 +0000 (18:18 +0000)]
Avoid warning.

17 years agoFix Win32 warnings.
Dr. Stephen Henson [Sun, 18 Feb 2007 17:23:20 +0000 (17:23 +0000)]
Fix Win32 warnings.

17 years agoSome fixes for ciphersuite string processing:
Bodo Möller [Sat, 17 Feb 2007 06:52:42 +0000 (06:52 +0000)]
Some fixes for ciphersuite string processing:

- add a workaround provided by Victor Duchovni so that 128- and
  256-bit variants of otherwise identical ciphersuites are treated
  correctly;

- also, correctly skip invalid parts of ciphersuite description strings.

Submitted by: Victor Duchovni, Bodo Moeller

17 years agoensure that the EVP_CIPHER_CTX object is initialized
Nils Larsch [Fri, 16 Feb 2007 20:40:07 +0000 (20:40 +0000)]
ensure that the EVP_CIPHER_CTX object is initialized

PR: 1490

17 years agoAdd STARTTLS support for IMAP and FTP.
Richard Levitte [Fri, 16 Feb 2007 18:12:20 +0000 (18:12 +0000)]
Add STARTTLS support for IMAP and FTP.
Submitted by Kees Cook <kees@outflux.net>

17 years ago- use OPENSSL_malloc() etc. in zlib
Nils Larsch [Wed, 14 Feb 2007 21:50:26 +0000 (21:50 +0000)]
- use OPENSSL_malloc() etc. in zlib
- move zlib_stateful_ex_idx initialization to COMP_zlib()

PR: 1468

17 years agouse user-supplied malloc functions for persistent kssl objects
Nils Larsch [Sat, 10 Feb 2007 10:40:24 +0000 (10:40 +0000)]
use user-supplied malloc functions for persistent kssl objects

PR: 1467
Submitted by: Andrei Pelinescu-Onciul <andrei@iptel.org>

17 years agoremove unreachable code
Nils Larsch [Sat, 10 Feb 2007 09:48:42 +0000 (09:48 +0000)]
remove unreachable code

17 years agoAdd hmac option to dgst from 0.9.7-stable.
Dr. Stephen Henson [Thu, 8 Feb 2007 19:08:21 +0000 (19:08 +0000)]
Add hmac option to dgst from 0.9.7-stable.

17 years agoensure that a ec key is used
Nils Larsch [Wed, 7 Feb 2007 20:36:40 +0000 (20:36 +0000)]
ensure that a ec key is used

PR: 1476