aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/rsa
Commit message (Collapse)AuthorAgeFilesLines
* Really add the EVP and all of the DES changes.Ben Laurie2001-07-302-79/+47
|
* More linker bloat reorganisation:Dr. Stephen Henson2001-07-271-0/+10
| | | | | | | | | | | | | | | | | | | | | Split private key PEM and normal PEM handling. Private key handling needs to link in stuff like PKCS#8. Relocate the ASN1 *_dup() functions, to the relevant ASN1 modules using new macro IMPLEMENT_ASN1_DUP_FUNCTION. Previously these were all in crypto/x509/x_all.c along with every ASN1 BIO/fp function which linked in *every* ASN1 function if a single dup was used. Move the authority key id ASN1 structure to a separate file. This is used in the X509 routines and its previous location linked in all the v3 extension code. Also move ASN1_tag2bit to avoid linking in a_bytes.c which is now largely obsolete. So far under Linux stripped binary with single PEM_read_X509 is now 238K compared to 380K before these changes.
* always reject data >= nBodo Möller2001-07-253-5/+35
|
* avoid warningsBodo Möller2001-07-241-2/+4
|
* Currently, RSA code, when using no padding scheme, simply checks that inputGeoff Thorpe2001-07-201-3/+12
| | | | | | | | | | | | | | | | does not contain more bytes than the RSA modulus 'n' - it does not check that the input is strictly *less* than 'n'. Whether this should be the case or not is open to debate - however, due to security problems with returning miscalculated CRT results, the 'rsa_mod_exp' implementation in rsa_eay.c now performs a public-key exponentiation to verify the CRT result and in the event of an error will instead recalculate and return a non-CRT (more expensive) mod_exp calculation. As the mod_exp of 'I' is equivalent to the mod_exp of 'I mod n', and the verify result is automatically between 0 and n-1 inclusive, the verify only matches the input if 'I' was less than 'n', otherwise even a correct CRT calculation is only congruent to 'I' (ie. they differ by a multiple of 'n'). Rather than rejecting correct calculations and doing redundant and slower ones instead, this changes the equality check in the verification code to a congruence check.
* In {RSA,DSA,DH}_new_method(x) need to increase the referenceDr. Stephen Henson2001-06-231-8/+14
| | | | | count of the ENGINE is x is not NULL since it will be freed in {RSA,DSA,DH}_free().
* make updateRichard Levitte2001-06-231-10/+20
|
* Change all calls to low level digest routines in the library andDr. Stephen Henson2001-06-191-9/+9
| | | | | | | | | | applications to use EVP. Add missing calls to HMAC_cleanup() and don't assume HMAC_CTX can be copied using memcpy(). Note: this is almost identical to the patch submitted to openssl-dev by Verdon Walker <VWalker@novell.com> except some redundant EVP_add_digest_()/EVP_cleanup() calls were removed and some changes made to avoid compiler warnings.
* Add support for MS CSP Name PKCS#12 attribute.Dr. Stephen Henson2001-06-111-2/+4
|
* more error codes fixedUlf Möller2001-06-081-3/+2
|
* when checking OAEP, signal just a single kind of 'decoding error'Bodo Möller2001-06-061-10/+11
|
* move check to avoid memory leak.Ulf Möller2001-06-061-8/+8
|
* make sure we don't write to seed[-1]Ulf Möller2001-06-061-0/+5
|
* 'make update'Richard Levitte2001-06-051-15/+22
|
* In RSA, DSA, DH, and RAND - if the "***_new()" function fails because theGeoff Thorpe2001-04-301-0/+1
| | | | ENGINE code does not return a default, set an error.
* check CRTUlf Möller2001-03-281-2/+2
|
* check CRTUlf Möller2001-03-281-1/+11
|
* Forcibly enable memory leak checking during "make test"Bodo Möller2001-03-111-0/+2
|
* Instead of telling both 'make' and the user that ranlibBodo Möller2001-03-091-2/+1
| | | | | | errors can be tolerated, hide the error from 'make'. This gives shorter output both if ranlib fails and if it works.
* make updateRichard Levitte2001-02-261-16/+14
| | | | | Note that all *_it variables are suddenly non-existant according to libeay.num. This is a bug that will be corrected. Please be patient.
* Get rid of ASN1_ITEM_FUNCTIONS dummy functionDr. Stephen Henson2001-02-231-2/+2
| | | | | | prototype hack. This unfortunately means that every ASN1_*_END construct cannot have a trailing ;
* e_os.h does not belong with the exported headers. Do not put it thereRichard Levitte2001-02-222-54/+54
| | | | | | | | and make all files the depend on it include it without prefixing it with openssl/. This means that all Makefiles will have $(TOP) as one of the include directories.
* Use new-style system-id macros everywhere possible. I hope I haven'tRichard Levitte2001-02-201-1/+1
| | | | | | | missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS.
* Use BN_rand_range().Ulf Möller2001-02-201-1/+1
|
* Make all configuration macros available for application by makingRichard Levitte2001-02-197-94/+90
| | | | | | | | | | | | sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
* Various Win32 related fixed. Make no-krb5 work in mkdef.pl .Dr. Stephen Henson2001-02-091-6/+0
| | | | | | | | Fix warning in apps/engine.c Remove definitions of deleted functions. Add missing definition of X509_VAL.
* Make depend.Ben Laurie2001-02-041-69/+80
|
* Update "OAEP reconsidered" commentBodo Möller2001-01-241-8/+8
|
* Replace the old ASN1_dup() with ASN1_item_dup() andDr. Stephen Henson2000-12-291-4/+5
| | | | zap some evil function pointers casts along the way...
* fix indentationBodo Möller2000-12-191-1/+1
|
* Don't hold CRYPTO_LOCK_RSA during time-consuming operations.Bodo Möller2000-12-191-58/+67
|
* Add a comment (intended change)Bodo Möller2000-12-181-1/+1
|
* Obtain lock CRYPTO_LOCK_RSA before creating BN_MONT_CTXBodo Möller2000-12-181-12/+70
| | | | | | structures and setting rsa->_method_mod_{n,p,q}. Submitted by: "Reddie, Steven" <Steven.Reddie@ca.com>
* Merge from the ASN1 branch of new ASN1 codeDr. Stephen Henson2000-12-083-4/+125
| | | | | | to main trunk. Lets see if the makes it to openssl-cvs :-)
* Discuss http://www.shoup.net/papers/oaep.ps.ZBodo Möller2000-12-051-1/+16
|
* Ensure that the "ex_data" member of an RSA structure is initialised beforeGeoff Thorpe2000-11-261-4/+4
| | | | | | | | the RSA_METHOD's "init()" handler is called, and is cleaned up after the RSA_METHOD's "finish()" handler is called. Custom RSA_METHODs may wish to initialise contexts and other specifics in the RSA structure upon creation and that was previously not possible - "ex_data" is where that stuff should go and it was being initialised too late for it to be used.
* in some new file names the first 8 characters were not uniqueUlf Möller2000-11-121-10/+9
|
* Really stupid glitch (a comment not properly ended) fixed.Richard Levitte2000-11-081-1/+1
|
* Remove references to RSAref. The glue library is but a memory to fadeRichard Levitte2000-11-081-1/+1
| | | | away now...
* A few more constifications of some RSA routines that I forgotRichard Levitte2000-11-073-5/+5
| | | | yesterday.
* Constify the RSA library.Richard Levitte2000-11-0611-120/+136
|
* Merge the engine branch into the main trunk. All conflicts resolved.Richard Levitte2000-10-265-49/+151
| | | | At the same time, add VMS support for Rijndael.
* The experimental Rijndael code moved to the main trunk.Richard Levitte2000-10-141-2/+6
| | | | make update done.
* 'ranlib' doesn't always run on some systems. That's actuallyRichard Levitte2000-09-251-1/+2
| | | | | acceptable, since all that happens if it fails is a library with an index, which makes linking slower, but still working correctly.
* 'make update'Richard Levitte2000-09-071-12/+18
|
* MD4 implemented. Assar Westerlund provided the digest code itself and the ↵Richard Levitte2000-08-141-6/+8
| | | | test utility, I added the bits to get a EVP interface, the command line utility and the speed test
* Fix SSL 2.0 rollback checking: The previous implementation of theBodo Möller2000-07-291-1/+1
| | | | | | | | | test was never triggered due to an off-by-one error. In s23_clnt.c, don't use special rollback-attack detection padding (RSA_SSLV23_PADDING) if SSL 2.0 is the only protocol enabled in the client; similarly, in s23_srvr.c, don't do the rollback check if SSL 2.0 is the only protocol enabled in the server.
* I got sick and tired of having to keep track of NIDs when such a thingRichard Levitte2000-07-051-4/+4
| | | | | | | | | | | | | | | | | | could be done automagically, much like the numbering in libeay.num and ssleay.num. The solution works as follows: - New object identifiers are inserted in objects.txt, following the syntax given in objects.README. - objects.pl is used to process obj_mac.num and create a new obj_mac.h. - obj_dat.pl is used to create a new obj_dat.h, using the data in obj_mac.h. This is currently kind of a hack, and the perl code in objects.pl isn't very elegant, but it works as I intended. The simplest way to check that it worked correctly is to look in obj_dat.h and check the array nid_objs and make sure the objects haven't moved around (this is important!). Additions are OK, as well as consistent name changes.
* Add support for the modified SGC key format used in IIS.Dr. Stephen Henson2000-06-151-0/+4
|
* Enable DSO support on alpha (OSF1), cc and gcc.Geoff Thorpe2000-06-131-29/+39
| | | | | | Also, "make update" has added some missing functions to libeay.num, updated the TABLE for the alpha changes, and updated thousands of dependancies that have changed from recent commits.
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-28 09:04:05 +0000