aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2011-02-15Add FIPS flags to AES ciphers and SHA* digests.Dr. Stephen Henson2-11/+14
2011-02-15Ignore final '\n' when checking if hex line length is odd.Dr. Stephen Henson1-2/+9
2011-02-15Add support for SigGen and KeyPair tests.Dr. Stephen Henson2-18/+189
2011-02-14Update ECDSA test program to handle ECDSA2 format files.Dr. Stephen Henson2-10/+55
Correctly handle hex strings with an odd number of digits.
2011-02-14Add .cvsignore.Dr. Stephen Henson1-0/+4
2011-02-14Add ECDSA functionality to fips module. Initial very incomplete versionDr. Stephen Henson13-6/+679
of algorithm test program.
2011-02-14Include support for an add_lock callback to tiny FIPS locking API.Dr. Stephen Henson4-7/+24
2011-02-14Don't use FIPS api for ec2_oct.cDr. Stephen Henson1-2/+0
2011-02-14Reorganise ECC code for inclusion in FIPS module.Dr. Stephen Henson14-782/+1055
Move compression, point2oct and oct2point functions into separate files. Add a flags field to EC_METHOD. Add a flag EC_FLAGS_DEFAULT_OCT to use the default compession and oct functions (all existing methods do this). This removes dependencies from EC_METHOD while keeping original functionality.
2011-02-14Use BN_nist_mod_func to avoid need to peek error queue.Dr. Stephen Henson1-31/+7
2011-02-14New function BN_nist_mod_func which returns an appropriate functionDr. Stephen Henson2-0/+17
if the passed prime is a NIST prime.
2011-02-13Remove dependency of dsa_sign.o and dsa_vrf.o: new functions FIPS_dsa_sig_newDr. Stephen Henson12-36/+33
and FIPS_dsa_sig_free, reimplment DSA_SIG_new and DSA_SIG_free from ASN1 library.
2011-02-12Change FIPS source and utilities to use the "FIPS_" names directlyDr. Stephen Henson17-120/+120
instead of using regular OpenSSL API names.
2011-02-12Make no-ec2m work on Win32 build. Add nexprotoneg support too.Dr. Stephen Henson3-33/+41
2011-02-12Disable some functions in headers with no-ec2mDr. Stephen Henson2-0/+6
2011-02-12New option to disable characteristic two fields in EC code.Dr. Stephen Henson19-30/+98
2011-02-12dso_dlfcn.c: make it work on Tru64 4.0.Andy Polyakov1-0/+1
PR: 2316
2011-02-12Configure: engage assembler in Android target.Andy Polyakov2-6/+6
2011-02-12gcm128.c: make it work with no-sse2.Andy Polyakov1-0/+2
2011-02-11Add Makefile.fips.Dr. Stephen Henson1-0/+757
2011-02-11New "fispcanisteronly" build option: only build fipscanister.o andDr. Stephen Henson4-6/+28
associated utilities. This functionality will be used by the validated tarball.
2011-02-11Make Windows build work with GCM.Dr. Stephen Henson3-2/+9
2011-02-11In FIPS mode only use "Generation by Testing Candidates" equivalent.Dr. Stephen Henson1-0/+8
2011-02-11Return security strength for supported DSA parameters: will be usedDr. Stephen Henson1-7/+10
later.
2011-02-11Free keys if DSA pairwise error.Dr. Stephen Henson1-1/+5
2011-02-10x86gas.pl: make data_short work on legacy systems.Andy Polyakov1-1/+1
2011-02-10xts128.c: initial draft.Andy Polyakov1-0/+189
2011-02-10Disable FIPS restrictions when doing GCM testing.Dr. Stephen Henson1-0/+4
2011-02-09Add GCM IV generator. Add some FIPS restrictions to GCM. Update fips_gcmtest.Dr. Stephen Henson4-13/+102
2011-02-08ccm128.c: initialize ctx->block (what I was smoking?).Andy Polyakov1-1/+2
2011-02-08ccm128.c: initial draft.Andy Polyakov1-0/+303
2011-02-08Equally experimental encrypt side for fips_gcmtest. Currently this uses IVsDr. Stephen Henson1-3/+44
in the request file need to update it to generate IVs once we have an IV generator in place.
2011-02-08Sync with 1.0.1 branch.Bodo Möller1-3/+29
(CVE-2011-0014 OCSP stapling fix has been applied to HEAD as well.)
2011-02-08Set values to NULL after freeing them.Dr. Stephen Henson1-0/+1
2011-02-08Experimental incomplete AES GCM algorithm test program.Dr. Stephen Henson4-4/+242
2011-02-08OCSP stapling fix (OpenSSL 0.9.8r/1.0.0d)Bodo Möller7-7/+28
Submitted by: Neel Mehta, Adam Langley, Bodo Moeller
2011-02-08Link GCM into FIPS module. Check return value in EVP gcm.Dr. Stephen Henson4-4/+17
2011-02-08Synchronize with 1.0.0 branchBodo Möller1-0/+9
2011-02-07gcm128.c: add boundary condition checks.Andy Polyakov2-30/+64
2011-02-07Initial *very* experimental EVP support for AES-GCM. Note: probably veryDr. Stephen Henson3-1/+225
broken and subject to change.
2011-02-07Add CRYPTO_gcm128_tag() function to retrieve the tag.Dr. Stephen Henson2-0/+7
2011-02-07Use 0 not -1 (since type is size_t) for finalisation argument to do_cipher:Dr. Stephen Henson2-4/+4
the NULL value for the input buffer is sufficient to notice this case.
2011-02-07Typo.Dr. Stephen Henson1-1/+1
2011-02-07New flags EVP_CIPH_FLAG_CUSTOM_CIPHER in cipher structures if an underlyingDr. Stephen Henson3-1/+58
cipher handles all cipher symantics itself.
2011-02-07Fix memory leak.Dr. Stephen Henson1-0/+2
2011-02-07Use default ASN1 if flag set.Dr. Stephen Henson1-0/+2
2011-02-06gcm128.c: allow multiple calls to CRYPTO_gcm128_aad.Andy Polyakov1-22/+64
2011-02-06gcm128.c: fix bug in OPENSSL_SMALL_FOOTPRINT decrypt.Andy Polyakov1-5/+7
PR: 2432 Submitted by: Michael Heyman
2011-02-06Fix duplicate code and typo.Dr. Stephen Henson1-3/+1
2011-02-04Remove unneeded functions, make some functions and variables static.Dr. Stephen Henson4-39/+23
generated by cgit v1.1 at 2024-07-13 20:53:42 +0000