- 03 11月, 2004 1 次提交
-
-
由 Richard Levitte 提交于
if $(EXHEADER) is empty. Notified by many, solution suggested by Carson Gaspar <carson@taltos.org>
-
- 19 9月, 2004 1 次提交
-
-
由 Geoff Thorpe 提交于
outstanding ticket. PR: 926
-
- 18 5月, 2004 2 次提交
-
-
由 Geoff Thorpe 提交于
the Makefiles. NB: this commit is probably going to generate a huge posting and it is highly uninteresting to read.
-
由 Geoff Thorpe 提交于
dh.h, dsa.h, ec.h, ecdh.h, ecdsa.h, rsa.h), as the opaque bignum types are already declared in ossl_typ.h. Add explicit includes for bn.h in those C files that need access to structure internals or API functions+macros.
-
- 27 4月, 2004 1 次提交
-
-
由 Geoff Thorpe 提交于
additional contexts.
-
- 26 4月, 2004 2 次提交
-
-
由 Geoff Thorpe 提交于
small key sizes seems to result from the code continually regenerating the same prime value once the range is small enough. From my tests, this change fixes the problem by setting an escape velocity of 3 repeats for the second of the two primes. PR: 874
-
由 Geoff Thorpe 提交于
proposed the change and submitted the patch, I jiggled it slightly and adjusted the other parts of openssl that were affected. PR: 867 Submitted by: Jelte Jansen Reviewed by: Geoff Thorpe
-
- 20 4月, 2004 2 次提交
-
-
由 Geoff Thorpe 提交于
-
由 Geoff Thorpe 提交于
changes are the fallout). As this could break source code that doesn't directly include headers for interfaces it uses, changes to recursive includes are covered by the OPENSSL_NO_DEPRECATED symbol. It's better to define this when building and using openssl, and then adapt code where necessary - this is how to stay current. However the mechanism exists for the lethargic.
-
- 25 3月, 2004 1 次提交
-
-
由 Geoff Thorpe 提交于
operations no longer require two distinct BN_CTX structures. This may put more "strain" on the current BN_CTX implementation (which has a fixed limit to the number of variables it will hold), but so far this limit is not triggered by any of the tests pass and I will be changing BN_CTX in the near future to avoid this problem anyway. This also changes the default RSA implementation code to use the BN_CTX in favour of initialising some of its variables locally in each function.
-
- 16 3月, 2004 2 次提交
-
-
由 Richard Levitte 提交于
functions and macros. This change has associated tags: LEVITTE_before_const and LEVITTE_after_const. Those will be removed when this change has been properly reviewed.
-
由 Richard Levitte 提交于
compilers may complain.
-
- 27 12月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
This is part of a large change submitted by Markus Friedl <markus@openbsd.org>
-
- 28 11月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
PR: 780 Submitted by: Verdon Walker <VWalker@novell.com> Reviewed by: Richard Levitte
-
- 30 10月, 2003 1 次提交
-
-
由 Geoff Thorpe 提交于
I have tried to convert 'len' type variable declarations to unsigned as a means to address these warnings when appropriate, but when in doubt I have used casts in the comparisons instead. The better solution (that would get us all lynched by API users) would be to go through and convert all the function prototypes and structure definitions to use unsigned variables except when signed is necessary. The proliferation of (signed) "int" for strictly non-negative uses is unfortunate.
-
- 29 10月, 2003 1 次提交
-
-
由 Geoff Thorpe 提交于
be) precompiled out in the API headers. This change is to ensure that if it is defined when compiling openssl, the deprecated functions aren't implemented either.
-
- 07 5月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
called downstream that need it to be non-const. The fact that the RSA_METHOD functions take the RSA* as a const doesn't matter, it just expresses that *they* won't touch it. PR: 602
-
- 05 5月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
PR: 602
-
- 01 5月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
-
- 16 4月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
Memory leak fix: RSA_blinding_on() would leave a dangling pointer in rsa->blinding under certain circumstances. Double definition fix: RSA_FLAG_NO_BLINDING was defined twice.
-
- 15 4月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
-
- 11 4月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
-
- 08 4月, 2003 4 次提交
-
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
form of unneeded direct calls through the engine pointer..
-
由 Richard Levitte 提交于
of unneeded includes of openssl/engine.h.
-
由 Richard Levitte 提交于
pointers should be used. It doesn't necessarely mean it should go through the ENGINE framework.
-
- 02 4月, 2003 1 次提交
-
-
由 Bodo Möller 提交于
-
- 21 3月, 2003 1 次提交
-
-
由 Bodo Möller 提交于
enable it automatically for the built-in engine
-
- 15 2月, 2003 2 次提交
-
-
由 Geoff Thorpe 提交于
Also, I've added handling for other mod_exp calls that were not using any cached montgomery forms. These cases matter only for special RSA keys (eg. ones that are missing information) so are unlikely to be used in normal circumstances.
-
由 Geoff Thorpe 提交于
verification step of CRT private key operations in the RSA code - previously no montgomery form was checked or used for 'n', and so it would be generated on the fly each time. As a result, private key operations are now a percent or two faster. Rather than adding this as another repetition of the nearly-identical montgomery "check for first-use" initialisation code blocks, I've taken this chance to create a helper function and macro-wrapper to replace them. PR: 475
-
- 31 1月, 2003 2 次提交
-
-
由 Richard Levitte 提交于
bad, so let's not check OPENSSL_NO_ENGINE in those places. Fortunately, all the header files where the problem existed include ossl_typ.h, which makes a 'forward declaration' of the ENGINE type.
-
由 Richard Levitte 提交于
PR: 287
-
- 07 1月, 2003 1 次提交
-
-
由 Geoff Thorpe 提交于
generation. This prototype matches the new API function RSA_generate_key_ex(), though both may be subject to change during development before 0.9.8.
-
- 29 12月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
-
- 09 12月, 2002 2 次提交
-
-
由 Richard Levitte 提交于
-
由 Geoff Thorpe 提交于
- a patch to fix a memory leak in rsa_gen.c - a note about compiler warnings with unions - a note about improving structure element names This applies his patch and implements a solution to the notes.
-
- 08 12月, 2002 1 次提交
-
-
由 Geoff Thorpe 提交于
key-generation and prime-checking functions. Rather than explicitly passing callback functions and caller-defined context data for the callbacks, a new structure BN_GENCB is defined that encapsulates this; a pointer to the structure is passed to all such functions instead. This wrapper structure allows the encapsulation of "old" and "new" style callbacks - "new" callbacks return a boolean result on the understanding that returning FALSE should terminate keygen/primality processing. The BN_GENCB abstraction will allow future callback modifications without needing to break binary compatibility nor change the API function prototypes. The new API functions have been given names ending in "_ex" and the old functions are implemented as wrappers to the new ones. The OPENSSL_NO_DEPRECATED symbol has been introduced so that, if defined, declaration of the older functions will be skipped. NB: Some openssl-internal code will stick with the older callbacks for now, so appropriate "#undef" logic will be put in place - this is in case the user is *building* openssl (rather than *including* its headers) with this symbol defined. There is another change in the new _ex functions; the key-generation functions do not return key structures but operate on structures passed by the caller, the return value is a boolean. This will allow for a smoother transition to having key-generation as "virtual function" in the various ***_METHOD tables.
-
- 28 11月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
I've covered all the memset()s I felt safe modifying, but may have missed some.
-
- 26 11月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
incorrect. Fortunately, there is a second check that's correct, when adding the pads. PR: 355
-
- 04 11月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch
-