Reviewed-by: NTim Hudson <tjh@openssl.org>

Reviewed-by: NTim Hudson <tjh@openssl.org>

Update/fix prototypes in fips.h

the FIPS capable OpenSSL.

from DSA copy q across and if q present generate DH key in the
correct range.

that use it.

Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller

Steve Kiernan

cause a denial of service.  (CVE-2006-2940)
[Steve Henson, Bodo Moeller]

timing attacks.

BN_FLG_EXP_CONSTTIME requests this algorithm, and this done by default for
RSA/DSA/DH private key computations unless
RSA_FLAG_NO_EXP_CONSTTIME/DSA_FLAG_NO_EXP_CONSTTIME/
DH_FLAG_NO_EXP_CONSTTIME is set.

Submitted by: Matthew D Wood
Reviewed by: Bodo Moeller

casts.

The function rsa_eay_mont_helper() has been removed because it is no longer
needed after this change.

("perl util/ck_errf.pl */*.c */*/*.c" still reports many more.)

of unneeded includes of openssl/engine.h.

PR: 287

override key-generation implementations by placing handlers in the methods
for DSA and DH. Also, parameter generation for DSA and DH is possible by
another new handler for each method.

ENGINE surgery. DH, DSA, RAND, and RSA now use *both* "method" and ENGINE
pointers to manage their hooking with ENGINE. Previously their use of
"method" pointers was replaced by use of ENGINE references. See
crypto/engine/README for details.

Also, remove the ENGINE iterations from evp_test - even when the
cipher/digest code is committed in, this functionality would require a
different set of API calls.

or bogus DH parameters can be used for launching DOS attacks

Incease the number of BIGNUMs in a BN_CTX.

At the same time, add VMS support for Rijndael.

temporary BIGNUMs. BN_CTX still uses a fixed number of BIGNUMs, but
the BN_CTX implementation could now easily be changed.

DSA_METHOD to make it more consistent with RSA_METHOD.

Submitted by:
Reviewed by:
PR: