Andy Polyakov [Tue, 31 Jul 2007 20:03:26 +0000 (20:03 +0000)]
MacOS X update [from HEAD].
Andy Polyakov [Fri, 27 Jul 2007 20:34:56 +0000 (20:34 +0000)]
Respect ISO aliasing rules [from HEAD].
PR: 1296
Andy Polyakov [Fri, 27 Jul 2007 18:22:04 +0000 (18:22 +0000)]
AES for IA64 update [from HEAD].
Andy Polyakov [Tue, 24 Jul 2007 14:40:26 +0000 (14:40 +0000)]
Don't set OPENSSL_IA32_SSE2 on x86_64.
Dr. Stephen Henson [Thu, 19 Jul 2007 17:39:07 +0000 (17:39 +0000)]
SSE2 and AES assembly language support for VC++ build.
Dr. Stephen Henson [Thu, 19 Jul 2007 16:11:20 +0000 (16:11 +0000)]
file do_fips.bat was added on branch OpenSSL_0_9_8-stable on 2008-09-18 12:13:54 +0000
Andy Polyakov [Thu, 19 Jul 2007 10:45:03 +0000 (10:45 +0000)]
Relax ISA detection.
Andy Polyakov [Wed, 18 Jul 2007 20:25:17 +0000 (20:25 +0000)]
Fix masm type-casting problem in SSE2 code.
Andy Polyakov [Mon, 16 Jul 2007 14:02:12 +0000 (14:02 +0000)]
shlib_wrap.sh update [from HEAD].
Andy Polyakov [Sun, 8 Jul 2007 19:41:12 +0000 (19:41 +0000)]
Shut up memory debuggers complaining about AES x86 assembler module
[it was not a bug!].
PR: 1508,1320
Andy Polyakov [Sun, 8 Jul 2007 19:18:15 +0000 (19:18 +0000)]
EVP_*_cfb1 was broken [from HEAD].
PR: 1318
Andy Polyakov [Sun, 8 Jul 2007 18:54:30 +0000 (18:54 +0000)]
bn_mul_recursive doesn't handle all cases correctly, which results in
BN_mul failures at certain key-length mixes [from HEAD].
PR: 1427
Andy Polyakov [Sat, 7 Jul 2007 20:11:42 +0000 (20:11 +0000)]
Typo in str_lib [from HEAD].
PR: 1177
Dr. Stephen Henson [Wed, 4 Jul 2007 13:09:27 +0000 (13:09 +0000)]
Fix more unused value warnings.
Dr. Stephen Henson [Wed, 4 Jul 2007 12:57:31 +0000 (12:57 +0000)]
Update debug-steve
Dr. Stephen Henson [Wed, 4 Jul 2007 12:56:33 +0000 (12:56 +0000)]
Fix warnings: C++ comments and computed value not used.
Dr. Stephen Henson [Sun, 1 Jul 2007 00:08:41 +0000 (00:08 +0000)]
file enc_min.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000
Andy Polyakov [Fri, 29 Jun 2007 13:12:34 +0000 (13:12 +0000)]
bn_mont.c fix [from HEAD].
Ben Laurie [Sat, 23 Jun 2007 19:07:54 +0000 (19:07 +0000)]
Fix warning.
Andy Polyakov [Wed, 20 Jun 2007 17:44:43 +0000 (17:44 +0000)]
Mention recent changes to bn_mont.c in CHANGES.
Andy Polyakov [Wed, 20 Jun 2007 17:37:09 +0000 (17:37 +0000)]
Optimize OPENSSL_cleanse [from HEAD].
Dr. Stephen Henson [Tue, 19 Jun 2007 15:41:23 +0000 (15:41 +0000)]
Use -mcpu on alpha.
PR:1545
Andy Polyakov [Mon, 11 Jun 2007 16:33:50 +0000 (16:33 +0000)]
Privatize BN_*_no_branch [from HEAD].
Andy Polyakov [Mon, 11 Jun 2007 16:15:10 +0000 (16:15 +0000)]
Eliminate conditional final subtraction in Montgomery multiplication
[from HEAD].
Dr. Stephen Henson [Thu, 7 Jun 2007 16:13:56 +0000 (16:13 +0000)]
Update from HEAD.
Dr. Stephen Henson [Tue, 22 May 2007 23:33:08 +0000 (23:33 +0000)]
Update from HEAD.
Bodo Möller [Tue, 22 May 2007 09:48:06 +0000 (09:48 +0000)]
Fix crypto/ec/ec_mult.c to work properly with scalars of value 0
Andy Polyakov [Sun, 20 May 2007 07:14:14 +0000 (07:14 +0000)]
Padlock engine fails to compile with -O0 -fPIC [from HEAD].
Andy Polyakov [Sat, 19 May 2007 20:12:21 +0000 (20:12 +0000)]
Type cast fixes in aes-586.pl.
Andy Polyakov [Sat, 19 May 2007 19:41:05 +0000 (19:41 +0000)]
cygwin shared rules update [from HEAD].
PR: 1517
Andy Polyakov [Sat, 19 May 2007 18:04:21 +0000 (18:04 +0000)]
Typo in x509_txt.c [from HEAD].
Ben Laurie [Sun, 13 May 2007 15:04:16 +0000 (15:04 +0000)]
More IGE speedup.
Ben Laurie [Sun, 13 May 2007 12:03:57 +0000 (12:03 +0000)]
AES IGE mode speedup.
Andy Polyakov [Fri, 4 May 2007 13:06:50 +0000 (13:06 +0000)]
Detect UltraSPARC T1 in ./config [from HEAD].
Andy Polyakov [Mon, 30 Apr 2007 09:26:05 +0000 (09:26 +0000)]
Fix s390x detection in ./config.
Bodo Möller [Wed, 25 Apr 2007 07:58:32 +0000 (07:58 +0000)]
Ensure that AES remains the preferred cipher at any given key length.
(This does not really require a special case for Camellia.)
Bodo Möller [Tue, 24 Apr 2007 00:46:48 +0000 (00:46 +0000)]
remove leftover from editing ...
Bodo Möller [Mon, 23 Apr 2007 23:50:26 +0000 (23:50 +0000)]
Add SEED encryption algorithm.
PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller
Bodo Möller [Thu, 19 Apr 2007 15:14:39 +0000 (15:14 +0000)]
fix error codes
Bodo Möller [Thu, 19 Apr 2007 14:45:27 +0000 (14:45 +0000)]
don't violate the bn_check_top assertion in BN_mod_inverse_no_branch()
Dr. Stephen Henson [Mon, 9 Apr 2007 11:46:36 +0000 (11:46 +0000)]
Update from HEAD.
Dr. Stephen Henson [Sun, 8 Apr 2007 17:51:00 +0000 (17:51 +0000)]
file evp_cnf.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:41 +0000
Dr. Stephen Henson [Sun, 8 Apr 2007 17:45:03 +0000 (17:45 +0000)]
Fix OID config module.
Ben Laurie [Wed, 4 Apr 2007 12:50:13 +0000 (12:50 +0000)]
Make sure we detect corruption.
Bodo Möller [Wed, 28 Mar 2007 18:44:01 +0000 (18:44 +0000)]
make BN_FLG_CONSTTIME semantics more fool-proof
Bodo Möller [Wed, 28 Mar 2007 00:14:25 +0000 (00:14 +0000)]
Change to mitigate branch prediction attacks
Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
Dr. Stephen Henson [Tue, 27 Mar 2007 00:04:54 +0000 (00:04 +0000)]
file segrenam.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-18 11:20:08 +0000
Andy Polyakov [Sun, 25 Mar 2007 15:34:42 +0000 (15:34 +0000)]
aix updates from HEAD.
Andy Polyakov [Thu, 22 Mar 2007 09:03:19 +0000 (09:03 +0000)]
aix-shared rules from HEAD.
Dr. Stephen Henson [Thu, 22 Mar 2007 00:39:20 +0000 (00:39 +0000)]
file arx.pl was added on branch OpenSSL_0_9_8-stable on 2008-09-16 21:44:57 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:35 +0000 (00:38 +0000)]
file rsa_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:26 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:34 +0000 (00:38 +0000)]
file rsa_x931g.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:54:29 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:28 +0000 (00:38 +0000)]
file rand_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:52:33 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:10 +0000 (00:38 +0000)]
file dig_eng.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 22:21:40 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:09 +0000 (00:38 +0000)]
file err_def.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:08 +0000 (00:38 +0000)]
file err_bio.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:26:29 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:38:02 +0000 (00:38 +0000)]
file dsa_utl.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 14:55:24 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:58 +0000 (00:37 +0000)]
file des_lib.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:17:48 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:55 +0000 (00:37 +0000)]
file buf_str.c was added on branch OpenSSL_0_9_8-stable on 2008-09-15 19:56:10 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:53 +0000 (00:37 +0000)]
file bn_opt.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 11:08:24 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:48 +0000 (00:37 +0000)]
file o_init.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 22:48:18 +0000
Dr. Stephen Henson [Thu, 22 Mar 2007 00:37:45 +0000 (00:37 +0000)]
file dyn_lck.c was added on branch OpenSSL_0_9_8-stable on 2008-09-16 15:11:50 +0000
Bodo Möller [Wed, 21 Mar 2007 14:33:01 +0000 (14:33 +0000)]
stricter session ID context matching
Bodo Möller [Wed, 21 Mar 2007 14:18:27 +0000 (14:18 +0000)]
oops -- this should have been in 0.9.8e
Bodo Möller [Wed, 21 Mar 2007 10:58:32 +0000 (10:58 +0000)]
clarification regarding libdes files
Andy Polyakov [Tue, 20 Mar 2007 09:06:52 +0000 (09:06 +0000)]
PowerPC config updates from HEAD.
Dr. Stephen Henson [Fri, 9 Mar 2007 14:06:34 +0000 (14:06 +0000)]
Fix kerberos ciphersuite bugs introduced with PR:1336.
Ben Laurie [Thu, 8 Mar 2007 15:52:04 +0000 (15:52 +0000)]
Make local function static.
Dr. Stephen Henson [Mon, 5 Mar 2007 00:06:47 +0000 (00:06 +0000)]
Stop memory leak.
Lutz Jänicke [Fri, 2 Mar 2007 17:54:31 +0000 (17:54 +0000)]
Initialize "buf" to 0 to make valgrind happy :-)
Note: the RAND_bytes() manual page says:
RAND_bytes() puts num cryptographically strong pseudo-random bytes into buf.
It does not talk about using the previous contents of buf so we are working
as documented.
Lutz Jänicke [Fri, 2 Mar 2007 17:44:55 +0000 (17:44 +0000)]
Do not use uninitialized memory to seed the PRNG as it may confuse
code checking tools.
PR: 1499
Dr. Stephen Henson [Tue, 27 Feb 2007 18:42:52 +0000 (18:42 +0000)]
EVP_CIPHER_CTX_key_length() should return the set key length in the
EVP_CIPHER_CTX structure which may not be the same as the underlying
cipher key length for variable length ciphers.
Lutz Jänicke [Tue, 27 Feb 2007 08:26:51 +0000 (08:26 +0000)]
Merge from HEAD
Bodo Möller [Mon, 26 Feb 2007 10:48:56 +0000 (10:48 +0000)]
include complete 0.9.7 history
Bodo Möller [Mon, 26 Feb 2007 10:47:49 +0000 (10:47 +0000)]
use 2007 copyright for generated files
Dr. Stephen Henson [Fri, 23 Feb 2007 12:50:54 +0000 (12:50 +0000)]
Prepare for next version.
Dr. Stephen Henson [Fri, 23 Feb 2007 12:38:11 +0000 (12:38 +0000)]
Add L to version number
Dr. Stephen Henson [Fri, 23 Feb 2007 12:12:28 +0000 (12:12 +0000)]
Prepare for release.
Dr. Stephen Henson [Fri, 23 Feb 2007 01:01:08 +0000 (01:01 +0000)]
Make update.
Lutz Jänicke [Thu, 22 Feb 2007 17:39:50 +0000 (17:39 +0000)]
Fix problem with multi line responses in -starttls by using a buffering
BIO and BIO_gets().
Dr. Stephen Henson [Thu, 22 Feb 2007 02:00:39 +0000 (02:00 +0000)]
Don't use deprecated -mcpu option.
Dr. Stephen Henson [Thu, 22 Feb 2007 01:35:24 +0000 (01:35 +0000)]
Update NEWS file.
Lutz Jänicke [Wed, 21 Feb 2007 18:20:33 +0000 (18:20 +0000)]
Extend SMTP and IMAP protocol handling to perform the required
EHLO or CAPABILITY handshake before sending STARTTLS
Submitted by: Goetz Babin-Ebell <goetz@shomitefo.de>
Lutz Jänicke [Wed, 21 Feb 2007 18:10:19 +0000 (18:10 +0000)]
Add automatic detection for Linux on SuperH
PR: 1152
Submitted by: Mike Frysinger <vapier@gentoo.org>
Lutz Jänicke [Wed, 21 Feb 2007 17:58:51 +0000 (17:58 +0000)]
Add support for m68 linux
PR: 1277
Submitted by: Mike Frysinger <vapier@gentoo.org>
Lutz Jänicke [Wed, 21 Feb 2007 17:44:51 +0000 (17:44 +0000)]
Fix incorrect handling of special characters
PR: 1459
Submitted by: tnitschke@innominate.com
Reviewed by: steve@openssl.org
Dr. Stephen Henson [Wed, 21 Feb 2007 13:48:49 +0000 (13:48 +0000)]
Update from 0.9.7-stable.
Bodo Möller [Mon, 19 Feb 2007 18:38:11 +0000 (18:38 +0000)]
Include "!eNULL" in SSL_DEFAULT_CIPHER_LIST to make sure that a
ciphersuite string such as "DEFAULT:RSA" cannot enable
authentication-only ciphersuites.
Bodo Möller [Mon, 19 Feb 2007 17:55:07 +0000 (17:55 +0000)]
remove inconsistency between builds with and without Camellia enabled
Bodo Möller [Mon, 19 Feb 2007 14:47:21 +0000 (14:47 +0000)]
fix incorrect strength bit values for certain Kerberos ciphersuites
Submitted by: Victor Duchovni
Dr. Stephen Henson [Sun, 18 Feb 2007 18:18:31 +0000 (18:18 +0000)]
Avoid warning.
Dr. Stephen Henson [Sun, 18 Feb 2007 17:23:20 +0000 (17:23 +0000)]
Fix Win32 warnings.
Bodo Möller [Sat, 17 Feb 2007 06:52:42 +0000 (06:52 +0000)]
Some fixes for ciphersuite string processing:
- add a workaround provided by Victor Duchovni so that 128- and
256-bit variants of otherwise identical ciphersuites are treated
correctly;
- also, correctly skip invalid parts of ciphersuite description strings.
Submitted by: Victor Duchovni, Bodo Moeller
Nils Larsch [Fri, 16 Feb 2007 20:40:07 +0000 (20:40 +0000)]
ensure that the EVP_CIPHER_CTX object is initialized
PR: 1490
Richard Levitte [Fri, 16 Feb 2007 18:12:20 +0000 (18:12 +0000)]
Add STARTTLS support for IMAP and FTP.
Submitted by Kees Cook <kees@outflux.net>
Nils Larsch [Wed, 14 Feb 2007 21:50:26 +0000 (21:50 +0000)]
- use OPENSSL_malloc() etc. in zlib
- move zlib_stateful_ex_idx initialization to COMP_zlib()
PR: 1468
Nils Larsch [Sat, 10 Feb 2007 10:40:24 +0000 (10:40 +0000)]
use user-supplied malloc functions for persistent kssl objects
PR: 1467
Submitted by: Andrei Pelinescu-Onciul <andrei@iptel.org>
Nils Larsch [Sat, 10 Feb 2007 09:48:42 +0000 (09:48 +0000)]
remove unreachable code
Dr. Stephen Henson [Thu, 8 Feb 2007 19:08:21 +0000 (19:08 +0000)]
Add hmac option to dgst from 0.9.7-stable.
Nils Larsch [Wed, 7 Feb 2007 20:36:40 +0000 (20:36 +0000)]
ensure that a ec key is used
PR: 1476