Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge branch 'erbridge-probable_primes' | Ben Laurie | 2014-06-01 | 7 | -43/+347 |
|\ | |||||
| * | Credit to Felix. | Ben Laurie | 2014-06-01 | 1 | -0/+4 |
| | | | | | | | | Closes #116. | ||||
| * | Tidy up, don't exceed the number of requested bits. | Ben Laurie | 2014-06-01 | 1 | -38/+41 |
| | | |||||
| * | Constify and reduce coprime random bits to allow for multiplier. | Ben Laurie | 2014-06-01 | 1 | -5/+8 |
| | | |||||
| * | Zero prime doits. | Ben Laurie | 2014-06-01 | 1 | -0/+2 |
| | | |||||
| * | Add option to run all prime tests. | Ben Laurie | 2014-06-01 | 1 | -0/+5 |
| | | |||||
| * | Add a test to check we're really generating probable primes. | Felix Laurie von Massenbach | 2014-06-01 | 2 | -2/+40 |
| | | |||||
| * | Remove unused BIGNUMs. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -7/+0 |
| | | |||||
| * | Only count successful generations. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -3/+3 |
| | | |||||
| * | Refactor the first prime index. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -3/+3 |
| | | |||||
| * | Try skipping over the adding and just picking a new random number. | Felix Laurie von Massenbach | 2014-06-01 | 4 | -46/+145 |
| | | | | | | | | | | | | | | | | Generates a number coprime to 2, 3, 5, 7, 11. Speed: Trial div (add) : trial div (retry) : coprime 1 : 0.42 : 0.84 | ||||
| * | Remove editor barf on updating copyright. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -1/+1 |
| | | |||||
| * | Add python script to generate the bits needed for the prime generator. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -0/+21 |
| | | |||||
| * | Generate safe primes not divisible by 3, 5 or 7. | Felix Laurie von Massenbach | 2014-06-01 | 3 | -11/+21 |
| | | | | | | | | ~2% speed improvement on trial division. | ||||
| * | Add a method to generate a prime that is guaranteed not to be divisible by 3 ↵ | Felix Laurie von Massenbach | 2014-06-01 | 3 | -29/+80 |
| | | | | | | | | | | | | or 5. Possibly some reduction in bias, but no speed gains. | ||||
| * | Run the prime speed tests for 10 seconds. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -21/+27 |
| | | |||||
| * | Tidy up speed.c a little. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -17/+18 |
| | | |||||
| * | Add speed test for prime trial division. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -0/+64 |
| | | |||||
| * | Remove static from probable_prime_dh. | Felix Laurie von Massenbach | 2014-06-01 | 2 | -42/+43 |
| | | |||||
| * | Remove indentation from the goto targets. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -3/+5 |
| | | |||||
| * | Strip trailing whitespace from Configure. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -17/+17 |
| | | |||||
| * | Add a new target to Configure for me. | Felix Laurie von Massenbach | 2014-06-01 | 1 | -0/+1 |
|/ | |||||
* | Set default global mask to UTF8 only. | Dr. Stephen Henson | 2014-06-01 | 1 | -1/+1 |
| | |||||
* | Allocate extra space when NETSCAPE_HANG_BUG defined. | David Ramos | 2014-06-01 | 1 | -0/+5 |
| | | | | | | | Make sure there is an extra 4 bytes for server done message when NETSCAPE_HANG_BUG is defined. PR#3361 | ||||
* | Initialise alg. | David Ramos | 2014-06-01 | 1 | -1/+1 |
| | | | | PR#3313 | ||||
* | Use correct digest when exporting keying material. | Dr. Stephen Henson | 2014-05-31 | 1 | -1/+1 |
| | | | | PR#3319 | ||||
* | Don't compile heartbeat test code on Windows (for now). | Dr. Stephen Henson | 2014-05-31 | 1 | -1/+1 |
| | |||||
* | add description of -attime to man page | Hubert Kario | 2014-05-30 | 1 | -0/+7 |
| | | | | | | | the verify app man page didn't describe the usage of attime option even though it was listed as a valid option in the -help message. This patch fixes this omission. | ||||
* | add description of -no_ecdhe option to s_server man page | Hubert Kario | 2014-05-30 | 1 | -0/+6 |
| | | | | | | While the -help message references this option, the man page doesn't mention the -no_ecdhe option. This patch fixes this omission. | ||||
* | aesv8-armx.pl: add CTR implementation. | Andy Polyakov | 2014-05-29 | 1 | -1/+249 |
| | | | | Submitted by: Ard Biesheuvel. | ||||
* | Set version number correctly. | Dr. Stephen Henson | 2014-05-29 | 1 | -2/+2 |
| | | | | PR#3249 | ||||
* | Fix memory leak. | František Bořánek | 2014-05-29 | 1 | -1/+1 |
| | | | | PR#3278 | ||||
* | remove duplicate 0x for default RSASSA-PSS salt len | Martin Kaiser | 2014-05-29 | 1 | -1/+1 |
| | |||||
* | aesp8-ppc.pl: optimize CBC decrypt even further. | Andy Polyakov | 2014-05-29 | 1 | -334/+231 |
| | | | | 10-19% improvement depending on key length and endianness. | ||||
* | Fix for test_bn regular expression to work on Windows using MSYS. PR#3346 | Peter Mosmans | 2014-05-27 | 1 | -1/+1 |
| | |||||
* | Changed -strictpem to use PEM_read_bio | Matt Caswell | 2014-05-26 | 2 | -58/+42 |
| | |||||
* | Added -strictpem parameter to enable processing of PEM files with data prior ↵ | Matt Caswell | 2014-05-26 | 2 | -3/+53 |
| | | | | to the BEGIN marker | ||||
* | Fix cast of boolean where cast of LHS intended. | Juli Mallett | 2014-05-26 | 1 | -1/+1 |
| | | | | Closes #74. | ||||
* | Fixed error in args for SSL_set_msg_callback and SSL_set_msg_callback_arg | Matt Caswell | 2014-05-25 | 1 | -2/+2 |
| | |||||
* | Make it build. | Ben Laurie | 2014-05-25 | 1 | -2/+2 |
| | | | | Closes #31. | ||||
* | add test case to makefiles | Christian Heimes | 2014-05-25 | 3 | -6/+29 |
| | |||||
* | Implement tests for PKCS#5 PBKDF2 HMAC | Christian Heimes | 2014-05-25 | 1 | -0/+211 |
| | |||||
* | Don't use expired certificates if possible. | Dr. Stephen Henson | 2014-05-25 | 3 | -9/+37 |
| | | | | | | | | When looking for the issuer of a certificate, if current candidate is expired, continue looking. Only return an expired certificate if no valid certificates are found. PR#3359 | ||||
* | Rename vpm_int.h to x509_lcl.h | Dr. Stephen Henson | 2014-05-25 | 4 | -6/+6 |
| | |||||
* | Fix for non compilation with TLS_DEBUG defined | Matt Caswell | 2014-05-24 | 1 | -5/+1 |
| | |||||
* | Only copy opensslconf.h at init time. | Ben Laurie | 2014-05-24 | 1 | -0/+6 |
| | |||||
* | Modify the description of -noout to match the manpage. PR#3364 | Martin Kaiser | 2014-05-24 | 1 | -1/+1 |
| | |||||
* | Add an NSS output format to sess_id to export to export the session id and ↵ | Martin Kaiser | 2014-05-24 | 7 | -5/+46 |
| | | | | the master key in NSS keylog format. PR#3352 | ||||
* | OpenSSL is able to generate a certificate with name constraints with any ↵ | Luiz Angelo Daros de Luca | 2014-05-23 | 1 | -0/+35 |
| | | | | | | | | | | | | | | | | | | | | | | | | possible subjectAltName field. The Name Contraint example in x509v3_config(5) even use IP as an example: nameConstraints=permitted;IP:192.168.0.0/255.255.0.0 However, until now, the verify code for IP name contraints did not exist. Any check with a IP Address Name Constraint results in a "unsupported name constraint type" error. This patch implements support for IP Address Name Constraint (v4 and v6). This code validaded correcly certificates with multiple IPv4/IPv6 address checking against a CA certificate with these constraints: permitted;IP.1=10.9.0.0/255.255.0.0 permitted;IP.2=10.48.0.0/255.255.0.0 permitted;IP.3=10.148.0.0/255.255.0.0 permitted;IP.4=fdc8:123f:e31f::/ffff:ffff:ffff:: Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com> | ||||
* | aesp8-ppc.pl: add optimized CBC decrypt. | Andy Polyakov | 2014-05-23 | 1 | -86/+733 |
| |