openssl.git
13 years agoSigned vs. unsigned conflict
Richard Levitte [Thu, 25 May 2006 23:40:04 +0000 (23:40 +0000)]
Signed vs. unsigned conflict

13 years agoThere was a problem with too long command lines, so I rebuilt to make
Richard Levitte [Thu, 25 May 2006 23:37:03 +0000 (23:37 +0000)]
There was a problem with too long command lines, so I rebuilt to make
it work better.

13 years agoAllow any supported cipher to be used with smime -encrypt.
Dr. Stephen Henson [Thu, 25 May 2006 16:53:52 +0000 (16:53 +0000)]
Allow any supported cipher to be used with smime -encrypt.

13 years agoAdd prototypes, update Win32 ordinals.
Dr. Stephen Henson [Thu, 25 May 2006 11:44:05 +0000 (11:44 +0000)]
Add prototypes, update Win32 ordinals.

13 years agoKeep in sync with Unix
Richard Levitte [Thu, 25 May 2006 10:40:01 +0000 (10:40 +0000)]
Keep in sync with Unix

13 years agoUpdate EVP_MD_CTX_copy_ex() to use EVP_PKEY_CTX_dup().
Dr. Stephen Henson [Thu, 25 May 2006 00:55:00 +0000 (00:55 +0000)]
Update EVP_MD_CTX_copy_ex() to use EVP_PKEY_CTX_dup().

13 years agoNew function to dup EVP_PKEY_CTX. This will be needed to make new signing
Dr. Stephen Henson [Wed, 24 May 2006 23:49:30 +0000 (23:49 +0000)]
New function to dup EVP_PKEY_CTX. This will be needed to make new signing
functions and EVP_MD_CTX_copy work properly.

13 years agoNew functions for enchanced digest sign/verify.
Dr. Stephen Henson [Wed, 24 May 2006 17:30:09 +0000 (17:30 +0000)]
New functions for enchanced digest sign/verify.

13 years agoFix warnings.
Dr. Stephen Henson [Wed, 24 May 2006 13:29:32 +0000 (13:29 +0000)]
Fix warnings.

13 years agoUse size_t for new crypto size parameters.
Dr. Stephen Henson [Wed, 24 May 2006 12:33:46 +0000 (12:33 +0000)]
Use size_t for new crypto size parameters.

13 years agoFix smime -pk7out.
Dr. Stephen Henson [Mon, 22 May 2006 13:37:16 +0000 (13:37 +0000)]
Fix smime -pk7out.

13 years agoAdd ctrl to EVP_MD and EVP_PKEY_CTX to EVP_MD_CTX. These will be used
Dr. Stephen Henson [Mon, 22 May 2006 13:01:01 +0000 (13:01 +0000)]
Add ctrl to EVP_MD and EVP_PKEY_CTX to EVP_MD_CTX. These will be used
for enhanced sign/verify operations.

13 years agoTiny up hpux targets.
Andy Polyakov [Sat, 20 May 2006 08:52:34 +0000 (08:52 +0000)]
Tiny up hpux targets.

13 years agoAdd -resign and -md options to smime command to support resigning an
Dr. Stephen Henson [Thu, 18 May 2006 23:44:44 +0000 (23:44 +0000)]
Add -resign and -md options to smime command to support resigning an
existing structure and using alternative digest for signing.

13 years agoCode tidy.
Dr. Stephen Henson [Thu, 18 May 2006 18:06:03 +0000 (18:06 +0000)]
Code tidy.

13 years agoTypo.
Dr. Stephen Henson [Thu, 18 May 2006 17:46:56 +0000 (17:46 +0000)]
Typo.

13 years agomake update
Dr. Stephen Henson [Thu, 18 May 2006 17:22:31 +0000 (17:22 +0000)]
make update

13 years agoMore S/MIME tidy. Place some common attribute operations in utility
Dr. Stephen Henson [Thu, 18 May 2006 17:20:23 +0000 (17:20 +0000)]
More S/MIME tidy. Place some common attribute operations in utility
functions.

13 years agoRemove old digest type hacks for non RSA keys.
Dr. Stephen Henson [Thu, 18 May 2006 13:05:20 +0000 (13:05 +0000)]
Remove old digest type hacks for non RSA keys.

13 years agoMultiple signer support in smime application.
Dr. Stephen Henson [Thu, 18 May 2006 12:41:28 +0000 (12:41 +0000)]
Multiple signer support in smime application.

13 years agoReformat smime.c utility.
Dr. Stephen Henson [Thu, 18 May 2006 11:54:16 +0000 (11:54 +0000)]
Reformat smime.c utility.

13 years agoNew option to pkcs12 utility to set alternative MAC digest algorithm.
Dr. Stephen Henson [Wed, 17 May 2006 18:46:22 +0000 (18:46 +0000)]
New option to pkcs12 utility to set alternative MAC digest algorithm.

13 years agoDon't try to print PBE information if it can't be decoded.
Dr. Stephen Henson [Wed, 17 May 2006 18:24:35 +0000 (18:24 +0000)]
Don't try to print PBE information if it can't be decoded.

13 years agoPKCS#12 mac key length should equal digest length.
Dr. Stephen Henson [Wed, 17 May 2006 18:19:51 +0000 (18:19 +0000)]
PKCS#12 mac key length should equal digest length.

13 years agoTidy up of S/MIME code and add new functions which will make is easier
Dr. Stephen Henson [Wed, 17 May 2006 17:17:01 +0000 (17:17 +0000)]
Tidy up of S/MIME code and add new functions which will make is easier
to create S/MIME signed data with multiple signers.

13 years agoExtended PBES2 function supporting application supplied IV and PRF NID.
Dr. Stephen Henson [Wed, 17 May 2006 12:47:17 +0000 (12:47 +0000)]
Extended PBES2 function supporting application supplied IV and PRF NID.

13 years agoOops...
Dr. Stephen Henson [Wed, 17 May 2006 12:29:16 +0000 (12:29 +0000)]
Oops...

13 years agoHMAC OIDs from RFC4231.
Dr. Stephen Henson [Wed, 17 May 2006 12:27:45 +0000 (12:27 +0000)]
HMAC OIDs from RFC4231.

13 years agoGather keygen options in req and only use them after all other options have
Dr. Stephen Henson [Tue, 16 May 2006 12:11:14 +0000 (12:11 +0000)]
Gather keygen options in req and only use them after all other options have
been processed. This allows any ENGINE changing operations to be processed
first (for example a config file).

13 years agoAdd PRF preference ctrl to ciphers.
Dr. Stephen Henson [Mon, 15 May 2006 18:35:13 +0000 (18:35 +0000)]
Add PRF preference ctrl to ciphers.

13 years agoChange builting PBE to use static table. Add entries for HMAC and MD5, GOST.
Dr. Stephen Henson [Mon, 15 May 2006 17:34:36 +0000 (17:34 +0000)]
Change builting PBE to use static table. Add entries for HMAC and MD5, GOST.

13 years agoUpdate old **EVIL** PEM_X509_INFO_read_bio() function to correctly assign
Dr. Stephen Henson [Mon, 15 May 2006 13:28:00 +0000 (13:28 +0000)]
Update old **EVIL** PEM_X509_INFO_read_bio() function to correctly assign
private keys.

FIXME: this function should really be rewritten because it is *horrible*.

13 years agoBugfix: the NONE string for PBE algorithms wasn't working.
Dr. Stephen Henson [Mon, 15 May 2006 13:23:15 +0000 (13:23 +0000)]
Bugfix: the NONE string for PBE algorithms wasn't working.

13 years agoCorrectly handle missing DSA parameters.
Dr. Stephen Henson [Mon, 15 May 2006 01:26:52 +0000 (01:26 +0000)]
Correctly handle missing DSA parameters.

13 years agoAdd feature to PKCS12_create() if the encryption NID corresponds to a
Dr. Stephen Henson [Mon, 15 May 2006 00:45:10 +0000 (00:45 +0000)]
Add feature to PKCS12_create() if the encryption NID corresponds to a
supported encryption algorithm instead of a PBE NID then use that
algorithm with PBES2.

13 years agoExtend PBE code to support non default PKCS#5 v2.0 PRFs.
Dr. Stephen Henson [Sun, 14 May 2006 18:40:53 +0000 (18:40 +0000)]
Extend PBE code to support non default PKCS#5 v2.0 PRFs.

13 years agoCheck for deprecated private key types before PKCS#8 types.
Dr. Stephen Henson [Sun, 14 May 2006 18:35:42 +0000 (18:35 +0000)]
Check for deprecated private key types before PKCS#8 types.

13 years agoTypo.
Dr. Stephen Henson [Sun, 14 May 2006 16:50:22 +0000 (16:50 +0000)]
Typo.

13 years agoAdd includes in synopsis.
Ulf Möller [Sun, 14 May 2006 11:28:00 +0000 (11:28 +0000)]
Add includes in synopsis.
Submitted by: Mike Frysinger <vapier@gentoo.org>

13 years agoIn interactive mode only config OpenSSL once.
Dr. Stephen Henson [Fri, 12 May 2006 17:11:58 +0000 (17:11 +0000)]
In interactive mode only config OpenSSL once.

13 years agoStop warnings about deprecated -mcpu option.
Dr. Stephen Henson [Fri, 12 May 2006 16:06:12 +0000 (16:06 +0000)]
Stop warnings about deprecated -mcpu option.

13 years agomake update
Richard Levitte [Fri, 12 May 2006 15:31:28 +0000 (15:31 +0000)]
make update

13 years agoSomeone made a mistake, and some function and reason codes got
Richard Levitte [Fri, 12 May 2006 15:27:52 +0000 (15:27 +0000)]
Someone made a mistake, and some function and reason codes got
duplicate numbers.  Renumbering.

13 years agoTypo.
Dr. Stephen Henson [Fri, 12 May 2006 00:27:39 +0000 (00:27 +0000)]
Typo.

13 years agoUpdate 'req' command to use new keygen API.
Dr. Stephen Henson [Thu, 11 May 2006 21:39:00 +0000 (21:39 +0000)]
Update 'req' command to use new keygen API.

13 years agoNew functions to get key types without dereferncing EVP_PKEY.
Dr. Stephen Henson [Thu, 11 May 2006 21:33:00 +0000 (21:33 +0000)]
New functions to get key types without dereferncing EVP_PKEY.

More error checking for RSA pmeth.

13 years agoUpdate PKCS#7 decrypt routines to use new API.
Dr. Stephen Henson [Mon, 8 May 2006 16:38:19 +0000 (16:38 +0000)]
Update PKCS#7 decrypt routines to use new API.

13 years agoUpdate PKCS#7 enveloped data to new API.
Dr. Stephen Henson [Mon, 8 May 2006 12:44:25 +0000 (12:44 +0000)]
Update PKCS#7 enveloped data to new API.

13 years agoUpdate S/MIME code to use default digest.
Dr. Stephen Henson [Sun, 7 May 2006 17:22:58 +0000 (17:22 +0000)]
Update S/MIME code to use default digest.

13 years agoAdd support for default public key digest type ctrl.
Dr. Stephen Henson [Sun, 7 May 2006 17:09:39 +0000 (17:09 +0000)]
Add support for default public key digest type ctrl.

13 years agoFix from stable branch.
Dr. Stephen Henson [Sun, 7 May 2006 12:30:37 +0000 (12:30 +0000)]
Fix from stable branch.

13 years agobug fix.
Ulf Möller [Sat, 6 May 2006 18:26:12 +0000 (18:26 +0000)]
bug fix.
PR: 1326
Submitted by: John Skodon

13 years agoFuther minor PPC assembler update.
Andy Polyakov [Thu, 4 May 2006 21:30:41 +0000 (21:30 +0000)]
Futher minor PPC assembler update.

13 years agoUpdate from stable branch.
Dr. Stephen Henson [Thu, 4 May 2006 16:32:31 +0000 (16:32 +0000)]
Update from stable branch.

13 years agoUpdate FAQ.
Dr. Stephen Henson [Thu, 4 May 2006 14:22:00 +0000 (14:22 +0000)]
Update FAQ.

13 years agoMinor PPC assembler updates.
Andy Polyakov [Wed, 3 May 2006 14:07:34 +0000 (14:07 +0000)]
Minor PPC assembler updates.

13 years agoPPC assembler distiller update.
Andy Polyakov [Wed, 3 May 2006 13:39:34 +0000 (13:39 +0000)]
PPC assembler distiller update.

13 years agoTypo in linux-ppc line.
Andy Polyakov [Wed, 3 May 2006 13:38:50 +0000 (13:38 +0000)]
Typo in linux-ppc line.

13 years agoUpdate from stable branch.
Dr. Stephen Henson [Wed, 3 May 2006 13:19:06 +0000 (13:19 +0000)]
Update from stable branch.

13 years agoBug fix.
Ulf Möller [Mon, 1 May 2006 18:49:26 +0000 (18:49 +0000)]
Bug fix.

PR: 1307
Submitted by: Oliver Tappe <zooey@hirschkaefer.de>

13 years agoSHA1 for PowerPC.
Andy Polyakov [Mon, 1 May 2006 13:35:03 +0000 (13:35 +0000)]
SHA1 for PowerPC.

13 years agoYet another "teaser" Montgomery multiplication module, for PowerPC.
Andy Polyakov [Sun, 30 Apr 2006 21:15:29 +0000 (21:15 +0000)]
Yet another "teaser" Montgomery multiplication module, for PowerPC.

13 years agoUpdate EVP_PKEY_cmp() and X509_check_private() to return sensible values and
Dr. Stephen Henson [Fri, 28 Apr 2006 12:27:37 +0000 (12:27 +0000)]
Update EVP_PKEY_cmp() and X509_check_private() to return sensible values and
handle unsupported key types.

13 years agoFix from stable branch.
Dr. Stephen Henson [Fri, 28 Apr 2006 00:30:49 +0000 (00:30 +0000)]
Fix from stable branch.

13 years agoReplace RSA specific PKCS7_RECIP_INFO set up with an public key algorithm
Dr. Stephen Henson [Thu, 27 Apr 2006 18:20:34 +0000 (18:20 +0000)]
Replace RSA specific PKCS7_RECIP_INFO set up with an public key algorithm
ctrl.

13 years agoCode tidy.
Dr. Stephen Henson [Thu, 27 Apr 2006 00:42:51 +0000 (00:42 +0000)]
Code tidy.

13 years agoNew function to extract AlgorithmIdentifier for PKCS7_RECIP_INFO.
Dr. Stephen Henson [Thu, 27 Apr 2006 00:29:50 +0000 (00:29 +0000)]
New function to extract AlgorithmIdentifier for PKCS7_RECIP_INFO.

13 years agoDon't free up parameter. The public key ASN1 method can do that if it needs
Dr. Stephen Henson [Thu, 27 Apr 2006 00:20:43 +0000 (00:20 +0000)]
Don't free up parameter. The public key ASN1 method can do that if it needs
to.

13 years agoFix usage message for pkeyutl.
Dr. Stephen Henson [Wed, 26 Apr 2006 15:42:29 +0000 (15:42 +0000)]
Fix usage message for pkeyutl.

13 years agoAdd prototypes and pkey accessor function for EVP_PKEY_CTX.
Dr. Stephen Henson [Wed, 26 Apr 2006 11:52:36 +0000 (11:52 +0000)]
Add prototypes and pkey accessor function for EVP_PKEY_CTX.

13 years agoCorrect copyright notice... this doesn't contain any SSLeay code.
Dr. Stephen Henson [Mon, 24 Apr 2006 00:07:26 +0000 (00:07 +0000)]
Correct copyright notice... this doesn't contain any SSLeay code.

13 years agoAdd 'flags' parameter to EVP_PKEY_asn1_meth_new() to set algorithm flags.
Dr. Stephen Henson [Fri, 21 Apr 2006 17:38:58 +0000 (17:38 +0000)]
Add 'flags' parameter to EVP_PKEY_asn1_meth_new() to set algorithm flags.

13 years agoundo accidental commit
Nils Larsch [Thu, 20 Apr 2006 13:54:34 +0000 (13:54 +0000)]
undo accidental commit

13 years agoas we encrypt every bit separately we need to loop through the number
Nils Larsch [Thu, 20 Apr 2006 13:11:52 +0000 (13:11 +0000)]
as we encrypt every bit separately we need to loop through the number
of bits; thanks to Michael McDougall <mmcdouga@saul.cis.upenn.edu>

PR: 1318

13 years agomake local function static
Nils Larsch [Thu, 20 Apr 2006 09:53:49 +0000 (09:53 +0000)]
make local function static

13 years agoRemove dss1 hack from S/MIME code.
Dr. Stephen Henson [Wed, 19 Apr 2006 17:47:15 +0000 (17:47 +0000)]
Remove dss1 hack from S/MIME code.

13 years agoRemove link between digests and signature algorithms.
Dr. Stephen Henson [Wed, 19 Apr 2006 17:05:59 +0000 (17:05 +0000)]
Remove link between digests and signature algorithms.

Use cross reference table in ASN1_item_sign(), ASN1_item_verify() to eliminate
the need for algorithm specific code.

13 years agoRemove comment from SSLeay days about EVP_PKEY_METHOD.
Dr. Stephen Henson [Wed, 19 Apr 2006 12:16:58 +0000 (12:16 +0000)]
Remove comment from SSLeay days about EVP_PKEY_METHOD.

13 years agoMake sure obj_xref.h is updated during a "make update"
Richard Levitte [Wed, 19 Apr 2006 06:45:06 +0000 (06:45 +0000)]
Make sure obj_xref.h is updated during a "make update"

13 years agoSynchronise with Unixly build.
Richard Levitte [Wed, 19 Apr 2006 06:44:07 +0000 (06:44 +0000)]
Synchronise with Unixly build.
(Geez, a lot is happening right now, eh? :-))

13 years agoAdd OID cross reference table.
Dr. Stephen Henson [Tue, 18 Apr 2006 23:36:07 +0000 (23:36 +0000)]
Add OID cross reference table.

Fix some typos in GOST OIDs.

Update dependencies.

13 years agoSynchronise
Richard Levitte [Mon, 17 Apr 2006 17:19:59 +0000 (17:19 +0000)]
Synchronise

13 years agoAllow public key ASN1 methods to set PKCS#7 SignerInfo structures.
Dr. Stephen Henson [Mon, 17 Apr 2006 17:12:23 +0000 (17:12 +0000)]
Allow public key ASN1 methods to set PKCS#7 SignerInfo structures.

13 years agoIf we include winsock2.h then FD_SET wants an unsigned type for an fd.
Dr. Stephen Henson [Mon, 17 Apr 2006 12:22:13 +0000 (12:22 +0000)]
If we include winsock2.h then FD_SET wants an unsigned type for an fd.

13 years agoFix (most) WIN32 warnings and errors.
Dr. Stephen Henson [Mon, 17 Apr 2006 12:08:22 +0000 (12:08 +0000)]
Fix (most) WIN32 warnings and errors.

13 years agoProvisional support for EC pkey method, supporting ECDH and ECDSA.
Dr. Stephen Henson [Sun, 16 Apr 2006 16:15:59 +0000 (16:15 +0000)]
Provisional support for EC pkey method, supporting ECDH and ECDSA.

13 years agoSHA-1 for x86_64.
Andy Polyakov [Sun, 16 Apr 2006 14:42:54 +0000 (14:42 +0000)]
SHA-1 for x86_64.

13 years agoUse more flexible method of determining output length, by setting &outlen
Dr. Stephen Henson [Sat, 15 Apr 2006 18:50:56 +0000 (18:50 +0000)]
Use more flexible method of determining output length, by setting &outlen
value of the passed output buffer is NULL.

The old method of using EVP_PKEY_size(pkey) isn't flexible enough to cover all
cases where the output length may depend on the operation or the parameters
associated with it.

13 years agoFix from 0.9.7-stable branch.
Dr. Stephen Henson [Sat, 15 Apr 2006 17:43:43 +0000 (17:43 +0000)]
Fix from 0.9.7-stable branch.

13 years agoRevert to original...
Dr. Stephen Henson [Sat, 15 Apr 2006 13:15:25 +0000 (13:15 +0000)]
Revert to original...

13 years agoOops...
Dr. Stephen Henson [Sat, 15 Apr 2006 13:12:42 +0000 (13:12 +0000)]
Oops...

13 years agoIf cipher list contains a match for an explicit ciphersuite only match that
Dr. Stephen Henson [Sat, 15 Apr 2006 00:22:05 +0000 (00:22 +0000)]
If cipher list contains a match for an explicit ciphersuite only match that
one suite.

13 years agoGot sick and tired of duplicating... Too error-prone (i.e. I forget
Richard Levitte [Fri, 14 Apr 2006 19:56:28 +0000 (19:56 +0000)]
Got sick and tired of duplicating...  Too error-prone (i.e. I forget
to update both...)!

13 years agoUpdate copyright notices on a few files where all original SSLeay code has
Dr. Stephen Henson [Fri, 14 Apr 2006 17:36:18 +0000 (17:36 +0000)]
Update copyright notices on a few files where all original SSLeay code has
been deleted.

13 years agoPrint out zero length string properly.
Dr. Stephen Henson [Fri, 14 Apr 2006 16:47:18 +0000 (16:47 +0000)]
Print out zero length string properly.

13 years agoAdd functions to allow setting and adding external EVP_PKEY_METHOD.
Dr. Stephen Henson [Fri, 14 Apr 2006 12:41:35 +0000 (12:41 +0000)]
Add functions to allow setting and adding external EVP_PKEY_METHOD.

13 years agoComplete key derivation support.
Dr. Stephen Henson [Thu, 13 Apr 2006 20:16:56 +0000 (20:16 +0000)]
Complete key derivation support.

13 years agoUpdate dependencies.
Dr. Stephen Henson [Thu, 13 Apr 2006 13:00:45 +0000 (13:00 +0000)]
Update dependencies.

13 years agoAdd key derivation support.
Dr. Stephen Henson [Thu, 13 Apr 2006 12:56:41 +0000 (12:56 +0000)]
Add key derivation support.

13 years agoChange the option setting command line switch to "-pkeyopt" to avoid confusion
Dr. Stephen Henson [Thu, 13 Apr 2006 12:38:46 +0000 (12:38 +0000)]
Change the option setting command line switch to "-pkeyopt" to avoid confusion
with algorithm parameters.