Andy Polyakov
c892524146
Retain binary compatibility between 0.9.7h and 0.9.7g.
2005-10-11 19:12:24 +00:00
Mark J. Cox
49a305e7ef
Bump after tagging for 0.9.7h release
2005-10-11 10:14:27 +00:00
Mark J. Cox
a40916cbba
Add fixes for CAN-2005-2969
...
Bump release ready for OpenSSL_0_9_7h tag
2005-10-11 10:10:05 +00:00
Richard Levitte
5905787c6d
Change a comment so it corresponds to reality. Put back a character that
...
was previously replaced with a NUL for parsing purposes. This seems to
fix a very weird parsing bug involving two variable references in the same
value.
2005-09-28 18:02:52 +00:00
Andy Polyakov
cd029eb6f0
Proper solution to nasm compilation problems in Borland context.
2005-09-20 06:21:39 +00:00
Nils Larsch
a21ce67a63
bugfix: register engine as default engine in ENGINE_set_default_DSA
...
Submitted by: Jonathon Green
2005-09-09 07:53:39 +00:00
Nils Larsch
e2f0d879b1
fix typo in sbgp names
...
PR: 1194
2005-09-02 21:22:08 +00:00
Nils Larsch
017f35edba
fix potential memory leak + improved error checking
...
PR: 1182
2005-08-05 14:39:11 +00:00
Dr. Stephen Henson
a0434788ce
Enable dss1 for FIPS mode.
2005-07-06 18:29:00 +00:00
Andy Polyakov
9273be0795
Fix bugs in bug-fix to x509/by_dir.c [from HEAD].
...
PR: 1131
2005-07-03 13:18:47 +00:00
Andy Polyakov
6c8a3344b6
Bugfix for bn_div_words PPC assembler implementation [from HEAD].
2005-07-03 09:24:35 +00:00
Dr. Stephen Henson
6835cdf3b4
Check PKCS7 structures in PKCS#12 files are of type data.
2005-06-30 11:37:36 +00:00
Andy Polyakov
08f7417a98
Eliminate dependency on UNICODE macro.
2005-06-27 21:14:15 +00:00
Andy Polyakov
34aca2b6b6
IA64 RC4 update from HEAD [see commentary in HEAD for details].
...
PR: 1114
2005-06-26 16:25:25 +00:00
Richard Levitte
0902926150
Change dir_ctrl to check for the environment variable before using the default
...
directory instead of the other way around.
PR: 1131
2005-06-23 21:15:06 +00:00
Dr. Stephen Henson
15d95d5f92
OID database had a NULL entry for NID 666. Add a real OID in its place.
2005-06-22 17:24:32 +00:00
Richard Levitte
0116eae43e
Do no try to pretend we're at the end of anything unless we're at the end
...
of a 4-character block.
2005-06-20 22:11:21 +00:00
Richard Levitte
2b19ce86dc
Don't put C++ comments in a C file.
2005-06-19 20:00:47 +00:00
Richard Levitte
42f335ca0e
Only define ZLIB_SHARED if it hasn't already been defined (on the command
...
line, for example).
PR: 1112
2005-06-18 04:32:18 +00:00
Nils Larsch
06e12403e0
clear dso pointer in case of an error
...
PR: 816
2005-06-17 21:14:35 +00:00
Nils Larsch
03b3a0d022
update for the cswift engine:
...
- fix the problem described in bug report 825
- fix a segfault when the engine fails to initialize
- let the engine switch to software when keysize > 2048
PR: 825, 826
Submitted by: Frédéric Giudicelli
2005-06-17 20:26:07 +00:00
Ben Laurie
7450139b8b
Default sensibly when in FIPS mode.
2005-06-10 20:49:10 +00:00
Andy Polyakov
b00f715c96
Eliminate gcc -pedantic warnings.
2005-06-09 21:37:30 +00:00
Andy Polyakov
098927c384
Allow for dso load by explicit path on HP-UX.
2005-06-09 20:47:41 +00:00
Andy Polyakov
e17d60d5fb
Fix couple gcc 4 warnings, reformat comment.
2005-06-08 21:27:34 +00:00
Andy Polyakov
3da3c85a3f
Fix typos and add missing lines in Makefile.
2005-06-07 14:08:54 +00:00
Andy Polyakov
780b97aba6
Ad-hoc DSO_pathbyaddr for selected platforms from HEAD in FIPS context.
2005-06-07 10:49:35 +00:00
Dr. Stephen Henson
5fbf6769fc
Update from head.
2005-06-06 22:42:35 +00:00
Richard Levitte
c5098ee16f
Old typo...
...
PR: 1097
2005-06-05 21:54:59 +00:00
Richard Levitte
b8bd781b7e
Synchronise some more with the Unix build.
2005-06-02 19:08:41 +00:00
Andy Polyakov
bb792a485a
Make PSS more flexible, most notably assign special meaning to negative
...
sLen values: -1 -> sLen = hLen, -2 -> sLen autochosen/autorecovered.
2005-06-02 18:07:16 +00:00
Dr. Stephen Henson
26655341fc
Update symbols. Add #ifdef OPENSSL_FIPS in various places.
2005-06-02 00:09:25 +00:00
Dr. Stephen Henson
5858d32a59
Fixes for unusual key lengths an PSS.
2005-06-01 22:06:46 +00:00
Nils Larsch
5c567ffd4c
fix assertion
2005-05-31 20:39:54 +00:00
Richard Levitte
3bc1781994
Synchronise with the Unix build...
2005-05-31 20:29:23 +00:00
Dr. Stephen Henson
485bcc9cab
Preliminary support for X9.31 RSA key generation for FIPS.
...
Included prime derivation, random prime generation, test program and
new option to genrsa.
2005-05-31 12:38:03 +00:00
Dr. Stephen Henson
4bd7bc97e8
make update
2005-05-29 12:30:21 +00:00
Richard Levitte
c3d03b70af
We have some source with \r\n as line ends. DEC C informs about that,
...
and I really can't be bothered...
2005-05-29 12:13:05 +00:00
Dr. Stephen Henson
e4c2c550b9
Add X9.31 signature support, mainly for FIPS140. Add new option to rsautl and
...
include options to use X9.31 in tests.
2005-05-28 20:15:48 +00:00
Dr. Stephen Henson
7044d328a2
Add PSS support. Minimal at this stage for FIPS140.
2005-05-27 21:59:52 +00:00
Bodo Möller
80790d89ec
Use BN_with_flags() in a cleaner way.
...
Complete previous change:
Constant time DSA [sync with mainstream].
2005-05-27 15:39:15 +00:00
Bodo Möller
44a287747f
make sure DSA signing exponentiations really are constant-time
2005-05-26 04:40:42 +00:00
Richard Levitte
48a3f2818e
When _XOPEN_SOURCE is defined, make sure it's defined to 500. Required in
...
http://www.opengroup.org/onlinepubs/007908799/xsh/compilation.html .
Notified by David Wolfe <dwolfe5272@yahoo.com>
2005-05-21 17:39:48 +00:00
Dr. Stephen Henson
8baaeba881
Place #ifdef OPENSSL_FIPS round the SHA-XXX functions in evp.h so mkdef.pl
...
knows about it.
2005-05-17 19:48:42 +00:00
Bodo Möller
bedcd5c0bb
fix memory leak (BIO_free_all needs pointer to first BIO)
...
PR: 1070
2005-05-17 05:52:18 +00:00
Bodo Möller
ecb1445ce2
Implement fixed-window exponentiation to mitigate hyper-threading
...
timing attacks.
BN_FLG_EXP_CONSTTIME requests this algorithm, and this done by default for
RSA/DSA/DH private key computations unless
RSA_FLAG_NO_EXP_CONSTTIME/DSA_FLAG_NO_EXP_CONSTTIME/
DH_FLAG_NO_EXP_CONSTTIME is set.
Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
2005-05-16 01:26:08 +00:00
Dr. Stephen Henson
775e82c58d
Fix from HEAD.
2005-05-14 12:59:05 +00:00
Dr. Stephen Henson
db5cbd8954
Fixes from HEAD.
2005-05-13 00:23:02 +00:00
Dr. Stephen Henson
c6012b252d
Fix from HEAD.
2005-05-12 23:13:40 +00:00
Dr. Stephen Henson
e1ff593dcb
Typo.
2005-05-12 17:27:48 +00:00