wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
8239 commits 20 branches 302 tags 153 MiB
Commit graph

123 commits

Author SHA1 Message Date
Dr. Stephen Henson
b219bb8f62 Perl script that checks or rebuilds FIPS hash files. This works on 
both Unix and Windows.

Merge all FIPS hash files into a single hash file fips/fips.sha1
 2005-04-14 20:44:06 +00:00
Dr. Stephen Henson
342b7e0458 Rebuild error codes. 2005-04-12 13:47:58 +00:00
Richard Levitte
9addd9b6fb Add emacs cache files to .cvsignore. 2005-04-11 14:18:14 +00:00
Dr. Stephen Henson
fe8b77753c Fix memory leak. 2005-03-22 17:29:36 +00:00
Andy Polyakov
b43b9de9e4 Real Bourne shell doesn't accept ! as in "if ! grep ..." Fix this in 
crypto/Makefile and make Makefile.org and fips/Makefile more discreet.
 2005-03-15 09:46:14 +00:00
Dr. Stephen Henson
f60fc19a69 make update 2005-01-26 20:05:46 +00:00
Richard Levitte
086b64d0d3 make update 2005-01-14 00:16:31 +00:00
Richard Levitte
630b9d70fb Use EXIT() instead of exit(). 2005-01-11 18:25:28 +00:00
Richard Levitte
c4929fb841 Clear signed vs. unsigned conflicts. 
Change the fingerprint accordingly.
 2005-01-11 16:54:35 +00:00
Andy Polyakov
b58560b915 DJGPP update. 
PR: 989
Submitted by: Doug Kaufman
 2005-01-04 10:21:55 +00:00
Dr. Stephen Henson
76d088046c RSA KAT. 2005-01-03 17:46:45 +00:00
Andy Polyakov
1acf071cd0 Backport of http://cvs.openssl.org/chngview?cn=12323, as well as eliminate 
message size limitations on 64-bit platforms.
 2004-12-20 13:13:14 +00:00
Andy Polyakov
3ae613e34f Backport of http://cvs.openssl.org/chngview?cn=12449, essentially 
a bug-fix for Win64/ia64.
 2004-12-20 13:10:27 +00:00
Andy Polyakov
535178f415 Adapt FIPS sub-tree for mingw. 2004-12-10 16:30:34 +00:00
Andy Polyakov
a4a88eea03 Solaris x86 assembler update. 2004-12-10 13:15:55 +00:00
Andy Polyakov
3d5d6f9658 Cygwin specific FIPS fix-ups. 2004-12-09 18:13:46 +00:00
Andy Polyakov
3010b1730e sha1_block_asm_data_order can't hash if message crosses 2GB boundary. 
[back-port from HEAD branch]
 2004-12-02 17:05:38 +00:00
Richard Levitte
a2617f727d Don't use $(EXHEADER) directly in for loops, as most shells will break 
if $(EXHEADER) is empty.

Notified by many, solution suggested by Carson Gaspar <carson@taltos.org>
 2004-11-02 23:53:31 +00:00
Richard Levitte
3955a76946 Make sure _XOPEN_SOURCE_EXTENDED is correctly defined, and only if not 
already defined.
 2004-11-01 08:20:28 +00:00
Richard Levitte
871080b94b fips/dh was missing in mkfiles.pl. 
make update
 2004-10-26 12:17:25 +00:00
Dr. Stephen Henson
75f7141ab4 make update 2004-10-25 00:04:22 +00:00
Ben Laurie
b16fee0aa7 Update fingerprints. 2004-10-08 10:03:57 +00:00
Richard Levitte
818c0b2e42 num is an unsigned long, but since it was transfered from 
crypto/sha/sha_locl.h, where it is in fact an int, we need to check
for less-than-zero as if it was an int...
 2004-09-06 14:21:14 +00:00
Richard Levitte
aef8807e76 Replace the bogus checks of n with proper uses of feof(), ferror() and 
clearerr().
 2004-09-06 14:19:59 +00:00
Richard Levitte
4fa9664f5e With DEC C in ANSI C mode, we need to define _XOPEN_SOURCE_EXTENDED to 
get struct timeval and gettimeofday().
 2004-08-10 10:04:13 +00:00
Richard Levitte
483b312391 Update the VMS fips library builder with the DH library. 2004-08-10 09:11:07 +00:00
Richard Levitte
1033449613 make update 2004-08-10 09:09:08 +00:00
Richard Levitte
f992081682 Correct typos and include directory specifications. 2004-08-09 12:14:08 +00:00
Dr. Stephen Henson
44dd6865b9 Stop compiler giving bogus shadow warning. 2004-08-05 18:11:43 +00:00
Richard Levitte
7f9c37457a To protect FIPS-related global variables, add locking mechanisms 
around them.

NOTE: because two new locks are added, this adds potential binary
incompatibility with earlier versions in the 0.9.7 series.  However,
those locks will only ever be touched when FIPS_mode_set() is called
and after, thanks to a variable that's only changed from 0 to 1 once
(when FIPS_mode_set() is called).  So basically, as long as FIPS mode
hasn't been engaged explicitely by the calling application, the new
locks are treated as if they didn't exist at all, thus not becoming a
problem.  Applications that are built or rebuilt to use FIPS
functionality will need to be recompiled in any case, thus not being a
problem either.
 2004-07-30 14:38:02 +00:00
Richard Levitte
86022a79a5 We're building crypto stuff, not ssl stuff. Additionally, we're in 
the fips subdirectory, not the crypto one...
 2004-07-29 22:26:57 +00:00
Dr. Stephen Henson
d2033156c5 Rename libcrypto.sha1 to libcrypto.a.sha1 2004-07-27 12:22:08 +00:00
Dr. Stephen Henson
5edd0f51e3 Stop compiler warnings. 2004-07-27 00:17:46 +00:00
Ben Laurie
03ecfadf3d Convert to X9.31. 2004-07-23 13:20:32 +00:00
Dr. Stephen Henson
40007ad24d Avoid compiler warnings. 2004-07-21 17:35:49 +00:00
Andy Polyakov
061c8f977d Eliminate enforced -g from CFLAGS. It switches off optimization with some 
compilers, e.g. DEC C.
 2004-07-17 12:48:35 +00:00
Ben Laurie
d70f5891da Corrected test program. 2004-07-12 17:59:50 +00:00
Richard Levitte
bec15f2109 Make sure the FIPS stuff is only really compiled when in FIPS mode. 2004-06-28 20:33:35 +00:00
Richard Levitte
871fe9107d Make sure we don't try to loop over an empty EXHEADER. In the 
Makefiles where this was fixed by commenting away code, change it to
check for an empty EXHEADER instead, so we have less hassle in a
future where EXHEADER changes.

PR: 900
 2004-06-21 09:07:41 +00:00
Ben Laurie
fb4de3deed Update ignores. 2004-06-19 13:18:01 +00:00
Ben Laurie
4d4716dc03 Add Diffie-Hellman to FIPS. 2004-06-19 13:16:51 +00:00
Ben Laurie
b5e4469150 The version that was actually submitted for FIPS testing. 2004-06-19 13:15:35 +00:00
Richard Levitte
3844adbf58 Run an installation of FIPS stuff as well. 2004-05-27 10:07:04 +00:00
Richard Levitte
d8e2073449 Compile the FIPS directory on VMS as well. fips-lib.com is 
essentially a copy of crypto-lib.com, with just a few edits.
 2004-05-27 10:04:40 +00:00
Richard Levitte
5affe206e1 Define FIPS_*_SIZE_T for AES, DSA and RSA as well, in preparation for 
size_t-ification of those algorithms in future version of OpenSSL...
 2004-05-19 14:16:33 +00:00
Andy Polyakov
1f4eccaaa5 Make reservations in FIPS code for upcoming size_t-fication of OpenSSL API. 
And couple of bug-fixes in fips/rand code [return without lock release and
incorrect return value in fips_rand_bytes].
 2004-05-17 15:37:26 +00:00
Ben Laurie
9ac9a29407 Fix self-tests, ban some things in FIPS mode, fix copyrights. 2004-05-15 17:51:26 +00:00
Ben Laurie
72d75ee206 Blow up in people's faces if they don't reseed. 2004-05-12 14:11:10 +00:00
Richard Levitte
141a64faff Ignore 'Makefile.save' 2004-05-12 10:07:20 +00:00
Richard Levitte
035dcd3724 Ignore the 'lib' timestamp file. 2004-05-12 08:46:43 +00:00
Richard Levitte
3e9c37a386 I forgot to modify the signature for fips_rand.c... 2004-05-12 08:42:55 +00:00
Richard Levitte
00a59641ee Only really build this file when OPENSSL_FIPS is defined. And oh, 
let's keep internal variables static.
 2004-05-12 08:28:51 +00:00
Ben Laurie
3642f632d3 Pull FIPS back into stable. 2004-05-11 12:46:24 +00:00
Richard Levitte
4ed9388e5d A new branch for FIPS-related changes has been created with the name 
OpenSSL-fips-0_9_7-stable.

Since the 0.9.7-stable branch is supposed to be in freeze and should
only contain bug corrections, this change removes the FIPS changes
from that branch.
 2003-08-11 09:37:17 +00:00
Richard Levitte
94a1183fab Avoid clashing with the regular DES functions when not compiling with 
-DFIPS.  This is basically only visible when building with shared
library supoort...
 2003-08-08 10:08:14 +00:00
Richard Levitte
3659df7d15 make update 
(I'm quite worried about what this will do to compatibility with
earlier 0.9.7 versions)
 2003-08-04 13:26:14 +00:00
Richard Levitte
16f1fdbc8b Add an empty list of AES tests. At least, the test suite will pass, 
and perhaps the conflict this generates on the person that hasn't yet
committed the real file will prompt him to do so :-).
 2003-08-04 12:03:56 +00:00
Ben Laurie
2541f58309 Make tests work (CFB1 still doesn't produce the right answers, strangely). 2003-08-03 12:22:35 +00:00
Dr. Stephen Henson
693f2e3625 Replace C++ style comments. 2003-08-01 13:07:29 +00:00
Richard Levitte
7312a38d9e No C++ comments in C programs! 2003-07-31 21:41:51 +00:00
Ben Laurie
c5f070d5d5 Whoops, forgot FIPS DES, also add EVPs for DES CFB1 and 8. 2003-07-30 18:30:18 +00:00
Ben Laurie
1b9e855744 Test vectors and useless samples. 2003-07-29 17:53:41 +00:00
Ben Laurie
f3b2ea53e2 AES CFB8. 2003-07-29 17:05:16 +00:00
Ben Laurie
ed71769948 Missing files. 2003-07-29 15:17:22 +00:00
Ben Laurie
e1c0a9c416 MMT for CFB1 2003-07-29 14:34:48 +00:00
Ben Laurie
0b8c5413a4 Reformat. 2003-07-29 14:06:02 +00:00
Ben Laurie
c473d53898 The rest of the keysizes for CFB1, working AES AVS test for CFB1. 2003-07-29 13:24:27 +00:00
Ben Laurie
e2ced802b4 Add support for partial CFB modes, make tests work, update dependencies. 2003-07-28 15:08:00 +00:00
Ben Laurie
9163658aa8 New fingerprints. 2003-07-28 09:56:08 +00:00
Ben Laurie
d3a15e132d Build when not FIPS. 2003-07-27 21:13:35 +00:00
Ben Laurie
47954f114c Build in non-FIPS mode. 2003-07-27 17:23:08 +00:00
Ben Laurie
3ef747c8b6 Use unified diff. 2003-07-27 17:19:28 +00:00
Ben Laurie
75622f1ece Unfinished FIPS stuff for review/improvement. 2003-07-27 17:00:51 +00:00