openssl.git
14 years agoSimplify shared rules, link run-path into applications only.
Andy Polyakov [Sun, 15 May 2005 23:59:04 +0000 (23:59 +0000)]
Simplify shared rules, link run-path into applications only.

14 years agoConsolidate BUILDENV [idea is to keep all variables in one place].
Andy Polyakov [Sun, 15 May 2005 23:53:34 +0000 (23:53 +0000)]
Consolidate BUILDENV [idea is to keep all variables in one place].

14 years ago+20% performance improvement of P4-specific RC4_CHAR loop.
Andy Polyakov [Sun, 15 May 2005 22:43:00 +0000 (22:43 +0000)]
+20% performance improvement of P4-specific RC4_CHAR loop.

14 years agoFool-proofing Makefiles
Andy Polyakov [Sun, 15 May 2005 22:23:26 +0000 (22:23 +0000)]
Fool-proofing Makefiles

14 years agoMake update.
Dr. Stephen Henson [Sun, 15 May 2005 00:56:47 +0000 (00:56 +0000)]
Make update.

14 years agoMake -CSP option work again in pkcs12 utility by checking for
Dr. Stephen Henson [Sun, 15 May 2005 00:54:45 +0000 (00:54 +0000)]
Make -CSP option work again in pkcs12 utility by checking for
attribute in EVP_PKEY structure.

14 years agoopenssl_fcast should always be defined, not just with DEBUG_SAFESTACK
Dr. Stephen Henson [Sat, 14 May 2005 12:58:20 +0000 (12:58 +0000)]
openssl_fcast should always be defined, not just with DEBUG_SAFESTACK

14 years agoSome C compilers produce warnings or compilation errors if an attempt
Dr. Stephen Henson [Thu, 12 May 2005 23:01:44 +0000 (23:01 +0000)]
Some C compilers produce warnings or compilation errors if an attempt
is made to directly cast a function of one type to what it considers and
incompatible type. In particular gcc 3.4.2.

Add new openssl_fcast macro to place functions into a form where the compiler
will allow them to be cast.

The current version achives this by casting to: void function(void).

14 years agoAvoid warnings.
Dr. Stephen Henson [Thu, 12 May 2005 22:40:19 +0000 (22:40 +0000)]
Avoid warnings.

14 years agoFix from stable branch.
Dr. Stephen Henson [Thu, 12 May 2005 22:39:42 +0000 (22:39 +0000)]
Fix from stable branch.

14 years agoTypo.
Dr. Stephen Henson [Thu, 12 May 2005 17:28:53 +0000 (17:28 +0000)]
Typo.

14 years agofix msg_callback() arguments for SSL 2.0 compatible client hello
Bodo Möller [Thu, 12 May 2005 06:24:25 +0000 (06:24 +0000)]
fix msg_callback() arguments for SSL 2.0 compatible client hello
(previous revision got this wrong)

14 years agoMove another item into ChangeLog.0_9_7-stable_not-in-head_FIPS
Bodo Möller [Wed, 11 May 2005 18:36:47 +0000 (18:36 +0000)]
Move another item into ChangeLog.0_9_7-stable_not-in-head_FIPS

14 years agoDon't use the SSL 2.0 Client Hello format if SSL 2.0 is disabled
Bodo Möller [Wed, 11 May 2005 18:25:49 +0000 (18:25 +0000)]
Don't use the SSL 2.0 Client Hello format if SSL 2.0 is disabled
with the SSL_OP_NO_SSLv2 option.

14 years agoThere must be an explicit way to build the .o!
Ben Laurie [Wed, 11 May 2005 16:39:05 +0000 (16:39 +0000)]
There must be an explicit way to build the .o!

14 years agoMove some entries from ChangeLog.0_9_7-stable_not-in-head
Bodo Möller [Wed, 11 May 2005 03:54:21 +0000 (03:54 +0000)]
Move some entries from ChangeLog.0_9_7-stable_not-in-head
to ChangeLog.0_9_7-stable_not-in-head_FIPS.

14 years agoFix more error codes.
Bodo Möller [Wed, 11 May 2005 03:45:39 +0000 (03:45 +0000)]
Fix more error codes.

(Also improve util/ck_errf.pl script, and occasionally
fix source code formatting.)

14 years agouse 'p' as conversion specifier for printf to avoid truncation of
Nils Larsch [Tue, 10 May 2005 11:55:28 +0000 (11:55 +0000)]
use 'p' as conversion specifier for printf to avoid truncation of
pointers on 64 bit platforms. Patch supplied by Daniel Gryniewicz
via Mike Frysinger <vapier@gentoo.org>.

PR: 1064

14 years agogive EC_GROUP_new_by_nid a more meanigful name:
Nils Larsch [Tue, 10 May 2005 11:37:47 +0000 (11:37 +0000)]
give EC_GROUP_new_by_nid a more meanigful name:
EC_GROUP_new_by_nid -> EC_GROUP_new_by_curve_name

14 years agoimprove command line argument checking
Nils Larsch [Tue, 10 May 2005 09:51:29 +0000 (09:51 +0000)]
improve command line argument checking

PR: 1061

14 years agoComply with optimization manual (no data should share cache-line with code).
Andy Polyakov [Mon, 9 May 2005 21:48:01 +0000 (21:48 +0000)]
Comply with optimization manual (no data should share cache-line with code).

14 years agoAllow for 64-bit cache-line alignments in code segment.
Andy Polyakov [Mon, 9 May 2005 21:27:40 +0000 (21:27 +0000)]
Allow for 64-bit cache-line alignments in code segment.

14 years agoUpdate util/ck_errf.pl script, and have it run automatically
Bodo Möller [Mon, 9 May 2005 00:27:37 +0000 (00:27 +0000)]
Update util/ck_errf.pl script, and have it run automatically
during "make errors" and thus during "make update".

Fix lots of bugs that util/ck_errf.pl can detect automatically.
Various others of these are still left to fix; that's why
"make update" will complain loudly when run now.

14 years agorebuild (starting with state from 0.9.7-stable branch) to avoid clutter
Bodo Möller [Mon, 9 May 2005 00:22:02 +0000 (00:22 +0000)]
rebuild (starting with state from 0.9.7-stable branch) to avoid clutter

14 years agoimprove comment readability
Bodo Möller [Mon, 9 May 2005 00:06:54 +0000 (00:06 +0000)]
improve comment readability

14 years agogive EC_GROUP_*_nid functions a more meaningful name
Bodo Möller [Mon, 9 May 2005 00:05:17 +0000 (00:05 +0000)]
give EC_GROUP_*_nid functions a more meaningful name
    EC_GROUP_get_nid -> EC_GROUP_get_curve_name
    EC_GROUP_set_nid -> EC_GROUP_set_curve_name

14 years agogive EC_GROUP_*_nid functions a more meaningful name
Nils Larsch [Sun, 8 May 2005 22:09:12 +0000 (22:09 +0000)]
give EC_GROUP_*_nid functions a more meaningful name
EC_GROUP_get_nid -> EC_GROUP_get_curve_name
EC_GROUP_set_nid -> EC_GROUP_set_curve_name

14 years agoEliminate "statement with no effect" warning when OPENSSL_assert macro
Andy Polyakov [Sun, 8 May 2005 19:54:33 +0000 (19:54 +0000)]
Eliminate "statement with no effect" warning when OPENSSL_assert macro
is used with constant assertion.

14 years agoI was incorrect about VMS/Alpha. Defining BN_LLONG with
Richard Levitte [Sat, 7 May 2005 21:21:17 +0000 (21:21 +0000)]
I was incorrect about VMS/Alpha.  Defining BN_LLONG with
SIXTY_FOUR_BIT could cause havoc, so don't (it's lucky bn.h undefines
BN_LLONG when SIXTY_FOUR_BIT is defined).

14 years agox86_64 assembler translator update.
Andy Polyakov [Sat, 7 May 2005 08:13:51 +0000 (08:13 +0000)]
x86_64 assembler translator update.

14 years agoFix constants.
Andy Polyakov [Sat, 7 May 2005 08:11:50 +0000 (08:11 +0000)]
Fix constants.
PR: 1059

14 years agoSince BN_LLONG will only be defined for Alpha/VMS and not VAX/VMS,
Richard Levitte [Fri, 6 May 2005 13:34:35 +0000 (13:34 +0000)]
Since BN_LLONG will only be defined for Alpha/VMS and not VAX/VMS,
there's no need to undefine it here.  Then, let's get a bit paranoid
and not define BN_ULLONG on THIRTY_TWO_BIT machines when BN_LLONG
isn't defined.

14 years agoActually, C on VMS/Alpha knows very well what a long long is, and
Richard Levitte [Fri, 6 May 2005 13:33:16 +0000 (13:33 +0000)]
Actually, C on VMS/Alpha knows very well what a long long is, and
knows how to make use of it.  So let's stop pretending the Alpha
doesn't know long long...

14 years agofix compiler warning; pow10 is also in math.h
Nils Larsch [Thu, 5 May 2005 20:57:37 +0000 (20:57 +0000)]
fix compiler warning; pow10 is also in math.h

14 years agoA few more fingerprints...
Richard Levitte [Thu, 5 May 2005 06:38:55 +0000 (06:38 +0000)]
A few more fingerprints...

14 years agoCommentary update motivating code update in 0.9.7.
Andy Polyakov [Wed, 4 May 2005 14:51:38 +0000 (14:51 +0000)]
Commentary update motivating code update in 0.9.7.

14 years agox86_64 assembler translator update.
Andy Polyakov [Wed, 4 May 2005 08:42:47 +0000 (08:42 +0000)]
x86_64 assembler translator update.

14 years agoCvs missed adapted module itself, here it goes...
Andy Polyakov [Tue, 3 May 2005 23:03:31 +0000 (23:03 +0000)]
Cvs missed adapted module itself, here it goes...

14 years agoEngage md5-x86_64 assembler module.
Andy Polyakov [Tue, 3 May 2005 22:59:17 +0000 (22:59 +0000)]
Engage md5-x86_64 assembler module.

14 years agoThrow in md5-x86_64 assembler.
Andy Polyakov [Tue, 3 May 2005 22:56:15 +0000 (22:56 +0000)]
Throw in md5-x86_64 assembler.

14 years agoCygwin doesn't expose Win32 [not "officially"].
Andy Polyakov [Tue, 3 May 2005 21:20:17 +0000 (21:20 +0000)]
Cygwin doesn't expose Win32 [not "officially"].

14 years agoCommentary update.
Andy Polyakov [Tue, 3 May 2005 21:16:42 +0000 (21:16 +0000)]
Commentary update.

14 years agoCpuid modules updates.
Andy Polyakov [Tue, 3 May 2005 21:05:06 +0000 (21:05 +0000)]
Cpuid modules updates.

14 years agoremove false positive
Nils Larsch [Tue, 3 May 2005 20:58:24 +0000 (20:58 +0000)]
remove false positive

14 years agoremove BN_ncopy, it was only used in bn_nist.c and wasn't particular
Nils Larsch [Tue, 3 May 2005 20:27:00 +0000 (20:27 +0000)]
remove BN_ncopy, it was only used in bn_nist.c and wasn't particular
useful anyway

14 years agorewrite of bn_nist.c, disable support for some curves on 64 bit platforms
Nils Larsch [Tue, 3 May 2005 20:23:33 +0000 (20:23 +0000)]
rewrite of bn_nist.c, disable support for some curves on 64 bit platforms
for now (it was broken anyway)

14 years agofix typo
Nils Larsch [Tue, 3 May 2005 18:34:01 +0000 (18:34 +0000)]
fix typo

PR: 1054

14 years agoRename amd64 modules to x86_64 and update RC4 implementation.
Andy Polyakov [Tue, 3 May 2005 15:42:05 +0000 (15:42 +0000)]
Rename amd64 modules to x86_64 and update RC4 implementation.

14 years agox86_64 assembler translator update.
Andy Polyakov [Tue, 3 May 2005 15:35:14 +0000 (15:35 +0000)]
x86_64 assembler translator update.

14 years agobackport fix from the stable branch
Nils Larsch [Tue, 3 May 2005 10:00:16 +0000 (10:00 +0000)]
backport fix from the stable branch

14 years agoRedundant changes.
Ben Laurie [Sun, 1 May 2005 13:55:41 +0000 (13:55 +0000)]
Redundant changes.

14 years agoAdd prototype.
Ben Laurie [Sun, 1 May 2005 13:49:56 +0000 (13:49 +0000)]
Add prototype.

14 years agoSupport for smime-type MIME parameter.
Dr. Stephen Henson [Sun, 1 May 2005 12:46:57 +0000 (12:46 +0000)]
Support for smime-type MIME parameter.

14 years agoRemove false positives and resolve some of remaining ones.
Andy Polyakov [Sat, 30 Apr 2005 23:48:17 +0000 (23:48 +0000)]
Remove false positives and resolve some of remaining ones.

14 years agoCygwin/mingw sync with stable.
Andy Polyakov [Sat, 30 Apr 2005 23:45:53 +0000 (23:45 +0000)]
Cygwin/mingw sync with stable.

14 years agoAllow for ./config no-sha0 [from stable].
Andy Polyakov [Sat, 30 Apr 2005 21:51:41 +0000 (21:51 +0000)]
Allow for ./config no-sha0 [from stable].

14 years agoFold rules in test/Makefiles [from stable].
Andy Polyakov [Sat, 30 Apr 2005 21:39:39 +0000 (21:39 +0000)]
Fold rules in test/Makefiles [from stable].

14 years agoTypo.
Dr. Stephen Henson [Sat, 30 Apr 2005 18:07:30 +0000 (18:07 +0000)]
Typo.

14 years agoDon't attempt to parse nested ASN1 strings by default.
Dr. Stephen Henson [Sat, 30 Apr 2005 18:02:54 +0000 (18:02 +0000)]
Don't attempt to parse nested ASN1 strings by default.

14 years agoSome true positives fixed, toss some false positives.
Richard Levitte [Sat, 30 Apr 2005 15:25:04 +0000 (15:25 +0000)]
Some true positives fixed, toss some false positives.

14 years agoFrom branch OpenSSL_0_9_7-stable, 2004-09-11 11:45:
Richard Levitte [Sat, 30 Apr 2005 15:23:14 +0000 (15:23 +0000)]
From branch OpenSSL_0_9_7-stable, 2004-09-11 11:45:

Makefile.ssl changed name to Makefile...

14 years agoFrom branch OpenSSL_0_9_7-stable, 2004-08-11 22:34:
Richard Levitte [Sat, 30 Apr 2005 15:21:40 +0000 (15:21 +0000)]
From branch OpenSSL_0_9_7-stable, 2004-08-11 22:34:

Another missing module in the VMS build files.I believe this is
the last, though...

14 years agoAll kinds of changes from branch OpenSSL_0_9_7-stable
Richard Levitte [Sat, 30 Apr 2005 15:17:05 +0000 (15:17 +0000)]
All kinds of changes from branch OpenSSL_0_9_7-stable

14 years agoThis one deserves a note. In the change to CHANGES, there's the
Richard Levitte [Sat, 30 Apr 2005 14:41:51 +0000 (14:41 +0000)]
This one deserves a note.  In the change to CHANGES, there's the
following:

+     NOTE: This is for the 0.9.7 series ONLY.  This hack will never
+     appear in 0.9.8 or later.  We EXPECT application authors to have
+     dealt properly with this when 0.9.8 is released (unless we actually
+     make such changes in the libcrypto locking code that changes will
+     have to be made anyway).

That makes this one a false positive.

14 years agoRemove a bunch of false positives, and fix some true positives.
Richard Levitte [Sat, 30 Apr 2005 14:40:19 +0000 (14:40 +0000)]
Remove a bunch of false positives, and fix some true positives.

14 years agoFrom branch OpenSSL_0_9_7-stable, 2002-11-13 15:30:
Richard Levitte [Sat, 30 Apr 2005 14:34:28 +0000 (14:34 +0000)]
From branch OpenSSL_0_9_7-stable, 2002-11-13 15:30:

The loading functions should be static if we build a dynamic
engine.

14 years agoRemove a bunch of false positives, fix one true positive.
Richard Levitte [Sat, 30 Apr 2005 13:50:57 +0000 (13:50 +0000)]
Remove a bunch of false positives, fix one true positive.

14 years agoFrom branch OpenSSL_0_9_7-stable, revision 1.1.4.1, 2002-05-23 17:25:
Richard Levitte [Sat, 30 Apr 2005 13:42:02 +0000 (13:42 +0000)]
From branch OpenSSL_0_9_7-stable, revision 1.1.4.1, 2002-05-23 17:25:

Forgot this file.

14 years agoUse more efficient way to locate end of an ASN1 structure.
Dr. Stephen Henson [Sat, 30 Apr 2005 13:06:45 +0000 (13:06 +0000)]
Use more efficient way to locate end of an ASN1 structure.

14 years agodon't let BN_CTX_free(NULL) segfault
Nils Larsch [Fri, 29 Apr 2005 21:20:31 +0000 (21:20 +0000)]
don't let BN_CTX_free(NULL) segfault

14 years agoremove false positive
Nils Larsch [Fri, 29 Apr 2005 20:41:38 +0000 (20:41 +0000)]
remove false positive

14 years agocheck return value of RAND_pseudo_bytes; backport from the stable branch
Nils Larsch [Fri, 29 Apr 2005 20:10:06 +0000 (20:10 +0000)]
check return value of RAND_pseudo_bytes; backport from the stable branch

14 years agoremove some false positive
Nils Larsch [Fri, 29 Apr 2005 19:24:50 +0000 (19:24 +0000)]
remove some false positive

14 years agohide the definition of ECDSA_METHOD and ECDSA_DATA (and mutatis mutandis
Nils Larsch [Fri, 29 Apr 2005 15:56:06 +0000 (15:56 +0000)]
hide the definition of ECDSA_METHOD and ECDSA_DATA (and mutatis mutandis
for ecdh)

14 years agoadd 192 bit prime curve to the command line options
Nils Larsch [Fri, 29 Apr 2005 15:21:09 +0000 (15:21 +0000)]
add 192 bit prime curve to the command line options

14 years agoadd reference to BN_BLINDING_new.pod
Nils Larsch [Fri, 29 Apr 2005 15:07:34 +0000 (15:07 +0000)]
add reference to BN_BLINDING_new.pod

14 years agoavoid warnings when building on systems where sizeof(void *) > sizeof(int)
Nils Larsch [Fri, 29 Apr 2005 14:26:59 +0000 (14:26 +0000)]
avoid warnings when building on systems where sizeof(void *) > sizeof(int)

14 years agoPointer to BN_MONT_CTX could be used uninitialized.
Andy Polyakov [Thu, 28 Apr 2005 08:49:01 +0000 (08:49 +0000)]
Pointer to BN_MONT_CTX could be used uninitialized.

14 years agoSynchronise with Unix build system.
Richard Levitte [Thu, 28 Apr 2005 04:55:28 +0000 (04:55 +0000)]
Synchronise with Unix build system.

14 years agoIncrease offset for BIO_f_enc() to avoid problems with overlapping buffers
Dr. Stephen Henson [Thu, 28 Apr 2005 00:21:29 +0000 (00:21 +0000)]
Increase offset for BIO_f_enc() to avoid problems with overlapping buffers
when decrypting data.

14 years agoUpdate default dependency flags.
Dr. Stephen Henson [Wed, 27 Apr 2005 16:32:30 +0000 (16:32 +0000)]
Update default dependency flags.

14 years agoLots of Win32 fixes for DTLS.
Dr. Stephen Henson [Wed, 27 Apr 2005 16:27:14 +0000 (16:27 +0000)]
Lots of Win32 fixes for DTLS.

1. "unsigned long long" isn't portable changed: to BN_ULLONG.
2. The LL prefix isn't allowed in VC++ but it isn't needed where it is used.
2. Avoid lots of compiler warnings about signed/unsigned mismatches.
3. Include new library directory pqueue in mk1mf build system.
4. Update symbols.

14 years agoget rid of Makefile.ssl in util/
Nils Larsch [Wed, 27 Apr 2005 08:56:15 +0000 (08:56 +0000)]
get rid of Makefile.ssl in util/

14 years agono Makefile.ssl anymore
Nils Larsch [Wed, 27 Apr 2005 08:48:55 +0000 (08:48 +0000)]
no Makefile.ssl anymore

14 years agoadd missing parentheses
Nils Larsch [Wed, 27 Apr 2005 07:57:50 +0000 (07:57 +0000)]
add missing parentheses

14 years agoChange method_mont_p from (char *) to (BN_MONT_CTX *) and remove several
Dr. Stephen Henson [Wed, 27 Apr 2005 00:04:59 +0000 (00:04 +0000)]
Change method_mont_p from (char *) to (BN_MONT_CTX *) and remove several
casts.

14 years agoPort BN_MONT_CTX_set_locked() from stable branch.
Dr. Stephen Henson [Tue, 26 Apr 2005 23:58:54 +0000 (23:58 +0000)]
Port BN_MONT_CTX_set_locked() from stable branch.

The function rsa_eay_mont_helper() has been removed because it is no longer
needed after this change.

14 years agoStop unused variable warning.
Dr. Stephen Henson [Tue, 26 Apr 2005 23:45:49 +0000 (23:45 +0000)]
Stop unused variable warning.

14 years agoRemove more false positives.
Dr. Stephen Henson [Tue, 26 Apr 2005 23:33:47 +0000 (23:33 +0000)]
Remove more false positives.

14 years agothere's no such thing as Makefile.ssl anymore
Bodo Möller [Tue, 26 Apr 2005 23:22:49 +0000 (23:22 +0000)]
there's no such thing as Makefile.ssl anymore

14 years agoutil/mk1mf.pl issues have been resolved
Bodo Möller [Tue, 26 Apr 2005 23:22:25 +0000 (23:22 +0000)]
util/mk1mf.pl issues have been resolved

14 years agoPort from stable branch.
Dr. Stephen Henson [Tue, 26 Apr 2005 23:21:49 +0000 (23:21 +0000)]
Port from stable branch.

14 years agoMore false positives and cases covered by port of prime.c
Dr. Stephen Henson [Tue, 26 Apr 2005 23:19:21 +0000 (23:19 +0000)]
More false positives and cases covered by port of prime.c

14 years ago"PS" to Steve's commit (Port prime utility across from stable branch).
Bodo Möller [Tue, 26 Apr 2005 23:11:05 +0000 (23:11 +0000)]
"PS" to Steve's commit (Port prime utility across from stable branch).

14 years agoPort prime utility across from stable branch.
Dr. Stephen Henson [Tue, 26 Apr 2005 23:02:52 +0000 (23:02 +0000)]
Port prime utility across from stable branch.

14 years agoadd docu for BN_BLINDING functions
Nils Larsch [Tue, 26 Apr 2005 22:33:36 +0000 (22:33 +0000)]
add docu for BN_BLINDING functions

14 years agosome updates for the blinding code; summary:
Nils Larsch [Tue, 26 Apr 2005 22:31:48 +0000 (22:31 +0000)]
some updates for the blinding code; summary:
- possibility of re-creation of the blinding parameters after a
  fixed number of uses (suggested by Bodo)
- calculatition of the rsa::e in case it's absent and p and q
  are present (see bug report #785)
- improve the performance when if one rsa structure is shared by
  more than a thread (see bug report #555)
- fix the problem described in bug report #827
- hide the definition ot the BN_BLINDING structure in bn_blind.c

14 years agoRemove more false positives.
Dr. Stephen Henson [Tue, 26 Apr 2005 22:25:10 +0000 (22:25 +0000)]
Remove more false positives.

14 years agoPort from stable branch.
Dr. Stephen Henson [Tue, 26 Apr 2005 22:07:17 +0000 (22:07 +0000)]
Port from stable branch.

14 years agoRemove more false positives.
Dr. Stephen Henson [Tue, 26 Apr 2005 22:05:19 +0000 (22:05 +0000)]
Remove more false positives.