Andy Polyakov [Sun, 30 Sep 2007 19:15:27 +0000 (19:15 +0000)]
DTLS RFC4347 requires client to use rame random field in reply to
HelloVerifyRequest.
Andy Polyakov [Sun, 30 Sep 2007 18:53:54 +0000 (18:53 +0000)]
Switch to RFC-compliant version encoding in DTLS.
Dr. Stephen Henson [Fri, 28 Sep 2007 17:45:11 +0000 (17:45 +0000)]
Move no status notification to ssl_check_serverhello_tlsext() to ensure
no status is notified even if no server extensions are present.
Dr. Stephen Henson [Fri, 28 Sep 2007 17:18:18 +0000 (17:18 +0000)]
Typo.
Andy Polyakov [Thu, 27 Sep 2007 16:27:03 +0000 (16:27 +0000)]
Yet another ARM update. It appears to be more appropriate to make
developers responsible for -march choice.
Andy Polyakov [Thu, 27 Sep 2007 07:43:58 +0000 (07:43 +0000)]
Move -march=armv4t to ./config.
Andy Polyakov [Thu, 27 Sep 2007 07:20:31 +0000 (07:20 +0000)]
Minor ARMv4 update.
Andy Polyakov [Thu, 27 Sep 2007 07:09:46 +0000 (07:09 +0000)]
ARMv4 assembler pack.
Andy Polyakov [Thu, 27 Sep 2007 06:19:25 +0000 (06:19 +0000)]
10% performance tweak in 64-bit mode.
Dr. Stephen Henson [Wed, 26 Sep 2007 21:56:59 +0000 (21:56 +0000)]
Support for certificate status TLS extension.
Andy Polyakov [Wed, 26 Sep 2007 12:17:33 +0000 (12:17 +0000)]
Make sha512-armv4.pl byte-order neutral.
Andy Polyakov [Wed, 26 Sep 2007 12:16:32 +0000 (12:16 +0000)]
Clarify commentary in sha512-sparcv9.pl.
Lutz Jänicke [Mon, 24 Sep 2007 11:22:58 +0000 (11:22 +0000)]
Typos
PR: 1578
Submitted by: Charles Longeau <chl@tuxfamily.org>
Lutz Jänicke [Mon, 24 Sep 2007 11:01:18 +0000 (11:01 +0000)]
Port from 0.9.8-stable
Dr. Stephen Henson [Sun, 23 Sep 2007 15:55:15 +0000 (15:55 +0000)]
Use accept flag for new session ticket write.
Bodo Möller [Sun, 23 Sep 2007 11:30:53 +0000 (11:30 +0000)]
properly handle length-zero opaque PRF input values
(which are pointless, but still might occur)
Bodo Möller [Sun, 23 Sep 2007 11:08:59 +0000 (11:08 +0000)]
fix length parameter in SSL_set_tlsext_opaque_prf_input() calls
Bodo Möller [Fri, 21 Sep 2007 06:54:24 +0000 (06:54 +0000)]
Implement the Opaque PRF Input TLS extension
(draft-rescorla-tls-opaque-prf-input-00.txt), and do some cleanups and
bugfixes on the way. In particular, this fixes the buffer bounds
checks in ssl_add_clienthello_tlsext() and in ssl_add_serverhello_tlsext().
Note that the opaque PRF Input TLS extension is not compiled by default;
see CHANGES.
Andy Polyakov [Wed, 19 Sep 2007 16:38:15 +0000 (16:38 +0000)]
Fix indentation in d1_both.c.
Ben Laurie [Wed, 19 Sep 2007 14:53:18 +0000 (14:53 +0000)]
Fix dependencies. Make depend.
Ben Laurie [Wed, 19 Sep 2007 14:51:28 +0000 (14:51 +0000)]
The other half of make errors.
Ben Laurie [Wed, 19 Sep 2007 14:29:59 +0000 (14:29 +0000)]
make errors.
Bodo Möller [Wed, 19 Sep 2007 01:43:59 +0000 (01:43 +0000)]
fix warning
Bodo Möller [Wed, 19 Sep 2007 00:58:58 +0000 (00:58 +0000)]
Clean up error codes a bit.
(engines/ccgost/ remains utter chaos, though; "make errors" is not happy.)
Andy Polyakov [Tue, 18 Sep 2007 22:15:31 +0000 (22:15 +0000)]
Addenum to "Constify obj_dat.[ch]."
Andy Polyakov [Tue, 18 Sep 2007 21:12:02 +0000 (21:12 +0000)]
Minor formatting fixes in crypto/sha/asm.
Andy Polyakov [Tue, 18 Sep 2007 21:10:32 +0000 (21:10 +0000)]
Wire RC4 key_table to read-only segment.
Andy Polyakov [Tue, 18 Sep 2007 21:05:21 +0000 (21:05 +0000)]
Constify obj_dat.[ch], as well as minimize linker relocations.
Andy Polyakov [Tue, 18 Sep 2007 20:58:33 +0000 (20:58 +0000)]
Wire DES weak_keys to read-only segment.
Andy Polyakov [Tue, 18 Sep 2007 20:57:06 +0000 (20:57 +0000)]
Eliminate redundant make rule.
Andy Polyakov [Tue, 18 Sep 2007 20:52:05 +0000 (20:52 +0000)]
Minimize stack utilization in probable_prime.
Andy Polyakov [Tue, 18 Sep 2007 20:48:39 +0000 (20:48 +0000)]
Remove excessive whitespaces from bio.h
Bodo Möller [Tue, 18 Sep 2007 16:35:28 +0000 (16:35 +0000)]
Make sure that BN_from_montgomery keeps the BIGNUMS in proper format
Dr. Stephen Henson [Mon, 17 Sep 2007 17:54:31 +0000 (17:54 +0000)]
Update from stable branch.
Dr. Stephen Henson [Mon, 17 Sep 2007 17:31:53 +0000 (17:31 +0000)]
Update from stable branch.
Andy Polyakov [Mon, 17 Sep 2007 16:42:35 +0000 (16:42 +0000)]
Mention aes in enc.pod.
PR: 1529
Andy Polyakov [Mon, 17 Sep 2007 15:56:55 +0000 (15:56 +0000)]
Mention SHA2 in openssl.pod.
PR: 1575
Andy Polyakov [Sun, 16 Sep 2007 19:29:35 +0000 (19:29 +0000)]
Remove pq_compat.h.
Andy Polyakov [Sun, 16 Sep 2007 18:47:24 +0000 (18:47 +0000)]
Minor sha[256|512]-586 performance tweaks.
Andy Polyakov [Sun, 16 Sep 2007 18:35:02 +0000 (18:35 +0000)]
It's inappropraite to override application signal, nor is it appropriate
to shut down Winsock unless we know it won't be used [and we never do].
PR: 1439
Andy Polyakov [Sun, 16 Sep 2007 14:11:00 +0000 (14:11 +0000)]
Minor fix in link_[oa].hpux.
Andy Polyakov [Sun, 16 Sep 2007 12:23:47 +0000 (12:23 +0000)]
BSD run-time linkers apparently demand RPATH on .so objects.
PR: 1381
Andy Polyakov [Sat, 15 Sep 2007 17:05:11 +0000 (17:05 +0000)]
Make bn2dec work on "SIXTY_FOUR_BIT" platforms.
PR: 1456
Andy Polyakov [Sat, 15 Sep 2007 13:45:17 +0000 (13:45 +0000)]
Remove sha512-sse2.pl.
Andy Polyakov [Fri, 14 Sep 2007 21:06:14 +0000 (21:06 +0000)]
Engage new x86 assembler modules.
Andy Polyakov [Fri, 14 Sep 2007 19:32:33 +0000 (19:32 +0000)]
More Intel cc fix-ups.
Dr. Stephen Henson [Fri, 14 Sep 2007 18:11:17 +0000 (18:11 +0000)]
Handle empty case in X509_NAME canonical encoding.
Andy Polyakov [Thu, 13 Sep 2007 07:27:10 +0000 (07:27 +0000)]
Commentary updates.
Andy Polyakov [Thu, 13 Sep 2007 07:26:35 +0000 (07:26 +0000)]
SHA512 for ARMv4.
Andy Polyakov [Thu, 13 Sep 2007 07:26:19 +0000 (07:26 +0000)]
SHA256/512 for x86.
Ben Laurie [Sat, 8 Sep 2007 15:58:51 +0000 (15:58 +0000)]
Typo? Why did this work, anyway?
Dr. Stephen Henson [Fri, 7 Sep 2007 13:34:46 +0000 (13:34 +0000)]
Fix warning: print format option not compatible with size_t.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:27:40 +0000 (13:27 +0000)]
Fix another warning.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:25:15 +0000 (13:25 +0000)]
Change safestack reimplementation to match 0.9.8.
Fix additional gcc 4.2 value not used warnings.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:03:25 +0000 (13:03 +0000)]
Fix warnings: computed value not use, incompatible pointer initialization
and cast from pointer to int of different size (linux-x86_64 and align).
Andy Polyakov [Fri, 7 Sep 2007 12:34:45 +0000 (12:34 +0000)]
Add sha512_block implementation optimized for small register bank.
On x86 it gives same performance, while code size shrinks >10 times.
Dr. Stephen Henson [Fri, 31 Aug 2007 12:42:53 +0000 (12:42 +0000)]
Update ssl code to support digests other than MD5+SHA1 in handshake.
Submitted by: Victor B. Wagner <vitus@cryptocom.ru>
Andy Polyakov [Fri, 31 Aug 2007 10:12:35 +0000 (10:12 +0000)]
Constify seed and md2.
Andy Polyakov [Fri, 31 Aug 2007 10:09:34 +0000 (10:09 +0000)]
Offer darwin64-x86_64-cc as option.
Andy Polyakov [Fri, 31 Aug 2007 09:36:43 +0000 (09:36 +0000)]
Compress and more aggressively constify ec_curve.c [the latter is
achieved by minimizing link relocations].
Dr. Stephen Henson [Fri, 31 Aug 2007 00:28:01 +0000 (00:28 +0000)]
Check return code when attempting to receive new session ticket message.
Andy Polyakov [Thu, 30 Aug 2007 08:09:12 +0000 (08:09 +0000)]
Unify RC4 settings among darwin platforms.
Andy Polyakov [Thu, 30 Aug 2007 07:54:23 +0000 (07:54 +0000)]
Add darwin64-x86_64-cc target.
Andy Polyakov [Wed, 29 Aug 2007 21:30:13 +0000 (21:30 +0000)]
aes_ige suffered SIGBUS on RISC platforms.
Andy Polyakov [Wed, 29 Aug 2007 20:46:11 +0000 (20:46 +0000)]
Improve cache locality in linux64-sparcv9.
Andy Polyakov [Tue, 28 Aug 2007 21:02:38 +0000 (21:02 +0000)]
Make naming more consistent.
Andy Polyakov [Tue, 28 Aug 2007 20:45:25 +0000 (20:45 +0000)]
Make room for Camellia assembler.
Dr. Stephen Henson [Tue, 28 Aug 2007 01:08:45 +0000 (01:08 +0000)]
Add ctrls to set and get RFC4507bis keys to enable several contexts to
reuse the same tickets.
Dr. Stephen Henson [Mon, 27 Aug 2007 23:41:36 +0000 (23:41 +0000)]
Add Google sponsorship note.
Andy Polyakov [Mon, 27 Aug 2007 08:51:59 +0000 (08:51 +0000)]
shlib_wrap commentary update.
Andy Polyakov [Mon, 27 Aug 2007 08:42:01 +0000 (08:42 +0000)]
shlib_wrap update, IRIX section.
Andy Polyakov [Sun, 26 Aug 2007 14:12:30 +0000 (14:12 +0000)]
IRIX and Tru64 platform updates.
Dr. Stephen Henson [Thu, 23 Aug 2007 22:59:09 +0000 (22:59 +0000)]
Update from stable branch.
Dr. Stephen Henson [Thu, 23 Aug 2007 22:49:13 +0000 (22:49 +0000)]
Document ticket disabling option.
Dr. Stephen Henson [Thu, 23 Aug 2007 12:20:36 +0000 (12:20 +0000)]
Add usage message for -sess_out, -sess_in
Andy Polyakov [Thu, 23 Aug 2007 12:01:58 +0000 (12:01 +0000)]
Make x86_64 modules work under Win64/x64.
Andy Polyakov [Thu, 23 Aug 2007 11:59:53 +0000 (11:59 +0000)]
Workaround MSVC6 compiler bug.
Dr. Stephen Henson [Thu, 23 Aug 2007 11:34:48 +0000 (11:34 +0000)]
Docs and usage messages for RFC4507bis support.
Richard Levitte [Wed, 22 Aug 2007 20:58:50 +0000 (20:58 +0000)]
VAX C can't handle 64 bit integers, making SHA512 impossible...
Dr. Stephen Henson [Mon, 20 Aug 2007 12:35:20 +0000 (12:35 +0000)]
Use SHA256 for ticket HMAC if possible.
Dr. Stephen Henson [Mon, 13 Aug 2007 02:24:26 +0000 (02:24 +0000)]
Fix for asm/no-asm on WIN32.
Dr. Stephen Henson [Sun, 12 Aug 2007 23:59:05 +0000 (23:59 +0000)]
OPENSSL_NO_TLS1 WIN32 build support. Fix so normal build works again.
Dr. Stephen Henson [Sun, 12 Aug 2007 18:56:14 +0000 (18:56 +0000)]
Fix warning and make no-tlsext work.
Dr. Stephen Henson [Sun, 12 Aug 2007 18:05:20 +0000 (18:05 +0000)]
Typo.
Dr. Stephen Henson [Sun, 12 Aug 2007 17:44:32 +0000 (17:44 +0000)]
Fix warnings.
Dr. Stephen Henson [Sun, 12 Aug 2007 17:06:28 +0000 (17:06 +0000)]
Remove debugging fprintfs, fix typo.
Dr. Stephen Henson [Sat, 11 Aug 2007 23:18:29 +0000 (23:18 +0000)]
RFC4507 (including RFC4507bis) TLS stateless session resumption support
for OpenSSL.
Andy Polyakov [Wed, 1 Aug 2007 11:20:39 +0000 (11:20 +0000)]
Typos in ./config.
PR: 1563
Andy Polyakov [Tue, 31 Jul 2007 19:30:13 +0000 (19:30 +0000)]
MacOS X update.
Andy Polyakov [Tue, 31 Jul 2007 18:24:41 +0000 (18:24 +0000)]
Proper support for shared build under MacOS X.
Andy Polyakov [Tue, 31 Jul 2007 18:19:40 +0000 (18:19 +0000)]
Typo in ppccpuid.pl.
Bodo Möller [Tue, 31 Jul 2007 09:42:47 +0000 (09:42 +0000)]
document -S and -nopad options in usage information
Andy Polyakov [Mon, 30 Jul 2007 16:42:57 +0000 (16:42 +0000)]
Buglet fixes and minor optimization in aes-x86_86 assembler.
Andy Polyakov [Mon, 30 Jul 2007 11:53:01 +0000 (11:53 +0000)]
Make preprocessor logic more fail-safe.
Andy Polyakov [Mon, 30 Jul 2007 11:42:08 +0000 (11:42 +0000)]
As for inline vs. __inline. The original code implies that most compilers
understand inline, while WIN32 ones insist on __inline. Well, there are
other compilers that insist on __inline. At the same time it turned out
that most compilers understand both __inline and inline. I could find
only one that doesn't understand __inline, Sun C. In other words it seems
that __inline as preferred choice provides better coverage...
Andy Polyakov [Mon, 30 Jul 2007 08:47:32 +0000 (08:47 +0000)]
Make ppccpuid AIX friendly.
Andy Polyakov [Fri, 27 Jul 2007 20:34:10 +0000 (20:34 +0000)]
Respect ISO aliasing rules.
PR: 1296
Andy Polyakov [Fri, 27 Jul 2007 18:20:52 +0000 (18:20 +0000)]
AES for IA64 update.
Andy Polyakov [Fri, 27 Jul 2007 18:03:27 +0000 (18:03 +0000)]
ia64cpuid update.
Andy Polyakov [Wed, 25 Jul 2007 12:38:11 +0000 (12:38 +0000)]
x86 perlasm updates.