Andy Polyakov [Sun, 25 Jul 2004 18:57:35 +0000 (18:57 +0000)]
'apps/openssl dgst -help' update and minor apps/speed.c update.
Andy Polyakov [Sun, 25 Jul 2004 18:25:24 +0000 (18:25 +0000)]
Make SHA-256/-512 optional. Note that no-sha switches off *all* SHA.
Andy Polyakov [Sun, 25 Jul 2004 17:00:56 +0000 (17:00 +0000)]
Some compilers are just too whiny. Nothing makes Microsoft compiler
stop complaining about loss of precision, but explicit cast.
Andy Polyakov [Sun, 25 Jul 2004 16:54:08 +0000 (16:54 +0000)]
Some compilers are just too whiny. DEC C doesn't like long long...
Andy Polyakov [Sun, 25 Jul 2004 16:48:28 +0000 (16:48 +0000)]
Typos and due casts. As for the latter. It's "safe" to cast as below,
because "wrong" casts will either be optimized away or never performed.
Andy Polyakov [Sat, 24 Jul 2004 14:17:32 +0000 (14:17 +0000)]
Minor HP-UX make update. IA-64-based HP-UX favor .so extension for shared
libraries. Old .sl extension works just fine, but it .so which is default.
Andy Polyakov [Fri, 23 Jul 2004 23:29:25 +0000 (23:29 +0000)]
TABLE update.
Andy Polyakov [Fri, 23 Jul 2004 23:27:10 +0000 (23:27 +0000)]
Build-n-link new IA-64 modules on Linux and HP-UX.
Andy Polyakov [Fri, 23 Jul 2004 22:54:18 +0000 (22:54 +0000)]
Various IA-64 assembler fix-ups.
Andy Polyakov [Fri, 23 Jul 2004 20:46:41 +0000 (20:46 +0000)]
VC-NT was taken away by mistake, putting it back...
Andy Polyakov [Fri, 23 Jul 2004 19:18:20 +0000 (19:18 +0000)]
Win64 placeholder targets. This is merely naming suggestion. As we know
Win64 comes in two flavors, IA-64/Itanium and AMD64/Opteron. The
suggestion is to refer to former as WIN64I and latter - WIN64A
Andy Polyakov [Fri, 23 Jul 2004 17:51:17 +0000 (17:51 +0000)]
Adapt rc4-amd64.pl for Win64/AMD64 assembler.
Richard Levitte [Thu, 22 Jul 2004 18:34:06 +0000 (18:34 +0000)]
From LPlib:
Apparently, the length *including* the NUL byte should be used.
Contributed by Andy Polyakov <appro@fy.chalmers.se>
Richard Levitte [Thu, 22 Jul 2004 13:00:14 +0000 (13:00 +0000)]
From LPlib:
Make a nicer comment, as we don't really know for sure that it's
really needed, and just want to play on the safe side.
Suggest by Andy Polyakov <appro@fy.chalmers.se>
Andy Polyakov [Thu, 22 Jul 2004 11:08:31 +0000 (11:08 +0000)]
WinCE should always be compiled as UNICODE, even debugging version...
Andy Polyakov [Thu, 22 Jul 2004 10:53:26 +0000 (10:53 +0000)]
#include <limits.h> is required at least on HP-UX and IRIX. And what's
with HP-UX offering 14 for NAME_MAX?
Andy Polyakov [Thu, 22 Jul 2004 10:25:52 +0000 (10:25 +0000)]
EVP_Digest is size_t-fied, clean up test programs accordingly.
Andy Polyakov [Thu, 22 Jul 2004 10:21:13 +0000 (10:21 +0000)]
Run SHA-256/-512 tests through EVP...
Andy Polyakov [Thu, 22 Jul 2004 09:32:11 +0000 (09:32 +0000)]
All SIXTY_FOUR_BIT platforms (mind the difference between SIXTY_FOUR_BIT and
SIXTY_FOUR_BIT_LONG) were failing to pass 'cd test; make test_bn'.
Richard Levitte [Wed, 21 Jul 2004 21:16:21 +0000 (21:16 +0000)]
From LPlib:
Some code beautification.
Change the macro CP_THREAD_ACP to CP_ACP, because the latter is more
widely defined.
Add a conditional macro definition in case FindFirstFile and
FindNextFile aren't properly defined (might happen on WinCE).
Suggested by Andy Polyakov <appro@fy.chalmers.se>
Andy Polyakov [Wed, 21 Jul 2004 17:17:30 +0000 (17:17 +0000)]
Make rand_win.c UNICODE savvy.
Richard Levitte [Tue, 20 Jul 2004 21:24:43 +0000 (21:24 +0000)]
From LPlib:
Windows changes that detects if multibyte characters are available and
deals with them properly.
Contributed by Andy Polyakov <appro@fy.chalmers.se>
Richard Levitte [Mon, 19 Jul 2004 16:36:28 +0000 (16:36 +0000)]
Imported from LPlib, making sure the entry name (at least on Unix) is
NUL-teminated at all times, and that we don't make unneeded calls to
free().
Richard Levitte [Mon, 19 Jul 2004 07:50:43 +0000 (07:50 +0000)]
Since version 7.0, The C RTL in VMS handles time in terms of UTC
instead of local time.
Andy Polyakov [Sun, 18 Jul 2004 17:26:01 +0000 (17:26 +0000)]
Anchor AES and SHA-256/-512 assembler from C.
Andy Polyakov [Sun, 18 Jul 2004 16:22:53 +0000 (16:22 +0000)]
Type in Configure and TABLE update.
Andy Polyakov [Sun, 18 Jul 2004 16:19:34 +0000 (16:19 +0000)]
Add anchors for AES, SHA-256/-512 assembler modules and SSE2 code pathes.
I also used this opportunity to clean up some out-of-date targets and
re-group targets by OS.
Andy Polyakov [Sat, 17 Jul 2004 13:24:58 +0000 (13:24 +0000)]
Add licensing terms.
Andy Polyakov [Sat, 17 Jul 2004 12:55:55 +0000 (12:55 +0000)]
IA-64 is intolerant to misaligned access. It was a problem on Win64 as
we were mislead by _MSC_VER macro, which is defined by *all* Windows
Microsoft compilers.
Geoff Thorpe [Fri, 16 Jul 2004 03:24:51 +0000 (03:24 +0000)]
Quick fix.
Submitted by: Nils Larsch
Geoff Thorpe [Fri, 16 Jul 2004 03:24:19 +0000 (03:24 +0000)]
Using Horner's algorithm to evaluate the ec polynomial
(suggested by Adam Young <ayoung@cigital.com>)
Submitted by: Nils Larsch
Richard Levitte [Mon, 12 Jul 2004 12:25:54 +0000 (12:25 +0000)]
I think it could be a good thing to know what went wrong with the tests...
Richard Levitte [Mon, 12 Jul 2004 11:25:48 +0000 (11:25 +0000)]
make update
(incidently, this also tells VMS that there exists a new symbol in the
SSL library)
Richard Levitte [Mon, 12 Jul 2004 11:24:55 +0000 (11:24 +0000)]
Because it's one of our libraries calling new functions in the other,
we need to have them among the symbols that should appear in the
transfer table, at least on VMS (and it wouldn't surprise me if
Windows would whine as well).
Bodo Möller [Mon, 12 Jul 2004 06:23:28 +0000 (06:23 +0000)]
improve wording
Richard Levitte [Sun, 11 Jul 2004 20:30:33 +0000 (20:30 +0000)]
Some test programs in crypto/sha were named differently than usual...
Richard Levitte [Sun, 11 Jul 2004 20:22:37 +0000 (20:22 +0000)]
'SSL_add_dir_cert_subjects_to_stack' is longer than 31 characters.
Lucky me, I had prepared for this :-).
Richard Levitte [Sun, 11 Jul 2004 20:21:56 +0000 (20:21 +0000)]
o_dir needs to be compiler with the warnings about dollar signs in
identities disabled.
Richard Levitte [Sun, 11 Jul 2004 20:21:19 +0000 (20:21 +0000)]
In some cases, EVMSERR isn't visible (that's fairly new...).
Don't have a constant that you're going to assign to, that's just
plain stupid (I was the stupidhead here...).
Andy Polyakov [Sun, 11 Jul 2004 16:49:09 +0000 (16:49 +0000)]
Integration of RC4 AMD64 module.
Andy Polyakov [Sun, 11 Jul 2004 16:44:07 +0000 (16:44 +0000)]
RC4 tune-up for AMD64. Performance improvement of 2.22x is measured for
linux-x86_64 target.
Bodo Möller [Sun, 11 Jul 2004 08:58:43 +0000 (08:58 +0000)]
BIS correction/addition
Richard Levitte [Sat, 10 Jul 2004 13:18:23 +0000 (13:18 +0000)]
make update
Richard Levitte [Sat, 10 Jul 2004 13:17:16 +0000 (13:17 +0000)]
Use the new directory reading functions.
Richard Levitte [Sat, 10 Jul 2004 13:16:02 +0000 (13:16 +0000)]
Copy a few files from LPlib (a new project of mine), add a wrapper.
Now we have directory reading capabilities for VMS as well, and all
of it in a fairly general manner.
Richard Levitte [Thu, 8 Jul 2004 08:32:48 +0000 (08:32 +0000)]
o_str.c: Windows doesn't have <strings.h>, and since we use _strnicmp() and
_stricmp() on that platform, use the appropriate header file for it,
<string.h>.
o_str.h: we only want to get size_t, which is defined in <stddef.h>.
Philippe Bougeret <philippe.bougeret@freesbee.fr> notified us about Windows
not having a <strings.h>
Dr. Stephen Henson [Tue, 6 Jul 2004 17:16:40 +0000 (17:16 +0000)]
Delta CRL support in extension code.
Geoff Thorpe [Tue, 6 Jul 2004 15:50:04 +0000 (15:50 +0000)]
Improve error handling if decompression of an ec point fails, and cleanup
ec_curve.c (unify comments, etc).
Submitted by: Nils Larsch
Reviewed by: Bodo Moeller, Geoff Thorpe
Dr. Stephen Henson [Sun, 4 Jul 2004 16:48:27 +0000 (16:48 +0000)]
Delete non-POSIX header file.
Dr. Stephen Henson [Sun, 4 Jul 2004 16:44:52 +0000 (16:44 +0000)]
PKCS#8 fixes from stable branch.
Dr. Stephen Henson [Thu, 1 Jul 2004 18:15:33 +0000 (18:15 +0000)]
Don't try to parse non string types.
Dr. Stephen Henson [Thu, 1 Jul 2004 18:14:31 +0000 (18:14 +0000)]
Stop compiler warnings with debug-steve
Richard Levitte [Thu, 1 Jul 2004 12:33:39 +0000 (12:33 +0000)]
Explain a little better what BN_num_bits() and BN_num_bits_word() do.
Add a note as to how these functions do not always return the key size, and
how one can deal with that.
PR: 907
Andy Polyakov [Thu, 1 Jul 2004 11:29:00 +0000 (11:29 +0000)]
Minor (+12% on P4) performance tweak for sha512_block_sse2.
Andy Polyakov [Thu, 1 Jul 2004 11:15:23 +0000 (11:15 +0000)]
AES assembler implementation for IA-64. Note that there is no anchor from
C code yet...
Andy Polyakov [Thu, 1 Jul 2004 11:13:44 +0000 (11:13 +0000)]
New SHA algorithms assembler implementation for IA-64. Note that despite
module name both SHA-256 and SHA-512 are supported.
Andy Polyakov [Thu, 1 Jul 2004 11:10:38 +0000 (11:10 +0000)]
New scalable bn_mul_add_words loop, which provides up to >20% overall
performance improvement. Make module more gcc friendly and clarify
copyright issues for division routine.
Richard Levitte [Mon, 28 Jun 2004 22:01:37 +0000 (22:01 +0000)]
Changes for VOS, submitted by Paul Green <Paul.Green@stratus.com>.
PR: 499
Richard Levitte [Mon, 28 Jun 2004 16:32:12 +0000 (16:32 +0000)]
Make the tests of EVP operations without padding. As a consequence,
there's no need for a larger BUFSIZE any more...
PR: 904
Richard Levitte [Mon, 28 Jun 2004 12:23:35 +0000 (12:23 +0000)]
Make sure that the buffers are large enough to contain padding.
PR: 904
Richard Levitte [Mon, 28 Jun 2004 11:55:28 +0000 (11:55 +0000)]
NetWare fixes provided by Verdon Walker for OpenSSL 0.9.8-dev.
The changes have been mailed to <crypt@bis.doc.gov> as well.
PR: 903
Richard Levitte [Mon, 28 Jun 2004 10:31:03 +0000 (10:31 +0000)]
Linux on ARM needs -ldl
PR: 905
Dr. Stephen Henson [Thu, 24 Jun 2004 13:10:54 +0000 (13:10 +0000)]
Reformat pkcs8 source.
Geoff Thorpe [Sun, 20 Jun 2004 04:16:12 +0000 (04:16 +0000)]
Tidy up, including;
- Remove unused and unuseful debug cruft.
- Remove unnecessary 'top' fudging from BN_copy().
- Fix a potential memory leak and simplify the expansion logic in
BN_bin2bn().
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
Geoff Thorpe [Sat, 19 Jun 2004 03:58:42 +0000 (03:58 +0000)]
Incomplete initial sweep over the engine code. Mainly reducing some
comment-noise to managable levels and inverting the sense of the "uptodate"
boolean (which was counter-intuitive the way I'd left it).
Geoff Thorpe [Thu, 17 Jun 2004 23:50:25 +0000 (23:50 +0000)]
Deprecate unused cruft, and "make update".
Geoff Thorpe [Thu, 17 Jun 2004 23:40:14 +0000 (23:40 +0000)]
Attempt to bring the 'engine' documentation up to date w.r.t missing
prototypes, etc. Also, some fairly significant edits were made to the text
(who wrote this crap anyway? oh wait ...), removing stuff which is
overkill, rewriting stuff that was opaque, correcting things that were just
downright false, etc.
Geoff Thorpe [Thu, 17 Jun 2004 23:35:45 +0000 (23:35 +0000)]
Minor change to group like functions together.
Geoff Thorpe [Thu, 17 Jun 2004 22:05:40 +0000 (22:05 +0000)]
Actually, that last change to BN_get_word() was a little too simple.
Geoff Thorpe [Thu, 17 Jun 2004 20:28:28 +0000 (20:28 +0000)]
Get rid of signed/unsigned warnings, and teach CVS about new things to
ignore.
Geoff Thorpe [Thu, 17 Jun 2004 20:26:21 +0000 (20:26 +0000)]
Tweak my debug target flags.
Geoff Thorpe [Thu, 17 Jun 2004 20:13:50 +0000 (20:13 +0000)]
As Nils put it;
Yet another question: some time ago you changed BN_set_word.
Why didn't you change BN_get_word as well?
Quite. I'm also removing the older commented-out implementations to improve
readability. This complex stuff seems to date from a time when the types
didn't match up well.
Submitted by: Nils Larsch, Geoff Thorpe
Geoff Thorpe [Thu, 17 Jun 2004 20:03:56 +0000 (20:03 +0000)]
BN_div_word() was breaking when called from BN_bn2dec() (actually, this is
the only function that uses it) because it would trip up an assertion in
bn_div_words() when first invoked. This also adds BN_div_word() testing to
bntest.
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
Richard Levitte [Tue, 15 Jun 2004 12:52:26 +0000 (12:52 +0000)]
Making some values explicitely unsigned was derived from ongoing work
that isn't yet committed. It wasn't meant to be committed already, so
I'm removing it for now.
Richard Levitte [Tue, 15 Jun 2004 11:45:42 +0000 (11:45 +0000)]
Typo, setting the first element of nids[] to NULL instead of setting
*cnids.
Geoff Thorpe [Mon, 14 Jun 2004 23:37:32 +0000 (23:37 +0000)]
Correct the return codes for ecdsatest.
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
Lutz Jänicke [Mon, 14 Jun 2004 13:27:28 +0000 (13:27 +0000)]
More precise explanation of session id context requirements.
Andy Polyakov [Fri, 11 Jun 2004 17:50:57 +0000 (17:50 +0000)]
SHA fails to compile on x86_64 if compiled with custom flags, without
recommended -DMD32_REG_T=int in particular.
PR: 893
Submitted by: Michal Ludvig <michal-list@logix.cz>
Geoff Thorpe [Thu, 3 Jun 2004 03:34:53 +0000 (03:34 +0000)]
"no-engine" was being ignored, so remove it from the advertised syntax.
Also remove some commented-out lines of code that deny CVS its purpose.
Geoff Thorpe [Tue, 1 Jun 2004 03:18:58 +0000 (03:18 +0000)]
This fixes the installation target for dynamic engines, which was trying to
install to a different location than it had created. (BTW, VMS will need a
matching fix in eng_list.c.) Note, these aren't ssl-specific, so I'm
putting "engines/" into the libs directory rather than at the "--prefix"
level or inside "ssl/".
Andy Polyakov [Mon, 31 May 2004 22:29:26 +0000 (22:29 +0000)]
Minimal work-around for ./engine shared builds. "Minimal" means that I
think that proper Makefile clean-up is required.
Andy Polyakov [Mon, 31 May 2004 17:10:49 +0000 (17:10 +0000)]
32-bit PA-RISC requires -Bsymbolic when linking libcrypto.sl. Without
this flag RAND_poll ends up in end-less loop calling RAND_add. But
don't ask me why...
Andy Polyakov [Mon, 31 May 2004 14:50:19 +0000 (14:50 +0000)]
Working on HP-UX shared support...
Andy Polyakov [Mon, 31 May 2004 14:03:02 +0000 (14:03 +0000)]
Mention new SHA algorithms in CHANGES. This completes the integration.
Andy Polyakov [Mon, 31 May 2004 13:28:23 +0000 (13:28 +0000)]
Extend HMAC_MAX_MD_CBLOCK to accomodate SHA-512.
Richard Levitte [Mon, 31 May 2004 13:16:08 +0000 (13:16 +0000)]
make update
Andy Polyakov [Mon, 31 May 2004 13:14:08 +0000 (13:14 +0000)]
EVP bindings to new SHA algorithms.
Andy Polyakov [Mon, 31 May 2004 13:07:19 +0000 (13:07 +0000)]
objects.txt update for SHA-224/-256/-384/-512. SHA-224 ids still appear
"draft," but we have to start somewhere...
Submitted by: Nils Larsch <nlarsch@compuserve.de>
Andy Polyakov [Mon, 31 May 2004 12:40:22 +0000 (12:40 +0000)]
Make sha-256/-512 naming in speed.c consistent with their names as they
will appear at EVP leyer.
Andy Polyakov [Mon, 31 May 2004 12:30:41 +0000 (12:30 +0000)]
Typo in commentary section.
Andy Polyakov [Mon, 31 May 2004 12:26:18 +0000 (12:26 +0000)]
Final SHA-256/-512 touches. Extra md_len field in SHA[256|512]_CTX
reserves for truncated hash function output mode and makes SHA224
thread-safe. Next stop is integration with EVP and we're done...
Andy Polyakov [Mon, 31 May 2004 12:06:27 +0000 (12:06 +0000)]
Kill unused macro and reimplement it for that single context it can
actually be used, namely x86* platforms [because they don't bomb on
unaligned access]. This resulted in 30-40% [depending on message
length] improvement for SHA-256 compiled with gcc and running on P4.
In the lack of assembler implementation I give the compiler all the
help it can possibly get:-)
Richard Levitte [Sun, 30 May 2004 16:58:33 +0000 (16:58 +0000)]
SHA224_Update() and SHA224_Final() aren't implemented, and since
SHA224() uses SHA256_Update() and SHA256_Final() instead, let's just
create aliases in form of macros.
make update
Andy Polyakov [Sat, 29 May 2004 20:32:54 +0000 (20:32 +0000)]
Typo in linux-ppc64 target.
Andy Polyakov [Sat, 29 May 2004 19:11:29 +0000 (19:11 +0000)]
gcc -Wcast-qual clean-up.
Andy Polyakov [Fri, 28 May 2004 22:38:05 +0000 (22:38 +0000)]
hpux-shared rules to cover even for GNU ld.
Andy Polyakov [Fri, 28 May 2004 22:18:48 +0000 (22:18 +0000)]
Unified hpux-shared rule. Verified with both 32- and 64-bit builds and
both vendor and GNU compilers. ./engine shared build are still busted.
I mean always were...
Andy Polyakov [Fri, 28 May 2004 21:42:40 +0000 (21:42 +0000)]
Make sure we return 0 if test passed.
Andy Polyakov [Fri, 28 May 2004 10:15:58 +0000 (10:15 +0000)]
Eliminate compiler warnings and throw in performance table.
Andy Polyakov [Thu, 27 May 2004 22:23:40 +0000 (22:23 +0000)]
Attempt to unify hpux-shared rules. More adjustments might be required
after more tests...