Ben Laurie 
							
						 
					 
					
						
						
							
						
						8bf0eee8d9 
					 
					
						
						
							
							Note non-export of CC.  
						
						
						
						
					 
					
						2013-07-12 14:48:13 +01:00 
						 
				 
			
				
					
						
							
							
								Ben Laurie 
							
						 
					 
					
						
						
							
						
						82fe001b8d 
					 
					
						
						
							
							Support new rsaz asm stuff.  
						
						
						
						
					 
					
						2013-07-12 12:48:24 +01:00 
						 
				 
			
				
					
						
							
							
								Ben Laurie 
							
						 
					 
					
						
						
							
						
						852f837f5e 
					 
					
						
						
							
							s/rsaz_eligible/rsaz_avx2_eligible/.  
						
						
						
						
					 
					
						2013-07-12 12:47:39 +01:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						241fba4ea9 
					 
					
						
						
							
							sha512-586.pl: fix typo.  
						
						... 
						
						
						
						Submitted by: Gisle Vanem 
						
						
					 
					
						2013-07-10 09:59:25 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						f5b132d652 
					 
					
						
						
							
							Remove RSAX engine, superseded by RSAZ module.  
						
						
						
						
					 
					
						2013-07-05 22:11:28 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						ca48ace5c5 
					 
					
						
						
							
							Take RSAZ modules into build loop, add glue and engage.  
						
						... 
						
						
						
						RT: 2582, 2850 
						
						
					 
					
						2013-07-05 21:39:47 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						0b4bb91db6 
					 
					
						
						
							
							Add RSAZ assembly modules.  
						
						... 
						
						
						
						RT: 2582, 2850 
						
						
					 
					
						2013-07-05 21:30:18 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						26e43b48a3 
					 
					
						
						
							
							bn/asm/x86_86-mont.pl: optimize reduction for Intel Core family.  
						
						
						
						
					 
					
						2013-07-05 21:10:56 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						cbce8c4644 
					 
					
						
						
							
							bn/bn_exp.c: harmonize.  
						
						
						
						
					 
					
						2013-07-05 20:52:58 +02:00 
						 
				 
			
				
					
						
							
							
								Jeff Walton 
							
						 
					 
					
						
						
							
						
						3d7bf77f61 
					 
					
						
						
							
							Fix multiple cosmetic typos.  
						
						
						
						
					 
					
						2013-07-04 20:35:53 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						e0f7cfda68 
					 
					
						
						
							
							Initialise CMS signature buffer length properly.  
						
						
						
						
					 
					
						2013-07-02 22:12:19 +01:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						c256e69d3f 
					 
					
						
						
							
							config: fix executable format detection on latest FreeBSD.  
						
						... 
						
						
						
						Submitted by: Bryan Drewery
PR: 3075 
						
						
					 
					
						2013-06-30 23:55:55 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						b74ce8d948 
					 
					
						
						
							
							bn/bn_exp.c: Solaris-specific fix, T4 MONTMUL relies on alloca.  
						
						
						
						
					 
					
						2013-06-30 23:09:09 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						a9d14832fd 
					 
					
						
						
							
							x86_64-xlate.pl: Windows fixes.  
						
						
						
						
					 
					
						2013-06-30 23:07:33 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						42386fdb62 
					 
					
						
						
							
							aesni-sha256-x86_64.pl: fix typo in Windows SEH.  
						
						
						
						
					 
					
						2013-06-30 23:06:28 +02:00 
						 
				 
			
				
					
						
							
							
								Trevor 
							
						 
					 
					
						
						
							
						
						5382adbf2c 
					 
					
						
						
							
							Cosmetic touchups.  
						
						
						
						
					 
					
						2013-06-28 16:01:12 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						ac9ce2cf03 
					 
					
						
						
							
							Fix duplicate error code.  
						
						
						
						
					 
					
						2013-06-28 14:21:48 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						5c84d2f560 
					 
					
						
						
							
							Update CHANGES  
						
						
						
						
					 
					
						2013-06-21 23:43:06 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						4bf4a6501c 
					 
					
						
						
							
							Update cms docs.  
						
						... 
						
						
						
						Document use of -keyopt to use RSA-PSS and RSA-OAEP modes. 
						
						
					 
					
						2013-06-21 23:43:06 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						32b18e0338 
					 
					
						
						
							
							Add new CMS tests.  
						
						... 
						
						
						
						Add new tests to cms-test.pl covering PSS and OAEP. 
						
						
					 
					
						2013-06-21 23:43:06 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						02498cc885 
					 
					
						
						
							
							Add -keyopt option to cms utility.  
						
						... 
						
						
						
						Add support for custom public key parameters in the cms utility using
the -keyopt switch. Works for -sign and also -encrypt if -recip is used. 
						
						
					 
					
						2013-06-21 23:43:06 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						0574cadf85 
					 
					
						
						
							
							CMS RSA-OAEP and RSA-PSS support.  
						
						... 
						
						
						
						Extend RSA ASN1 method to support CMS PSS signatures for both sign
and verify.
For signing the EVP_PKEY_CTX parameters are read and the appropriate
CMS structures set up.
For verification the CMS structures are analysed and the corresponding
parameters in the EVP_PKEY_CTX set.
Also add RSA-OAEP support.
For encrypt the EVP_PKEY_CTX parameters are used.
For decrypt the CMS structure is uses to set the appropriate EVP_PKEY_CTX
parameters. 
						
						
					 
					
						2013-06-21 23:43:05 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						e365352d6a 
					 
					
						
						
							
							CMS public key parameter support.  
						
						... 
						
						
						
						Add support for customisation of CMS handling of signed and enveloped
data from custom public key parameters.
This will provide support for RSA-PSS and RSA-OAEP but could also be
applied to other algorithms. 
						
						
					 
					
						2013-06-21 21:33:00 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						211a14f627 
					 
					
						
						
							
							Update to OAEP support.  
						
						... 
						
						
						
						Add OAEP ctrls to retrieve MD and label. Return errors if
an attempt is made to set or retrieve OAEP parameters when
padding mode is not OAEP. 
						
						
					 
					
						2013-06-21 21:33:00 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						810639536c 
					 
					
						
						
							
							Add control to retrieve signature MD.  
						
						
						
						
					 
					
						2013-06-21 21:33:00 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						e423c360fd 
					 
					
						
						
							
							Add new OID to pSpecified from PKCS#1  
						
						
						
						
					 
					
						2013-06-21 21:33:00 +01:00 
						 
				 
			
				
					
						
							
							
								Trevor 
							
						 
					 
					
						
						
							
						
						9cd50f738f 
					 
					
						
						
							
							Cleanup of custom extension stuff.  
						
						... 
						
						
						
						serverinfo rejects non-empty extensions.
Omit extension if no relevant serverinfo data.
Improve error-handling in serverinfo callback.
Cosmetic cleanups.
s_client documentation.
s_server documentation.
SSL_CTX_serverinfo documentation.
Cleaup -1 and NULL callback handling for custom extensions, add tests.
Cleanup ssl_rsa.c serverinfo code.
Whitespace cleanup.
Improve comments in ssl.h for serverinfo.
Whitespace.
Cosmetic cleanup.
Reject non-zero-len serverinfo extensions.
Whitespace.
Make it build. 
						
						
					 
					
						2013-06-18 16:13:08 +01:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						8ee3c7e676 
					 
					
						
						
							
							SPARC T4 DES support: fix typo.  
						
						
						
						
					 
					
						2013-06-18 10:42:08 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						4ddacd9921 
					 
					
						
						
							
							Optimize SPARC T4 MONTMUL support.  
						
						... 
						
						
						
						Improve RSA sing performance by 20-30% by:
- switching from floating-point to integer conditional moves;
- daisy-chaining sqr-sqr-sqr-sqr-sqr-mul sequences;
- using MONTMUL even during powers table setup; 
						
						
					 
					
						2013-06-18 10:39:38 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						02450ec69d 
					 
					
						
						
							
							PA-RISC assembler pack: switch to bve in 64-bit builds.  
						
						... 
						
						
						
						PR: 3074 
						
						
					 
					
						2013-06-18 10:37:00 +02:00 
						 
				 
			
				
					
						
							
							
								Adam Langley 
							
						 
					 
					
						
						
							
						
						8a99cb29d1 
					 
					
						
						
							
							Add secure DSA nonce flag.  
						
						... 
						
						
						
						This change adds the option to calculate (EC)DSA nonces by hashing the
message and private key along with entropy to avoid leaking the private
key if the PRNG fails. 
						
						
					 
					
						2013-06-13 17:26:07 +01:00 
						 
				 
			
				
					
						
							
							
								Adam Langley 
							
						 
					 
					
						
						
							
						
						64a786a292 
					 
					
						
						
							
							Limit the number of empty records that will be processed consecutively  
						
						... 
						
						
						
						in order to prevent ssl3_get_record from never returning.
Reported by "oftc_must_be_destroyed" and George Kadianakis. 
						
						
					 
					
						2013-06-13 17:10:52 +01:00 
						 
				 
			
				
					
						
							
							
								Adam Langley 
							
						 
					 
					
						
						
							
						
						a54a61e7a9 
					 
					
						
						
							
							Don't SEGFAULT when trying to export a public DSA key as a private key.  
						
						
						
						
					 
					
						2013-06-13 17:03:35 +01:00 
						 
				 
			
				
					
						
							
							
								Adam Langley 
							
						 
					 
					
						
						
							
						
						adb46dbc6d 
					 
					
						
						
							
							This change alters the processing of invalid, RSA pre-master secrets so  
						
						... 
						
						
						
						that bad encryptions are treated like random session keys in constant
time. 
						
						
					 
					
						2013-06-13 16:58:45 +01:00 
						 
				 
			
				
					
						
							
							
								Ben Laurie 
							
						 
					 
					
						
						
							
						
						7e25d81870 
					 
					
						
						
							
							Ignore one-makefile stuff.  
						
						
						
						
					 
					
						2013-06-13 15:39:23 +01:00 
						 
				 
			
				
					
						
							
							
								Matt Caswell 
							
						 
					 
					
						
						
							
						
						aafbe1ccd2 
					 
					
						
						
							
							Document updates from wiki.  
						
						... 
						
						
						
						PR#3071
The primary changes made are:
- Updates to the "NAME" section of many pages to correctly reflect the
functions defined on those pages. This section is automatically parsed
by the util/extract-names.pl script, so if it is not correct then
running "man" will not correctly locate the right manual pages.
- Updates to take account of where functions are now deprecated
- Full documentation of the ec sub-library
- A number of other typo corrections and other minor tweaks 
						
						
					 
					
						2013-06-12 23:42:08 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						271fef0ef3 
					 
					
						
						
							
							Exetended OAEP support.  
						
						... 
						
						
						
						Extend OAEP support. Generalise the OAEP padding functions to support
arbitrary digests. Extend EVP_PKEY RSA method to handle the new OAEP
padding functions and add ctrls to set the additional parameters. 
						
						
					 
					
						2013-06-12 18:48:17 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						965e06da3c 
					 
					
						
						
							
							Typo.  
						
						
						
						
					 
					
						2013-06-12 18:47:28 +01:00 
						 
				 
			
				
					
						
							
							
								Trevor 
							
						 
					 
					
						
						
							
						
						a398f821fa 
					 
					
						
						
							
							Add support for arbitrary TLS extensions.  
						
						... 
						
						
						
						Contributed by Trevor Perrin. 
						
						
					 
					
						2013-06-12 17:01:13 +01:00 
						 
				 
			
				
					
						
							
							
								Ben Laurie 
							
						 
					 
					
						
						
							
						
						6d84daa5d6 
					 
					
						
						
							
							Add aesni-sha256-x86_64.  
						
						
						
						
					 
					
						2013-06-12 14:18:33 +01:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						3b848d3401 
					 
					
						
						
							
							aesni-sha1-x86_64.pl: update performance data.  
						
						
						
						
					 
					
						2013-06-10 22:35:22 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						42b9a4177b 
					 
					
						
						
							
							aesni-sha256-x86_64.pl: harmonize with latest sha512-x86_64.pl.  
						
						
						
						
					 
					
						2013-06-10 22:34:06 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						cd8d7335af 
					 
					
						
						
							
							sha1-x86_64.pl: add AVX2+BMI code path.  
						
						
						
						
					 
					
						2013-06-10 22:30:34 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						c7f690c243 
					 
					
						
						
							
							sha512-x86_64.pl: upcoming-Atom-specific optimization.  
						
						
						
						
					 
					
						2013-06-10 22:29:01 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						32213d8d77 
					 
					
						
						
							
							sha[256|512]-586.pl: add more SIMD code paths.  
						
						
						
						
					 
					
						2013-06-10 22:26:53 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						b42759158d 
					 
					
						
						
							
							ghash-x86_64.pl: add Haswell performance data.  
						
						
						
						
					 
					
						2013-06-10 22:25:12 +02:00 
						 
				 
			
				
					
						
							
							
								Andy Polyakov 
							
						 
					 
					
						
						
							
						
						1bc0b68d7b 
					 
					
						
						
							
							x86cpuid.pl: fix extended feature flags detection.  
						
						
						
						
					 
					
						2013-06-10 22:20:46 +02:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						2f58cda4ce 
					 
					
						
						
							
							Fix PSS signature printing.  
						
						... 
						
						
						
						Fix PSS signature printing: consistently use 0x prefix for hex values for
padding length and trailer fields. 
						
						
					 
					
						2013-06-05 15:06:03 +01:00 
						 
				 
			
				
					
						
							
							
								Dr. Stephen Henson 
							
						 
					 
					
						
						
							
						
						c71fdaed58 
					 
					
						
						
							
							Reencode with X509_CRL_ctx_sign too.  
						
						
						
						
					 
					
						2013-06-05 15:06:03 +01:00 
						 
				 
			
				
					
						
							
							
								Adam Langley 
							
						 
					 
					
						
						
							
						
						96a4c31be3 
					 
					
						
						
							
							Ensure that, when generating small primes, the result is actually of the  
						
						... 
						
						
						
						requested size. Fixes OpenSSL #2701 .
This change does not address the cases of generating safe primes, or
where the |add| parameter is non-NULL.
Conflicts:
	crypto/bn/bn.h
	crypto/bn/bn_err.c 
						
						
					 
					
						2013-06-04 18:52:30 +01:00