提交 · 73e45b2dd127b10d6259203082fe2b49aa268986 · OpenHarmony / Third Party Openssl

08 12月, 2014 4 次提交
- D
  remove OPENSSL_FIPSAPI · 73e45b2d
  由 Dr. Stephen Henson 提交于 10月 20, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  73e45b2d
- D
  remove FIPS module code from crypto/ecdsa · dbfbe10a
  由 Dr. Stephen Henson 提交于 10月 19, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  dbfbe10a
- D
  Remove fips_constseg references. · e4e5bc39
  由 Dr. Stephen Henson 提交于 10月 19, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  e4e5bc39
- D
  Remove fipscanister build functionality from makefiles. · f072785e
  由 Dr. Stephen Henson 提交于 10月 18, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  f072785e
29 11月, 2014 1 次提交
- R
  Remove all .cvsignore files · 8cfe08b4
  由 Rich Salz 提交于 11月 28, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  8cfe08b4
20 11月, 2014 1 次提交

When using EVP_PKEY_derive with a KDF set, a negative error from · 8d02bebd

由 Matt Caswell 提交于 11月 19, 2014

ECDH_compute_key is silently ignored and the KDF is run on duff data

Thanks to github user tomykaira for the suggested fix.
Reviewed-by: NDr. Stephen Henson <steve@openssl.org>

8d02bebd

13 11月, 2014 1 次提交
- M
  Fix free of garbage pointer. PR#3595 · e04d426b
  由 Matt Caswell 提交于 11月 12, 2014
```
Reviewed-by: NEmilia Käsper <emilia@openssl.org>
```
  e04d426b
29 10月, 2014 1 次提交
- A
  ec/asm/ecp_nistz256-x86_64.pl: fix inconsistency in path handling. · c381b637
  由 Andy Polyakov 提交于 10月 29, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  c381b637
23 10月, 2014 1 次提交

ecp_nistz256 update. · 3ff08e1d

由 Andy Polyakov 提交于 10月 23, 2014

Facilitate switch to custom scatter-gather routines. This modification
does not change algorithms, only makes it possible to implement
alternative. This is achieved by a) moving precompute table to assembly
(perlasm parses ecp_nistz256_table.c and is free to rearrange data to
match gathering algorithm); b) adhering to explicit scatter subroutine
(which for now is simply a memcpy). First implementations that will use
this option are 32-bit assembly implementations, ARMv4 and x86, where
equivalent of current read-whole-table-select-single-value algorithm
is too time-consuming. [On side note, switching to scatter-gather on
x86_64 would allow to improve server-side ECDSA performance by ~5%].
Reviewed-by: NBodo Moeller <bodo@openssl.org>

3ff08e1d

21 9月, 2014 1 次提交
- A
  crypto/ecp_nistz256.c: harmonize error codes. · be07ae9b
  由 Andy Polyakov 提交于 9月 21, 2014
```
Reviewed-by: NDr. Stephen Henson <steve@openssl.org>
```
  be07ae9b
20 9月, 2014 1 次提交
- D
  Fix warning. · 16e5b45f
  由 Dr. Stephen Henson 提交于 9月 19, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  16e5b45f
12 9月, 2014 2 次提交
- A
  Add ECP_NISTZ256 by Shay Gueron, Intel Corp. · 4d3fa06f
  由 Andy Polyakov 提交于 9月 12, 2014
```
RT: 3149
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  4d3fa06f
- A
  Reserve option to use BN_mod_exp_mont_consttime in ECDSA. · f54be179
  由 Andy Polyakov 提交于 9月 12, 2014
```
Submitted by Shay Gueron, Intel Corp.
RT: 3149
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  f54be179
09 9月, 2014 1 次提交

RT2626: Change default_bits from 1K to 2K · 44e0c2ba

由 Kurt Roeckx 提交于 9月 08, 2014

This is a more comprehensive fix.  It changes all
keygen apps to use 2K keys. It also changes the
default to use SHA256 not SHA1.  This is from
Kurt's upstream Debian changes.
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NKurt Roeckx <kurt@openssl.org>

44e0c2ba

31 8月, 2014 1 次提交
- A
  Configure: add configuration for crypto/ec/asm extensions. · 6019cdd3
  由 Andy Polyakov 提交于 8月 30, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  6019cdd3
30 8月, 2014 1 次提交
- M
  Fixed double inclusion of string.h · 13be7da8
  由 Matt Caswell 提交于 8月 29, 2014
```
PR2693
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  13be7da8
28 8月, 2014 3 次提交

Explicitly check for empty ASN.1 strings in d2i_ECPrivateKey · f34a5720

由 Emilia Kasper 提交于 8月 25, 2014

The old code implicitly relies on the ASN.1 code returning a \0-prefixed buffer
when the buffer length is 0. Change this to verify explicitly that the ASN.1 string
has positive length.
Reviewed-by: NDr Stephen Henson <steve@openssl.org>

f34a5720

RT3065: automatically generate a missing EC public key · f063e30f

由 Matt Caswell 提交于 8月 22, 2014

When d2i_ECPrivateKey reads a private key with a missing (optional) public key,
generate one automatically from the group and private key.
Reviewed-by: NDr Stephen Henson <steve@openssl.org>

f063e30f

RT3065: ec_private_key_dont_crash · 0388ac4c

由 Adam Langley 提交于 4月 23, 2013

This change saves several EC routines from crashing when an EC_KEY is
missing a public key. The public key is optional in the EC private key
format and, without this patch, running the following through `openssl
ec` causes a crash:

-----BEGIN EC PRIVATE KEY-----
MBkCAQEECAECAwQFBgcIoAoGCCqGSM49AwEH
-----END EC PRIVATE KEY-----
Reviewed-by: NDr Stephen Henson <steve@openssl.org>

0388ac4c

21 8月, 2014 1 次提交
- L
  PR2490: Remove unused local variable bn ecp_nist.c · 09ec8c8e
  由 Laszlo Papp 提交于 8月 18, 2014
```
Reviewed-by: NDr. Stephen Henson <steve@openssl.org>
```
  09ec8c8e
19 8月, 2014 1 次提交

RT2513: Fix typo's paramter-->parameter · 1afd7fa9

由 Martin Olsson 提交于 8月 19, 2014

I also found a couple of others (padlock and signinit)
and fixed them.
Reviewed-by: NEmilia Kasper <emilia@openssl.org>

1afd7fa9

13 8月, 2014 1 次提交
- B
  Further improve/fix ec_GFp_simple_points_make_affine (ecp_smpl.c) and · 16602b5c
  由 Bodo Moeller 提交于 8月 13, 2014
```
group_order_tests (ectest.c).  Also fix the EC_POINTs_mul documentation (ec.h).

Reviewed-by: emilia@openssl.org
```
  16602b5c
01 8月, 2014 1 次提交
- B
  Simplify and fix ec_GFp_simple_points_make_affine · 0fe73d6c
  由 Bodo Moeller 提交于 8月 01, 2014
```
(which didn't always handle value 0 correctly).

Reviewed-by: emilia@openssl.org
```
  0fe73d6c
22 7月, 2014 1 次提交
- B
  "EC_POINT_invert" was checking "dbl" function pointer instead of "invert". · cba11f57
  由 Billy Brumley 提交于 7月 21, 2014
```
PR#2569
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  cba11f57
04 6月, 2014 1 次提交
- L
  
  Corrected OPENSSL_NO_EC_NISTP_64_GCC_128 usage in ec_lcl.h. PR#3370 · 8e323164
  由 Libor Krystek 提交于 6月 03, 2014
  
  8e323164
04 5月, 2014 1 次提交
- D
  Double free in i2o_ECPublicKey · 16ba7074
  由 David Ramos 提交于 5月 03, 2014
```
PR: 3338
```
  16ba7074
26 4月, 2014 1 次提交
- M
  Fix eckey_priv_encode() · e14f14d3
  由 mancha 提交于 4月 24, 2014
```
Fix eckey_priv_encode to return an error on failure of i2d_ECPrivateKey.
```
  e14f14d3
28 3月, 2014 1 次提交
- D
  Add functions returning security bits. · 2514fa79
  由 Dr. Stephen Henson 提交于 1月 18, 2014
```
Add functions to return the "bits of security" for various public key
algorithms. Based on SP800-57.
```
  2514fa79
12 3月, 2014 1 次提交

Fix for CVE-2014-0076 · f9b6c0ba

由 Dr. Stephen Henson 提交于 3月 12, 2014

Fix for the attack described in the paper "Recovering OpenSSL
ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
by Yuval Yarom and Naomi Benger. Details can be obtained from:
http://eprint.iacr.org/2014/140

Thanks to Yuval Yarom and Naomi Benger for discovering this
flaw and to Yuval Yarom for supplying a fix.
(cherry picked from commit 2198be3483259de374f91e57d247d0fc667aef29)

Conflicts:

	CHANGES

f9b6c0ba

20 2月, 2014 1 次提交
- D
  
  make depend · 4cfeb00b
  由 Dr. Stephen Henson 提交于 2月 19, 2014
  
  4cfeb00b
09 11月, 2013 1 次提交
- D
  
  Fix for some platforms where "char" is unsigned. · dd274b1c
  由 Dr. Stephen Henson 提交于 11月 08, 2013
  
  dd274b1c
16 9月, 2013 1 次提交

Fix overly lenient comparisons: · ca567a03

由 Bodo Moeller 提交于 9月 16, 2013

    - EC_GROUP_cmp shouldn't consider curves equal just because
      the curve name is the same. (They really *should* be the same
      in this case, but there's an EC_GROUP_set_curve_name API,
      which could be misused.)

    - EC_POINT_cmp shouldn't return 0 for ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED
      or EC_R_INCOMPATIBLE_OBJECTS errors because in a cmp API, 0 indicates
      equality (not an error).

    Reported by: king cope

ca567a03

06 9月, 2013 1 次提交
- V
  
  misspellings fixes by https://github.com/vlajos/misspell_fixer · 478b50cf
  由 Veres Lajos 提交于 6月 13, 2013
  
  478b50cf
05 8月, 2013 2 次提交

Add KDF for DH. · dc1ce3bc

由 Dr. Stephen Henson 提交于 7月 30, 2013

Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the
same structure is used by DH and ECDH.

Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers
without the need to use ASN1.

dc1ce3bc

Algorithm parameter support. · e61f5d55

由 Dr. Stephen Henson 提交于 8月 05, 2013

Check and set AlgorithmIdenfier parameters for key wrap algorithms.
Currently these just set parameters to NULL.

e61f5d55

18 7月, 2013 2 次提交

Add support for ECDH KARI. · 88e20b85

由 Dr. Stephen Henson 提交于 7月 17, 2013

Add support for ECDH in enveloped data. The CMS ctrls for the EC ASN1
method decode/encode the appropriate parameters from the CMS ASN1 data
and send appropriate data to the EC public key method.

88e20b85

D
Add support for X9.62 KDF. · 25af7a5d
由 Dr. Stephen Henson 提交于 7月 17, 2013
```
Add X9.62 KDF to EC EVP_PKEY_METHOD.
```
25af7a5d

15 7月, 2013 1 次提交

Make `safe' (EC)DSA nonces the default. · 190c615d

由 Adam Langley 提交于 7月 15, 2013

This change updates 8a99cb29 to make the generation of (EC)DSA nonces
using the message digest the default. It also reverts the changes to
(EC)DSA_METHOD structure.

In addition to making it the default, removing the flag from EC_KEY
means that FIPS modules will no longer have an ABI mismatch.

190c615d

22 6月, 2013 1 次提交
- D
  
  Add control to retrieve signature MD. · 81063953
  由 Dr. Stephen Henson 提交于 6月 19, 2013
  
  81063953
14 6月, 2013 1 次提交

Add secure DSA nonce flag. · 8a99cb29

由 Adam Langley 提交于 1月 24, 2013

This change adds the option to calculate (EC)DSA nonces by hashing the
message and private key along with entropy to avoid leaking the private
key if the PRNG fails.

8a99cb29

OpenHarmony / Third Party Openssl 大约 1 年 前同步成功

OpenHarmony / Third Party Openssl
大约 1 年前同步成功