openssl

mirror of https://github.com/openssl/openssl.git synced 2024-12-09 05:51:54 +08:00

Author	SHA1	Message	Date
Geoff Thorpe	5d735465d1	The efforts to eliminate the dual-representation of zero and to ensure bignums are passed in and out of functions and APIs in a consistent form has highlighted that zero-valued bignums don't need any allocated word data. The use of BN_set_word() to initialise a bignum to zero causes needless allocation and gives it a return value that must be checked. This change converts BN_zero() to a self-contained macro that has no return/expression value and does not cause any expansion of bignum data. Note, it would be tempting to rewrite the deprecated version as a success-valued comma expression, such as; #define BN_zero(a) ((a)->top = (a)->neg = 0, 1) However, this evaluates 'a' twice and would confuse initialisation loops (eg. while(..) { BN_zero(bn++) } ). As such, the deprecated version continues to use BN_set_word().	2004-03-13 23:04:15 +00:00
Geoff Thorpe	9e051bac13	Document a change I'd already made, and at the same time, correct the change to work properly; BN_zero() should set 'neg' to zero as well as 'top' to match the behaviour of BN_new().	2004-03-13 22:10:15 +00:00
Andy Polyakov	30fbcaa213	IRIX 6.x shared build fix-up. For reference. Note that both cc and gcc support -Wl flag, but we can't use -Wl,-[not]all with both drivers, because cc rearranges options passed through -Wl. We can't use -Wl,-all,libcrypto.a,-notall with cc either, because it refuses to start with "no input" error.	2004-03-12 21:52:54 +00:00
Geoff Thorpe	93825dddad	static	2004-03-10 01:20:26 +00:00
Geoff Thorpe	a8aa764d3c	Minimise the amount of code dependent on BN_DEBUG_RAND. In particular, redefine bn_clear_top2max() to be a NOP in the non-debugging case, and remove some unnecessary usages in bn_nist.c. Submitted by: Nils Larsch Reviewed by: Geoff Thorpe, Ulf Möller	2004-03-09 03:53:40 +00:00
Geoff Thorpe	e7716b7a19	More changes coming out of the bignum auditing. BN_CTX_get() should ideally return a "zero" bignum as BN_new() does - so reset 'top'. During BN_CTX_end(), released bignums should be consistent so enforce this in debug builds. Also, reduce the number of wasted BN_clear_free() calls from BN_CTX_end() (typically by 75% or so). Submitted by: Nils Larsch Reviewed by: Geoff Thorpe, Ulf Möller	2004-03-09 03:47:35 +00:00
Dr. Stephen Henson	a4e3150f00	Fix policy constraints syntax.	2004-03-08 18:15:32 +00:00
Dr. Stephen Henson	edec614efd	Support for inhibitAnyPolicy extension.	2004-03-08 13:56:31 +00:00
Ulf Möller	2457c19df1	typo	2004-03-06 08:43:36 +00:00
Dr. Stephen Henson	5fa5eb71a4	Cleanup ASN1 OID module when it exits.	2004-03-05 23:47:56 +00:00
Dr. Stephen Henson	3f39976da3	Call autoconfig code in pkcs7 utility.	2004-03-05 23:46:29 +00:00
Dr. Stephen Henson	216ad9ef58	Memory leak fix.	2004-03-05 23:39:42 +00:00
Dr. Stephen Henson	bc50157010	Various X509 fixes. Disable broken certificate workarounds when X509_V_FLAG_X509_STRICT is set. Check for CRLSign in CRL issuer certificates. Reject CRLs with unhandled (any) critical extensions.	2004-03-05 17:16:35 +00:00
Dr. Stephen Henson	91180d45f9	Typos. Reported by: Jose Castejon-Amenedo <Jose.Castejon-Amenedo@hp.com>	2004-03-04 21:44:39 +00:00
Richard Levitte	d9f40bbe55	Make our page with pointers to binary distributions visible in the FAQ	2004-03-04 07:47:40 +00:00
Dr. Stephen Henson	ec7c9ee8b8	Indent some of the code examples.	2004-03-02 13:39:23 +00:00
Dr. Stephen Henson	f82bb9cb9c	Config docs.	2004-03-02 13:31:32 +00:00
Dr. Stephen Henson	5a8922aed5	Documentation of the KISS autoconfig functions.	2004-03-02 01:01:11 +00:00
Dr. Stephen Henson	f2c1812560	More autoconfig docs.	2004-03-01 19:15:24 +00:00
Richard Levitte	4cfa4ae820	Avoid a memory leak in OCSP_parse_url(). Notified by Paul Siegel <psiegel@corestreet.com>	2004-03-01 14:58:22 +00:00
Dr. Stephen Henson	a30af36c77	Initial docs for the OpenSSL library configuration via openssl.cnf	2004-03-01 01:04:40 +00:00
Geoff Thorpe	5075521e75	Add ECDSA documentation. Submitted by: Nils Larsch	2004-02-27 23:03:23 +00:00
Richard Levitte	ee3a47a994	AES is spelled AES, not ASE. Oops...	2004-02-27 02:24:49 +00:00
Richard Levitte	f727266ae8	Make sure the given EVP_PKEY is updated in the PEM_STRING_PKCS8INF case also. PR: 833	2004-02-26 22:07:45 +00:00
Richard Levitte	8bb0c8522a	Document the AES options for 'openssl smime'. PR: 834	2004-02-26 21:44:41 +00:00
Geoff Thorpe	c6700d2746	A cleanup of the ecs_ossl.c code and some (doxygen) comments for ecdsa.h Submitted by: Nils Larsch Reviewed by: Geoff Thorpe	2004-02-22 19:32:53 +00:00
Geoff Thorpe	1b06804491	When adding positive elements, we can use BN_uadd() instead of BN_add(). Submitted by: Nils Larsch Reviewed by: Geoff Thorpe	2004-02-22 19:30:41 +00:00
Dr. Stephen Henson	dc90f64d56	Use an OCTET STRING for the encoding of an OCSP nonce value. The old raw format can't be handled by some implementations and updates to RFC2560 will make this mandatory.	2004-02-19 18:16:38 +00:00
Geoff Thorpe	6c43032121	minor signed/unsigned warning fixes	2004-02-10 18:46:10 +00:00
Dr. Stephen Henson	37ead9be0b	Fix handling of -offset and -length in asn1parse tool. If -offset exceeds -length of data available exit with an error. Don't read past end of total data available when -offset supplied. If -length exceeds total available truncate it.	2004-02-08 13:30:04 +00:00
Andy Polyakov	1751034669	Typo in crypto/bn/asm/x86_64.c, bn_div_words(). PR: 821	2004-02-07 09:51:28 +00:00
Dr. Stephen Henson	d4575825f1	Add flag to avoid continuous memory allocate when calling EVP_MD_CTX_copy_ex(). Without this HMAC is several times slower than < 0.9.7.	2004-02-01 13:39:51 +00:00
Andy Polyakov	d04b1b4656	Typo in PA-RISC 2 rules in crypto/bn/Makefile.ssl	2004-01-30 05:41:23 +00:00
Andy Polyakov	1247092776	HP/UX PA-RISC 2 targets update.	2004-01-29 22:16:08 +00:00
Richard Levitte	7e22a1df55	Remove typos	2004-01-29 11:24:32 +00:00
Richard Levitte	bb5810d21d	-Wtraditional was a little too much...	2004-01-29 10:56:18 +00:00
Richard Levitte	61a88c31c0	Typo	2004-01-29 02:55:43 +00:00
Richard Levitte	b86ed8d18f	In the development branch, it feels quite all right to warn on a lot more stuff.	2004-01-29 00:05:09 +00:00
Richard Levitte	e5886a2388	make update	2004-01-28 19:07:41 +00:00
Richard Levitte	8d1ebe0bd1	Add the missing parts for DES CFB1 and CFB8. Add the corresponding AES parts while I'm at it. make update	2004-01-28 19:05:35 +00:00
Richard Levitte	1fb724449d	make update	2004-01-28 18:38:33 +00:00
Richard Levitte	721a5e83f9	Unsigned vs. signed problem removed	2004-01-28 08:48:11 +00:00
Andy Polyakov	6df617a59d	#undef _POSIX_C_SOURCE in ui_openssl.c ruined IRIX builds. Comment on why _POSIX_C_SOURCE needed in first place.	2004-01-27 22:06:48 +00:00
Andy Polyakov	8c6336b0aa	CFB DES sync-up with FIPS branch.	2004-01-27 21:47:35 +00:00
Richard Levitte	87203dc99a	Avoid signed vs. unsigned warnings (which are treated like errors on Windows).	2004-01-27 01:16:38 +00:00
Richard Levitte	4de65cbc06	S_IFBLK and S_IFCHR may not exist in some places (like Windows), so let's check for those macros, and if they aren't defined, let's assume there aren't Unixly devices on this platform.	2004-01-26 23:45:32 +00:00
Andy Polyakov	27b2b78f90	Even though C specification explicitly says that constant type "stretches" automatically to accomodate the value, some compilers fail to do so. Most notably 0x0123456789ABCDEF should come out as long long in 32-bit context, but HP compiler truncates it to 32-bit value. Which in turn breaks GF(2^m) arithmetics in hpux-parisc2-cc build. Therefore this fix...	2004-01-25 10:53:43 +00:00
Andy Polyakov	3a160f1dc6	Fix declaration inconsistency in ecparam.c.	2004-01-24 16:51:59 +00:00
Andy Polyakov	7f24b1c3e9	Get rid of bogus warning when compiling with Sun vendor compiler.	2004-01-24 16:31:21 +00:00
Richard Levitte	a5e8bcfb7b	We're passed p, so let's use p instead of making assumptions.	2004-01-24 01:16:02 +00:00

1 2 3 4 5 ...

6001 Commits