oweals/openssl.git
17 years agoDTLS RFC4347 requires client to use rame random field in reply to
Andy Polyakov [Sun, 30 Sep 2007 19:15:27 +0000 (19:15 +0000)]
DTLS RFC4347 requires client to use rame random field in reply to
HelloVerifyRequest.

17 years agoSwitch to RFC-compliant version encoding in DTLS.
Andy Polyakov [Sun, 30 Sep 2007 18:53:54 +0000 (18:53 +0000)]
Switch to RFC-compliant version encoding in DTLS.

17 years agoMove no status notification to ssl_check_serverhello_tlsext() to ensure
Dr. Stephen Henson [Fri, 28 Sep 2007 17:45:11 +0000 (17:45 +0000)]
Move no status notification to ssl_check_serverhello_tlsext() to ensure
no status is notified even if no server extensions are present.

17 years agoTypo.
Dr. Stephen Henson [Fri, 28 Sep 2007 17:18:18 +0000 (17:18 +0000)]
Typo.

17 years agoYet another ARM update. It appears to be more appropriate to make
Andy Polyakov [Thu, 27 Sep 2007 16:27:03 +0000 (16:27 +0000)]
Yet another ARM update. It appears to be more appropriate to make
developers responsible for -march choice.

17 years agoMove -march=armv4t to ./config.
Andy Polyakov [Thu, 27 Sep 2007 07:43:58 +0000 (07:43 +0000)]
Move -march=armv4t to ./config.

17 years agoMinor ARMv4 update.
Andy Polyakov [Thu, 27 Sep 2007 07:20:31 +0000 (07:20 +0000)]
Minor ARMv4 update.

17 years agoARMv4 assembler pack.
Andy Polyakov [Thu, 27 Sep 2007 07:09:46 +0000 (07:09 +0000)]
ARMv4 assembler pack.

17 years ago10% performance tweak in 64-bit mode.
Andy Polyakov [Thu, 27 Sep 2007 06:19:25 +0000 (06:19 +0000)]
10% performance tweak in 64-bit mode.

17 years agoSupport for certificate status TLS extension.
Dr. Stephen Henson [Wed, 26 Sep 2007 21:56:59 +0000 (21:56 +0000)]
Support for certificate status TLS extension.

17 years agoMake sha512-armv4.pl byte-order neutral.
Andy Polyakov [Wed, 26 Sep 2007 12:17:33 +0000 (12:17 +0000)]
Make sha512-armv4.pl byte-order neutral.

17 years agoClarify commentary in sha512-sparcv9.pl.
Andy Polyakov [Wed, 26 Sep 2007 12:16:32 +0000 (12:16 +0000)]
Clarify commentary in sha512-sparcv9.pl.

17 years agoTypos
Lutz Jänicke [Mon, 24 Sep 2007 11:22:58 +0000 (11:22 +0000)]
Typos
PR: 1578
Submitted by: Charles Longeau <chl@tuxfamily.org>

17 years agoPort from 0.9.8-stable
Lutz Jänicke [Mon, 24 Sep 2007 11:01:18 +0000 (11:01 +0000)]
Port from 0.9.8-stable

17 years agoUse accept flag for new session ticket write.
Dr. Stephen Henson [Sun, 23 Sep 2007 15:55:15 +0000 (15:55 +0000)]
Use accept flag for new session ticket write.

17 years agoproperly handle length-zero opaque PRF input values
Bodo Möller [Sun, 23 Sep 2007 11:30:53 +0000 (11:30 +0000)]
properly handle length-zero opaque PRF input values
(which are pointless, but still might occur)

17 years agofix length parameter in SSL_set_tlsext_opaque_prf_input() calls
Bodo Möller [Sun, 23 Sep 2007 11:08:59 +0000 (11:08 +0000)]
fix length parameter in SSL_set_tlsext_opaque_prf_input() calls

17 years agoImplement the Opaque PRF Input TLS extension
Bodo Möller [Fri, 21 Sep 2007 06:54:24 +0000 (06:54 +0000)]
Implement the Opaque PRF Input TLS extension
(draft-rescorla-tls-opaque-prf-input-00.txt), and do some cleanups and
bugfixes on the way.  In particular, this fixes the buffer bounds
checks in ssl_add_clienthello_tlsext() and in ssl_add_serverhello_tlsext().

Note that the opaque PRF Input TLS extension is not compiled by default;
see CHANGES.

17 years agoFix indentation in d1_both.c.
Andy Polyakov [Wed, 19 Sep 2007 16:38:15 +0000 (16:38 +0000)]
Fix indentation in d1_both.c.

17 years agoFix dependencies. Make depend.
Ben Laurie [Wed, 19 Sep 2007 14:53:18 +0000 (14:53 +0000)]
Fix dependencies. Make depend.

17 years agoThe other half of make errors.
Ben Laurie [Wed, 19 Sep 2007 14:51:28 +0000 (14:51 +0000)]
The other half of make errors.

17 years agomake errors.
Ben Laurie [Wed, 19 Sep 2007 14:29:59 +0000 (14:29 +0000)]
make errors.

17 years agofix warning
Bodo Möller [Wed, 19 Sep 2007 01:43:59 +0000 (01:43 +0000)]
fix warning

17 years agoClean up error codes a bit.
Bodo Möller [Wed, 19 Sep 2007 00:58:58 +0000 (00:58 +0000)]
Clean up error codes a bit.
(engines/ccgost/ remains utter chaos, though; "make errors" is not happy.)

17 years agoAddenum to "Constify obj_dat.[ch]."
Andy Polyakov [Tue, 18 Sep 2007 22:15:31 +0000 (22:15 +0000)]
Addenum to "Constify obj_dat.[ch]."

17 years agoMinor formatting fixes in crypto/sha/asm.
Andy Polyakov [Tue, 18 Sep 2007 21:12:02 +0000 (21:12 +0000)]
Minor formatting fixes in crypto/sha/asm.

17 years agoWire RC4 key_table to read-only segment.
Andy Polyakov [Tue, 18 Sep 2007 21:10:32 +0000 (21:10 +0000)]
Wire RC4 key_table to read-only segment.

17 years agoConstify obj_dat.[ch], as well as minimize linker relocations.
Andy Polyakov [Tue, 18 Sep 2007 21:05:21 +0000 (21:05 +0000)]
Constify obj_dat.[ch], as well as minimize linker relocations.

17 years agoWire DES weak_keys to read-only segment.
Andy Polyakov [Tue, 18 Sep 2007 20:58:33 +0000 (20:58 +0000)]
Wire DES weak_keys to read-only segment.

17 years agoEliminate redundant make rule.
Andy Polyakov [Tue, 18 Sep 2007 20:57:06 +0000 (20:57 +0000)]
Eliminate redundant make rule.

17 years agoMinimize stack utilization in probable_prime.
Andy Polyakov [Tue, 18 Sep 2007 20:52:05 +0000 (20:52 +0000)]
Minimize stack utilization in probable_prime.

17 years agoRemove excessive whitespaces from bio.h
Andy Polyakov [Tue, 18 Sep 2007 20:48:39 +0000 (20:48 +0000)]
Remove excessive whitespaces from bio.h

17 years agoMake sure that BN_from_montgomery keeps the BIGNUMS in proper format
Bodo Möller [Tue, 18 Sep 2007 16:35:28 +0000 (16:35 +0000)]
Make sure that BN_from_montgomery keeps the BIGNUMS in proper format

17 years agoUpdate from stable branch.
Dr. Stephen Henson [Mon, 17 Sep 2007 17:54:31 +0000 (17:54 +0000)]
Update from stable branch.

17 years agoUpdate from stable branch.
Dr. Stephen Henson [Mon, 17 Sep 2007 17:31:53 +0000 (17:31 +0000)]
Update from stable branch.

17 years agoMention aes in enc.pod.
Andy Polyakov [Mon, 17 Sep 2007 16:42:35 +0000 (16:42 +0000)]
Mention aes in enc.pod.
PR: 1529

17 years agoMention SHA2 in openssl.pod.
Andy Polyakov [Mon, 17 Sep 2007 15:56:55 +0000 (15:56 +0000)]
Mention SHA2 in openssl.pod.
PR: 1575

17 years agoRemove pq_compat.h.
Andy Polyakov [Sun, 16 Sep 2007 19:29:35 +0000 (19:29 +0000)]
Remove pq_compat.h.

17 years agoMinor sha[256|512]-586 performance tweaks.
Andy Polyakov [Sun, 16 Sep 2007 18:47:24 +0000 (18:47 +0000)]
Minor sha[256|512]-586 performance tweaks.

17 years agoIt's inappropraite to override application signal, nor is it appropriate
Andy Polyakov [Sun, 16 Sep 2007 18:35:02 +0000 (18:35 +0000)]
It's inappropraite to override application signal, nor is it appropriate
to shut down Winsock unless we know it won't be used [and we never do].
PR: 1439

17 years agoMinor fix in link_[oa].hpux.
Andy Polyakov [Sun, 16 Sep 2007 14:11:00 +0000 (14:11 +0000)]
Minor fix in link_[oa].hpux.

17 years agoBSD run-time linkers apparently demand RPATH on .so objects.
Andy Polyakov [Sun, 16 Sep 2007 12:23:47 +0000 (12:23 +0000)]
BSD run-time linkers apparently demand RPATH on .so objects.
PR: 1381

17 years agoMake bn2dec work on "SIXTY_FOUR_BIT" platforms.
Andy Polyakov [Sat, 15 Sep 2007 17:05:11 +0000 (17:05 +0000)]
Make bn2dec work on "SIXTY_FOUR_BIT" platforms.
PR: 1456

17 years agoRemove sha512-sse2.pl.
Andy Polyakov [Sat, 15 Sep 2007 13:45:17 +0000 (13:45 +0000)]
Remove sha512-sse2.pl.

17 years agoEngage new x86 assembler modules.
Andy Polyakov [Fri, 14 Sep 2007 21:06:14 +0000 (21:06 +0000)]
Engage new x86 assembler modules.

17 years agoMore Intel cc fix-ups.
Andy Polyakov [Fri, 14 Sep 2007 19:32:33 +0000 (19:32 +0000)]
More Intel cc fix-ups.

17 years agoHandle empty case in X509_NAME canonical encoding.
Dr. Stephen Henson [Fri, 14 Sep 2007 18:11:17 +0000 (18:11 +0000)]
Handle empty case in X509_NAME canonical encoding.

17 years agoCommentary updates.
Andy Polyakov [Thu, 13 Sep 2007 07:27:10 +0000 (07:27 +0000)]
Commentary updates.

17 years agoSHA512 for ARMv4.
Andy Polyakov [Thu, 13 Sep 2007 07:26:35 +0000 (07:26 +0000)]
SHA512 for ARMv4.

17 years agoSHA256/512 for x86.
Andy Polyakov [Thu, 13 Sep 2007 07:26:19 +0000 (07:26 +0000)]
SHA256/512 for x86.

17 years agoTypo? Why did this work, anyway?
Ben Laurie [Sat, 8 Sep 2007 15:58:51 +0000 (15:58 +0000)]
Typo? Why did this work, anyway?

17 years agoFix warning: print format option not compatible with size_t.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:34:46 +0000 (13:34 +0000)]
Fix warning: print format option not compatible with size_t.

17 years agoFix another warning.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:27:40 +0000 (13:27 +0000)]
Fix another warning.

17 years agoChange safestack reimplementation to match 0.9.8.
Dr. Stephen Henson [Fri, 7 Sep 2007 13:25:15 +0000 (13:25 +0000)]
Change safestack reimplementation to match 0.9.8.

Fix additional gcc 4.2 value not used warnings.

17 years agoFix warnings: computed value not use, incompatible pointer initialization
Dr. Stephen Henson [Fri, 7 Sep 2007 13:03:25 +0000 (13:03 +0000)]
Fix warnings: computed value not use, incompatible pointer initialization
and cast from pointer to int of different size (linux-x86_64 and align).

17 years agoAdd sha512_block implementation optimized for small register bank.
Andy Polyakov [Fri, 7 Sep 2007 12:34:45 +0000 (12:34 +0000)]
Add sha512_block implementation optimized for small register bank.
On x86 it gives same performance, while code size shrinks >10 times.

17 years agoUpdate ssl code to support digests other than MD5+SHA1 in handshake.
Dr. Stephen Henson [Fri, 31 Aug 2007 12:42:53 +0000 (12:42 +0000)]
Update ssl code to support digests other than MD5+SHA1 in handshake.

Submitted by: Victor B. Wagner <vitus@cryptocom.ru>

17 years agoConstify seed and md2.
Andy Polyakov [Fri, 31 Aug 2007 10:12:35 +0000 (10:12 +0000)]
Constify seed and md2.

17 years agoOffer darwin64-x86_64-cc as option.
Andy Polyakov [Fri, 31 Aug 2007 10:09:34 +0000 (10:09 +0000)]
Offer darwin64-x86_64-cc as option.

17 years agoCompress and more aggressively constify ec_curve.c [the latter is
Andy Polyakov [Fri, 31 Aug 2007 09:36:43 +0000 (09:36 +0000)]
Compress and more aggressively constify ec_curve.c [the latter is
achieved by minimizing link relocations].

17 years agoCheck return code when attempting to receive new session ticket message.
Dr. Stephen Henson [Fri, 31 Aug 2007 00:28:01 +0000 (00:28 +0000)]
Check return code when attempting to receive new session ticket message.

17 years agoUnify RC4 settings among darwin platforms.
Andy Polyakov [Thu, 30 Aug 2007 08:09:12 +0000 (08:09 +0000)]
Unify RC4 settings among darwin platforms.

17 years agoAdd darwin64-x86_64-cc target.
Andy Polyakov [Thu, 30 Aug 2007 07:54:23 +0000 (07:54 +0000)]
Add darwin64-x86_64-cc target.

17 years agoaes_ige suffered SIGBUS on RISC platforms.
Andy Polyakov [Wed, 29 Aug 2007 21:30:13 +0000 (21:30 +0000)]
aes_ige suffered SIGBUS on RISC platforms.

17 years agoImprove cache locality in linux64-sparcv9.
Andy Polyakov [Wed, 29 Aug 2007 20:46:11 +0000 (20:46 +0000)]
Improve cache locality in linux64-sparcv9.

17 years agoMake naming more consistent.
Andy Polyakov [Tue, 28 Aug 2007 21:02:38 +0000 (21:02 +0000)]
Make naming more consistent.

17 years agoMake room for Camellia assembler.
Andy Polyakov [Tue, 28 Aug 2007 20:45:25 +0000 (20:45 +0000)]
Make room for Camellia assembler.

17 years agoAdd ctrls to set and get RFC4507bis keys to enable several contexts to
Dr. Stephen Henson [Tue, 28 Aug 2007 01:08:45 +0000 (01:08 +0000)]
Add ctrls to set and get RFC4507bis keys to enable several contexts to
reuse the same tickets.

17 years agoAdd Google sponsorship note.
Dr. Stephen Henson [Mon, 27 Aug 2007 23:41:36 +0000 (23:41 +0000)]
Add Google sponsorship note.

17 years agoshlib_wrap commentary update.
Andy Polyakov [Mon, 27 Aug 2007 08:51:59 +0000 (08:51 +0000)]
shlib_wrap commentary update.

17 years agoshlib_wrap update, IRIX section.
Andy Polyakov [Mon, 27 Aug 2007 08:42:01 +0000 (08:42 +0000)]
shlib_wrap update, IRIX section.

17 years agoIRIX and Tru64 platform updates.
Andy Polyakov [Sun, 26 Aug 2007 14:12:30 +0000 (14:12 +0000)]
IRIX and Tru64 platform updates.

17 years agoUpdate from stable branch.
Dr. Stephen Henson [Thu, 23 Aug 2007 22:59:09 +0000 (22:59 +0000)]
Update from stable branch.

17 years agoDocument ticket disabling option.
Dr. Stephen Henson [Thu, 23 Aug 2007 22:49:13 +0000 (22:49 +0000)]
Document ticket disabling option.

17 years agoAdd usage message for -sess_out, -sess_in
Dr. Stephen Henson [Thu, 23 Aug 2007 12:20:36 +0000 (12:20 +0000)]
Add usage message for -sess_out, -sess_in

17 years agoMake x86_64 modules work under Win64/x64.
Andy Polyakov [Thu, 23 Aug 2007 12:01:58 +0000 (12:01 +0000)]
Make x86_64 modules work under Win64/x64.

17 years agoWorkaround MSVC6 compiler bug.
Andy Polyakov [Thu, 23 Aug 2007 11:59:53 +0000 (11:59 +0000)]
Workaround MSVC6 compiler bug.

17 years agoDocs and usage messages for RFC4507bis support.
Dr. Stephen Henson [Thu, 23 Aug 2007 11:34:48 +0000 (11:34 +0000)]
Docs and usage messages for RFC4507bis support.

17 years agoVAX C can't handle 64 bit integers, making SHA512 impossible...
Richard Levitte [Wed, 22 Aug 2007 20:58:50 +0000 (20:58 +0000)]
VAX C can't handle 64 bit integers, making SHA512 impossible...

17 years agoUse SHA256 for ticket HMAC if possible.
Dr. Stephen Henson [Mon, 20 Aug 2007 12:35:20 +0000 (12:35 +0000)]
Use SHA256 for ticket HMAC if possible.

17 years agoFix for asm/no-asm on WIN32.
Dr. Stephen Henson [Mon, 13 Aug 2007 02:24:26 +0000 (02:24 +0000)]
Fix for asm/no-asm on WIN32.

17 years agoOPENSSL_NO_TLS1 WIN32 build support. Fix so normal build works again.
Dr. Stephen Henson [Sun, 12 Aug 2007 23:59:05 +0000 (23:59 +0000)]
OPENSSL_NO_TLS1 WIN32 build support. Fix so normal build works again.

17 years agoFix warning and make no-tlsext work.
Dr. Stephen Henson [Sun, 12 Aug 2007 18:56:14 +0000 (18:56 +0000)]
Fix warning and make no-tlsext work.

17 years agoTypo.
Dr. Stephen Henson [Sun, 12 Aug 2007 18:05:20 +0000 (18:05 +0000)]
Typo.

17 years agoFix warnings.
Dr. Stephen Henson [Sun, 12 Aug 2007 17:44:32 +0000 (17:44 +0000)]
Fix warnings.

17 years agoRemove debugging fprintfs, fix typo.
Dr. Stephen Henson [Sun, 12 Aug 2007 17:06:28 +0000 (17:06 +0000)]
Remove debugging fprintfs, fix typo.

17 years agoRFC4507 (including RFC4507bis) TLS stateless session resumption support
Dr. Stephen Henson [Sat, 11 Aug 2007 23:18:29 +0000 (23:18 +0000)]
RFC4507 (including RFC4507bis) TLS stateless session resumption support
for OpenSSL.

17 years agoTypos in ./config.
Andy Polyakov [Wed, 1 Aug 2007 11:20:39 +0000 (11:20 +0000)]
Typos in ./config.
PR: 1563

17 years agoMacOS X update.
Andy Polyakov [Tue, 31 Jul 2007 19:30:13 +0000 (19:30 +0000)]
MacOS X update.

17 years agoProper support for shared build under MacOS X.
Andy Polyakov [Tue, 31 Jul 2007 18:24:41 +0000 (18:24 +0000)]
Proper support for shared build under MacOS X.

17 years agoTypo in ppccpuid.pl.
Andy Polyakov [Tue, 31 Jul 2007 18:19:40 +0000 (18:19 +0000)]
Typo in ppccpuid.pl.

17 years agodocument -S and -nopad options in usage information
Bodo Möller [Tue, 31 Jul 2007 09:42:47 +0000 (09:42 +0000)]
document -S and -nopad options in usage information

17 years agoBuglet fixes and minor optimization in aes-x86_86 assembler.
Andy Polyakov [Mon, 30 Jul 2007 16:42:57 +0000 (16:42 +0000)]
Buglet fixes and minor optimization in aes-x86_86 assembler.

17 years agoMake preprocessor logic more fail-safe.
Andy Polyakov [Mon, 30 Jul 2007 11:53:01 +0000 (11:53 +0000)]
Make preprocessor logic more fail-safe.

17 years agoAs for inline vs. __inline. The original code implies that most compilers
Andy Polyakov [Mon, 30 Jul 2007 11:42:08 +0000 (11:42 +0000)]
As for inline vs. __inline. The original code implies that most compilers
understand inline, while WIN32 ones insist on __inline. Well, there are
other compilers that insist on __inline. At the same time it turned out
that most compilers understand both __inline and inline. I could find
only one that doesn't understand __inline, Sun C. In other words it seems
that __inline as preferred choice provides better coverage...

17 years agoMake ppccpuid AIX friendly.
Andy Polyakov [Mon, 30 Jul 2007 08:47:32 +0000 (08:47 +0000)]
Make ppccpuid AIX friendly.

17 years agoRespect ISO aliasing rules.
Andy Polyakov [Fri, 27 Jul 2007 20:34:10 +0000 (20:34 +0000)]
Respect ISO aliasing rules.
PR: 1296

17 years agoAES for IA64 update.
Andy Polyakov [Fri, 27 Jul 2007 18:20:52 +0000 (18:20 +0000)]
AES for IA64 update.

17 years agoia64cpuid update.
Andy Polyakov [Fri, 27 Jul 2007 18:03:27 +0000 (18:03 +0000)]
ia64cpuid update.

17 years agox86 perlasm updates.
Andy Polyakov [Wed, 25 Jul 2007 12:38:11 +0000 (12:38 +0000)]
x86 perlasm updates.