| #
4b45c6e5 |
| 30-Apr-2015 |
Rich Salz |
free cleanup almost the finale
Add OPENSSL_clear_free which merges cleanse and free.
(Names was picked to be similar to BN_clear_free, etc.)
Removed OPENSSL_freeFunc macro.
Fixed
free cleanup almost the finale
Add OPENSSL_clear_free which merges cleanse and free.
(Names was picked to be similar to BN_clear_free, etc.)
Removed OPENSSL_freeFunc macro.
Fixed the small simple ones that are left:
CRYPTO_free CRYPTO_free_locked OPENSSL_free_locked
Reviewed-by: Richard Levitte <levitte@openssl.org>
show more ...
|
| #
b196e7d9 |
| 28-Apr-2015 |
Rich Salz |
remove malloc casts
Following ANSI C rules, remove the casts from calls to
OPENSSL_malloc and OPENSSL_realloc.
Reviewed-by: Richard Levitte <levitte@openssl.org>
|
| #
8fdc3734 |
| 25-Mar-2015 |
Rich Salz |
free NULL cleanup.
This gets EC_GROUP_clear_free EC_GROUP_free, EC_KEY_free,
EC_POINT_clear_free, EC_POINT_free
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
|
|
Revision tags: OpenSSL_0_9_8zf, OpenSSL_1_0_0r, OpenSSL_1_0_1m, OpenSSL_1_0_2a, OpenSSL_1_0_2, master-post-auto-reformat |
|
| #
0f113f3e |
| 22-Jan-2015 |
Matt Caswell |
Run util/openssl-format-source -v -c .
Reviewed-by: Tim Hudson <tjh@openssl.org>
|
|
Revision tags: OpenSSL_1_0_2-post-auto-reformat, OpenSSL_0_9_8-post-auto-reformat, OpenSSL_0_9_8-pre-auto-reformat, OpenSSL_1_0_0-post-auto-reformat, OpenSSL_1_0_0-pre-auto-reformat, OpenSSL_1_0_1-post-auto-reformat, OpenSSL_1_0_1-pre-auto-reformat, master-post-reformat, OpenSSL_0_9_8-pre-reformat, OpenSSL_0_9_8ze, OpenSSL_1_0_0-pre-reformat, OpenSSL_1_0_0q, OpenSSL_1_0_1-pre-reformat, OpenSSL_1_0_1l, master-pre-reformat, OpenSSL_1_0_2-pre-reformat, OpenSSL_0_9_8zd, OpenSSL_1_0_0p, OpenSSL_1_0_1k, OpenSSL_0_9_8-post-reformat |
|
| #
5784a521 |
| 28-Oct-2014 |
Matt Caswell |
Implement internally opaque bn access from ec
Reviewed-by: Tim Hudson <tjh@openssl.org>
|
|
Revision tags: OpenSSL-fips-2_0_9 |
|
| #
73e45b2d |
| 20-Oct-2014 |
Dr. Stephen Henson |
remove OPENSSL_FIPSAPI
Reviewed-by: Tim Hudson <tjh@openssl.org>
|
| #
dbfbe10a |
| 19-Oct-2014 |
Dr. Stephen Henson |
remove FIPS module code from crypto/ecdsa
Reviewed-by: Tim Hudson <tjh@openssl.org>
|
|
Revision tags: OpenSSL_1_0_1j, OpenSSL_1_0_0o, OpenSSL_0_9_8zc, OpenSSL_1_0_2-beta3 |
|
| #
13be7da8 |
| 29-Aug-2014 |
Matt Caswell |
Fixed double inclusion of string.h
PR2693
Reviewed-by: Tim Hudson <tjh@openssl.org>
|
|
Revision tags: OpenSSL_0_9_8zb, OpenSSL_1_0_0n, OpenSSL_1_0_1i, OpenSSL_1_0_2-beta2, OpenSSL-fips-2_0_8, OpenSSL_1_0_1h, OpenSSL_1_0_0m, OpenSSL_0_9_8za, OpenSSL-fips-2_0_7, OpenSSL_1_0_1g, OpenSSL_1_0_2-beta1, OpenSSL_1_0_0l, OpenSSL_1_0_1f, OpenSSL-fips-2_0_6, OpenSSL-fips-2_0_5, OpenSSL-fips-2_0_4 |
|
| #
190c615d |
| 15-Jul-2013 |
Adam Langley |
Make `safe' (EC)DSA nonces the default.
This change updates 8a99cb29 to make the generation of (EC)DSA nonces
using the message digest the default. It also reverts the changes to
(EC
Make `safe' (EC)DSA nonces the default.
This change updates 8a99cb29 to make the generation of (EC)DSA nonces
using the message digest the default. It also reverts the changes to
(EC)DSA_METHOD structure.
In addition to making it the default, removing the flag from EC_KEY
means that FIPS modules will no longer have an ABI mismatch.
show more ...
|
|
Revision tags: OpenSSL-fips-2_0_3, OpenSSL_1_0_1e, OpenSSL_0_9_8y, OpenSSL_1_0_0k, OpenSSL_1_0_1d |
|
| #
8a99cb29 |
| 24-Jan-2013 |
Adam Langley |
Add secure DSA nonce flag.
This change adds the option to calculate (EC)DSA nonces by hashing the
message and private key along with entropy to avoid leaking the private
key if the P
Add secure DSA nonce flag.
This change adds the option to calculate (EC)DSA nonces by hashing the
message and private key along with entropy to avoid leaking the private
key if the PRNG fails.
show more ...
|
|
Revision tags: OpenSSL-fips-2_0-pl1, OpenSSL-fips-2_0_2 |
|
| #
f11d0c79 |
| 05-Oct-2012 |
Bodo Möller |
Fix EC_KEY initialization race.
Submitted by: Adam Langley
|
|
Revision tags: OpenSSL-fips-2_0_1, OpenSSL_1_0_1c, OpenSSL_1_0_0j, OpenSSL_0_9_8x, OpenSSL_1_0_1b, OpenSSL_0_9_8w, OpenSSL_1_0_1a, OpenSSL_0_9_8v, OpenSSL_1_0_0i, OpenSSL_1_0_1, OpenSSL_1_0_0h, OpenSSL_0_9_8u, OpenSSL_1_0_1-beta3, OpenSSL_1_0_1-beta2, OpenSSL-fips-2_0, OpenSSL_1_0_0g, OpenSSL_0_9_8t, OpenSSL_0_9_8s, OpenSSL_1_0_0f, OpenSSL-fips-2_0-rc8, OpenSSL_1_0_1-beta1, OpenSSL-fips-2_0-rc7, OpenSSL-fips-2_0-rc6, OpenSSL-fips-2_0-rc5, OpenSSL-fips-2_0-rc4, OpenSSL-fips-2_0-rc3 |
|
| #
d674bb4b |
| 16-Nov-2011 |
Dr. Stephen Henson |
In EC_KEY_set_public_key_affine_coordinates include explicit check to see passed components do not exceed field order
|
|
Revision tags: OpenSSL-fips-2_0-rc2, OpenSSL-fips-2_0-rc1 |
|
| #
5fd72260 |
| 22-Oct-2011 |
Dr. Stephen Henson |
Check for selftest failure in various places.
|
|
Revision tags: OpenSSL-fips-1_2_3, OpenSSL-fips-1_2_2, OpenSSL-fips-1_2_1, OpenSSL_1_0_0e |
|
| #
c2fd5989 |
| 11-May-2011 |
Dr. Stephen Henson |
Rename FIPS_mode_set and FIPS_mode. Theses symbols will be defined in
the FIPS capable OpenSSL.
|
| #
171edf7f |
| 24-Apr-2011 |
Richard Levitte |
Error discrepancy corrected.
|
| #
cac4fb58 |
| 23-Apr-2011 |
Dr. Stephen Henson |
Add PRNG security strength checking.
|
| #
8c709683 |
| 19-Apr-2011 |
Dr. Stephen Henson |
Use 0 for tbslen to perform strlen.
|
| #
a6311f85 |
| 14-Apr-2011 |
Dr. Stephen Henson |
Remove several of the old obsolete FIPS_corrupt_*() functions.
|
| #
ac892b7a |
| 14-Apr-2011 |
Dr. Stephen Henson |
Initial incomplete POST overhaul: add support for POST callback to
allow status of POST to be monitored and/or failures induced.
|
| #
0fbf8f44 |
| 15-Feb-2011 |
Dr. Stephen Henson |
Add pairwise consistency test to EC.
|
| #
84b08eee |
| 14-Feb-2011 |
Dr. Stephen Henson |
Reorganise ECC code for inclusion in FIPS module.
Move compression, point2oct and oct2point functions into separate files.
Add a flags field to EC_METHOD.
Add a flag EC_FLA
Reorganise ECC code for inclusion in FIPS module.
Move compression, point2oct and oct2point functions into separate files.
Add a flags field to EC_METHOD.
Add a flag EC_FLAGS_DEFAULT_OCT to use the default compession and oct
functions (all existing methods do this). This removes dependencies from
EC_METHOD while keeping original functionality.
show more ...
|
| #
b3310161 |
| 12-Feb-2011 |
Dr. Stephen Henson |
New option to disable characteristic two fields in EC code.
|
|
Revision tags: OpenSSL_1_0_0d, OpenSSL_0_9_8r |
|
| #
fef1c40b |
| 24-Jan-2011 |
Dr. Stephen Henson |
New function EC_KEY_set_affine_coordinates() this performs all the
NIST PKV tests.
|
| #
a428ac47 |
| 24-Jan-2011 |
Dr. Stephen Henson |
check EC public key isn't point at infinity
|
| #
dd616752 |
| 19-Jan-2011 |
Dr. Stephen Henson |
oops, revert mistakenly committed EC changes
|
