wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/apps
History
Bodo Möller ecb1445ce2 Implement fixed-window exponentiation to mitigate hyper-threading 
timing attacks.

BN_FLG_EXP_CONSTTIME requests this algorithm, and this done by default for
RSA/DSA/DH private key computations unless
RSA_FLAG_NO_EXP_CONSTTIME/DSA_FLAG_NO_EXP_CONSTTIME/
DH_FLAG_NO_EXP_CONSTTIME is set.

Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller
2005-05-16 01:26:08 +00:00
..
demoCA
set
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:18:14 +00:00
app_rand.c
apps.c Remove VMS_strcasecmp() from apps.c, it's not used any more. And 2005-01-11 06:53:30 +00:00
apps.h Make sure the applications know when we are running in FIPS mode. We 2004-05-17 04:30:06 +00:00
asn1pars.c Don't try to parse none string types. 2004-07-01 18:50:12 +00:00
ca-cert.srl
ca-key.pem
ca-req.pem
ca.c Use the default_md config file value when signing CRLs. 2004-11-11 13:46:44 +00:00
CA.com
CA.pl.in Address run-time linker problems: LD_PRELOAD issue on multi-ABI platforms 2005-02-01 23:45:42 +00:00
CA.sh Address run-time linker problems: LD_PRELOAD issue on multi-ABI platforms 2005-02-01 23:45:42 +00:00
cert.pem
ciphers.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
client.pem
crl.c Don't return an error with crl -noout. 2004-11-11 02:12:48 +00:00
crl2p7.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
dgst.c Further FIPS algorithm blocking. 2005-01-28 14:03:54 +00:00
dh.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
dh512.pem
dh1024.pem
dh2048.pem
dh4096.pem
dhparam.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
dsa-ca.pem
dsa-pca.pem
dsa.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
dsa512.pem
dsa1024.pem
dsap.pem
dsaparam.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
enc.c Further FIPS algorithm blocking. 2005-01-28 14:03:54 +00:00
engine.c improve command line argument checking 2005-05-10 09:52:39 +00:00
errstr.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
gendh.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
gendsa.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
genrsa.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
install.com
makeapps.com Another missing module in the VMS build files. I believe this is the 2004-08-11 20:34:12 +00:00
Makefile Enable shared link on HP-UX. 2005-04-19 22:21:28 +00:00
nseq.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
ocsp.c Incorporate the following changes from 0.9.8-dev: 2004-03-08 02:53:46 +00:00
oid.cnf
openssl-vms.cnf Merge RFC3820 source into mainstream 0.9.7-stable. 2005-04-11 15:03:37 +00:00
openssl.c Remove defunct FIPS_allow_md5() and related functions. 2005-04-22 01:06:59 +00:00
openssl.cnf Merge RFC3820 source into mainstream 0.9.7-stable. 2005-04-11 15:03:37 +00:00
passwd.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
pca-cert.srl
pca-key.pem
pca-req.pem
pkcs7.c Call autoconfig code in pkcs7 utility. 2004-03-05 23:45:08 +00:00
pkcs8.c Memory leak fixes from main branch. 2004-06-24 13:05:50 +00:00
pkcs12.c FIPS algorithm blocking. 2005-01-26 20:00:40 +00:00
prime.c Remove unnecessary check and call BIO_free_all() on bio_out to avoid a 2004-11-27 13:02:34 +00:00
privkey.pem
progs.h Add primality tester. 2004-06-19 13:54:59 +00:00
progs.pl exclude disabled message digests 2001-09-10 17:18:56 +00:00
rand.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
req.c In FIPS mode use SHA1 as default digest in x509 and req 2005-02-05 18:24:50 +00:00
req.pem
rsa.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
rsa8192.pem
rsautl.c -passin argument to rsautl 2004-03-04 21:58:13 +00:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_apps.h Selected changes for MSDOS, contributed by Gisle Vanem <giva@bgnett.no>. 2003-09-27 21:56:12 +00:00
s_cb.c Many security improvements (CHATS) and a warning fix. 2002-11-12 13:23:40 +00:00
s_client.c Fix hang in EGD/PRNGD query when communication socket is closed 2005-02-19 10:17:26 +00:00
s_server.c Selected changes for MSDOS, contributed by Gisle Vanem <giva@bgnett.no>. 2003-09-27 21:56:12 +00:00
s_socket.c DJGPP update. 2005-01-04 10:21:55 +00:00
s_time.c Use BUF_strlcpy() instead of strcpy(). 2003-12-27 14:40:57 +00:00
server.pem
server.srl
server2.pem
sess_id.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
smime.c Various S/MIME bug and compatibility fixes. 2003-06-01 20:45:44 +00:00
speed.c Implement fixed-window exponentiation to mitigate hyper-threading 2005-05-16 01:26:08 +00:00
spkac.c Add the possibility to build without the ENGINE framework. 2003-01-30 17:37:49 +00:00
testCA.pem
testdsa.h openssl speed is quite useful for testing hardware support (among other 2001-07-11 18:59:25 +00:00
testrsa.h
verify.c Make an explicit check during certificate validation to see that the 2004-11-29 11:18:00 +00:00
version.c EXIT() may mean return(). That's confusing, so let's have it really mean 2002-12-03 16:34:28 +00:00
winrand.c Many security improvements (CHATS) and a warning fix. 2002-11-12 13:23:40 +00:00
x509.c In FIPS mode use SHA1 as default digest in x509 and req 2005-02-05 18:24:50 +00:00