openssl.git
8 years agomake depend
Dr. Stephen Henson [Thu, 29 Sep 2011 23:17:59 +0000 (23:17 +0000)]
make depend

8 years agoAdd FIPS selftests for ECDH algorithm.
Dr. Stephen Henson [Thu, 29 Sep 2011 23:08:23 +0000 (23:08 +0000)]
Add FIPS selftests for ECDH algorithm.

8 years agoRemove s = s * P deferral.
Dr. Stephen Henson [Thu, 29 Sep 2011 18:22:37 +0000 (18:22 +0000)]
Remove s = s * P deferral.

8 years agoCheck return codes properly.
Dr. Stephen Henson [Thu, 29 Sep 2011 16:24:00 +0000 (16:24 +0000)]
Check return codes properly.

8 years agoFix output format for DSA2 parameter generation.
Dr. Stephen Henson [Wed, 28 Sep 2011 22:35:30 +0000 (22:35 +0000)]
Fix output format for DSA2 parameter generation.

8 years agobsaes-x86_64.pl: add due credit.
Andy Polyakov [Tue, 27 Sep 2011 19:34:40 +0000 (19:34 +0000)]
bsaes-x86_64.pl: add due credit.

8 years agofix signed/unsigned warning
Dr. Stephen Henson [Mon, 26 Sep 2011 17:04:32 +0000 (17:04 +0000)]
fix signed/unsigned warning

8 years agoAdd a --disable-all option to disable all tests.
Dr. Stephen Henson [Sun, 25 Sep 2011 22:12:39 +0000 (22:12 +0000)]
Add a --disable-all option to disable all tests.

8 years agoHandle provable prime parameters for canonical g generation which are
Dr. Stephen Henson [Sun, 25 Sep 2011 22:04:43 +0000 (22:04 +0000)]
Handle provable prime parameters for canonical g generation which are
sometimes erroneously included.

8 years agoAdd bit-sliced AES x86_64 assembler, see http://homes.esat.kuleuven.be/~ekasper/...
Andy Polyakov [Sun, 25 Sep 2011 15:31:51 +0000 (15:31 +0000)]
Add bit-sliced AES x86_64 assembler, see homes.esat.kuleuven.be/~ekasper/#software for background information. It's not integrated into build system yet.

8 years agomake sure eivlen is initialised
Dr. Stephen Henson [Sat, 24 Sep 2011 23:06:20 +0000 (23:06 +0000)]
make sure eivlen is initialised

8 years agouse keyformat for -x509toreq, don't hard code PEM
Dr. Stephen Henson [Fri, 23 Sep 2011 21:48:34 +0000 (21:48 +0000)]
use keyformat for -x509toreq, don't hard code PEM

8 years agoPR: 2606
Dr. Stephen Henson [Fri, 23 Sep 2011 13:39:23 +0000 (13:39 +0000)]
PR: 2606
Submitted by: Christoph Viethen <cv@kawo2.rwth-aachen.de>
Reviewed by: steve

Handle timezones correctly in UTCTime.

8 years agoPR: 2602
Dr. Stephen Henson [Fri, 23 Sep 2011 13:34:48 +0000 (13:34 +0000)]
PR: 2602
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Fix DTLS bug which prevents manual MTU setting

8 years agoPR: 2347
Dr. Stephen Henson [Fri, 23 Sep 2011 13:12:25 +0000 (13:12 +0000)]
PR: 2347
Submitted by: Tomas Mraz <tmraz@redhat.com>
Reviewed by: steve

Fix usage message.

8 years agoRun PQGVer test before DSA2 tests.
Dr. Stephen Henson [Fri, 23 Sep 2011 01:03:37 +0000 (01:03 +0000)]
Run PQGVer test before DSA2 tests.

8 years agoTypo.
Dr. Stephen Henson [Thu, 22 Sep 2011 14:15:07 +0000 (14:15 +0000)]
Typo.

8 years agoUse function name FIPS_drbg_health_check() for health check function.
Dr. Stephen Henson [Thu, 22 Sep 2011 14:01:25 +0000 (14:01 +0000)]
Use function name FIPS_drbg_health_check() for health check function.

Add explanatory comments to health check code.

8 years agoDon't print out errors in cases where errors are expected: testing
Dr. Stephen Henson [Wed, 21 Sep 2011 18:42:12 +0000 (18:42 +0000)]
Don't print out errors in cases where errors are expected: testing
DSA parameter validity and EC public key validity.

8 years agoRemove unused variable.
Dr. Stephen Henson [Wed, 21 Sep 2011 18:36:53 +0000 (18:36 +0000)]
Remove unused variable.

8 years agoPerform health check on all reseed operations not associated with
Dr. Stephen Henson [Wed, 21 Sep 2011 18:24:12 +0000 (18:24 +0000)]
Perform health check on all reseed operations not associated with
prediction resistance requests. Although SP 800-90 is arguably unclear
on whether this is necessary adding an additional check has minimal
penalty (very few applications will make an explicit reseed request).

8 years agoRevise DRBG to split between internal and external flags.
Dr. Stephen Henson [Wed, 21 Sep 2011 17:04:56 +0000 (17:04 +0000)]
Revise DRBG to split between internal and external flags.

One demand health check function.

Perform generation test in fips_test_suite.

Option to skip dh test if fips_test_suite.

8 years agoUpdate error codes.
Dr. Stephen Henson [Wed, 21 Sep 2011 16:17:18 +0000 (16:17 +0000)]
Update error codes.

8 years agoAllow reseed interval to be set.
Dr. Stephen Henson [Sun, 18 Sep 2011 19:36:27 +0000 (19:36 +0000)]
Allow reseed interval to be set.

8 years agoMake latest assembler additions (vpaes and e_padlock) work in Windows build.
Andy Polyakov [Sun, 18 Sep 2011 15:40:11 +0000 (15:40 +0000)]
Make latest assembler additions (vpaes and e_padlock) work in Windows build.

8 years agosha256-586.pl: minor optimization, +0-2% on all CPUs, +7% on Westmere.
Andy Polyakov [Sat, 17 Sep 2011 12:57:33 +0000 (12:57 +0000)]
sha256-586.pl: minor optimization, +0-2% on all CPUs, +7% on Westmere.

8 years agosha512-x86_64.pl: +15% better performance on Westmere and incidentally Atom.
Andy Polyakov [Sat, 17 Sep 2011 11:30:28 +0000 (11:30 +0000)]
sha512-x86_64.pl: +15% better performance on Westmere and incidentally Atom.
Other Intel processors +5%, Opteron -2%.

8 years agoSync error codes with 1.0.1-stable.
Dr. Stephen Henson [Sat, 17 Sep 2011 00:17:46 +0000 (00:17 +0000)]
Sync error codes with 1.0.1-stable.

8 years agoclarify comment
Dr. Stephen Henson [Fri, 16 Sep 2011 17:40:16 +0000 (17:40 +0000)]
clarify comment

8 years agoMinor code tidy and bug fix: need to set t = s after first pass and
Dr. Stephen Henson [Fri, 16 Sep 2011 17:35:40 +0000 (17:35 +0000)]
Minor code tidy and bug fix: need to set t = s after first pass and
t and s do not need to have independent values after the first pass
so set t = s.

8 years agoDon't use vpaes in fips builds and exclude from restricted tarball.
Dr. Stephen Henson [Thu, 15 Sep 2011 21:06:37 +0000 (21:06 +0000)]
Don't use vpaes in fips builds and exclude from restricted tarball.

8 years agoIntegrate Vector Permutation AES into build system.
Andy Polyakov [Thu, 15 Sep 2011 20:22:59 +0000 (20:22 +0000)]
Integrate Vector Permutation AES into build system.

8 years agoMake HMAC kat symbols static.
Dr. Stephen Henson [Thu, 15 Sep 2011 14:28:46 +0000 (14:28 +0000)]
Make HMAC kat symbols static.

8 years agoFix warning.
Dr. Stephen Henson [Thu, 15 Sep 2011 14:08:24 +0000 (14:08 +0000)]
Fix warning.

8 years agoAllow for dynamic base in Win64 FIPS module.
Andy Polyakov [Wed, 14 Sep 2011 20:48:49 +0000 (20:48 +0000)]
Allow for dynamic base in Win64 FIPS module.

8 years agoUpdate CMAC/HMAC sefltests to use NIDs instead of function pointers.
Dr. Stephen Henson [Wed, 14 Sep 2011 15:49:50 +0000 (15:49 +0000)]
Update CMAC/HMAC sefltests to use NIDs instead of function pointers.

Simplify HMAC selftest as each test currently uses the same key and
hash data.

8 years agoRemove fipsdso target: it isn't supported in the 2.0 module.
Dr. Stephen Henson [Wed, 14 Sep 2011 15:20:59 +0000 (15:20 +0000)]
Remove fipsdso target: it isn't supported in the 2.0 module.

8 years agonew function to lookup FIPS supported ciphers by NID
Dr. Stephen Henson [Wed, 14 Sep 2011 13:25:48 +0000 (13:25 +0000)]
new function to lookup FIPS supported ciphers by NID

8 years agoMore extensive DRBG health check. New function to call health check
Dr. Stephen Henson [Mon, 12 Sep 2011 18:47:39 +0000 (18:47 +0000)]
More extensive DRBG health check. New function to call health check
for all DRBG combinations.

8 years agoCheck length of additional input in DRBG generate function.
Dr. Stephen Henson [Mon, 12 Sep 2011 18:45:05 +0000 (18:45 +0000)]
Check length of additional input in DRBG generate function.

8 years agoDelete strength parameter from FIPS_drbg_generate. It isn't very useful
Dr. Stephen Henson [Mon, 12 Sep 2011 13:20:57 +0000 (13:20 +0000)]
Delete strength parameter from FIPS_drbg_generate. It isn't very useful
(strength can be queried using FIPS_drbg_get_strength ) and adds a
substantial extra overhead to health check (need to check every combination
of parameters).

8 years agoCheck we recognise DRBG type in fips_drbgvs.c initialised DRBG_CTX if we
Dr. Stephen Henson [Mon, 12 Sep 2011 12:56:20 +0000 (12:56 +0000)]
Check we recognise DRBG type in fips_drbgvs.c initialised DRBG_CTX if we
don't set type in FIPS_drbg_new().

8 years agovpaes-x86[_64]*.pl: fix typo.
Andy Polyakov [Mon, 12 Sep 2011 12:50:00 +0000 (12:50 +0000)]
vpaes-x86[_64]*.pl: fix typo.

8 years agoAdd so called Vector Permutation AES x86[_64] assembler, see
Andy Polyakov [Mon, 12 Sep 2011 08:25:14 +0000 (08:25 +0000)]
Add so called Vector Permutation AES x86[_64] assembler, see
http://crypto.stanford.edu/vpaes/ for background information.
It's not integrated into build system yet.

8 years agoFix 3DES Monte Carlo test file output which previously outputted
Dr. Stephen Henson [Sun, 11 Sep 2011 18:05:40 +0000 (18:05 +0000)]
Fix 3DES Monte Carlo test file output which previously outputted
extra bogus lines. Update fipsalgtest.pl to tolerate the old format.

8 years agoAdd support for Dual EC DRBG from SP800-90. Include updates to algorithm
Dr. Stephen Henson [Fri, 9 Sep 2011 17:16:43 +0000 (17:16 +0000)]
Add support for Dual EC DRBG from SP800-90. Include updates to algorithm
tests and POST code.

8 years agoAdd /fixed option to linker with fips builds.
Dr. Stephen Henson [Thu, 8 Sep 2011 13:55:47 +0000 (13:55 +0000)]
Add /fixed option to linker with fips builds.

8 years agoPut quick DRBG selftest return after first generate operation.
Dr. Stephen Henson [Wed, 7 Sep 2011 10:26:38 +0000 (10:26 +0000)]
Put quick DRBG selftest return after first generate operation.

8 years agoengines/asm/e_padlock-x86_64.pl: name it right and fix small bug.
Andy Polyakov [Tue, 6 Sep 2011 22:53:34 +0000 (22:53 +0000)]
engines/asm/e_padlock-x86_64.pl: name it right and fix small bug.

8 years agoAdd error codes for DRBG KAT failures.
Dr. Stephen Henson [Tue, 6 Sep 2011 20:46:27 +0000 (20:46 +0000)]
Add error codes for DRBG KAT failures.

Add abbreviated DRBG KAT for POST which only performs a single generate
operations instead of four.

8 years agoPadlock engine: make it independent of inline assembler.
Andy Polyakov [Tue, 6 Sep 2011 20:45:36 +0000 (20:45 +0000)]
Padlock engine: make it independent of inline assembler.

8 years agoInitialise X509_STORE_CTX properly so CRLs with nextUpdate date in the past
Dr. Stephen Henson [Tue, 6 Sep 2011 15:15:09 +0000 (15:15 +0000)]
Initialise X509_STORE_CTX properly so CRLs with nextUpdate date in the past
produce an error (CVE-2011-3207)

8 years agoUpdate FAQ.
Dr. Stephen Henson [Tue, 6 Sep 2011 13:55:22 +0000 (13:55 +0000)]
Update FAQ.

8 years agoconfig: don't add -Wa options with no-asm.
Andy Polyakov [Mon, 5 Sep 2011 16:31:51 +0000 (16:31 +0000)]
config: don't add -Wa options with no-asm.

8 years agocrypto/bn/bn_gf2m.c: make it work with BN_DEBUG.
Andy Polyakov [Mon, 5 Sep 2011 16:14:43 +0000 (16:14 +0000)]
crypto/bn/bn_gf2m.c: make it work with BN_DEBUG.

8 years agoCheck reseed interval before generating output.
Dr. Stephen Henson [Mon, 5 Sep 2011 15:45:13 +0000 (15:45 +0000)]
Check reseed interval before generating output.

8 years agoPlace DRBG in error state if health check fails.
Dr. Stephen Henson [Mon, 5 Sep 2011 15:32:32 +0000 (15:32 +0000)]
Place DRBG in error state if health check fails.

8 years agooops
Bodo Möller [Mon, 5 Sep 2011 13:43:56 +0000 (13:43 +0000)]
oops

8 years agoFix session handling.
Bodo Möller [Mon, 5 Sep 2011 13:36:23 +0000 (13:36 +0000)]
Fix session handling.

8 years agoFix d2i_SSL_SESSION.
Bodo Möller [Mon, 5 Sep 2011 13:31:17 +0000 (13:31 +0000)]
Fix d2i_SSL_SESSION.

8 years ago(EC)DH memory handling fixes.
Bodo Möller [Mon, 5 Sep 2011 10:25:31 +0000 (10:25 +0000)]
(EC)DH memory handling fixes.

Submitted by: Adam Langley

8 years agoFix memory leak on bad inputs.
Bodo Möller [Mon, 5 Sep 2011 09:57:20 +0000 (09:57 +0000)]
Fix memory leak on bad inputs.

8 years agomake update
Bodo Möller [Mon, 5 Sep 2011 09:46:15 +0000 (09:46 +0000)]
make update

8 years agoFix expected DEFFLAG for default config.
Bodo Möller [Mon, 5 Sep 2011 09:43:44 +0000 (09:43 +0000)]
Fix expected DEFFLAG for default config.

8 years agoFix error codes.
Bodo Möller [Mon, 5 Sep 2011 09:42:34 +0000 (09:42 +0000)]
Fix error codes.

8 years agoSynchronize with 1.0.1 CHANGES file.
Bodo Möller [Mon, 5 Sep 2011 09:30:50 +0000 (09:30 +0000)]
Synchronize with 1.0.1 CHANGES file.

8 years agoDon't perform full DRBG health check on all DRBG types on power up, just
Dr. Stephen Henson [Sun, 4 Sep 2011 22:48:06 +0000 (22:48 +0000)]
Don't perform full DRBG health check on all DRBG types on power up, just
one shorter KAT per mechanism.

8 years agoUpdate dependencies.
Dr. Stephen Henson [Sun, 4 Sep 2011 18:44:28 +0000 (18:44 +0000)]
Update dependencies.

8 years agoAdd header to Makefile.
Dr. Stephen Henson [Sun, 4 Sep 2011 18:36:20 +0000 (18:36 +0000)]
Add header to Makefile.

8 years agoExtension of DRBG selftests using new data.
Dr. Stephen Henson [Sun, 4 Sep 2011 18:35:33 +0000 (18:35 +0000)]
Extension of DRBG selftests using new data.

Test PR and no PR and test initial generate before the reseed too.

Move selftest data to separate fips_drbg_selftest.h header file.

8 years agoRename some more symbols for fips module.
Dr. Stephen Henson [Fri, 2 Sep 2011 15:10:54 +0000 (15:10 +0000)]
Rename some more symbols for fips module.

8 years agoDon't use *from++ in tolower as this is implemented as a macro on some
Dr. Stephen Henson [Fri, 2 Sep 2011 11:28:27 +0000 (11:28 +0000)]
Don't use *from++ in tolower as this is implemented as a macro on some
platforms. Thanks to Shayne Murray <Shayne.Murray@Polycom.com> for
reporting this issue.

8 years agoPR: 2576
Dr. Stephen Henson [Fri, 2 Sep 2011 11:20:15 +0000 (11:20 +0000)]
PR: 2576
Submitted by: Doug Goldstein <cardoe@gentoo.org>
Reviewed by: steve

Include header file stdlib.h which is needed on some platforms to get
getenv() declaration.

8 years agoSync ordinals with 1.0.1-stable.
Dr. Stephen Henson [Thu, 1 Sep 2011 17:12:35 +0000 (17:12 +0000)]
Sync ordinals with 1.0.1-stable.

8 years agoPR: 2340
Dr. Stephen Henson [Thu, 1 Sep 2011 15:01:35 +0000 (15:01 +0000)]
PR: 2340
Submitted by: "Mauro H. Leggieri" <mxmauro@caiman.com.ar>
Reviewed by: steve

Stop warnings if OPENSSL_NO_DGRAM is defined.

8 years agomake timing attack protection unconditional
Dr. Stephen Henson [Thu, 1 Sep 2011 14:23:09 +0000 (14:23 +0000)]
make timing attack protection unconditional

8 years agoStop warnings.
Dr. Stephen Henson [Thu, 1 Sep 2011 14:15:47 +0000 (14:15 +0000)]
Stop warnings.

8 years agoPR: 2573
Dr. Stephen Henson [Thu, 1 Sep 2011 14:02:23 +0000 (14:02 +0000)]
PR: 2573
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Fix DTLS buffering and decryption bug.

8 years agoPR: 2589
Dr. Stephen Henson [Thu, 1 Sep 2011 13:52:48 +0000 (13:52 +0000)]
PR: 2589
Submitted by: Thomas Jarosch <thomas.jarosch@intra2net.com>
Reviewed by: steve

Initialise p pointer.

8 years agoPR: 2588
Dr. Stephen Henson [Thu, 1 Sep 2011 13:49:16 +0000 (13:49 +0000)]
PR: 2588
Submitted by: Thomas Jarosch <thomas.jarosch@intra2net.com>
Reviewed by: steve

Close file pointer.

8 years agoPR: 2586
Dr. Stephen Henson [Thu, 1 Sep 2011 13:45:46 +0000 (13:45 +0000)]
PR: 2586
Submitted by: Thomas Jarosch <thomas.jarosch@intra2net.com>
Reviewed by: steve

Zero structure fields properly.

8 years agoPR: 2586
Dr. Stephen Henson [Thu, 1 Sep 2011 13:37:37 +0000 (13:37 +0000)]
PR: 2586
Submitted by: Thomas Jarosch <thomas.jarosch@intra2net.com>
Reviewed by: steve

Fix brace mismatch.

8 years agoPrint private key component is -exout parameter is given.
Dr. Stephen Henson [Mon, 29 Aug 2011 16:09:07 +0000 (16:09 +0000)]
Print private key component is -exout parameter is given.

8 years agoFix ecdh primitives test command line.
Dr. Stephen Henson [Mon, 29 Aug 2011 15:35:35 +0000 (15:35 +0000)]
Fix ecdh primitives test command line.

8 years agobn_exp.c: improve portability.
Andy Polyakov [Sat, 27 Aug 2011 19:38:55 +0000 (19:38 +0000)]
bn_exp.c: improve portability.

8 years agoutil/incore: fix typo.
Andy Polyakov [Sat, 27 Aug 2011 19:37:25 +0000 (19:37 +0000)]
util/incore: fix typo.

8 years agoAdd support for DSA2 PQG generation of g parameter.
Dr. Stephen Henson [Sat, 27 Aug 2011 12:30:47 +0000 (12:30 +0000)]
Add support for DSA2 PQG generation of g parameter.

8 years agoAdd support for canonical generation of DSA parameter g.
Dr. Stephen Henson [Fri, 26 Aug 2011 14:51:49 +0000 (14:51 +0000)]
Add support for canonical generation of DSA parameter g.
Modify fips_dssvs to support appropriate file format.

8 years agoFix warning.
Dr. Stephen Henson [Thu, 25 Aug 2011 19:50:51 +0000 (19:50 +0000)]
Fix warning.

8 years agoDon't use some object files in FIPS build.
Dr. Stephen Henson [Tue, 23 Aug 2011 23:35:30 +0000 (23:35 +0000)]
Don't use some object files in FIPS build.

8 years agoRename sparc symbols.
Dr. Stephen Henson [Tue, 23 Aug 2011 21:06:44 +0000 (21:06 +0000)]
Rename sparc symbols.

8 years agoAdd RC4-MD5 and AESNI-SHA1 "stitched" implementations.
Andy Polyakov [Tue, 23 Aug 2011 20:51:38 +0000 (20:51 +0000)]
Add RC4-MD5 and AESNI-SHA1 "stitched" implementations.

8 years agoeng_rsax.c: improve portability.
Andy Polyakov [Mon, 22 Aug 2011 19:01:16 +0000 (19:01 +0000)]
eng_rsax.c: improve portability.

8 years agoCorrect maximum request length. SP800-90 quotes maximum bits, not bytes.
Dr. Stephen Henson [Fri, 19 Aug 2011 23:25:10 +0000 (23:25 +0000)]
Correct maximum request length. SP800-90 quotes maximum bits, not bytes.

8 years agomodexp512-x86_64.pl: make it work with ml64.
Andy Polyakov [Fri, 19 Aug 2011 06:30:32 +0000 (06:30 +0000)]
modexp512-x86_64.pl: make it work with ml64.

8 years agoFix fipsalgtest.pl to still work with old test vectors.
Dr. Stephen Henson [Thu, 18 Aug 2011 16:06:24 +0000 (16:06 +0000)]
Fix fipsalgtest.pl to still work with old test vectors.

8 years agotypo
Dr. Stephen Henson [Tue, 16 Aug 2011 12:45:26 +0000 (12:45 +0000)]
typo

8 years agoUpdate instructions to recommend use of included incore script.
Dr. Stephen Henson [Tue, 16 Aug 2011 11:25:56 +0000 (11:25 +0000)]
Update instructions to recommend use of included incore script.

8 years agoMakefile.org: get commit#21249 right.
Andy Polyakov [Tue, 16 Aug 2011 08:56:07 +0000 (08:56 +0000)]
Makefile.org: get commit#21249 right.

8 years agoDelete library install from Makefile.fips: it isn't used.
Dr. Stephen Henson [Mon, 15 Aug 2011 20:38:16 +0000 (20:38 +0000)]
Delete library install from Makefile.fips: it isn't used.

Revert change to Makefile.org: it breaks install.