openssl.git
7 years agoconfig: KERNEL_BITS envrionment variable to control choice between 32-
Andy Polyakov [Tue, 8 Nov 2011 14:40:33 +0000 (14:40 +0000)]
config: KERNEL_BITS envrionment variable to control choice between 32-
and 64-bit Solaris builds.

7 years agoconfig: KERNEL_BITS envrionment variable to control choice between 32- and
Andy Polyakov [Tue, 8 Nov 2011 13:31:28 +0000 (13:31 +0000)]
config: KERNEL_BITS envrionment variable to control choice between 32- and
64-bit darwin builds.

7 years agoConfigure: initial support for iOS.
Andy Polyakov [Tue, 8 Nov 2011 13:02:57 +0000 (13:02 +0000)]
Configure: initial support for iOS.

7 years agoConfigure: allow ./config to pass compiler flags with white spaces.
Andy Polyakov [Tue, 8 Nov 2011 12:45:00 +0000 (12:45 +0000)]
Configure: allow ./config to pass compiler flags with white spaces.

7 years agofips_canister.c: add cross-compiler support for iOS (it applies even to
Andy Polyakov [Tue, 8 Nov 2011 12:21:32 +0000 (12:21 +0000)]
fips_canister.c: add cross-compiler support for iOS (it applies even to
MacOS X, because it's easier to handle it this way).

7 years agofips_premain.c: fix warning about _exit on MacOS X.
Andy Polyakov [Tue, 8 Nov 2011 12:15:04 +0000 (12:15 +0000)]
fips_premain.c: fix warning about _exit on MacOS X.

7 years agofipsld, incore: switch to new cross-compile support.
Andy Polyakov [Sun, 6 Nov 2011 23:22:58 +0000 (23:22 +0000)]
fipsld, incore: switch to new cross-compile support.

7 years agoe_aes.c: fold aesni_xts_cipher and [most importantly] fix aes_xts_cipher's
Andy Polyakov [Sun, 6 Nov 2011 19:48:39 +0000 (19:48 +0000)]
e_aes.c: fold aesni_xts_cipher and [most importantly] fix aes_xts_cipher's
return value after custom flag was rightly reverted.

7 years agocheck for unset entropy and nonce callbacks
Dr. Stephen Henson [Sun, 6 Nov 2011 13:08:41 +0000 (13:08 +0000)]
check for unset entropy and nonce callbacks

7 years agoUpdate fips_test_suite to take multiple command line options and
Dr. Stephen Henson [Sun, 6 Nov 2011 12:53:13 +0000 (12:53 +0000)]
Update fips_test_suite to take multiple command line options and
an induced error checking function.

7 years agotypo
Dr. Stephen Henson [Sat, 5 Nov 2011 18:25:40 +0000 (18:25 +0000)]
typo

7 years agomake post failure simulation reversible in all cases
Dr. Stephen Henson [Sat, 5 Nov 2011 18:14:42 +0000 (18:14 +0000)]
make post failure simulation reversible in all cases

7 years agotypo: use key for POST callback
Dr. Stephen Henson [Sat, 5 Nov 2011 18:11:05 +0000 (18:11 +0000)]
typo: use key for POST callback

7 years agofix set but unused warnings
Dr. Stephen Henson [Sat, 5 Nov 2011 18:04:31 +0000 (18:04 +0000)]
fix set but unused warnings

7 years agoarmv4cpuid.S, armv4-gf2m.pl: make newest code compilable by older assembler.
Andy Polyakov [Sat, 5 Nov 2011 13:07:18 +0000 (13:07 +0000)]
armv4cpuid.S, armv4-gf2m.pl: make newest code compilable by older assembler.

7 years agox86cpuid.pl: don't punish "last-year" OSes on "this-year" CPUs.
Andy Polyakov [Sat, 5 Nov 2011 10:44:12 +0000 (10:44 +0000)]
x86cpuid.pl: don't punish "last-year" OSes on "this-year" CPUs.
PR: 2633

7 years agoppc.pl: fix bug in bn_mul_comba4.
Andy Polyakov [Sat, 5 Nov 2011 10:16:04 +0000 (10:16 +0000)]
ppc.pl: fix bug in bn_mul_comba4.
PR: 2636
Submitted by: Charles Bryant

7 years agoAdd single call public key sign and verify functions.
Dr. Stephen Henson [Sat, 5 Nov 2011 01:34:36 +0000 (01:34 +0000)]
Add single call public key sign and verify functions.

7 years agoAdd support for memory leak checking in fips_algvs.
Dr. Stephen Henson [Wed, 2 Nov 2011 19:17:30 +0000 (19:17 +0000)]
Add support for memory leak checking in fips_algvs.

Fix many memory leaks in algorithm test utilities.

7 years agoRemove duplicate test from health check.
Dr. Stephen Henson [Wed, 2 Nov 2011 16:58:17 +0000 (16:58 +0000)]
Remove duplicate test from health check.
Fix memory leaks by uninstantiating DRBG before reinitialising it.

7 years agoPrint out an error for "make test" in FIPS builds. (from FIPS stable)
Dr. Stephen Henson [Wed, 2 Nov 2011 00:58:17 +0000 (00:58 +0000)]
Print out an error for "make test" in FIPS builds. (from FIPS stable)

7 years agoAdd fips_algvs utility (from FIPS 2.0 stable branch).
Dr. Stephen Henson [Wed, 2 Nov 2011 00:57:22 +0000 (00:57 +0000)]
Add fips_algvs utility (from FIPS 2.0 stable branch).

7 years agoTypo...
Richard Levitte [Sun, 30 Oct 2011 14:43:53 +0000 (14:43 +0000)]
Typo...

7 years agobsaes-x86_64.pl: add CBC decrypt and engage it in e_aes.c.
Andy Polyakov [Sun, 30 Oct 2011 12:15:56 +0000 (12:15 +0000)]
bsaes-x86_64.pl: add CBC decrypt and engage it in e_aes.c.

7 years agoAdd missing algorithms to disable, and in particular, disable
Richard Levitte [Sun, 30 Oct 2011 11:46:07 +0000 (11:46 +0000)]
Add missing algorithms to disable, and in particular, disable
EC_NISTP_64_GCC_128 by default, as GCC isn't currently supported on
VMS.  Synchronise with Unix.

7 years agoTeach mkshared.com to have a look for disabled algorithms in opensslconf.h
Richard Levitte [Sun, 30 Oct 2011 11:40:54 +0000 (11:40 +0000)]
Teach mkshared.com to have a look for disabled algorithms in opensslconf.h

7 years agobn_exp.c: fix corner case in new constant-time code.
Andy Polyakov [Sat, 29 Oct 2011 19:25:13 +0000 (19:25 +0000)]
bn_exp.c: fix corner case in new constant-time code.

Submitted by: Emilia Kasper

7 years agobsaes-x86_64.pl: optimize InvMixColumns.
Andy Polyakov [Sat, 29 Oct 2011 11:56:21 +0000 (11:56 +0000)]
bsaes-x86_64.pl: optimize InvMixColumns.

7 years agobsaes-x86_64.pl: add decryption procedure (with unoptimized reference
Andy Polyakov [Sat, 29 Oct 2011 11:47:20 +0000 (11:47 +0000)]
bsaes-x86_64.pl: add decryption procedure (with unoptimized reference
InvMixColumns).

7 years agoPR: 2628
Dr. Stephen Henson [Thu, 27 Oct 2011 13:06:52 +0000 (13:06 +0000)]
PR: 2628
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Send alert instead of assertion failure for incorrectly formatted DTLS
fragments.

7 years agoPR: 2628
Dr. Stephen Henson [Thu, 27 Oct 2011 13:01:33 +0000 (13:01 +0000)]
PR: 2628
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Fix for ECC keys and DTLS.

7 years agoPR: 2632
Dr. Stephen Henson [Wed, 26 Oct 2011 16:43:34 +0000 (16:43 +0000)]
PR: 2632
Submitted by: emmanuel.azencot@bull.net
Reviewed by: steve

Return -1 immediately if not affine coordinates as BN_CTX has not been
set up.

7 years agoUse correct tag for SRP username.
Dr. Stephen Henson [Tue, 25 Oct 2011 12:51:22 +0000 (12:51 +0000)]
Use correct tag for SRP username.

7 years agotypo
Dr. Stephen Henson [Mon, 24 Oct 2011 13:23:51 +0000 (13:23 +0000)]
typo

7 years agoe_aes.c: fold even aesni_ccm_cipher.
Andy Polyakov [Mon, 24 Oct 2011 06:00:06 +0000 (06:00 +0000)]
e_aes.c: fold even aesni_ccm_cipher.

7 years agoe_aes.c: prevent potential DoS in aes_gcm_tls_cipher.
Andy Polyakov [Sun, 23 Oct 2011 22:58:40 +0000 (22:58 +0000)]
e_aes.c: prevent potential DoS in aes_gcm_tls_cipher.

7 years agocryptlib.c: remove stdio dependency in Windows fipscanister.lib.
Andy Polyakov [Sun, 23 Oct 2011 19:41:00 +0000 (19:41 +0000)]
cryptlib.c: remove stdio dependency in Windows fipscanister.lib.

7 years agoNo need for custom flag in XTS mode: block length is 1.
Dr. Stephen Henson [Sun, 23 Oct 2011 17:06:28 +0000 (17:06 +0000)]
No need for custom flag in XTS mode: block length is 1.

7 years agofips_canister.c: harmonize fingerprinting for all Windows, CE or not.
Andy Polyakov [Sun, 23 Oct 2011 15:17:30 +0000 (15:17 +0000)]
fips_canister.c: harmonize fingerprinting for all Windows, CE or not.

7 years agoconfig: in cross-compile case interrogate cross-compiler, not host, work
Andy Polyakov [Sun, 23 Oct 2011 15:12:37 +0000 (15:12 +0000)]
config: in cross-compile case interrogate cross-compiler, not host, work
around sub-shell limitation.

7 years agoCheck for selftest failure in various places.
Dr. Stephen Henson [Sat, 22 Oct 2011 17:24:27 +0000 (17:24 +0000)]
Check for selftest failure in various places.

7 years agox86gas.pl: relax .init segment alignment.
Andy Polyakov [Sat, 22 Oct 2011 10:49:52 +0000 (10:49 +0000)]
x86gas.pl: relax .init segment alignment.

7 years agomk1mk.pl: cleanup engines' handling and make fips build work on WIN64I.
Andy Polyakov [Fri, 21 Oct 2011 19:34:48 +0000 (19:34 +0000)]
mk1mk.pl: cleanup engines' handling and make fips build work on WIN64I.

7 years agoUpdate error codes.
Dr. Stephen Henson [Fri, 21 Oct 2011 11:46:16 +0000 (11:46 +0000)]
Update error codes.

7 years agofips.c: remove preprocessor artefact.
Andy Polyakov [Fri, 21 Oct 2011 06:03:45 +0000 (06:03 +0000)]
fips.c: remove preprocessor artefact.

7 years agofix (?) AVX clearing
Dr. Stephen Henson [Fri, 21 Oct 2011 01:57:37 +0000 (01:57 +0000)]
fix (?) AVX clearing

7 years agoCheck for uninitialised DRBG_CTX and don't free up default DRBG_CTX.
Dr. Stephen Henson [Fri, 21 Oct 2011 00:12:53 +0000 (00:12 +0000)]
Check for uninitialised DRBG_CTX and don't free up default DRBG_CTX.

7 years agofips.c: x86[_64] capability masking.
Andy Polyakov [Thu, 20 Oct 2011 21:03:09 +0000 (21:03 +0000)]
fips.c: x86[_64] capability masking.

7 years agoarmcap.c: auto-setup processor capability vector.
Andy Polyakov [Thu, 20 Oct 2011 20:52:26 +0000 (20:52 +0000)]
armcap.c: auto-setup processor capability vector.

7 years agoFix error codes.
Dr. Stephen Henson [Thu, 20 Oct 2011 13:56:01 +0000 (13:56 +0000)]
Fix error codes.

7 years agofips/fips_[canister|premain].c: make it work with VC6 and add sentinels
Andy Polyakov [Thu, 20 Oct 2011 12:09:13 +0000 (12:09 +0000)]
fips/fips_[canister|premain].c: make it work with VC6 and add sentinels
even to code segments.

7 years agosha1-mips.pl: fix typo.
Andy Polyakov [Thu, 20 Oct 2011 08:39:29 +0000 (08:39 +0000)]
sha1-mips.pl: fix typo.

7 years agoDrain unused MacOS directory.
Andy Polyakov [Thu, 20 Oct 2011 08:28:06 +0000 (08:28 +0000)]
Drain unused MacOS directory.

7 years agoAdd "nopass" for empty password too.
Dr. Stephen Henson [Wed, 19 Oct 2011 23:23:35 +0000 (23:23 +0000)]
Add "nopass" for empty password too.

7 years agoadd authentication parameter to FIPS_module_mode_set
Dr. Stephen Henson [Wed, 19 Oct 2011 22:34:53 +0000 (22:34 +0000)]
add authentication parameter to FIPS_module_mode_set

7 years agovxworks-mips: unify and add assembler.
Andy Polyakov [Wed, 19 Oct 2011 21:49:20 +0000 (21:49 +0000)]
vxworks-mips: unify and add assembler.

7 years agoRemove superseded MIPS assembler modules.
Andy Polyakov [Wed, 19 Oct 2011 21:42:21 +0000 (21:42 +0000)]
Remove superseded MIPS assembler modules.

7 years agofips_canister.c: more cross-compiler platfroms verified.
Andy Polyakov [Wed, 19 Oct 2011 21:05:53 +0000 (21:05 +0000)]
fips_canister.c: more cross-compiler platfroms verified.

7 years agoarm_arch.h: add missing pre-defined macro, __ARM_ARCH_5TEJ__.
Andy Polyakov [Wed, 19 Oct 2011 18:57:03 +0000 (18:57 +0000)]
arm_arch.h: add missing pre-defined macro, __ARM_ARCH_5TEJ__.

7 years ago"make update" (partial)
Bodo Möller [Wed, 19 Oct 2011 15:29:14 +0000 (15:29 +0000)]
"make update" (partial)

7 years agoBN_BLINDING multi-threading fix.
Bodo Möller [Wed, 19 Oct 2011 14:59:27 +0000 (14:59 +0000)]
BN_BLINDING multi-threading fix.

Submitted by: Emilia Kasper (Google)

7 years agoTypo (?)
Dr. Stephen Henson [Wed, 19 Oct 2011 12:05:08 +0000 (12:05 +0000)]
Typo (?)

7 years agoBuild fipscanister.o only by default. Utility build now needs
Dr. Stephen Henson [Wed, 19 Oct 2011 11:47:21 +0000 (11:47 +0000)]
Build fipscanister.o only by default. Utility build now needs
make build_tests

7 years agoRecognise new option.
Dr. Stephen Henson [Wed, 19 Oct 2011 11:44:25 +0000 (11:44 +0000)]
Recognise new option.

7 years agoFix indentation
Bodo Möller [Wed, 19 Oct 2011 09:24:22 +0000 (09:24 +0000)]
Fix indentation

7 years agoFix warnings.
Bodo Möller [Wed, 19 Oct 2011 08:59:53 +0000 (08:59 +0000)]
Fix warnings.
Also, use the common Configure mechanism for enabling/disabling the 64-bit ECC code.

7 years agoUpdate premain fingerprint.
Dr. Stephen Henson [Tue, 18 Oct 2011 22:11:11 +0000 (22:11 +0000)]
Update premain fingerprint.

7 years agoImprove optional 64-bit NIST-P224 implementation, and add NIST-P256 and
Bodo Möller [Tue, 18 Oct 2011 19:43:16 +0000 (19:43 +0000)]
Improve optional 64-bit NIST-P224 implementation, and add NIST-P256 and
NIST-P521. (Now -DEC_NISTP_64_GCC_128 enables all three of these;
-DEC_NISTP224_64_GCC_128 no longer works.)

Submitted by: Google Inc.

7 years agofipssyms.h: assign alias to newly introduced bn_gather5.
Andy Polyakov [Tue, 18 Oct 2011 18:59:33 +0000 (18:59 +0000)]
fipssyms.h: assign alias to newly introduced bn_gather5.

7 years agofips/*: extend fipsro segmenting to all _MSC_VER builds (including WinCE).
Andy Polyakov [Tue, 18 Oct 2011 18:56:09 +0000 (18:56 +0000)]
fips/*: extend fipsro segmenting to all _MSC_VER builds (including WinCE).

7 years agofips_enc.c: assign minimal block size to bad_cipher [to avoid arithmetic
Andy Polyakov [Tue, 18 Oct 2011 18:52:05 +0000 (18:52 +0000)]
fips_enc.c: assign minimal block size to bad_cipher [to avoid arithmetic
exceptions in TLS layer].

7 years agoengines/.cvsignore: stop whining about e_padlock-*.s.
Andy Polyakov [Tue, 18 Oct 2011 13:39:47 +0000 (13:39 +0000)]
engines/.cvsignore: stop whining about e_padlock-*.s.

7 years agoevp/e_aes.c: fold AES-NI modes that heavily rely on indirect calls
Andy Polyakov [Tue, 18 Oct 2011 13:37:26 +0000 (13:37 +0000)]
evp/e_aes.c: fold AES-NI modes that heavily rely on indirect calls
(trade 2% small-block performance), engage bit-sliced AES in GCM.

7 years agox86_64-xlate.pl: make vpaes-x86_64.pl and rc4-md5-x86_64 work with ml64,
Andy Polyakov [Tue, 18 Oct 2011 09:50:23 +0000 (09:50 +0000)]
x86_64-xlate.pl: make vpaes-x86_64.pl and rc4-md5-x86_64 work with ml64,
fix bug in .crt section alignment.
PR: 2620, 2624

7 years agobsaes-x86_64.pl: make it work with ml64.
Andy Polyakov [Tue, 18 Oct 2011 09:22:04 +0000 (09:22 +0000)]
bsaes-x86_64.pl: make it work with ml64.

7 years ago[bs|vp]aes-x86[_64].pl: typos and clarifications.
Andy Polyakov [Tue, 18 Oct 2011 08:03:02 +0000 (08:03 +0000)]
[bs|vp]aes-x86[_64].pl: typos and clarifications.

7 years agoc_allc.c: add aes-xts to loop.
Andy Polyakov [Tue, 18 Oct 2011 07:53:50 +0000 (07:53 +0000)]
c_allc.c: add aes-xts to loop.

7 years agoDo global replace to remove assembly language object files.
Dr. Stephen Henson [Tue, 18 Oct 2011 00:02:42 +0000 (00:02 +0000)]
Do global replace to remove assembly language object files.

7 years agobn_mont.c: get corner cases right in updated BN_from_montgomery_word.
Andy Polyakov [Mon, 17 Oct 2011 23:35:00 +0000 (23:35 +0000)]
bn_mont.c: get corner cases right in updated BN_from_montgomery_word.

7 years agobn_exp.c: further optimizations using more ideas from
Andy Polyakov [Mon, 17 Oct 2011 17:41:49 +0000 (17:41 +0000)]
bn_exp.c: further optimizations using more ideas from
http://eprint.iacr.org/2011/239.

7 years agox86_64-mont.pl: minor optimization.
Andy Polyakov [Mon, 17 Oct 2011 17:39:59 +0000 (17:39 +0000)]
x86_64-mont.pl: minor optimization.

7 years agobn_mont.c: simplify BN_from_montgomery_word.
Andy Polyakov [Mon, 17 Oct 2011 17:24:28 +0000 (17:24 +0000)]
bn_mont.c: simplify BN_from_montgomery_word.

7 years agobn_shift.c: minimize reallocations, which allows BN_FLG_STATIC_DATA to
Andy Polyakov [Mon, 17 Oct 2011 17:20:48 +0000 (17:20 +0000)]
bn_shift.c: minimize reallocations, which allows BN_FLG_STATIC_DATA to
be shifted in specific cases.

7 years agoEngage bsaes-x86_64.pl, bit-sliced AES.
Andy Polyakov [Mon, 17 Oct 2011 17:10:54 +0000 (17:10 +0000)]
Engage bsaes-x86_64.pl, bit-sliced AES.

7 years agoL=3072, N=256 provides 128 bits of security not 112.
Dr. Stephen Henson [Sun, 16 Oct 2011 12:31:49 +0000 (12:31 +0000)]
L=3072, N=256 provides 128 bits of security not 112.

7 years agoAdd android-x86.
Andy Polyakov [Sat, 15 Oct 2011 08:32:16 +0000 (08:32 +0000)]
Add android-x86.

7 years agoClarify usage message.
Dr. Stephen Henson [Fri, 14 Oct 2011 23:51:58 +0000 (23:51 +0000)]
Clarify usage message.

7 years agomore vxworks patches
Dr. Stephen Henson [Fri, 14 Oct 2011 22:04:14 +0000 (22:04 +0000)]
more vxworks patches

7 years agoAllow override of GCCVER and noexecstack checking from environment.
Dr. Stephen Henson [Fri, 14 Oct 2011 17:28:10 +0000 (17:28 +0000)]
Allow override of GCCVER and noexecstack checking from environment.

Vxworks support.

7 years agoDon't use TPREFIX shell variable for minimal script.
Dr. Stephen Henson [Fri, 14 Oct 2011 15:15:20 +0000 (15:15 +0000)]
Don't use TPREFIX shell variable for minimal script.

7 years agoAdd usage messages.
Dr. Stephen Henson [Fri, 14 Oct 2011 13:00:08 +0000 (13:00 +0000)]
Add usage messages.

7 years agoe_aes.c: fix bug in aesni_gcm_tls_cipher.
Andy Polyakov [Fri, 14 Oct 2011 09:32:06 +0000 (09:32 +0000)]
e_aes.c: fix bug in aesni_gcm_tls_cipher.

7 years agoaesni-x86[_64].pl: fix bug in CCM code.
Andy Polyakov [Fri, 14 Oct 2011 09:15:19 +0000 (09:15 +0000)]
aesni-x86[_64].pl: fix bug in CCM code.

7 years agoRemove eng_aesni.c as AES-NI support is integrated directly at EVP.
Andy Polyakov [Thu, 13 Oct 2011 19:46:44 +0000 (19:46 +0000)]
Remove eng_aesni.c as AES-NI support is integrated directly at EVP.

7 years agouse -no_ecdhe when using -no_dhe
Bodo Möller [Thu, 13 Oct 2011 15:07:08 +0000 (15:07 +0000)]
use -no_ecdhe when using -no_dhe

7 years agoOops - ectest.c finds further problems beyond those exposed by bntext.c
Bodo Möller [Thu, 13 Oct 2011 14:29:59 +0000 (14:29 +0000)]
Oops - ectest.c finds further problems beyond those exposed by bntext.c

7 years agoAvoid failed assertion in BN_DEBUG builds
Bodo Möller [Thu, 13 Oct 2011 14:21:39 +0000 (14:21 +0000)]
Avoid failed assertion in BN_DEBUG builds

7 years agoMake CTR mode behaviour consistent with other modes:
Bodo Möller [Thu, 13 Oct 2011 13:41:34 +0000 (13:41 +0000)]
Make CTR mode behaviour consistent with other modes:
- clear ctx->num in EVP_CipherInit_ex
- adapt e_eas.c changes from http://cvs.openssl.org/chngview?cn=19816
  for eng_aesni.c

Submitted by: Emilia Kasper

7 years agoClarify warning
Bodo Möller [Thu, 13 Oct 2011 13:27:09 +0000 (13:27 +0000)]
Clarify warning

7 years agotypo
Bodo Möller [Thu, 13 Oct 2011 13:20:33 +0000 (13:20 +0000)]
typo