Matt Caswell
911d63f261
Add SSL_SESSION_set1_master_key()
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
df894947c4
Add the ability to use a server side TLSv1.3 external PSK in s_server
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
e261bdd185
Add the ability to use a client side TLSv1.3 external PSK in s_client
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
ba4df68286
Add a function to get the handshake digest for an SSL_CIPHER
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
f46184bd90
Add public API functions for setting TLSv1.3 PSK callbacks
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
9368f86526
Add TLSv1.3 client side external PSK support
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Matt Caswell
3a7c56b2c0
Add TLSv1.3 server side external PSK support
...
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3670 )
2017-06-21 14:45:35 +01:00
Rich Salz
2556aec5d0
Add ecstress test
...
Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3720 )
2017-06-21 09:24:01 -04:00
Andy Polyakov
1d23bbccd3
Add sha/asm/keccak1600-c64x.pl
...
[skip ci]
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/3708 )
2017-06-21 15:21:47 +02:00
Rich Salz
9018f3ce0f
Add constant-time 64
...
Standardize comments.
Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3727 )
2017-06-21 09:19:42 -04:00
Dr. Stephen Henson
d2916a5b29
Use EVP_PKEY_X25519, EVP_PKEY_ED25519 instead of NIDs where appropriate.
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
29b0cab017
Update test config file
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
fbe1af9dfe
Add Ed25519 TLS 1.3 and 1.2 tests
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
60bbed3ff6
Add Ed25519 EE certificates
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
bc88fc7928
Ed25519 support for mkcert.sh
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
b2021556e4
Allow Ed25519 in TLS 1.2
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
72ceb6a692
Convert key exchange to one shot call
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
03327c8bf2
Print Ed25519 in s_client/s_server
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
881d2c5ed2
Add Ed25519 to trace output
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
168067b631
Handle signature algorithms with no associated digest
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
3d234c9e5c
Add Ed25519 signature algorithm
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
b04d4e38b7
Add Ed25519 to signature algorithm table
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
07afa3d880
Add index for ED25519
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
65e89736b3
Use X509_get_signature_info to get signature strength.
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Dr. Stephen Henson
d3c094ca71
Recognise Ed25519 in X509_certificate_type
...
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-21 14:11:01 +01:00
Rich Salz
c80149d9f0
Merge Nokia copyright notice into standard
...
This is done with the kind permission of Nokia.
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3722 )
2017-06-21 08:59:18 -04:00
Rich Salz
aa74c2ec01
Reformat progs.pl; add ARIA support
...
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/3726 )
2017-06-21 08:44:56 -04:00
Pauli
bff951eeb1
Remove OSSLzu macros and use %zu in the test framework (via BIO_printf).
...
Convert the debug prints in dtls_mtu_test.c to use the framework.
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3730 )
2017-06-21 08:33:47 -04:00
Rich Salz
05eec39505
Ensure a space after colon in enc -v
...
Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3725 )
2017-06-20 14:14:48 -04:00
Bernd Edlinger
26dc47f3c4
Add parentheses around macro argument of OSSL_NELEM.
...
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3039 )
2017-06-20 13:49:43 -04:00
Rich Salz
aa8f3d76fc
Modify Sun copyright to follow OpenSSL style
...
Approved by Oracle.
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/3585 )
2017-06-20 11:13:45 -04:00
FdaSilvaYY
0c9d6818c8
Declare a new x509v3 extension: x509ExtAdmission
...
Reviewed-by: Stephen Henson <steve@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2759 )
2017-06-20 09:25:30 -04:00
Rich Salz
8d1598b0ce
Fix typo (note by oneton@users.github)
...
Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3716 )
2017-06-20 08:15:00 -04:00
Rich Salz
0ea155fc1c
Add RAND_UNIMPLEMENTED error code
...
See old GitHub PR 38.
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3714 )
2017-06-20 08:12:04 -04:00
Paul Yang
7447c49f0d
Make clear error message if opt_<number> fails
...
for opt_long(opt_int)/opt_ulong/opt_imax/opt_umax
Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3653 )
2017-06-20 11:33:01 +02:00
Pauli
4f58c6b9fe
Address style issues.
...
Refactor count -> c which makes the for loop more readable.
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3710 )
2017-06-19 22:37:16 -04:00
Pauli
a7b68c5b24
Address double error and OSSLzu comments.
...
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3710 )
2017-06-19 22:37:16 -04:00
Pauli
6e5e196748
Put error output back.
...
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3710 )
2017-06-19 22:37:16 -04:00
Pauli
8fe3127cda
Update tests to avoid printf to stdout/stderr when running as test cases.
...
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3710 )
2017-06-19 22:37:16 -04:00
Rich Salz
f39a5501ce
Remove bsd_cryptodev engine
...
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3699 )
2017-06-19 09:31:45 -04:00
Bernd Edlinger
3ac6d5ee53
Fix the fall-out in 04-test_bioprint.t
...
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3712 )
2017-06-19 08:56:50 -04:00
Bernd Edlinger
af6de400b4
Fix the error handling in ERR_get_state:
...
- Ignoring the return code of ossl_init_thread_start created a memory leak.
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3712 )
2017-06-19 08:56:50 -04:00
Pauli
9b579777c5
Fix preprocessor indentation.
...
Rework main() to be in the style of the other conditional tests.
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3711 )
2017-06-19 08:28:04 -04:00
Cory Benfield
729ef85611
s_client accepts host/port as positional argument.
...
This allows the user to provide the target host and optional port to
openssl s_client as an optional positional argument, rather than as the
argument to the -connect flag. This rationalises the user experience of
s_client: given that the only logical purpose of s_client is to connect
to a host, it is difficult to understand why there is an (effectively
mandatory) command option to pass to make that happen.
This patch forbids providing *both* -connect and the positional
argument, because it would likely be too difficult to reconcile.
Otherwise, using the positional argument behaves exactly the same as
using -connect does.
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1171 )
2017-06-19 08:42:10 +01:00
Paul Yang
edcdf38bd0
Remove non-accurate description in Configure script
...
For DES and 3DES based ciphers are also enabled by this option.
Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3707 )
2017-06-17 22:22:40 +08:00
Richard Levitte
7b4d323092
Fix va_list processing in test_note()
...
Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3704 )
2017-06-17 15:52:41 +02:00
Bernd Edlinger
93a8b3ba79
Remove a pointless "#if 0" block from BN_mul.
...
Reviewed-by: Andy Polyakov <appro@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3683 )
2017-06-17 14:18:26 +02:00
Richard Levitte
6411927172
Reorder Configure output
...
"Configuring..." was displayed with './Configure LIST'. This reorders
the display of that line to happen after the "targets" LIST, TABLE and
HASH have been checked.
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3702 )
2017-06-16 23:18:41 +02:00
Paul Yang
837f87c217
Forbid to specify -nextprotoneg if -tls1_3 is enabled
...
This applies both to s_client and s_server app.
Reaction to Issue #3665 .
Signed-off-by: Paul Yang <paulyang.inf@gmail.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3697 )
2017-06-16 17:00:22 -04:00
komainu8
6ea3bca427
Modify type of variable in OPENSSL_cpuid_setup function
...
CLA: trivial
Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3651 )
2017-06-16 16:58:51 -04:00