Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Initial untested CCM support via EVP. | Dr. Stephen Henson | 2011-04-18 | 6 | -11/+233 |
| | |||||
* | Compile ccm128.c, move some structures to modes_lcl.h add prototypes. | Dr. Stephen Henson | 2011-04-18 | 4 | -10/+27 |
| | |||||
* | Don't need separate tag buffer for GCM mode: use EVP_CIPHER_CTX buf | Dr. Stephen Henson | 2011-04-18 | 1 | -6/+4 |
| | | | | field which is not unused for custom ciphers. | ||||
* | Remove shlib_wrap.sh as it is not needed (all algorithm tests are | Dr. Stephen Henson | 2011-04-17 | 1 | -40/+98 |
| | | | | | | staticly linked to fipscanister.o). Add option to generate a shell script to run all tests: this is useful for platforms that don't have perl. | ||||
* | Multiple assembler packs: add experimental memory bus instrumentation. | Andy Polyakov | 2011-04-17 | 10 | -12/+724 |
| | |||||
* | Remove PSS salt length detection hack from fipslagtest.pl by allowing a regexp | Dr. Stephen Henson | 2011-04-16 | 1 | -36/+46 |
| | | | | | search of the file to determine its type. This will be needed for other tests later... | ||||
* | ccm128.c: minor optimization and bugfix in CRYPTO_ccm128_[en|de]crypt. | Andy Polyakov | 2011-04-16 | 1 | -51/+63 |
| | |||||
* | Add "post" option to fips_test_suite to run the POST only and exit. | Dr. Stephen Henson | 2011-04-15 | 1 | -0/+2 |
| | |||||
* | Add length limitation from SP800-38E. | Dr. Stephen Henson | 2011-04-15 | 3 | -0/+12 |
| | |||||
* | Add XTS selftest, include in fips_test_suite. | Dr. Stephen Henson | 2011-04-15 | 6 | -5/+79 |
| | |||||
* | Add algorithm driver for XTS mode. Fix several bugs in EVP XTS implementation. | Dr. Stephen Henson | 2011-04-15 | 3 | -11/+100 |
| | |||||
* | Add new POST support to X9.31 PRNG. | Dr. Stephen Henson | 2011-04-14 | 3 | -18/+26 |
| | |||||
* | Report each cipher used with CMAC tests. | Dr. Stephen Henson | 2011-04-14 | 3 | -20/+52 |
| | | | | Only add one error to error queue if a specific test type fails. | ||||
* | Revise fips_test_suite to use table of IDs for human readable strings. | Dr. Stephen Henson | 2011-04-14 | 3 | -60/+67 |
| | | | | Modify HMAC selftest callbacks to notify each digest type used. | ||||
* | Update CMAC, HMAC, GCM to use new POST system. | Dr. Stephen Henson | 2011-04-14 | 6 | -66/+121 |
| | | | | Fix crash if callback not set. | ||||
* | Remove several of the old obsolete FIPS_corrupt_*() functions. | Dr. Stephen Henson | 2011-04-14 | 11 | -104/+10 |
| | |||||
* | Initial incomplete POST overhaul: add support for POST callback to | Dr. Stephen Henson | 2011-04-14 | 17 | -246/+681 |
| | | | | allow status of POST to be monitored and/or failures induced. | ||||
* | Remove duplicate flag. | Dr. Stephen Henson | 2011-04-13 | 1 | -6/+3 |
| | |||||
* | Use consistent FIPS tarball name. | Dr. Stephen Henson | 2011-04-12 | 3 | -1/+6 |
| | | | | | | Add XTS to FIPS build. Hide XTS symbol names. | ||||
* | Provisional AES XTS support. | Dr. Stephen Henson | 2011-04-12 | 11 | -21/+146 |
| | |||||
* | Update fips_pkey_signature_test: use fixed string if supplies tbs is | Dr. Stephen Henson | 2011-04-12 | 4 | -59/+94 |
| | | | | | | | NULL. Always allocate signature buffer. Update ECDSA selftest to use fips_pkey_signature_test. Add copyright notice to file. | ||||
* | Complete rewrite of FIPS_selftest_dsa(). Use hardcoded 2048 bit DSA key | Dr. Stephen Henson | 2011-04-12 | 1 | -136/+157 |
| | | | | and SHA384. Use fips_pkey_signature_test(). | ||||
* | Update RSA selftest code to use a 2048 bit RSA and only a single KAT | Dr. Stephen Henson | 2011-04-12 | 3 | -345/+172 |
| | | | | for PSS+SHA256 | ||||
* | Fix memory leaks: uninstantiate DRBG during health checks. Cleanup md_ctx | Dr. Stephen Henson | 2011-04-12 | 4 | -0/+19 |
| | | | | when performing ECDSA selftest. | ||||
* | Stop warning and fix memory leaks. | Dr. Stephen Henson | 2011-04-12 | 1 | -5/+8 |
| | |||||
* | No need to disable leak checking for FIPS builds now we use internal | Dr. Stephen Henson | 2011-04-12 | 1 | -1/+1 |
| | | | | memory callbacks. | ||||
* | Update ECDSA selftest to use hard coded private keys. Include tests for | Dr. Stephen Henson | 2011-04-12 | 1 | -45/+140 |
| | | | | prime and binary fields. | ||||
* | Update fips_premain.c fingerprint. | Dr. Stephen Henson | 2011-04-12 | 1 | -1/+1 |
| | |||||
* | Update copyright year. | Dr. Stephen Henson | 2011-04-11 | 1 | -4/+7 |
| | | | | | | Zero ciphertext and plaintext temporary buffers. Check FIPS_cipher() return value. | ||||
* | Use correct version number. | Dr. Stephen Henson | 2011-04-11 | 1 | -1/+1 |
| | |||||
* | Add mem_clr.c explicity for no-asm builds. | Dr. Stephen Henson | 2011-04-11 | 1 | -0/+1 |
| | |||||
* | Fix warning. | Dr. Stephen Henson | 2011-04-11 | 1 | -0/+1 |
| | |||||
* | Set length to 41 (40 hex characters + null). | Dr. Stephen Henson | 2011-04-11 | 1 | -1/+1 |
| | |||||
* | Reorder headers to get definitions before they are used. | Dr. Stephen Henson | 2011-04-11 | 1 | -2/+4 |
| | |||||
* | Don't give dependency warning for fips builds. | Dr. Stephen Henson | 2011-04-11 | 3 | -2/+24 |
| | | | | | | Give error for "make depend" in restricted tarball builds. Document how restricted tarballs work. | ||||
* | Typo: fix duplicate call. | Dr. Stephen Henson | 2011-04-10 | 1 | -2/+0 |
| | |||||
* | fix fipscanisteronly autodetect | Dr. Stephen Henson | 2011-04-10 | 1 | -1/+2 |
| | |||||
* | Auto detect no-ec2m add option to make no-ec2m tarball. | Dr. Stephen Henson | 2011-04-10 | 2 | -0/+11 |
| | |||||
* | set OPENSSL_FIPSSYMS for restricted buils and auto detect no-ec2m | Dr. Stephen Henson | 2011-04-10 | 1 | -11/+21 |
| | |||||
* | Clarify README.FIPS. | Dr. Stephen Henson | 2011-04-10 | 1 | -0/+6 |
| | |||||
* | Auto configure for fips is from restricted tarball. | Dr. Stephen Henson | 2011-04-10 | 3 | -3/+35 |
| | | | | Remove more unnecessary files form fips tarball. | ||||
* | Remove unused build targets from Makefile.fips, add cmac to dist list. | Dr. Stephen Henson | 2011-04-10 | 1 | -116/+2 |
| | |||||
* | remove ENGINE dependency from ecdh | Dr. Stephen Henson | 2011-04-10 | 2 | -14/+5 |
| | |||||
* | Add error for health check failure. | Dr. Stephen Henson | 2011-04-09 | 3 | -108/+88 |
| | | | | Rebuild all FIPS error codes to clean out old obsolete codes. | ||||
* | Before initalising a live DRBG (i.e. not in test mode) run a complete health | Dr. Stephen Henson | 2011-04-09 | 1 | -0/+12 |
| | | | | check on a DRBG of the same type. | ||||
* | New function to return security strength of PRNG. | Dr. Stephen Henson | 2011-04-09 | 2 | -0/+24 |
| | |||||
* | DH keys have an (until now) unused 'q' parameter. When creating | Dr. Stephen Henson | 2011-04-07 | 2 | -3/+21 |
| | | | | | from DSA copy q across and if q present generate DH key in the correct range. | ||||
* | Only use fake rand once per operation. This stops the EC | Dr. Stephen Henson | 2011-04-06 | 1 | -1/+8 |
| | | | | pairwise consistency test interfering with the test. | ||||
* | Update CHANGES. | Dr. Stephen Henson | 2011-04-06 | 1 | -1/+1 |
| | |||||
* | Add fips hmac key to dgst utility. | Dr. Stephen Henson | 2011-04-06 | 1 | -0/+2 |
| |