Commits · b1a5d1c652086257930a1f62ae51c9cdee654b2c · CYBER - Cyber Security / TS 103 523 MSP / ETS / ETS OpenSSL

29 Mar, 2015 4 commits

sha/asm/sha512-armv4.pl: adapt for use in Linux kernel context. · b1a5d1c6

Andy Polyakov authored Mar 28, 2015



Follow-up to sha256-armv4.pl in cooperation with Ard Biesheuvel
(Linaro) and Sami Tolvanen (Google).

Reviewed-by: Rich Salz <rsalz@openssl.org>

b1a5d1c6

sha/asm/sha256-armv4.pl: fix compile issue in kernel · 51f8d095
Andy Polyakov authored Mar 28, 2015
```
and eliminate little-endian dependency.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
51f8d095

Have a shared library version thats reasonable with our version scheme · 6a919b44

Richard Levitte authored Mar 29, 2015

The FAQ says this:

After the release of OpenSSL 1.0.0 the versioning scheme changed. Letter
releases (e.g. 1.0.1a) can only contain bug and security fixes and no
new features. Minor releases change the last number (e.g. 1.0.2) and
can contain new features that retain binary compatibility. Changes to
the middle number are considered major releases and neither source nor
binary compatibility is guaranteed.

With such a scheme (and with the thinking that it's nice if the shared
library version stays on track with the OpenSSL version), it's rather
futile to keep the minor release number in the shared library version.
The deed already done with OpenSSL 1.0.x can't be changed, but with
1.x.y, x=1 and on, 1.x as shared library version is sufficient.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

6a919b44

Add private/public key conversion tests · 79a578b9
Dr. Stephen Henson authored Mar 26, 2015
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
79a578b9

28 Mar, 2015 7 commits

Remove d2i_X509_PKEY and i2d_X509_PKEY · b1f34428

Dr. Stephen Henson authored Mar 28, 2015



Remove partially implemented d2i_X509_PKEY and i2d_X509_PKEY: nothing
uses them and they don't work properly. Update ordinals.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

b1f34428

ec/asm/ecp_nistz256-x86_64.pl: update commentary with before-after performance data. · f0e6871d
Andy Polyakov authored Mar 13, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
f0e6871d

free NULL cleanup · c5ba2d99

Rich Salz authored Mar 28, 2015



EVP_.*free; this gets:
        EVP_CIPHER_CTX_free EVP_PKEY_CTX_free EVP_PKEY_asn1_free
        EVP_PKEY_asn1_set_free EVP_PKEY_free EVP_PKEY_free_it
        EVP_PKEY_meth_free; and also EVP_CIPHER_CTX_cleanup

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

c5ba2d99

Engage vpaes-armv8 module. · 33b188a8
Andy Polyakov authored Mar 18, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
33b188a8
Add vpaes-amrv8.pl module. · 2779c084
Andy Polyakov authored Mar 17, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
2779c084
Configure: remove unused variables. · 1818572d
Andy Polyakov authored Mar 18, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
1818572d
Make asn1_ex_i2c, asn1_ex_c2i static. · 23dc1706
Dr. Stephen Henson authored Mar 28, 2015
```
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
```
23dc1706

26 Mar, 2015 29 commits

Remove combine option from ASN.1 code. · ee9d7637

Dr. Stephen Henson authored Mar 26, 2015



Remove the combine option. This was used for compatibility with some
non standard behaviour in ancient versions of OpenSSL: specifically
the X509_ATTRIBUTE and DSAPublicKey handling. Since these have now
been revised it is no longer needed.

Reviewed-by: Richard Levitte <levitte@openssl.org>

ee9d7637

Simplify DSA public key handling. · ea6b07b5

Dr. Stephen Henson authored Mar 26, 2015

DSA public keys could exist in two forms: a single Integer type or a
SEQUENCE containing the parameters and public key with a field called
"write_params" deciding which form to use. These forms are non standard
and were only used by functions containing "DSAPublicKey" in the name.

Simplify code to only use the parameter form and encode the public key
component directly in the DSA public key method.

Reviewed-by: Richard Levitte <levitte@openssl.org>

ea6b07b5

ASN1_TYPE documentation. · dd14f911
Dr. Stephen Henson authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
dd14f911

Add Record Layer documentation · ee3ef9cb

Matt Caswell authored Mar 26, 2015



Add some design documentation on how the record layer works to aid future
maintenance.

Reviewed-by: Richard Levitte <levitte@openssl.org>

ee3ef9cb

Fix formatting oddities · 6f7ae319

Matt Caswell authored Mar 26, 2015



Fix some formatting oddities in rec_layer_d1.c.

Reviewed-by: Richard Levitte <levitte@openssl.org>

6f7ae319

Fix record.h formatting · d2200caf

Matt Caswell authored Mar 26, 2015



Fix some strange formatting in record.h. This was probably originally
introduced as part of the reformat work.

Reviewed-by: Richard Levitte <levitte@openssl.org>

d2200caf

Define SEQ_NUM_SIZE · e5bf62f7

Matt Caswell authored Mar 26, 2015



Replace the hard coded value 8 (the size of the sequence number) with a
constant defined in a macro.

Reviewed-by: Richard Levitte <levitte@openssl.org>

e5bf62f7

Fix compilation on windows for record layer · 3497ac5d
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
3497ac5d
Rename record layer source files · 1711f8de
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
1711f8de
Remove some unneccessary macros · 9e7ba3b2
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
9e7ba3b2
Renamed record layer header files · c99c4c11
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
c99c4c11
Reorganise header files · 44cc35d3
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
44cc35d3
Remove last trace of non-record layer code reading and writing sequence · cca52a84
Matt Caswell authored Feb 04, 2015
```
numbers directly

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
cca52a84

Move last_write_sequence from s->d1 to s->rlayer.d. · 3bb8f87d

Matt Caswell authored Feb 04, 2015


Also push some usage of last_write_sequence out of dtls1_retransmit_message
and into the record layer.

Reviewed-by: Richard Levitte <levitte@openssl.org>

3bb8f87d

Move ssl3_record_sequence_update into record layer · 14daae5a
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
14daae5a
Move buffered_app_data from s->d1 to s->rlayer.d · 24a1e2f2
Matt Caswell authored Feb 04, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
24a1e2f2
Move handshake_fragment, handshake_fragment_len, alert_fragment and · c661ac16
Matt Caswell authored Feb 04, 2015
```
alert_fragment_len from s->d1 to s->rlayer.d

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
c661ac16
Fix seg fault in dtls1_new · 5fb6f80c
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
5fb6f80c
Moved processed_rcds and unprocessed_rcds from s->d1 to s->rlayer.d · cb2ce7ab
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
cb2ce7ab
Move bitmap and next_bitmap from s->d1 to s->rlayer.d. · 91f93f69
Matt Caswell authored Feb 03, 2015
```
Create dtls_bitmap.h and dtls_bitmap.c

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
91f93f69
Move r_epoch and w_epoch from s->d1 to s->rlayer.d · 78a39fe7
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
78a39fe7
Introduce a DTLS_RECORD_LAYER type for DTLS record layer state · 40f37188
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
40f37188
Move DTLS1_RECORD_DATA into rec_layer.h · bb4203d9
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
bb4203d9
Move read_sequence and write_sequence from s->s3 to s->rlayer · de07f311
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
de07f311
Move s->s3->wpend_* to s->rlayer · f8caa3c8
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
f8caa3c8
Move handshake_fragment, handshake_fragment_len, alert_fragment and · 4aa7389e
Matt Caswell authored Feb 03, 2015
```
alert_fragment_len from s->s3 into s->rlayer

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
4aa7389e
Move s->s3->wnum to s->rlayer.wnum · e2228d31
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
e2228d31
Move s->rstate to s->rlayer.rstate · 295c3f41
Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
295c3f41
Move s->packet and s->packet_length into s->rlayer · 7a7048af
Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
7a7048af