aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/hmac
Commit message (Collapse)AuthorAgeFilesLines
* free cleanup almost the finaleRich Salz2015-04-301-6/+2
| | | | | | | | | | Add OPENSSL_clear_free which merges cleanse and free. (Names was picked to be similar to BN_clear_free, etc.) Removed OPENSSL_freeFunc macro. Fixed the small simple ones that are left: CRYPTO_free CRYPTO_free_locked OPENSSL_free_locked Reviewed-by: Richard Levitte <levitte@openssl.org>
* Code style: space after 'if'Viktor Dukhovni2015-04-161-6/+6
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Remove EXHEADER, TEST, APPS, links:, install: and uninstall: where relevantRichard Levitte2015-03-311-17/+1
| | | | | | | | | | | | With no more symlinks, there's no need for those variables, or the links target. This also goes for all install: and uninstall: targets that do nothing but copy $(EXHEADER) files, since that's now taken care of by the top Makefile. Also, removed METHTEST from test/Makefile. It looks like an old test that's forgotten... Reviewed-by: Rich Salz <rsalz@openssl.org>
* Stop symlinking, move files to intended directoryRichard Levitte2015-03-312-430/+0
| | | | | | | | | | | | | Rather than making include/openssl/foo.h a symlink to crypto/foo/foo.h, this change moves the file to include/openssl/foo.h once and for all. Likewise, move crypto/foo/footest.c to test/footest.c, instead of symlinking it there. Originally-by: Geoff Thorpe <geoff@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Fix HMAC to pass invalid key len testMatt Caswell2015-03-251-1/+2
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Add HMAC test for invalid key lenMatt Caswell2015-03-251-0/+5
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Ensure that both the MD and key have been initialised before attempting toMatt Caswell2015-03-252-3/+21
| | | | | | | | create an HMAC Inspired by BoringSSL commit 2fe7f2d0d9a6fcc75b4e594eeec306cc55acd594 Reviewed-by: Richard Levitte <levitte@openssl.org>
* Add more HMAC testsMatt Caswell2015-03-251-7/+162
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* make dependDr. Stephen Henson2015-03-241-3/+3
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Move some EVP internals to evp_int.hDr. Stephen Henson2015-03-241-1/+1
| | | | | | Move EVP internals to evp_int.h, remove -Ievp hack from crypto/Makefile Reviewed-by: Matt Caswell <matt@openssl.org>
* Move some ASN.1 internals to asn1_int.hDr. Stephen Henson2015-03-241-1/+1
| | | | | | | | Move ASN.1 internals used across multiple directories into new internal header file asn1_int.h remove crypto/Makefile hack which allowed other directories to include "asn1_locl.h" Reviewed-by: Matt Caswell <matt@openssl.org>
* HMAC_cleanup, and HMAC_Init are stated as deprecated in the docs and source.Matt Caswell2015-02-102-3/+8
| | | | | | Mark them as such with OPENSSL_USE_DEPRECATED Reviewed-by: Tim Hudson <tjh@openssl.org>
* Remove OPENSSL_NO_HMACDr. Stephen Henson2015-02-062-12/+0
| | | | | | | Disabling HMAC doesn't work. If it did it would end up disabling a lot of OpenSSL functionality (it is required for all versions of TLS for example). Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org>
* clang on Linux x86_64 complains about unreachable code.Richard Levitte2015-01-291-1/+0
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Run util/openssl-format-source -v -c .Matt Caswell2015-01-225-546/+516
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* Fix strange formatting by indentMatt Caswell2015-01-221-2/+4
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* remove OPENSSL_FIPSAPIDr. Stephen Henson2014-12-081-1/+1
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* Remove fipscanister build functionality from makefiles.Dr. Stephen Henson2014-12-081-1/+1
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* Remove all .cvsignore filesRich Salz2014-11-281-4/+0
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* RT2626: Change default_bits from 1K to 2KKurt Roeckx2014-09-081-1/+1
| | | | | | | | | | This is a more comprehensive fix. It changes all keygen apps to use 2K keys. It also changes the default to use SHA256 not SHA1. This is from Kurt's upstream Debian changes. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Kurt Roeckx <kurt@openssl.org>
* old_hmac_encode: check for NULL result when allocating *pderJonas Maebe2014-08-171-0/+2
| | | | | Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Add functions returning security bits.Dr. Stephen Henson2014-03-281-1/+1
| | | | | Add functions to return the "bits of security" for various public key algorithms. Based on SP800-57.
* Fix some warnings caused by __owur. Temporarily (I hope) remove the moreBen Laurie2011-11-141-3/+3
| | | | aspirational __owur annotations.
* make updateBodo Möller2011-09-051-7/+6
|
* inherit HMAC flags from MD_CTXDr. Stephen Henson2011-05-191-0/+2
|
* make updateRichard Levitte2011-03-241-6/+7
|
* Add SRP support.Ben Laurie2011-03-121-7/+6
|
* Update dependencies.Dr. Stephen Henson2011-02-211-6/+7
|
* Change OPENSSL_FIPSEVP to OPENSSL_FIPSAPI as it doesn't just referDr. Stephen Henson2011-01-271-1/+1
| | | | | | | | to EVP any more. Move locking #define into fips.h. Set FIPS locking callbacks at same time as OpenSSL locking callbacks.
* FIPS HMAC changes:Dr. Stephen Henson2011-01-261-9/+13
| | | | | | Use EVP macros. Use tiny EVP in FIPS mode.
* Change AR to ARX to allow exclusion of fips object modulesDr. Stephen Henson2011-01-261-1/+1
|
* Fix warnings.Ben Laurie2010-06-121-3/+0
|
* Add algorithm specific signature printing. An individual ASN1 method canDr. Stephen Henson2010-03-061-1/+1
| | | | | | | | | | | now print out signatures instead of the standard hex dump. More complex signatures (e.g. PSS) can print out more meaningful information. Sample DSA version included that prints out the signature parameters r, s. [Note EVP_PKEY_ASN1_METHOD is an application opaque structure so adding new fields in the middle has no compatibility issues]
* Add flags functions which were added to 0.9.8 for fips but not 1.0.0 andDr. Stephen Henson2010-01-262-0/+7
| | | | later.
* Audit libcrypto for unchecked return values: fix all cases enounteredDr. Stephen Henson2009-09-231-5/+9
|
* Add more return value checking attributes to evp.h and hmac.hDr. Stephen Henson2009-09-231-5/+5
|
* If we're going to return errors (no matter how stupid), then we shouldBen Laurie2008-12-291-1/+5
| | | | test for them!
* Revert the size_t modifications from HEAD that had led to moreGeoff Thorpe2008-11-123-7/+7
| | | | | | knock-on work than expected - they've been extracted into a patch series that can be completed elsewhere, or in a different branch, before merging back to HEAD.
* Update obsolete email address...Dr. Stephen Henson2008-11-052-2/+2
|
* Update HMAC functions to return an error where relevant.Dr. Stephen Henson2008-11-022-32/+61
|
* More size_tification.Ben Laurie2008-11-013-8/+7
|
* Fix some warnings.Dr. Stephen Henson2008-03-161-1/+2
|
* 1. Changes for s_client.c to make it return non-zero exit code in caseDr. Stephen Henson2007-10-261-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | of handshake failure 2. Changes to x509_certificate_type function (crypto/x509/x509type.c) to make it recognize GOST certificates as EVP_PKT_SIGN|EVP_PKT_EXCH (required for s3_srvr to accept GOST client certificates). 3. Changes to EVP - adding of function EVP_PKEY_CTX_get0_peerkey - Make function EVP_PKEY_derive_set_peerkey work for context with ENCRYPT operation, because we use peerkey field in the context to pass non-ephemeral secret key to GOST encrypt operation. - added EVP_PKEY_CTRL_SET_IV control command. It is really GOST-specific, but it is used in SSL code, so it has to go in some header file, available during libssl compilation 4. Fix to HMAC to avoid call of OPENSSL_cleanse on undefined data 5. Include des.h if KSSL_DEBUG is defined into some libssl files, to make debugging output which depends on constants defined there, work and other KSSL_DEBUG output fixes 6. Declaration of real GOST ciphersuites, two authentication methods SSL_aGOST94 and SSL_aGOST2001 and one key exchange method SSL_kGOST 7. Implementation of these methods. 8. Support for sending unsolicited serverhello extension if GOST ciphersuite is selected. It is require for interoperability with CryptoPro CSP 3.0 and 3.6 and controlled by SSL_OP_CRYPTOPRO_TLSEXT_BUG constant. This constant is added to SSL_OP_ALL, because it does nothing, if non-GOST ciphersuite is selected, and all implementation of GOST include compatibility with CryptoPro. 9. Support for CertificateVerify message without length field. It is another CryptoPro bug, but support is made unconditional, because it does no harm for draft-conforming implementation. 10. In tls1_mac extra copy of stream mac context is no more done. When I've written currently commited code I haven't read EVP_DigestSignFinal manual carefully enough and haven't noticed that it does an internal digest ctx copying. This implementation was tested against 1. CryptoPro CSP 3.6 client and server 2. Cryptopro CSP 3.0 server
* Revert broken change to ccgost.Dr. Stephen Henson2007-05-221-1/+4
| | | | Initialize context properly for HMAC pkey method.
* New function EVP_PKEY_asn1_copy(). Use default MD if type param is NULL.Dr. Stephen Henson2007-05-151-1/+14
|
* Add SEED encryption algorithm.Bodo Möller2007-04-231-0/+25
| | | | | | PR: 1503 Submitted by: KISA Reviewed by: Bodo Moeller
* Copy update callback across when copying EVP_MD_CTX.Dr. Stephen Henson2007-04-121-4/+0
| | | | Remove unnecessary reference to EVP_MD_CTX in HMAC pkey method.
* Experimental HMAC support via EVP_PKEY_METHOD.Dr. Stephen Henson2007-04-115-2/+427
|
* Update filenames in makefiles.Dr. Stephen Henson2006-02-041-1/+1
|
* Move cryptlib.h prior bio.h. Actually it makes sense to include cryptlib.hAndy Polyakov2005-05-171-1/+1
| | | | | first everywhere in crypto and skip stdio.h and string.h [because it includes them].
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-23 09:12:11 +0000