aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add X9.42 DH certificate to S/MIME testDr. Stephen Henson2013-08-052-1/+47
|
* CMS RFC2631 X9.42 DH enveloped data support.Dr. Stephen Henson2013-08-054-9/+565
|
* Add KDF for DH.Dr. Stephen Henson2013-08-058-64/+274
| | | | | | | | Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1.
* Extend DH parameter generation support.Dr. Stephen Henson2013-08-052-2/+121
| | | | | Add support for DH parameter generation using DSA methods including FIPS 186-3.
* Enhance DH dup functions.Dr. Stephen Henson2013-08-052-22/+60
| | | | Make DHparams_dup work properly with X9.42 DH parameters.
* If present print j, seed and counter values for DHDr. Stephen Henson2013-08-051-0/+25
|
* Minor optimisation to KDF algorithm.Dr. Stephen Henson2013-08-051-1/+1
| | | | Don't need to use temporary buffer if remaining length equals digest length.
* Algorithm parameter support.Dr. Stephen Henson2013-08-054-4/+29
| | | | | Check and set AlgorithmIdenfier parameters for key wrap algorithms. Currently these just set parameters to NULL.
* crypto/evp/e_aes.c: fix logical pre-processor bug and formatting.Andy Polyakov2013-08-031-5/+11
| | | | | Bug would emerge when XTS is added to bsaes-armv7.pl. Pointed out by Ard Biesheuvel of Linaro.
* crypto/bn/asm/rsax-x86_64.pl: make it work on Darwin.Andy Polyakov2013-08-031-9/+9
|
* crypto/sha/asm/sha*-x86_64.pl: comply with Win64 ABI.Andy Polyakov2013-07-312-8/+8
|
* Various custom extension fixes.Trevor Perrin2013-07-313-20/+13
| | | | | | Force no SSL2 when custom extensions in use. Don't clear extension state when cert is set. Clear on renegotiate.
* Add tests for ALPN functionality.Adam Langley2013-07-223-0/+174
| | | | | Conflicts: ssl/ssltest.c
* Add a no-opt 64-bit target.Ben Laurie2013-07-221-0/+1
|
* Support ALPN.Adam Langley2013-07-228-7/+432
| | | | | | | | | | | | This change adds support for ALPN[1] in OpenSSL. ALPN is the IETF blessed version of NPN and we'll be supporting both ALPN and NPN for some time yet. [1] https://tools.ietf.org/html/draft-ietf-tls-applayerprotoneg-00 Conflicts: ssl/ssl3.h ssl/t1_lib.c
* Make ecdsatest work with nonces.Dr. Stephen Henson2013-07-192-2/+10
| | | | | | | Update ecdsatest to use ECDSA_sign_setup and ECDSA_sign_ex, this avoids the nonce generation which would otherwise break the test. Reinstate ecdsatest.
* Temporarily disable ECDSA test.Dr. Stephen Henson2013-07-191-1/+1
| | | | Disable ECDSA test temporarily: it is incompatible with ECDSA nonces.
* New CMS tests.Dr. Stephen Henson2013-07-171-0/+25
| | | | Add some ECDH CMS tests.
* Scripts to recreate S/MIME test certificates.Dr. Stephen Henson2013-07-1711-205/+489
| | | | | | | Add a script to generate keys and certificates for the S/MIME and CMS tests. Update certificates and add EC examples.
* Custom key wrap option for cms utility.Dr. Stephen Henson2013-07-171-1/+17
|
* Return correct enveloped data type in ASN1 methods.Dr. Stephen Henson2013-07-172-0/+8
| | | | | | For RSA and DSA keys return an appropriate RecipientInfo type. By setting CMS_RECIPINFO_NONE for DSA keys an appropriate error is returned if an attempt is made to use DSA with enveloped data.
* Add support for ECDH KARI.Dr. Stephen Henson2013-07-174-2/+402
| | | | | | Add support for ECDH in enveloped data. The CMS ctrls for the EC ASN1 method decode/encode the appropriate parameters from the CMS ASN1 data and send appropriate data to the EC public key method.
* Add support for X9.62 KDF.Dr. Stephen Henson2013-07-175-6/+364
| | | | Add X9.62 KDF to EC EVP_PKEY_METHOD.
* Add new OIDs from RFC5753Dr. Stephen Henson2013-07-176-5/+194
| | | | | Add OIDs for KDF schemes from RFC5753 and add cross references for each type and the appropriate digest to use.
* CMS support for key agreeement recipient info.Dr. Stephen Henson2013-07-1712-93/+824
| | | | | Add hooks to support key agreement recipient info type (KARI) using algorithm specific code in the relevant public key ASN1 method.
* Set CMS EnvelopedData version correctly.Dr. Stephen Henson2013-07-171-0/+73
|
* EVP support for wrapping algorithms.Dr. Stephen Henson2013-07-1713-197/+420
| | | | | | | | | Add support for key wrap algorithms via EVP interface. Generalise AES wrap algorithm and add to modes, making existing AES wrap algorithm a special case. Move test code to evptests.txt
* Typo.Dr. Stephen Henson2013-07-171-1/+1
|
* Avoid need to change function code.Dr. Stephen Henson2013-07-172-16/+16
| | | | | Keep original function names for nonce versions so we don't have to change error function codes.
* Make `safe' (EC)DSA nonces the default.Adam Langley2013-07-1512-77/+38
| | | | | | | | | This change updates 8a99cb29 to make the generation of (EC)DSA nonces using the message digest the default. It also reverts the changes to (EC)DSA_METHOD structure. In addition to making it the default, removing the flag from EC_KEY means that FIPS modules will no longer have an ABI mismatch.
* bn/asm/rsaz-avx2.pl: Windows-specific fix.Andy Polyakov2013-07-121-3/+5
|
* Fix verify loop with CRL checking.Dr. Stephen Henson2013-07-121-0/+11
| | | | | | | | | | | PR #3090 Reported by: Franck Youssef <fry@open.ch> If no new reason codes are obtained after checking a CRL exit with an error to avoid repeatedly checking the same CRL. This will only happen if verify errors such as invalid CRL scope are overridden in a callback.
* Clarify FIXME.Ben Laurie2013-07-121-2/+3
|
* Note non-export of CC.Ben Laurie2013-07-121-0/+2
|
* Support new rsaz asm stuff.Ben Laurie2013-07-121-0/+2
|
* s/rsaz_eligible/rsaz_avx2_eligible/.Ben Laurie2013-07-121-1/+1
|
* sha512-586.pl: fix typo.Andy Polyakov2013-07-101-1/+1
| | | | Submitted by: Gisle Vanem
* Remove RSAX engine, superseded by RSAZ module.Andy Polyakov2013-07-054-36/+19
|
* Take RSAZ modules into build loop, add glue and engage.Andy Polyakov2013-07-056-17/+408
| | | | RT: 2582, 2850
* Add RSAZ assembly modules.Andy Polyakov2013-07-052-0/+3569
| | | | RT: 2582, 2850
* bn/asm/x86_86-mont.pl: optimize reduction for Intel Core family.Andy Polyakov2013-07-051-312/+449
|
* bn/bn_exp.c: harmonize.Andy Polyakov2013-07-051-19/+28
|
* Fix multiple cosmetic typos.Jeff Walton2013-07-041-56/+56
|
* Initialise CMS signature buffer length properly.Dr. Stephen Henson2013-07-021-1/+2
|
* config: fix executable format detection on latest FreeBSD.Andy Polyakov2013-06-301-1/+1
| | | | | Submitted by: Bryan Drewery PR: 3075
* bn/bn_exp.c: Solaris-specific fix, T4 MONTMUL relies on alloca.Andy Polyakov2013-06-301-0/+2
|
* x86_64-xlate.pl: Windows fixes.Andy Polyakov2013-06-301-3/+5
|
* aesni-sha256-x86_64.pl: fix typo in Windows SEH.Andy Polyakov2013-06-301-4/+0
|
* Cosmetic touchups.Trevor2013-06-284-15/+18
|
* Fix duplicate error code.Dr. Stephen Henson2013-06-281-1/+1
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-19 09:54:03 +0000