Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add X9.42 DH certificate to S/MIME test | Dr. Stephen Henson | 2013-08-05 | 2 | -1/+47 |
| | |||||
* | CMS RFC2631 X9.42 DH enveloped data support. | Dr. Stephen Henson | 2013-08-05 | 4 | -9/+565 |
| | |||||
* | Add KDF for DH. | Dr. Stephen Henson | 2013-08-05 | 8 | -64/+274 |
| | | | | | | | | Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1. | ||||
* | Extend DH parameter generation support. | Dr. Stephen Henson | 2013-08-05 | 2 | -2/+121 |
| | | | | | Add support for DH parameter generation using DSA methods including FIPS 186-3. | ||||
* | Enhance DH dup functions. | Dr. Stephen Henson | 2013-08-05 | 2 | -22/+60 |
| | | | | Make DHparams_dup work properly with X9.42 DH parameters. | ||||
* | If present print j, seed and counter values for DH | Dr. Stephen Henson | 2013-08-05 | 1 | -0/+25 |
| | |||||
* | Minor optimisation to KDF algorithm. | Dr. Stephen Henson | 2013-08-05 | 1 | -1/+1 |
| | | | | Don't need to use temporary buffer if remaining length equals digest length. | ||||
* | Algorithm parameter support. | Dr. Stephen Henson | 2013-08-05 | 4 | -4/+29 |
| | | | | | Check and set AlgorithmIdenfier parameters for key wrap algorithms. Currently these just set parameters to NULL. | ||||
* | crypto/evp/e_aes.c: fix logical pre-processor bug and formatting. | Andy Polyakov | 2013-08-03 | 1 | -5/+11 |
| | | | | | Bug would emerge when XTS is added to bsaes-armv7.pl. Pointed out by Ard Biesheuvel of Linaro. | ||||
* | crypto/bn/asm/rsax-x86_64.pl: make it work on Darwin. | Andy Polyakov | 2013-08-03 | 1 | -9/+9 |
| | |||||
* | crypto/sha/asm/sha*-x86_64.pl: comply with Win64 ABI. | Andy Polyakov | 2013-07-31 | 2 | -8/+8 |
| | |||||
* | Various custom extension fixes. | Trevor Perrin | 2013-07-31 | 3 | -20/+13 |
| | | | | | | Force no SSL2 when custom extensions in use. Don't clear extension state when cert is set. Clear on renegotiate. | ||||
* | Add tests for ALPN functionality. | Adam Langley | 2013-07-22 | 3 | -0/+174 |
| | | | | | Conflicts: ssl/ssltest.c | ||||
* | Add a no-opt 64-bit target. | Ben Laurie | 2013-07-22 | 1 | -0/+1 |
| | |||||
* | Support ALPN. | Adam Langley | 2013-07-22 | 8 | -7/+432 |
| | | | | | | | | | | | | This change adds support for ALPN[1] in OpenSSL. ALPN is the IETF blessed version of NPN and we'll be supporting both ALPN and NPN for some time yet. [1] https://tools.ietf.org/html/draft-ietf-tls-applayerprotoneg-00 Conflicts: ssl/ssl3.h ssl/t1_lib.c | ||||
* | Make ecdsatest work with nonces. | Dr. Stephen Henson | 2013-07-19 | 2 | -2/+10 |
| | | | | | | | Update ecdsatest to use ECDSA_sign_setup and ECDSA_sign_ex, this avoids the nonce generation which would otherwise break the test. Reinstate ecdsatest. | ||||
* | Temporarily disable ECDSA test. | Dr. Stephen Henson | 2013-07-19 | 1 | -1/+1 |
| | | | | Disable ECDSA test temporarily: it is incompatible with ECDSA nonces. | ||||
* | New CMS tests. | Dr. Stephen Henson | 2013-07-17 | 1 | -0/+25 |
| | | | | Add some ECDH CMS tests. | ||||
* | Scripts to recreate S/MIME test certificates. | Dr. Stephen Henson | 2013-07-17 | 11 | -205/+489 |
| | | | | | | | Add a script to generate keys and certificates for the S/MIME and CMS tests. Update certificates and add EC examples. | ||||
* | Custom key wrap option for cms utility. | Dr. Stephen Henson | 2013-07-17 | 1 | -1/+17 |
| | |||||
* | Return correct enveloped data type in ASN1 methods. | Dr. Stephen Henson | 2013-07-17 | 2 | -0/+8 |
| | | | | | | For RSA and DSA keys return an appropriate RecipientInfo type. By setting CMS_RECIPINFO_NONE for DSA keys an appropriate error is returned if an attempt is made to use DSA with enveloped data. | ||||
* | Add support for ECDH KARI. | Dr. Stephen Henson | 2013-07-17 | 4 | -2/+402 |
| | | | | | | Add support for ECDH in enveloped data. The CMS ctrls for the EC ASN1 method decode/encode the appropriate parameters from the CMS ASN1 data and send appropriate data to the EC public key method. | ||||
* | Add support for X9.62 KDF. | Dr. Stephen Henson | 2013-07-17 | 5 | -6/+364 |
| | | | | Add X9.62 KDF to EC EVP_PKEY_METHOD. | ||||
* | Add new OIDs from RFC5753 | Dr. Stephen Henson | 2013-07-17 | 6 | -5/+194 |
| | | | | | Add OIDs for KDF schemes from RFC5753 and add cross references for each type and the appropriate digest to use. | ||||
* | CMS support for key agreeement recipient info. | Dr. Stephen Henson | 2013-07-17 | 12 | -93/+824 |
| | | | | | Add hooks to support key agreement recipient info type (KARI) using algorithm specific code in the relevant public key ASN1 method. | ||||
* | Set CMS EnvelopedData version correctly. | Dr. Stephen Henson | 2013-07-17 | 1 | -0/+73 |
| | |||||
* | EVP support for wrapping algorithms. | Dr. Stephen Henson | 2013-07-17 | 13 | -197/+420 |
| | | | | | | | | | Add support for key wrap algorithms via EVP interface. Generalise AES wrap algorithm and add to modes, making existing AES wrap algorithm a special case. Move test code to evptests.txt | ||||
* | Typo. | Dr. Stephen Henson | 2013-07-17 | 1 | -1/+1 |
| | |||||
* | Avoid need to change function code. | Dr. Stephen Henson | 2013-07-17 | 2 | -16/+16 |
| | | | | | Keep original function names for nonce versions so we don't have to change error function codes. | ||||
* | Make `safe' (EC)DSA nonces the default. | Adam Langley | 2013-07-15 | 12 | -77/+38 |
| | | | | | | | | | This change updates 8a99cb29 to make the generation of (EC)DSA nonces using the message digest the default. It also reverts the changes to (EC)DSA_METHOD structure. In addition to making it the default, removing the flag from EC_KEY means that FIPS modules will no longer have an ABI mismatch. | ||||
* | bn/asm/rsaz-avx2.pl: Windows-specific fix. | Andy Polyakov | 2013-07-12 | 1 | -3/+5 |
| | |||||
* | Fix verify loop with CRL checking. | Dr. Stephen Henson | 2013-07-12 | 1 | -0/+11 |
| | | | | | | | | | | | PR #3090 Reported by: Franck Youssef <fry@open.ch> If no new reason codes are obtained after checking a CRL exit with an error to avoid repeatedly checking the same CRL. This will only happen if verify errors such as invalid CRL scope are overridden in a callback. | ||||
* | Clarify FIXME. | Ben Laurie | 2013-07-12 | 1 | -2/+3 |
| | |||||
* | Note non-export of CC. | Ben Laurie | 2013-07-12 | 1 | -0/+2 |
| | |||||
* | Support new rsaz asm stuff. | Ben Laurie | 2013-07-12 | 1 | -0/+2 |
| | |||||
* | s/rsaz_eligible/rsaz_avx2_eligible/. | Ben Laurie | 2013-07-12 | 1 | -1/+1 |
| | |||||
* | sha512-586.pl: fix typo. | Andy Polyakov | 2013-07-10 | 1 | -1/+1 |
| | | | | Submitted by: Gisle Vanem | ||||
* | Remove RSAX engine, superseded by RSAZ module. | Andy Polyakov | 2013-07-05 | 4 | -36/+19 |
| | |||||
* | Take RSAZ modules into build loop, add glue and engage. | Andy Polyakov | 2013-07-05 | 6 | -17/+408 |
| | | | | RT: 2582, 2850 | ||||
* | Add RSAZ assembly modules. | Andy Polyakov | 2013-07-05 | 2 | -0/+3569 |
| | | | | RT: 2582, 2850 | ||||
* | bn/asm/x86_86-mont.pl: optimize reduction for Intel Core family. | Andy Polyakov | 2013-07-05 | 1 | -312/+449 |
| | |||||
* | bn/bn_exp.c: harmonize. | Andy Polyakov | 2013-07-05 | 1 | -19/+28 |
| | |||||
* | Fix multiple cosmetic typos. | Jeff Walton | 2013-07-04 | 1 | -56/+56 |
| | |||||
* | Initialise CMS signature buffer length properly. | Dr. Stephen Henson | 2013-07-02 | 1 | -1/+2 |
| | |||||
* | config: fix executable format detection on latest FreeBSD. | Andy Polyakov | 2013-06-30 | 1 | -1/+1 |
| | | | | | Submitted by: Bryan Drewery PR: 3075 | ||||
* | bn/bn_exp.c: Solaris-specific fix, T4 MONTMUL relies on alloca. | Andy Polyakov | 2013-06-30 | 1 | -0/+2 |
| | |||||
* | x86_64-xlate.pl: Windows fixes. | Andy Polyakov | 2013-06-30 | 1 | -3/+5 |
| | |||||
* | aesni-sha256-x86_64.pl: fix typo in Windows SEH. | Andy Polyakov | 2013-06-30 | 1 | -4/+0 |
| | |||||
* | Cosmetic touchups. | Trevor | 2013-06-28 | 4 | -15/+18 |
| | |||||
* | Fix duplicate error code. | Dr. Stephen Henson | 2013-06-28 | 1 | -1/+1 |
| |