openssl.git
11 years agoAdd Camellia assembler x86 and x86_64 modules.
Andy Polyakov [Wed, 3 Dec 2008 09:22:51 +0000 (09:22 +0000)]
Add Camellia assembler x86 and x86_64 modules.

11 years agoexperimental-foo support for mk1mf.pl.
Bodo Möller [Tue, 2 Dec 2008 23:50:22 +0000 (23:50 +0000)]
experimental-foo support for mk1mf.pl.

11 years agoImplement Configure option pattern "experimental-foo"
Bodo Möller [Tue, 2 Dec 2008 01:21:39 +0000 (01:21 +0000)]
Implement Configure option pattern "experimental-foo"
(specifically, "experimental-jpake").

11 years agoDon't stop -cipher from working.
Dr. Stephen Henson [Sun, 30 Nov 2008 22:01:31 +0000 (22:01 +0000)]
Don't stop -cipher from working.

11 years agoUpdate from stable branch.
Dr. Stephen Henson [Sun, 30 Nov 2008 16:09:04 +0000 (16:09 +0000)]
Update from stable branch.

11 years agoFix compilation with -DOPENSSL_NO_DEPRECATED.
Geoff Thorpe [Fri, 28 Nov 2008 22:06:55 +0000 (22:06 +0000)]
Fix compilation with -DOPENSSL_NO_DEPRECATED.

11 years agoClarify a 'chil' engine param that is a little unintuitive.
Geoff Thorpe [Fri, 28 Nov 2008 22:04:49 +0000 (22:04 +0000)]
Clarify a 'chil' engine param that is a little unintuitive.

Submitted by: Sander Temme <sander@temme.net>

11 years agoUpdate libeay.num
Dr. Stephen Henson [Mon, 24 Nov 2008 17:46:29 +0000 (17:46 +0000)]
Update libeay.num

11 years agoStop warning about different const qualifiers.
Dr. Stephen Henson [Mon, 24 Nov 2008 17:39:42 +0000 (17:39 +0000)]
Stop warning about different const qualifiers.

11 years agoUpdate from stable-branch.
Dr. Stephen Henson [Mon, 24 Nov 2008 17:27:08 +0000 (17:27 +0000)]
Update from stable-branch.

11 years agoSet memory BIOs up properly when stripping text headers from S/MIME messages.
Dr. Stephen Henson [Fri, 21 Nov 2008 18:18:13 +0000 (18:18 +0000)]
Set memory BIOs up properly when stripping text headers from S/MIME messages.

11 years agoAllow the CHIL engine to load even if dynamic locks aren't registered.
Geoff Thorpe [Wed, 19 Nov 2008 14:21:27 +0000 (14:21 +0000)]
Allow the CHIL engine to load even if dynamic locks aren't registered.

Submitted by: Sander Temme

11 years agoIntegrate J-PAKE and TLS-PSK. Increase PSK buffer size. Fix memory leaks.
Ben Laurie [Sun, 16 Nov 2008 12:47:12 +0000 (12:47 +0000)]
Integrate J-PAKE and TLS-PSK. Increase PSK buffer size. Fix memory leaks.

11 years agoIgnore generated ASM.
Ben Laurie [Sun, 16 Nov 2008 12:32:14 +0000 (12:32 +0000)]
Ignore generated ASM.

11 years agoDon't disable JPAKE by default in head...
Dr. Stephen Henson [Sat, 15 Nov 2008 17:36:49 +0000 (17:36 +0000)]
Don't disable JPAKE by default in head...

11 years agoPR: 1574
Dr. Stephen Henson [Sat, 15 Nov 2008 17:18:12 +0000 (17:18 +0000)]
PR: 1574
Submitted by: Jouni Malinen <j@w1.fi>
Approved by: steve@openssl.org

Ticket override support for EAP-FAST.

11 years agox86_64-xlate.pl update, engage x86_64 assembler in mingw64.
Andy Polyakov [Fri, 14 Nov 2008 16:40:37 +0000 (16:40 +0000)]
x86_64-xlate.pl update, engage x86_64 assembler in mingw64.

11 years agowarnings (mostly)
Bodo Möller [Fri, 14 Nov 2008 00:22:02 +0000 (00:22 +0000)]
warnings (mostly)

11 years agoAftermath of a clashing size_t fix (now only format changes).
Ben Laurie [Thu, 13 Nov 2008 09:48:47 +0000 (09:48 +0000)]
Aftermath of a clashing size_t fix (now only format changes).

11 years agoIgnore saved Makefile.
Ben Laurie [Thu, 13 Nov 2008 09:31:37 +0000 (09:31 +0000)]
Ignore saved Makefile.

11 years agoJ-PAKE is not experimental in HEAD.
Ben Laurie [Thu, 13 Nov 2008 09:31:08 +0000 (09:31 +0000)]
J-PAKE is not experimental in HEAD.

11 years agoOops...
Dr. Stephen Henson [Wed, 12 Nov 2008 19:02:25 +0000 (19:02 +0000)]
Oops...

11 years agomk1mf.pl update from stable branch.
Dr. Stephen Henson [Wed, 12 Nov 2008 18:52:58 +0000 (18:52 +0000)]
mk1mf.pl update from stable branch.

11 years agoRevert another size_t change.
Dr. Stephen Henson [Wed, 12 Nov 2008 18:47:24 +0000 (18:47 +0000)]
Revert another size_t change.

11 years agoUpdate from stable branch.
Dr. Stephen Henson [Wed, 12 Nov 2008 17:28:18 +0000 (17:28 +0000)]
Update from stable branch.

11 years agoReinstate camellia header fix patch.
Dr. Stephen Henson [Wed, 12 Nov 2008 17:02:40 +0000 (17:02 +0000)]
Reinstate camellia header fix patch.

11 years agoConfigure update: clean-ups and most notably engage x86_64 assembler
Andy Polyakov [Wed, 12 Nov 2008 08:21:20 +0000 (08:21 +0000)]
Configure update: clean-ups and most notably engage x86_64 assembler
on MacOS X.

11 years agoUpdate make rules for x86_64 assembler pack.
Andy Polyakov [Wed, 12 Nov 2008 08:19:04 +0000 (08:19 +0000)]
Update make rules for x86_64 assembler pack.

11 years agox86_64 assembler pack to comply with updated styling x86_64-xlate.pl rules.
Andy Polyakov [Wed, 12 Nov 2008 08:15:52 +0000 (08:15 +0000)]
x86_64 assembler pack to comply with updated styling x86_64-xlate.pl rules.

11 years agox86_64-xlate.pl to support MacOS X and mingw64.
Andy Polyakov [Wed, 12 Nov 2008 08:05:58 +0000 (08:05 +0000)]
x86_64-xlate.pl to support MacOS X and mingw64.

11 years agoRevert commit #17603, it should have been part of #17617.
Andy Polyakov [Wed, 12 Nov 2008 07:27:36 +0000 (07:27 +0000)]
Revert commit #17603, it should have been part of #17617.

11 years agoRevert the size_t modifications from HEAD that had led to more
Geoff Thorpe [Wed, 12 Nov 2008 03:58:08 +0000 (03:58 +0000)]
Revert the size_t modifications from HEAD that had led to more
knock-on work than expected - they've been extracted into a patch
series that can be completed elsewhere, or in a different branch,
before merging back to HEAD.

11 years agoTolerate -----BEGIN PKCS #7 SIGNED DATA----- header lines as used by some
Dr. Stephen Henson [Tue, 11 Nov 2008 12:38:25 +0000 (12:38 +0000)]
Tolerate -----BEGIN PKCS #7 SIGNED DATA----- header lines as used by some
implementations.

11 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 11 Nov 2008 12:23:18 +0000 (12:23 +0000)]
Update from stable branch.

11 years agoUpdate from stable branch.
Dr. Stephen Henson [Tue, 11 Nov 2008 10:17:54 +0000 (10:17 +0000)]
Update from stable branch.

11 years agosymbol deobnoxification
Bodo Möller [Tue, 11 Nov 2008 07:08:59 +0000 (07:08 +0000)]
symbol deobnoxification

11 years agoMake -DKSSL_DEBUG work again.
Dr. Stephen Henson [Mon, 10 Nov 2008 19:08:37 +0000 (19:08 +0000)]
Make -DKSSL_DEBUG work again.

11 years agoClarify (non-)blocking behavior of EGD socket interface used by RAND_egd().
Lutz Jänicke [Mon, 10 Nov 2008 11:26:44 +0000 (11:26 +0000)]
Clarify (non-)blocking behavior of EGD socket interface used by RAND_egd().

11 years agoPR: 1777
Dr. Stephen Henson [Wed, 5 Nov 2008 23:14:32 +0000 (23:14 +0000)]
PR: 1777
Submitted by: "Alon Bar-Lev" <alon.barlev@gmail.com>
Approved by: steve@openssl.org

Fix some size_t issues.

11 years agoUpdate obsolete email address...
Dr. Stephen Henson [Wed, 5 Nov 2008 18:39:08 +0000 (18:39 +0000)]
Update obsolete email address...

11 years agoDon't use clobbered 'i' for checking UTCTime and GeneralizedTime length.
Dr. Stephen Henson [Wed, 5 Nov 2008 18:28:24 +0000 (18:28 +0000)]
Don't use clobbered 'i' for checking UTCTime and GeneralizedTime length.

11 years agoOnly one of these needs to be signed.
Ben Laurie [Tue, 4 Nov 2008 15:16:23 +0000 (15:16 +0000)]
Only one of these needs to be signed.

11 years agoFormatting.
Ben Laurie [Tue, 4 Nov 2008 12:06:09 +0000 (12:06 +0000)]
Formatting.

11 years agoAdd initial support for mingw64.
Andy Polyakov [Mon, 3 Nov 2008 21:15:07 +0000 (21:15 +0000)]
Add initial support for mingw64.
PR: 1693
Submitted by: Alon Bar-Lev

11 years agoMinor perlasm updates.
Andy Polyakov [Mon, 3 Nov 2008 08:46:07 +0000 (08:46 +0000)]
Minor perlasm updates.

11 years agoNot sure about this one... seems to be needed to make 64 bit release
Dr. Stephen Henson [Sun, 2 Nov 2008 18:29:27 +0000 (18:29 +0000)]
Not sure about this one... seems to be needed to make 64 bit release
builds work properly...

11 years agoFix prototypes.
Dr. Stephen Henson [Sun, 2 Nov 2008 18:12:36 +0000 (18:12 +0000)]
Fix prototypes.

11 years agoUse stddef.h to pick up size_t def.
Dr. Stephen Henson [Sun, 2 Nov 2008 16:56:13 +0000 (16:56 +0000)]
Use stddef.h to pick up size_t def.

11 years agoFix prototypes.
Dr. Stephen Henson [Sun, 2 Nov 2008 16:13:19 +0000 (16:13 +0000)]
Fix prototypes.

11 years agoUpdate HMAC functions to return an error where relevant.
Dr. Stephen Henson [Sun, 2 Nov 2008 16:00:39 +0000 (16:00 +0000)]
Update HMAC functions to return an error where relevant.

11 years agoFix warnings: printf format mismatches on 64 bit platforms.
Dr. Stephen Henson [Sun, 2 Nov 2008 15:41:30 +0000 (15:41 +0000)]
Fix warnings: printf format mismatches on 64 bit platforms.
Change assert to OPENSSL_assert().
Fix e_padlock prototype.

11 years agoFix asserts. Fix incorrect dependency.
Ben Laurie [Sun, 2 Nov 2008 13:15:06 +0000 (13:15 +0000)]
Fix asserts. Fix incorrect dependency.

11 years agoFix warnings about mismatched prototypes, undefined size_t and value computed
Dr. Stephen Henson [Sun, 2 Nov 2008 12:50:48 +0000 (12:50 +0000)]
Fix warnings about mismatched prototypes, undefined size_t and value computed
not used.

11 years agoFix warnings.
Ben Laurie [Sun, 2 Nov 2008 09:22:29 +0000 (09:22 +0000)]
Fix warnings.

11 years agoFix warning.
Ben Laurie [Sun, 2 Nov 2008 09:00:25 +0000 (09:00 +0000)]
Fix warning.

11 years agoFix bss_log.c on Windows.
Andy Polyakov [Sat, 1 Nov 2008 21:09:54 +0000 (21:09 +0000)]
Fix bss_log.c on Windows.

11 years agoMore size_tification.
Ben Laurie [Sat, 1 Nov 2008 16:40:37 +0000 (16:40 +0000)]
More size_tification.

11 years agosize_tification.
Ben Laurie [Sat, 1 Nov 2008 14:37:00 +0000 (14:37 +0000)]
size_tification.

11 years agoFix SHA512 and optimize BN for mingw64.
Andy Polyakov [Sat, 1 Nov 2008 12:46:18 +0000 (12:46 +0000)]
Fix SHA512 and optimize BN for mingw64.

11 years agoFix warnings after commit#17578.
Andy Polyakov [Fri, 31 Oct 2008 20:20:54 +0000 (20:20 +0000)]
Fix warnings after commit#17578.

11 years agosize_t-fy EVP_CIPHER. Note that being size_t-fied it doesn't require
Andy Polyakov [Fri, 31 Oct 2008 19:48:25 +0000 (19:48 +0000)]
size_t-fy EVP_CIPHER. Note that being size_t-fied it doesn't require
underlying cipher to be size_t-fied, it allows for size_t, signed and
unsigned long. It maintains source and even binary compatibility.

11 years agosize_t-fy AES, Camellia and RC4.
Andy Polyakov [Fri, 31 Oct 2008 19:30:11 +0000 (19:30 +0000)]
size_t-fy AES, Camellia and RC4.

11 years agoAdd install target to crypto/jpake/Makefile
Dr. Stephen Henson [Fri, 31 Oct 2008 12:06:25 +0000 (12:06 +0000)]
Add install target to crypto/jpake/Makefile

11 years agoFix warning.
Ben Laurie [Wed, 29 Oct 2008 05:10:09 +0000 (05:10 +0000)]
Fix warning.

11 years agorandfile.c: .rnd can become orphaned on VMS.
Andy Polyakov [Tue, 28 Oct 2008 16:25:47 +0000 (16:25 +0000)]
randfile.c: .rnd can become orphaned on VMS.

Submitted by: David North

11 years ago.cvsignore update: ignore all flavors of shared objects.
Andy Polyakov [Tue, 28 Oct 2008 15:29:25 +0000 (15:29 +0000)]
.cvsignore update: ignore all flavors of shared objects.

11 years agoFix typo in ./config.
Andy Polyakov [Tue, 28 Oct 2008 15:09:06 +0000 (15:09 +0000)]
Fix typo in ./config.

Submitted by: Sander Temme

11 years agoec2_mult.c readability update.
Andy Polyakov [Tue, 28 Oct 2008 13:53:51 +0000 (13:53 +0000)]
ec2_mult.c readability update.

11 years agoMinor clean-up in bn_lib.c: constification and optimization.
Andy Polyakov [Tue, 28 Oct 2008 13:52:51 +0000 (13:52 +0000)]
Minor clean-up in bn_lib.c: constification and optimization.

11 years agoFix crash in BN_rshift.
Andy Polyakov [Tue, 28 Oct 2008 13:46:14 +0000 (13:46 +0000)]
Fix crash in BN_rshift.
PR: 1663

11 years agoHarmonize Camellia API with version 1.x.
Andy Polyakov [Tue, 28 Oct 2008 12:13:52 +0000 (12:13 +0000)]
Harmonize Camellia API with version 1.x.

11 years agoCamellia update. Quoting camellia.c:
Andy Polyakov [Tue, 28 Oct 2008 08:47:24 +0000 (08:47 +0000)]
Camellia update. Quoting camellia.c:

/*
 * This release balances code size and performance. In particular key
 * schedule setup is fully unrolled, because doing so *significantly*
 * reduces amount of instructions per setup round and code increase is
 * justifiable. In block functions on the other hand only inner loops
 * are unrolled, as full unroll gives only nominal performance boost,
 * while code size grows 4 or 7 times. Also, unlike previous versions
 * this one "encourages" compiler to keep intermediate variables in
 * registers, which should give better "all round" results, in other
 * words reasonable performance even with not so modern compilers.
 */

11 years agox86_64-xlate.pl update: refine SEH support.
Andy Polyakov [Tue, 28 Oct 2008 08:40:07 +0000 (08:40 +0000)]
x86_64-xlate.pl update: refine SEH support.

11 years agoWin32 fixes... add new directory to build system. Fix warnings.
Dr. Stephen Henson [Mon, 27 Oct 2008 12:31:13 +0000 (12:31 +0000)]
Win32 fixes... add new directory to build system. Fix warnings.

11 years agoFix warnings and various issues.
Dr. Stephen Henson [Mon, 27 Oct 2008 12:02:52 +0000 (12:02 +0000)]
Fix warnings and various issues.

C++ style comments.
Signed/unsigned warning in apps.c
Missing targets in jpake/Makefile

11 years agoAdd JPAKE.
Ben Laurie [Sun, 26 Oct 2008 18:40:52 +0000 (18:40 +0000)]
Add JPAKE.

11 years agoAdd support for -crlnumber option in crl utility.
Dr. Stephen Henson [Wed, 22 Oct 2008 19:54:55 +0000 (19:54 +0000)]
Add support for -crlnumber option in crl utility.

11 years agoAdd permanentIdentifier OID.
Dr. Stephen Henson [Wed, 22 Oct 2008 18:48:11 +0000 (18:48 +0000)]
Add permanentIdentifier OID.

11 years agoCreate function of the form OBJ_bsearch_xxx() in bsearch typesafe macros
Dr. Stephen Henson [Wed, 22 Oct 2008 15:43:01 +0000 (15:43 +0000)]
Create function of the form OBJ_bsearch_xxx() in bsearch typesafe macros
with the appropriate parameters which calls OBJ_bsearch(). A compiler will
typically inline this.

This avoids the need for cmp_xxx variables and fixes unchecked const issues
with CHECKED_PTR_OF()

11 years agoApparently '__top' is also risky, obfuscate further. (All this to
Geoff Thorpe [Wed, 22 Oct 2008 12:00:15 +0000 (12:00 +0000)]
Apparently '__top' is also risky, obfuscate further. (All this to
avoid inlines...)

11 years agoAllow detection of input EOF in quiet mode by adding -no_ign_eof option
Lutz Jänicke [Wed, 22 Oct 2008 06:46:14 +0000 (06:46 +0000)]
Allow detection of input EOF in quiet mode by adding -no_ign_eof option
to s_client application.
PR: #1761
Submitted by: David Woodhouse <dwmw2@infradead.org>

11 years agoUse of a 'top' var creates "shadow variable" warnings.
Geoff Thorpe [Wed, 22 Oct 2008 01:25:45 +0000 (01:25 +0000)]
Use of a 'top' var creates "shadow variable" warnings.

11 years agoReinstate obj_xref.h as it is not auto generated on all platforms.
Dr. Stephen Henson [Mon, 20 Oct 2008 15:12:48 +0000 (15:12 +0000)]
Reinstate obj_xref.h as it is not auto generated on all platforms.

11 years agoFix a shed load or warnings:
Dr. Stephen Henson [Mon, 20 Oct 2008 15:12:00 +0000 (15:12 +0000)]
Fix a shed load or warnings:

Duplicate const.
Use of ; outside function.

11 years agoAdd missing "-d" to option list of openssl version.
Lutz Jänicke [Mon, 20 Oct 2008 12:53:36 +0000 (12:53 +0000)]
Add missing "-d" to option list of openssl version.

Submitted by: Alex Chen <alex_chen@filemaker.com>

11 years agoConstification.
Ben Laurie [Sun, 19 Oct 2008 22:51:27 +0000 (22:51 +0000)]
Constification.

11 years agoFix Warning...
Dr. Stephen Henson [Sun, 19 Oct 2008 17:22:34 +0000 (17:22 +0000)]
Fix Warning...

11 years agoFix multiple ; warning.
Dr. Stephen Henson [Sat, 18 Oct 2008 15:02:59 +0000 (15:02 +0000)]
Fix multiple ; warning.

11 years agoFix warning a different way.
Ben Laurie [Sat, 18 Oct 2008 12:12:34 +0000 (12:12 +0000)]
Fix warning a different way.

11 years agoFix argument order in BN_nnmod call and implement rigorous boundary
Andy Polyakov [Thu, 16 Oct 2008 07:54:41 +0000 (07:54 +0000)]
Fix argument order in BN_nnmod call and implement rigorous boundary
condition check.

11 years agoOptimize bn_correct_top.
Andy Polyakov [Wed, 15 Oct 2008 10:48:52 +0000 (10:48 +0000)]
Optimize bn_correct_top.

11 years agoRemove redundant BN_ucmp, fix boundary condition in BN_nist_mod_224 and
Andy Polyakov [Wed, 15 Oct 2008 10:47:48 +0000 (10:47 +0000)]
Remove redundant BN_ucmp, fix boundary condition in BN_nist_mod_224 and
reimplement BN_nist_mod_521.

11 years agoSet comparison function in v3_add_canonize().
Ben Laurie [Tue, 14 Oct 2008 19:27:07 +0000 (19:27 +0000)]
Set comparison function in v3_add_canonize().

11 years agoAdd XMPP STARTTLS support.
Ben Laurie [Tue, 14 Oct 2008 19:11:26 +0000 (19:11 +0000)]
Add XMPP STARTTLS support.

11 years agoOoops... remove code accidentally commited from FIPS version.
Dr. Stephen Henson [Tue, 14 Oct 2008 15:44:14 +0000 (15:44 +0000)]
Ooops... remove code accidentally commited from FIPS version.

11 years agoAdd missing lock definitions...
Dr. Stephen Henson [Tue, 14 Oct 2008 15:24:49 +0000 (15:24 +0000)]
Add missing lock definitions...

11 years agoAdd missing lock definitions.
Dr. Stephen Henson [Tue, 14 Oct 2008 15:22:11 +0000 (15:22 +0000)]
Add missing lock definitions.

11 years agoType-safe OBJ_bsearch_ex.
Ben Laurie [Tue, 14 Oct 2008 08:10:52 +0000 (08:10 +0000)]
Type-safe OBJ_bsearch_ex.

11 years agoRemove the DTLS1_BAD_VER thing from 0.9.9-dev. It is present in 0.9.8
Lutz Jänicke [Mon, 13 Oct 2008 06:45:59 +0000 (06:45 +0000)]
Remove the DTLS1_BAD_VER thing from 0.9.9-dev. It is present in 0.9.8
but has been omitted from HEAD (0.9.9), see commit
  http://cvs.openssl.org/chngview?cn=16627
by appro.

11 years agoHalf of the commit for 0.9.8 as the bitmap handling has changed.
Lutz Jänicke [Mon, 13 Oct 2008 06:43:03 +0000 (06:43 +0000)]
Half of the commit for 0.9.8 as the bitmap handling has changed.
(Firstly... ommitted)

Secondly, it wasn't even _dropping_ the offending packets, in the
non-blocking case. It was just returning garbage instead.
PR: #1752
Submitted by: David Woodhouse <dwmw2@infradead.org>